$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft File: U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft (raw, json) Hash identifier: 59XwTQtQnehCWDBUE1L9UvLZzRYr0S96R80f2JTd+cY= Subject key identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 Authority key identifier: 53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 Certificate issuer: /CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Certificate serial: 0254 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft Manifest number: 0254 Signing time: Mon 20 Oct 2025 23:55:18 +0000 Manifest this update: Mon 20 Oct 2025 23:55:18 +0000 Manifest next update: Tue 21 Oct 2025 05:55:18 +0000 Files and hashes: 1: U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl (hash: 4vxAbhR38Uw6UZZfrvlcktn4erPnpJn/3TruHjOuPIE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 21 Oct 2025 03:26:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 596 (0x254) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=53906E2E2EFE7491DB19B1C209EA178C39A0DAE5 Validity Not Before: Oct 20 23:55:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8BCF9A1720F5F3385D2E74231DE4571525E4C745 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:1c:a5:3f:4b:26:51:f8:59:a2:01:cc:24:7a: 56:fe:69:eb:2d:0e:e9:54:ee:fc:bb:3a:c4:0a:9c: 5a:da:2c:8a:ac:6d:2b:48:9f:68:5f:9a:0b:9f:50: 7e:d5:a1:86:e2:a8:c1:d4:2d:4c:19:5d:09:04:bf: 4d:e8:bf:6d:0a:73:6b:68:52:e8:6f:16:de:39:35: 43:b1:10:97:de:d8:cb:b8:f0:83:d4:d0:20:42:37: 3b:3b:5d:dd:36:0e:73:6f:44:cf:36:22:a9:45:c2: 51:7d:d9:2a:74:a1:4a:b1:2c:05:0d:96:e1:0b:ae: 3c:58:6d:e9:35:80:99:53:1c:61:4c:92:84:53:84: 59:2c:36:bb:b6:32:6f:a6:cb:e7:40:e5:2c:4d:9b: 21:1d:e9:78:14:0b:bf:f8:b0:c4:07:a3:5e:7a:73: 60:84:d4:c2:bd:08:41:da:fe:ad:4e:44:59:9b:f5: ec:b9:5b:21:01:e7:9b:9b:1b:d7:9d:22:3c:c9:1e: 87:a6:d0:02:3a:91:23:b4:94:4e:11:43:b0:5f:d3: c3:a0:c2:e5:db:22:2e:60:bc:19:2e:08:94:25:94: 6b:ff:78:2f:2f:9b:2a:24:99:54:da:76:71:70:26: 8d:5c:07:3a:8b:fa:34:61:44:7e:8d:0f:92:c6:d3: fd:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:CF:9A:17:20:F5:F3:38:5D:2E:74:23:1D:E4:57:15:25:E4:C7:45 X509v3 Authority Key Identifier: keyid:53:90:6E:2E:2E:FE:74:91:DB:19:B1:C2:09:EA:17:8C:39:A0:DA:E5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U5BuLi7-dJHbGbHCCeoXjDmg2uU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/U5BuLi7-dJHbGbHCCeoXjDmg2uU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption e2:0c:ca:bb:52:13:d6:e4:e0:dc:7d:18:0b:2e:6d:e6:0c:b7: 12:19:2f:90:df:56:db:87:e2:60:06:f7:a7:74:a1:5f:cf:84: 54:ba:aa:58:0c:05:0d:f3:be:66:af:cc:f0:a1:bd:f1:d4:d1: 09:a2:3f:7c:3e:c0:c9:ed:f1:37:87:41:1b:90:8b:66:b6:33: 32:e4:6b:d6:87:a1:4e:fb:0c:b2:52:d3:2b:b5:b2:08:50:24: 08:31:5c:69:b2:ed:47:8f:f6:ce:85:a5:d8:68:11:0b:bd:d1: 53:8a:d8:00:0d:95:00:af:85:0b:21:52:2d:d9:75:b5:5b:11: 3f:48:87:7d:d6:fd:5c:4a:bd:35:27:ec:84:e7:9b:af:1a:b9: 26:7c:c5:cc:a2:e2:c0:c8:fa:f0:18:1d:ad:f3:d3:57:6b:63: a2:8f:ff:b3:e4:7e:29:f3:78:4a:f9:0e:f3:03:a3:61:8a:d1: 09:0e:fa:a1:ee:e0:0e:61:c6:1f:79:1d:d5:3f:b6:df:72:46: 26:16:2d:bd:a6:ca:7b:23:ca:27:38:00:63:de:b4:2e:6c:4c: 18:e3:eb:49:63:b2:98:09:4d:ad:5f:8c:04:db:81:e3:a4:6f: 94:3b:22:ce:e6:b6:5f:fe:67:52:f0:c0:10:d9:44:4b:62:5f: bf:8d:b7:97 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAlQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM5 MDZFMkUyRUZFNzQ5MURCMTlCMUMyMDlFQTE3OEMzOUEwREFFNTAeFw0yNTEwMjAy MzU1MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhCQ0Y5QTE3MjBGNUYz Mzg1RDJFNzQyMzFERTQ1NzE1MjVFNEM3NDUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCbHKU/SyZR+FmiAcwkelb+aestDulU7vy7OsQKnFraLIqsbStI n2hfmgufUH7VoYbiqMHULUwZXQkEv03ov20Kc2toUuhvFt45NUOxEJfe2Mu48IPU 0CBCNzs7Xd02DnNvRM82IqlFwlF92Sp0oUqxLAUNluELrjxYbek1gJlTHGFMkoRT hFksNru2Mm+my+dA5SxNmyEd6XgUC7/4sMQHo156c2CE1MK9CEHa/q1ORFmb9ey5 WyEB55ubG9edIjzJHoem0AI6kSO0lE4RQ7Bf08OgwuXbIi5gvBkuCJQllGv/eC8v myokmVTadnFwJo1cBzqL+jRhRH6ND5LG0/39AgMBAAGjggIFMIICATAdBgNVHQ4E FgQUi8+aFyD18zhdLnQjHeRXFSXkx0UwHwYDVR0jBBgwFoAUU5BuLi7+dJHbGbHC CeoXjDmg2uUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUlVJS0Uv VTVCdUxpNy1kSkhiR2JIQ0Nlb1hqRG1nMnVVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VNUJ1TGk3LWRKSGJHYkhDQ2VvWGpEbWcydVUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9SVUlLRS9VNUJ1TGk3LWRKSGJHYkhDQ2Vv WGpEbWcydVUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA4gzK u1IT1uTg3H0YCy5t5gy3EhkvkN9W24fiYAb3p3ShX8+EVLqqWAwFDfO+Zq/M8KG9 8dTRCaI/fD7Aye3xN4dBG5CLZrYzMuRr1oehTvsMslLTK7WyCFAkCDFcabLtR4/2 zoWl2GgRC73RU4rYAA2VAK+FCyFSLdl1tVsRP0iHfdb9XEq9NSfshOebrxq5JnzF zKLiwMj68BgdrfPTV2tjoo//s+R+KfN4SvkO8wOjYYrRCQ76oe7gDmHGH3kd1T+2 33JGJhYtvabKeyPKJzgAY960LmxMGOPrSWOymAlNrV+MBNuB46RvlDsizua2X/5n UvDAENlES2Jfv423lw== -----END CERTIFICATE-----Generated at Tue Oct 21 02:01:38 2025 by rpki-client