$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft File: 4hRiP9Epy5cnQNOR2vORlvKt8r0.mft (raw, json) Hash identifier: 3qQGheHhOTX1SdsFYAsVvJQj5rXvbASgjrSQ6U8ABZM= Subject key identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB Authority key identifier: E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD Certificate issuer: /CN=E214623FD129CB972740D391DAF39196F2ADF2BD Certificate serial: 0187 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft Manifest number: 0183 Signing time: Sun 19 Oct 2025 21:57:33 +0000 Manifest this update: Sun 19 Oct 2025 21:57:33 +0000 Manifest next update: Tue 21 Oct 2025 21:57:33 +0000 Files and hashes: 1: 4hRiP9Epy5cnQNOR2vORlvKt8r0.crl (hash: PYOR7nzRcvpZD/EJklOhmyZAtrS1V4xXyfb0HbGGXgk=) 2: iSwRk6JX6sq0zUYdAiJaQJwTSNU.roa (hash: ZfvLyZSU7HOwGerGgBmUBGoPowZcffgpfXRcA2OibPk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 391 (0x187) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E214623FD129CB972740D391DAF39196F2ADF2BD Validity Not Before: Oct 19 21:57:33 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5F4E013E8588F20D7604DFEA79DAC4D64B88E9AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3b:a8:8c:da:a4:d9:95:81:48:9d:98:2f:23: 36:0a:90:d7:70:72:d0:66:3b:92:cc:47:d1:62:8a: 61:2c:f3:fe:e2:cc:00:9b:2c:62:ff:19:9f:43:0a: 49:75:35:66:ab:6b:2a:9c:c6:38:70:dd:11:a3:c8: ed:c0:34:19:e9:f6:84:d1:18:53:59:fd:90:94:4a: 1f:75:c2:cb:4f:40:04:94:aa:04:17:48:7d:db:b3: ba:94:c3:97:d1:b5:c7:a1:a1:fa:97:cd:48:b6:b9: de:2f:2d:0d:97:e1:75:ba:6c:26:fd:a6:a6:3c:a5: 7e:e5:59:c2:5d:8a:3a:37:5a:ff:df:a2:2d:28:46: 8a:47:d6:e6:88:b8:d2:90:68:42:b2:40:76:b4:90: 0f:03:92:34:db:47:05:77:c8:95:eb:8d:b2:05:0e: a8:c7:47:57:4a:7a:47:f4:44:89:27:b7:ae:0d:bb: aa:c8:ff:14:93:de:ae:4c:e6:94:b5:e7:e7:7d:95: 0e:bd:b2:86:37:c0:03:26:fe:de:77:54:ff:99:08: 47:0d:74:88:b6:31:5a:1d:02:e0:13:89:c5:4b:0d: 13:ab:39:5a:f7:3d:b6:d1:a7:cb:e5:19:37:bf:18: 1b:34:58:ee:dd:33:56:ac:0b:83:53:d2:f6:dc:28: fc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB X509v3 Authority Key Identifier: keyid:E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:35:ac:fc:e8:34:cc:12:89:48:a4:fe:98:e8:6a:ad:88:ed: 91:59:8d:b4:0a:28:08:ee:6c:7b:00:b6:63:1d:84:9f:f1:c0: 0b:2b:6b:3a:1c:58:74:73:fd:f8:ef:1e:70:52:a6:c4:28:7f: a0:42:44:a2:15:a3:c6:07:d0:51:e3:35:4b:73:2e:a8:ef:df: 74:73:e7:bf:da:23:7b:06:6f:2c:2f:b8:40:87:a1:4a:e8:35: 6f:e8:4f:ae:28:78:4d:ac:87:b4:6a:46:a0:1a:a6:e3:93:97: ac:ea:b5:b9:e4:a3:fb:97:12:c5:de:f1:e9:1c:34:03:83:03: 02:12:1b:c8:a3:f4:88:4d:c0:18:95:03:63:e8:22:43:3a:e0: 1d:93:89:93:7d:e2:55:7a:ac:5b:1d:8d:e8:81:87:40:b8:33: 23:04:24:4b:b5:96:39:74:2b:fa:2f:ce:cd:22:b9:f9:8d:d0: 64:a0:ab:00:0b:65:1f:8a:2c:7e:bd:78:b1:79:dc:fa:96:36: d5:a7:d7:80:eb:bd:f5:ff:b5:ac:ae:e1:ef:6d:92:7f:a7:61: bd:37:c4:db:3e:7b:bb:f9:22:2f:94:05:8e:f2:2e:d4:a1:18: 8b:19:48:7a:7a:32:a0:27:14:4e:f5:95:b6:3a:5f:cf:22:5c: 78:cb:fb:67 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAYcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTIx NDYyM0ZEMTI5Q0I5NzI3NDBEMzkxREFGMzkxOTZGMkFERjJCRDAeFw0yNTEwMTky MTU3MzNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVGNEUwMTNFODU4OEYy MEQ3NjA0REZFQTc5REFDNEQ2NEI4OEU5QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWO6iM2qTZlYFInZgvIzYKkNdwctBmO5LMR9FiimEs8/7izACb LGL/GZ9DCkl1NWarayqcxjhw3RGjyO3ANBnp9oTRGFNZ/ZCUSh91wstPQASUqgQX SH3bs7qUw5fRtcehofqXzUi2ud4vLQ2X4XW6bCb9pqY8pX7lWcJdijo3Wv/foi0o RopH1uaIuNKQaEKyQHa0kA8DkjTbRwV3yJXrjbIFDqjHR1dKekf0RIknt64Nu6rI /xST3q5M5pS15+d9lQ69soY3wAMm/t53VP+ZCEcNdIi2MVodAuATicVLDROrOVr3 PbbRp8vlGTe/GBs0WO7dM1asC4NT0vbcKPx/AgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUX04BPoWI8g12BN/qedrE1kuI6aswHwYDVR0jBBgwFoAU4hRiP9Epy5cnQNOR 2vORlvKt8r0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0pNRS80 aFJpUDlFcHk1Y25RTk9SMnZPUmx2S3Q4cjAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRoUmlQOUVweTVjblFOT1Iydk9SbHZLdDhyMC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NKTUUvNGhSaVA5RXB5NWNuUU5PUjJ2T1Js dkt0OHIwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBACs1rPzo NMwSiUik/pjoaq2I7ZFZjbQKKAjubHsAtmMdhJ/xwAsrazocWHRz/fjvHnBSpsQo f6BCRKIVo8YH0FHjNUtzLqjv33Rz57/aI3sGbywvuECHoUroNW/oT64oeE2sh7Rq RqAapuOTl6zqtbnko/uXEsXe8ekcNAODAwISG8ij9IhNwBiVA2PoIkM64B2TiZN9 4lV6rFsdjeiBh0C4MyMEJEu1ljl0K/ovzs0iufmN0GSgqwALZR+KLH69eLF53PqW NtWn14DrvfX/tayu4e9tkn+nYb03xNs+e7v5Ii+UBY7yLtShGIsZSHp6MqAnFE71 lbY6X88iXHjL+2c= -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:39 2025 by rpki-client