$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.mft File: oF5mz6b4wNqr-xr2-jIYQmBE8Vg.mft (raw, json) Hash identifier: DcNzUtRcGgGFHZQQLw+y4ZqN6MVcKoUeW/PFV7XWxss= Subject key identifier: EC:8C:18:10:7F:FB:4A:61:65:6D:4A:EC:DB:2B:BC:90:D5:1F:42:7B Authority key identifier: A0:5E:66:CF:A6:F8:C0:DA:AB:FB:1A:F6:FA:32:18:42:60:44:F1:58 Certificate issuer: /CN=A05E66CFA6F8C0DAABFB1AF6FA3218426044F158 Certificate serial: 12A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.mft Manifest number: 1295 Signing time: Sat 23 Aug 2025 21:15:16 +0000 Manifest this update: Sat 23 Aug 2025 21:15:16 +0000 Manifest next update: Mon 25 Aug 2025 21:15:16 +0000 Files and hashes: 1: J205OFlkWJ1yTjPdbM0q_XmJvEQ.roa (hash: owHMDRL458pMl+GM/273uxdZfM6EbZRe8zdp3XcBr1s=) 2: oF5mz6b4wNqr-xr2-jIYQmBE8Vg.crl (hash: BHT+PCXEFARpeSYnnSpOAMz3k84ajVtl2MZfSPLMPuo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 17:44:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4770 (0x12a2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A05E66CFA6F8C0DAABFB1AF6FA3218426044F158 Validity Not Before: Aug 23 21:15:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EC8C18107FFB4A61656D4AECDB2BBC90D51F427B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:0b:e8:95:e6:7b:44:fb:80:37:b4:eb:cd:8c: a8:2e:cf:1f:c4:2d:b4:e9:08:58:7f:c7:b2:33:e7: 24:ff:70:01:26:64:f0:ca:02:7e:f9:0e:78:5e:e1: 31:f3:0f:c2:f3:50:a6:b8:c6:df:1f:35:60:6a:5e: 36:12:38:3e:0b:7b:02:10:53:c8:85:dc:18:b4:be: 53:13:00:75:a6:b8:b2:6b:85:54:cd:a1:b3:bb:97: b5:72:7b:45:d5:e8:3b:15:bc:5e:c3:32:87:0c:c0: 46:f7:a7:9c:74:47:5e:c6:33:c0:69:fc:1a:8d:c0: 06:02:09:c0:8b:4a:2b:f3:76:19:fa:23:93:f6:56: 00:28:5b:e5:a3:5b:d2:2a:1e:6e:96:98:9f:aa:f3: 10:d8:00:ae:c2:6a:f2:9a:d6:a6:f8:a1:04:98:f4: ad:a5:e3:5b:00:12:21:51:40:c9:47:12:97:da:4c: bf:78:44:cb:73:2d:ad:40:7d:44:74:0d:52:13:73: b1:00:cb:0e:f5:0f:b1:57:2c:09:10:01:3e:b5:ef: 63:f6:54:07:a3:aa:30:7a:ca:e6:19:fa:55:a0:58: e9:da:9b:51:9f:3d:e0:82:c4:46:d6:67:1d:3f:dd: 85:c4:b4:43:30:6f:b0:95:80:e7:99:bb:45:89:af: 0d:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:8C:18:10:7F:FB:4A:61:65:6D:4A:EC:DB:2B:BC:90:D5:1F:42:7B X509v3 Authority Key Identifier: keyid:A0:5E:66:CF:A6:F8:C0:DA:AB:FB:1A:F6:FA:32:18:42:60:44:F1:58 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MOBATW/oF5mz6b4wNqr-xr2-jIYQmBE8Vg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1f:9f:81:c2:ca:6b:dd:0e:d7:cb:ef:30:9c:79:ff:9c:aa:b1: