$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft File: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft (raw, json) Hash identifier: u0pupiuvRstVQCJ0tx5oXWFk/11qBmbXTRYa6sJQMM8= Subject key identifier: 1E:C7:21:23:E4:65:34:4F:84:D2:FE:29:F9:3E:7B:F5:CF:9C:9F:4D Authority key identifier: 9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 Certificate issuer: /CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Certificate serial: 0D96 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft Manifest number: 0D96 Signing time: Sun 19 Oct 2025 21:25:31 +0000 Manifest this update: Sun 19 Oct 2025 21:25:31 +0000 Manifest next update: Tue 21 Oct 2025 21:25:31 +0000 Files and hashes: 1: n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl (hash: yXJiRDDcFPERx6K9Z9r/b3nnnpb3BO2gU+zr+R1ptQo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3478 (0xd96) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9FE740FD0C6492FEC92F3E44CE636EE18B8D3517 Validity Not Before: Oct 19 21:25:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1EC72123E465344F84D2FE29F93E7BF5CF9C9F4D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:98:fc:f4:2b:c9:3f:10:90:3c:4f:2f:e1:61: 0c:e9:0d:dc:f4:4e:2e:05:8a:5f:5b:2c:20:5a:a5: 11:10:ec:6f:5d:0e:a3:83:43:05:13:d7:cf:60:c3: 6f:d8:4f:fb:ab:f2:33:5a:09:6c:38:99:c3:81:d5: a3:7b:68:1d:e8:f9:ab:57:a2:45:ab:29:3d:a5:68: e0:c1:0f:73:42:c6:39:21:15:23:49:a2:ef:93:d5: 1e:d0:50:a2:6c:d6:0f:a4:5c:43:7f:63:dc:42:da: c7:42:df:91:b3:cc:b7:d5:1b:a4:df:8f:f9:fa:fa: 46:24:0c:fe:e6:54:ae:76:3a:3b:dd:bb:5f:b8:f3: 6e:e6:38:ed:f0:e6:bd:57:37:06:ac:f7:1c:d8:af: a9:12:c4:31:67:76:7a:6f:ad:b4:b6:b8:10:23:78: 47:96:29:61:17:0c:60:87:6e:fc:e0:83:a9:f4:d3: ed:21:5f:91:42:76:b3:9b:1b:cd:c7:7c:0e:e4:5b: 26:6e:81:58:bc:1e:99:75:ae:32:0d:4a:98:4f:aa: 04:a4:0d:e1:14:9a:fe:08:e0:c2:db:30:e5:fe:80: 92:fb:4c:7e:1b:ff:d7:e5:a7:e2:7e:ed:73:2a:bb: 17:1a:ed:1c:09:f0:9a:bb:2a:01:bc:05:80:16:0d: 18:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:C7:21:23:E4:65:34:4F:84:D2:FE:29:F9:3E:7B:F5:CF:9C:9F:4D X509v3 Authority Key Identifier: keyid:9F:E7:40:FD:0C:64:92:FE:C9:2F:3E:44:CE:63:6E:E1:8B:8D:35:17 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONMORE/n-dA_Qxkkv7JLz5EzmNu4YuNNRc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 94:9b:fd:39:13:90:74:a4:b5:47:92:6a:22:c7:12:fb:90:c9: 41:2f:bd:c0:1c:90:45:82:70:17:2b:2a:3e:7c:22:6c:d4:14: 0a:1c:8d:f2:74:dd:da:f9:26:54:b1:c9:e2:19:c1:e0:84:25: dd:27:b0:9c:3b:fa:4d:a1:73:19:15:4d:d9:c9:15:1b:c8:3a: 1c:3b:2d:71:80:51:14:b6:ce:c2:53:4f:9d:c9:0e:64:2b:cf: b0:e3:02:02:ab:01:91:9f:b4:75:60:0c:d2:c4:2e:fe:15:2f: 40:71:63:fc:3a:81:be:f9:66:02:0e:e9:88:69:e9:d7:09:3c: b9:96:de:bc:ba:01:bd:ac:22:3e:30:1e:91:5e:77:fe:38:79: 67:bc:f4:c6:bc:05:07:54:0a:5f:0f:45:96:4a:f6:15:47:79: 12:e6:a7:88:d0:86:6e:03:6f:86:1c:17:2a:62:14:66:fa:f3: 52:9b:4c:c0:78:a1:8c:9a:9a:8f:3f:b3:35:99:54:89:2a:5a: 6f:d5:d2:6d:a0:d3:11:16:16:0d:7d:81:95:b2:78:46:4f:d0: d3:65:08:ee:9e:83:82:7b:2c:94:4c:83:f7:83:bc:d8:5d:43: cd:c0:36:59:80:7c:7e:5d:5a:66:f1:ce:71:4f:cf:bc:54:dc: 82:c6:32:84 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDZYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUZF NzQwRkQwQzY0OTJGRUM5MkYzRTQ0Q0U2MzZFRTE4QjhEMzUxNzAeFw0yNTEwMTky MTI1MzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFQzcyMTIzRTQ2NTM0 NEY4NEQyRkUyOUY5M0U3QkY1Q0Y5QzlGNEQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0mPz0K8k/EJA8Ty/hYQzpDdz0Ti4Fil9bLCBapREQ7G9dDqOD QwUT189gw2/YT/ur8jNaCWw4mcOB1aN7aB3o+atXokWrKT2laODBD3NCxjkhFSNJ ou+T1R7QUKJs1g+kXEN/Y9xC2sdC35GzzLfVG6Tfj/n6+kYkDP7mVK52Ojvdu1+4 827mOO3w5r1XNwas9xzYr6kSxDFndnpvrbS2uBAjeEeWKWEXDGCHbvzgg6n00+0h X5FCdrObG83HfA7kWyZugVi8Hpl1rjINSphPqgSkDeEUmv4I4MLbMOX+gJL7TH4b /9flp+J+7XMquxca7RwJ8Jq7KgG8BYAWDRjHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUHschI+RlNE+E0v4p+T579c+cn00wHwYDVR0jBBgwFoAUn+dA/Qxkkv7JLz5E zmNu4YuNNRcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JF L24tZEFfUXhra3Y3Skx6NUV6bU51NFl1Tk5SYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0Evbi1kQV9ReGtrdjdKTHo1RXptTnU0WXVOTlJjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05NT1JFL24tZEFfUXhra3Y3Skx6NUV6 bU51NFl1Tk5SYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCU m/05E5B0pLVHkmoixxL7kMlBL73AHJBFgnAXKyo+fCJs1BQKHI3ydN3a+SZUscni GcHghCXdJ7CcO/pNoXMZFU3ZyRUbyDocOy1xgFEUts7CU0+dyQ5kK8+w4wICqwGR n7R1YAzSxC7+FS9AcWP8OoG++WYCDumIaenXCTy5lt68ugG9rCI+MB6RXnf+OHln vPTGvAUHVApfD0WWSvYVR3kS5qeI0IZuA2+GHBcqYhRm+vNSm0zAeKGMmpqPP7M1 mVSJKlpv1dJtoNMRFhYNfYGVsnhGT9DTZQjunoOCeyyUTIP3g7zYXUPNwDZZgHx+ XVpm8c5xT8+8VNyCxjKE -----END CERTIFICATE-----Generated at Mon Oct 20 17:03:01 2025 by rpki-client