$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft File: U0x2J0ozCwce_SDbBfbQQpKTdD4.mft (raw, json) Hash identifier: lBf2+rcSB2Iw+0ejRbDI+JXjmUNv6BrwpGif68Fpa6A= Subject key identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E Certificate serial: 0EAB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft Manifest number: 0E9B Signing time: Sat 23 Aug 2025 21:16:53 +0000 Manifest this update: Sat 23 Aug 2025 21:16:53 +0000 Manifest next update: Mon 25 Aug 2025 21:16:53 +0000 Files and hashes: 1: U0x2J0ozCwce_SDbBfbQQpKTdD4.crl (hash: 7+MafhfKOhn8Ujittqhqg5aD/POhpQ7u0+hrG5gnADw=) 2: VFXOUuf4mlxJS55YH8SI-orePSE.roa (hash: 86qxM5RGWAoIZdvnZByzYCseR1C45L3gZiH/lc14oTY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:14:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3755 (0xeab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E Validity Not Before: Aug 23 21:16:53 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8EFA600085AD19FB92E7AF72869E083CBA7A5FCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f6:aa:2a:b2:ec:54:31:bd:a6:fa:09:34:aa: 1d:69:f4:07:21:8d:ef:e6:1f:66:30:7a:b8:98:09: 97:99:53:36:e2:cd:b2:79:d6:06:55:6c:60:b7:c5: 74:c8:41:52:f6:42:2b:66:d4:21:a0:50:c6:92:49: 53:5b:ee:43:71:52:fa:bc:d6:4c:c0:3f:86:e2:73: ad:8d:a1:00:37:ee:a4:19:b2:08:d0:a3:2c:80:24: 79:d2:1b:e4:ba:6e:17:8e:72:fc:c8:27:22:39:76: 24:33:44:0c:00:42:b5:6b:6c:a6:cf:e7:58:e1:a3: dc:5b:98:f6:61:65:d2:b4:ea:b4:46:40:35:26:0b: dd:f0:7e:cc:d1:c4:e2:bd:72:a4:fd:a3:78:72:06: ec:65:ed:5d:4b:e1:c9:dc:20:14:5e:8a:ce:32:7d: ed:8b:18:49:c3:37:a2:f9:56:b8:d1:05:3d:c0:e1: f5:9d:c7:8c:44:54:e0:79:12:3e:21:2c:b3:2b:ac: 67:c4:f1:87:80:ae:8b:b8:25:84:28:35:f5:a3:e6: e9:62:1d:40:e6:11:89:cd:fb:e9:e7:c7:1c:bd:2a: 8b:7d:24:b0:97:94:25:ee:ea:de:9d:f6:b1:36:27: e4:c3:03:a2:50:8e:bb:87:86:a1:a4:53:cf:7c:81: af:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF X509v3 Authority Key Identifier: keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c9:eb:7d:4b:90:e5:45:db:e7:b5:46:b7:0f:39:31:b7:a8:e7: 63:ec:2a:b4:23:1c:b5:68:7f:89:37:4d:f1:ea:52:c0:8d:a1: 5b:a0:ba:17:d6:d0:a1:55:04:17:2d:8b:3d:7f:7e:5d:3d:d9: 18:f4:18:3b:04:35:09:86:c0:fb:eb:cd:37:d5:66:77:f6:c8: aa:79:9b:90:e1:30:9c:ee:f7:70:f8:16:48:c6:a2:f3:28:a9: 6c:df:4b:47:f5:eb:59:4d:65:f3:d2:71:65:6d:d8:78:de:d3: fd:b6:74:45:c9:49:10:56:cb:ec:14:9d:b5:01:3e:e4:a8:87: b4:d3:37:46:0c:66:d1:cf:e0:0e:b1:82:38:ff:04:01:e4:e3: 61:31:f3:46:a8:e4:91:0e:28:89:f4:37:f6:6d:37:c5:a9:12: a9:aa:4c:49:5b:ff:dd:65:fe:81:bc:f1:f0:99:75:07:74:07: cd:98:25:f0:70:30:36:c4:2f:66:36:ce:b3:bc:11:c2:18:ca: 1b:6d:4a:78:13:21:00:1b:6f:97:fe:d0:13:e1:1b:b9:bb:64: 02:e5:74:68:5c:d1:9f:2f:03:2d:23:a8:fd:94:67:94:69:a7: b1:3b:08:81:27:fc:c7:74:02:7a:24:10:99:f3:e3:55:12:35: 61:f5:a1:f8 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDqswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM0 Qzc2Mjc0QTMzMEIwNzFFRkQyMERCMDVGNkQwNDI5MjkzNzQzRTAeFw0yNTA4MjMy MTE2NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFRkE2MDAwODVBRDE5 RkI5MkU3QUY3Mjg2OUUwODNDQkE3QTVGQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc9qoqsuxUMb2m+gk0qh1p9Achje/mH2YweriYCZeZUzbizbJ5 1gZVbGC3xXTIQVL2Qitm1CGgUMaSSVNb7kNxUvq81kzAP4bic62NoQA37qQZsgjQ oyyAJHnSG+S6bheOcvzIJyI5diQzRAwAQrVrbKbP51jho9xbmPZhZdK06rRGQDUm C93wfszRxOK9cqT9o3hyBuxl7V1L4cncIBReis4yfe2LGEnDN6L5VrjRBT3A4fWd x4xEVOB5Ej4hLLMrrGfE8YeArou4JYQoNfWj5uliHUDmEYnN++nnxxy9Kot9JLCX lCXu6t6d9rE2J+TDA6JQjruHhqGkU898ga/lAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUjvpgAIWtGfuS569yhp4IPLp6X88wHwYDVR0jBBgwFoAUU0x2J0ozCwce/SDb BfbQQpKTdD4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv VTB4Mkowb3pDd2NlX1NEYkJmYlFRcEtUZEQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VMHgySjBvekN3Y2VfU0RiQmZiUVFwS1RkRDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VMHgySjBvekN3Y2VfU0RiQmZi UVFwS1RkRDQubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAyet9 S5DlRdvntUa3Dzkxt6jnY+wqtCMctWh/iTdN8epSwI2hW6C6F9bQoVUEFy2LPX9+ XT3ZGPQYOwQ1CYbA++vNN9Vmd/bIqnmbkOEwnO73cPgWSMai8yipbN9LR/XrWU1l 89JxZW3YeN7T/bZ0RclJEFbL7BSdtQE+5KiHtNM3Rgxm0c/gDrGCOP8EAeTjYTHz RqjkkQ4oifQ39m03xakSqapMSVv/3WX+gbzx8Jl1B3QHzZgl8HAwNsQvZjbOs7wR whjKG21KeBMhABtvl/7QE+EbubtkAuV0aFzRny8DLSOo/ZRnlGmnsTsIgSf8x3QC eiQQmfPjVRI1YfWh+A== -----END CERTIFICATE-----Generated at Sun Aug 24 15:35:57 2025 by rpki-client