a9:f9:a8:26:c4:8a:98:da:fe:40:9f:90:37:cd:c5:67:e5:bb: 89:ea:fc:61:f3:1d:08:0b:f0:56:67:3d:3f:e0:fa:96:ec:89: 7e:30:de:3d:e1:87:33:f6:7a:b6:b0:a0:73:18:73:b3:bd:c1: 85:70:48:d0:9b:d9:69:61:3a:61:c1:a5:50:9f:35:b0:b0:42: 05:f6:1a:4b:d7:d0:db:9b:1d:24:d9:ec:f2:e6:cf:b4:a6:0f: 86:f7:78:54:c3:ca:3d:99:26:4a:c1:44:c6:c5:6c:be:40:b7: 4d:7f:91:70:b6:9e:1c:a4:a6:96:c9:83:b4:00:c8:55:b2:48: 6b:26:ca:02:f3:2b:7d:af:fb:22:77:08:7d:25:a1:dc:c0:64: 33:8e:29:03:64:29:44:0d:a0:a4:c1:ac:f4:68:fe:48:5a:43: f5:4e:22:31:ca:33:6a:af:68:b3:b3:ab:dc:30:7f:0e:24:6d: a2:f5:74:bd:9c:bb:c3:44:8f:e3:6d:cf:71:73:26:56:69:98: 4e:ab:76:cf:47:f4:51:b1:4b:98:1d:07:9a:a9:f5:00:8d:a7: d5:d2:da:e6:5a:80:0b:b4:1a:1a:b8:55:7d:30:d3:cd:bf:fe: 82:fd:01:98 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICEqIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTA1 RTY2Q0ZBNkY4QzBEQUFCRkIxQUY2RkEzMjE4NDI2MDQ0RjE1ODAeFw0yNTA4MjMy MTE1MTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVDOEMxODEwN0ZGQjRB NjE2NTZENEFFQ0RCMkJCQzkwRDUxRjQyN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuC+iV5ntE+4A3tOvNjKguzx/ELbTpCFh/x7Iz5yT/cAEmZPDK An75Dnhe4THzD8LzUKa4xt8fNWBqXjYSOD4LewIQU8iF3Bi0vlMTAHWmuLJrhVTN obO7l7Vye0XV6DsVvF7DMocMwEb3p5x0R17GM8Bp/BqNwAYCCcCLSivzdhn6I5P2 VgAoW+WjW9IqHm6WmJ+q8xDYAK7CavKa1qb4oQSY9K2l41sAEiFRQMlHEpfaTL94 RMtzLa1AfUR0DVITc7EAyw71D7FXLAkQAT6172P2VAejqjB6yuYZ+lWgWOnam1Gf PeCCxEbWZx0/3YXEtEMwb7CVgOeZu0WJrw0vAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQU7IwYEH/7SmFlbUrs2yu8kNUfQnswHwYDVR0jBBgwFoAUoF5mz6b4wNqr+xr2 +jIYQmBE8VgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9CQVRX L29GNW16NmI0d05xci14cjItaklZUW1CRThWZy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0Evb0Y1bXo2YjR3TnFyLXhyMi1qSVlRbUJFOFZnLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9CQVRXL29GNW16NmI0d05xci14cjIt aklZUW1CRThWZy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAf n4HCymvdDtfL7zCcef+cqrGp+agmxIqY2v5An5A3zcVn5buJ6vxh8x0IC/BWZz0/ 4PqW7Il+MN494Ycz9nq2sKBzGHOzvcGFcEjQm9lpYTphwaVQnzWwsEIF9hpL19Db mx0k2ezy5s+0pg+G93hUw8o9mSZKwUTGxWy+QLdNf5Fwtp4cpKaWyYO0AMhVskhr JsoC8yt9r/sidwh9JaHcwGQzjikDZClEDaCkwaz0aP5IWkP1TiIxyjNqr2izs6vc MH8OJG2i9XS9nLvDRI/jbc9xcyZWaZhOq3bPR/RRsUuYHQeaqfUAjafV0trmWoAL tBoauFV9MNPNv/6C/QGY -----END CERTIFICATE-----Generated at Sun Aug 24 16:27:28 2025 by rpki-client