$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft File: govRnvqOvlnvQHu3-raJj3VMfsE.mft (raw, json) Hash identifier: 6jp06nfWwSm5qA1lpW+Mc0RYDmtcKP5C5Sl0qOaDuf0= Subject key identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Certificate serial: 1134 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft Manifest number: 1118 Signing time: Sun 19 Oct 2025 22:25:57 +0000 Manifest this update: Sun 19 Oct 2025 22:25:57 +0000 Manifest next update: Tue 21 Oct 2025 22:25:57 +0000 Files and hashes: 1: F-uIqLUJ2DofwkNp7jRcP9Rb0qU.roa (hash: qxhjM03lflZoUJobv28e2CqjaJUBiXRNnEpHgSf1MKI=) 2: fAA_7kU5d-eAsYyb4t9T_m-K9so.roa (hash: 0ssxX45r2zal8T5TYsBqjtxaxF/5kSi/C5RnyqK7E4Q=) 3: govRnvqOvlnvQHu3-raJj3VMfsE.crl (hash: 4rbOIt9c5glxA1w23hUY2BKaXEaE7r3hYKkh1ov9uM4=) 4: zElcDX8txAiKF_nW3UuL27WFm-o.roa (hash: +K7BgWnfJX1+YlJoSHdk6dprDkM4g/+Bv/t19+nc8zA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4404 (0x1134) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Validity Not Before: Oct 19 22:25:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=199435E3FC72374E8E7AC2AD5B0820DA50D3E8D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:da:3e:fa:9b:5a:dd:40:06:17:54:cf:46:56: c6:00:75:aa:0d:85:0d:78:43:77:58:47:f9:72:9d: ef:f1:76:2d:a0:b1:2c:0e:d4:8c:0e:07:0a:26:79: 1c:06:fa:b5:0c:58:5d:11:7b:e2:92:67:8a:33:a4: a0:bc:ac:2e:35:35:80:48:80:8b:f1:e7:0a:ca:23: 9c:f4:1b:ca:6f:af:e1:a2:1f:69:4d:05:d4:9c:ed: 11:75:0c:bb:76:5c:cf:b8:d4:d8:da:f5:58:75:a0: c4:9b:f5:b2:a5:eb:2e:34:4a:a9:8f:44:66:0c:fe: 6d:d3:6f:68:ab:c2:88:ed:8d:b3:f6:cb:7e:31:69: 9c:88:b0:53:07:b6:7f:85:13:0e:e6:47:a3:33:28: 9b:23:ed:0e:ab:62:df:f8:06:e3:8b:2f:a2:0c:57: e1:3e:db:33:7f:ad:2f:7e:39:71:ac:52:fe:62:f5: 0e:b4:cd:18:f6:65:1d:e7:c3:8b:ee:d3:61:ff:ea: d8:4f:ca:de:81:48:ae:19:24:47:2d:75:1b:18:b3: 5d:46:53:04:0c:21:de:3c:e4:eb:e2:7a:2c:39:22: 83:d6:7c:f3:92:af:c4:11:70:d2:c8:da:a9:8d:49: 7a:cf:f9:3d:1b:03:b3:af:e8:07:04:9d:22:60:a8: 0d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 X509v3 Authority Key Identifier: keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9e:0d:52:14:8d:9b:b3:3b:8e:33:03:cf:77:00:05:3b:b9:9d: fe:50:c4:ee:6d:8d:62:79:cc:c6:0e:79:b4:91:a2:d7:57:16: 61:fa:23:49:dc:7d:98:a2:b6:04:1b:bd:e5:b7:2b:7e:14:5a: 8b:61:21:de:b7:bf:fd:27:e6:5a:45:fb:2a:55:a9:fb:3c:02: 7b:7f:9b:80:53:f1:bc:d9:2d:48:1e:81:59:eb:af:c2:df:b1: 10:d3:81:05:2d:ce:4b:85:88:eb:b7:7d:49:21:92:26:17:76: bc:48:58:2f:ea:78:67:1e:01:32:dd:ae:79:a7:65:56:c0:15: 34:8e:ac:b1:c1:c3:a0:28:e1:60:42:6e:b5:f0:ac:8e:20:6d: 85:17:c2:a9:17:d7:c4:1b:f0:f1:ce:44:75:72:37:62:70:99: bf:75:13:ea:4e:b9:75:7b:64:0b:9d:48:b0:28:2c:4a:e5:c4: ea:0d:e1:38:27:ae:5e:2d:71:c0:92:db:12:51:76:b0:89:99: 02:65:66:cb:2f:07:6f:50:b0:15:17:d6:94:83:44:b5:e5:25: fa:0e:c2:e1:db:25:92:9a:6c:06:30:35:f3:90:e3:e7:30:61: 36:06:17:f6:a1:66:c3:cc:db:78:df:f0:3c:fc:4e:6b:3b:a8: ce:f6:bb:b9 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICETQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODI4 QkQxOUVGQThFQkU1OUVGNDA3QkI3RkFCNjg5OEY3NTRDN0VDMTAeFw0yNTEwMTky MjI1NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE5OTQzNUUzRkM3MjM3 NEU4RTdBQzJBRDVCMDgyMERBNTBEM0U4RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV2j76m1rdQAYXVM9GVsYAdaoNhQ14Q3dYR/lyne/xdi2gsSwO 1IwOBwomeRwG+rUMWF0Re+KSZ4ozpKC8rC41NYBIgIvx5wrKI5z0G8pvr+GiH2lN BdSc7RF1DLt2XM+41Nja9Vh1oMSb9bKl6y40SqmPRGYM/m3Tb2irwojtjbP2y34x aZyIsFMHtn+FEw7mR6MzKJsj7Q6rYt/4BuOLL6IMV+E+2zN/rS9+OXGsUv5i9Q60 zRj2ZR3nw4vu02H/6thPyt6BSK4ZJEctdRsYs11GUwQMId485Ovieiw5IoPWfPOS r8QRcNLI2qmNSXrP+T0bA7Ov6AcEnSJgqA1zAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUGZQ14/xyN06OesKtWwgg2lDT6NYwHwYDVR0jBBgwFoAUgovRnvqOvlnvQHu3 +raJj3VMfsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tDTy9n b3ZSbnZxT3ZsbnZRSHUzLXJhSmozVk1mc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2dvdlJudnFPdmxudlFIdTMtcmFKajNWTWZzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLQ08vZ292Um52cU92bG52UUh1My1yYUpq M1ZNZnNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAJ4NUhSN m7M7jjMDz3cABTu5nf5QxO5tjWJ5zMYOebSRotdXFmH6I0ncfZiitgQbveW3K34U WothId63v/0n5lpF+ypVqfs8Ant/m4BT8bzZLUgegVnrr8LfsRDTgQUtzkuFiOu3 fUkhkiYXdrxIWC/qeGceATLdrnmnZVbAFTSOrLHBw6Ao4WBCbrXwrI4gbYUXwqkX 18Qb8PHORHVyN2Jwmb91E+pOuXV7ZAudSLAoLErlxOoN4Tgnrl4tccCS2xJRdrCJ mQJlZssvB29QsBUX1pSDRLXlJfoOwuHbJZKabAYwNfOQ4+cwYTYGF/ahZsPM23jf 8Dz8Tms7qM72u7k= -----END CERTIFICATE-----Generated at Mon Oct 20 14:23:09 2025 by rpki-client