$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft File: O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft (raw, json) Hash identifier: x+TyocCsBfFaCIZ52du68Qo1pj9GBvYGcaKZasVHmD8= Subject key identifier: 09:E3:94:D0:E0:D6:A4:CD:B8:E9:63:53:BF:A6:5E:0B:46:4C:7E:2A Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0E6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft Manifest number: 0D9B Signing time: Sat 23 Aug 2025 21:14:51 +0000 Manifest this update: Sat 23 Aug 2025 21:14:51 +0000 Manifest next update: Mon 25 Aug 2025 21:14:51 +0000 Files and hashes: 1: 0RyBb2ZWl-JoRvwhm-aSGa4PhP0.roa (hash: kDVcdLKZ33TiF6qe2oThZ6b+hy94ppWeYcriObmSfJU=) 2: 5hf1unkjbLUs4dX5Nxv0Z_GUnSw.roa (hash: 7808o0ds4CjX1LscsajwepgJgYqRhjYKwgT6tS1RTOA=) 3: 7Gaf8ZKhWebZWVrmPJa-f2dChe0.roa (hash: vJsdtBYtiqcvSOwBX/Z+/UcAzPkGs5Xx8pZi1gwoIc0=) 4: AhPI1REtvXR-HmqhvrJRUTP3vZQ.roa (hash: p7ZON6VJFzxo/oXIY51nIP15JkA52qIdYX3MrvdhXx4=) 5: DBoZCS3rF3YHHHOmE1IkiYxYkoA.roa (hash: f24YR0ilE8LuBuSEpteE22b1N9/73MLeF6tcu10fdYA=) 6: Ek7kLtECOBnlPLpnVpsIX54XCWg.roa (hash: ePjHezmF6HgFCsKAR1O3NCgNeAD6NGH37vBlOJ45KHA=) 7: F9PJGTjnhUuaRsDFW6kGuIswr2Q.roa (hash: 5Csj3Msctv8AWFzq+4WwY3wNuBSGk30qiZW/qCo3GTo=) 8: Hqqjy1Qas9rd_wChrYgNjZWzf7s.roa (hash: GPAJPnge4rjc1r0M7RGQntiAQ/jxe+xIMUd/CxSw8Fs=) 9: IbRU5Gag8DihcJ-ip5oSfQpWga4.roa (hash: pM0H1ilfnzdKRVgQ9PnvaHmTrY4+V118Ij/Heg2DmHo=) 10: M1rXzKZZp8r8otYHw2z0DUPNIi8.roa (hash: ocaUhtktXgcCA+Wy3/W5hRDLojCYHW3nFsM+H9VTo5w=) 11: O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl (hash: e+kzqKAgRPE7+ec4qh9p33AlqWKhX5AKcDpxXcJ1b7E=) 12: OOTa8v2aWwMI94B_jT8q7CpaNjM.roa (hash: WHb3v3swGHiTZK6/A9tDpSR8bbgYwvskPbQfJi6l19Q=) 13: QBsr4KNmTCNzjy3AyEzFikZf97I.roa (hash: 0IWXLa/bVyhC2+OgfbHV/WuM0nYWjQe5lEk/Ls7WC1k=) 14: Rbn-MuYcpxL0L12nq5LyTMcPX-4.roa (hash: iumyYDnBQ7nor157htrzF570n/iQGqDt66pQofqiR6c=) 15: TjYEur3CAERf7tLr_Z0l1MJhvVo.roa (hash: mH23Newr0XkDwl+aD99ks7Pp0P+sAVEFQh/7+94ENSY=) 16: UbBFi0xMbPwr8J3vEj5FnH4CnMk.roa (hash: eLE8o4nq6N+wlAJcHbwOmsiS7qH4bN+gs7HMgz6gX3E=) 17: WSJnusQLlaYwRoEruj_xp-99KJw.roa (hash: fJhfw14J2Dcd40N6M55vgSQkyYpVFxUf++uh/s2RSXk=) 18: Z04Bgi7OiD-eaytqM9pXQRQ0ErU.roa (hash: wdJa2dSgEEOtCcBkBt3OsUNwguWDk0SP095/tS/kdYo=) 19: _ho6VpD9bk82PTf645psnvBJ1MY.roa (hash: kdzYzMXEgkNlszY83k/4jbH2hsZfk5UR5ZiVY2W6SE8=) 20: rO8VMSfGcZaBoLD-HlLzCAht7_g.roa (hash: uxP/Za77hSiigfbWu7mlAY2l3M7WrKTwfhNsCu76SHs=) 21: x8-tfOYZLubtMMD7-3gy5qRxqAg.roa (hash: PaYP5HuboHDvuLNxDiIu0GUo49PRZiTdLPpO2RJnPV4=) 22: xQ7A1P9nnDf-0CTo38PyTgpR65o.roa (hash: zWeiId2+wadXqaVwkxtRzCCqGfCilBm7eA7S3Fx0XbY=) 23: xrDWuf9zl28OxQMAfH8mGJ1VglU.roa (hash: FREdqzKCB05sxJ+YvS0PCgy1MwS957J9qFMQaFgYCkE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3690 (0xe6a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Aug 23 21:14:51 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=09E394D0E0D6A4CDB8E96353BFA65E0B464C7E2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:68:21:ff:2f:7f:7e:0a:f0:22:fb:b4:01:88: dd:dc:76:b5:be:28:fc:86:b9:f8:4e:62:4e:3f:41: 47:c6:6c:01:dd:22:5a:51:ef:cc:dc:41:b3:14:c8: f4:4b:1b:6d:db:dd:10:ac:c0:12:9c:5b:de:48:ec: 19:b4:b4:ed:19:18:34:70:35:aa:93:27:63:1b:4a: ad:59:3f:6e:66:f5:44:5c:c3:4d:d2:7b:c6:38:08: 99:67:6b:fa:ac:56:fc:b1:d0:c3:9c:f7:87:86:ed: 5c:ed:7f:a4:56:1a:28:03:78:7d:3a:f6:bc:91:49: ae:fa:bd:b5:46:1d:16:bf:f0:43:89:37:fb:03:60: 83:c8:8d:4e:8b:ac:ac:99:55:9c:d3:26:3d:cf:79: d3:8c:c5:38:3f:86:d4:29:06:cf:a7:e4:1a:45:9c: a2:ea:4e:25:ab:0c:d4:f0:79:89:c8:0a:46:f5:43: 79:e8:96:4c:25:ca:54:e5:ec:ec:a2:24:11:0e:fd: 50:d6:9e:60:67:70:01:a5:13:fc:45:2f:b5:8e:1e: 2e:8b:3f:98:98:18:86:3d:53:c5:05:f4:ee:3c:55: 46:d8:14:a9:b3:d7:fe:d8:c0:5f:b9:df:3d:f2:34: a5:1a:a6:98:45:30:7b:a3:3d:f7:7b:d9:de:18:f4: bf:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E3:94:D0:E0:D6:A4:CD:B8:E9:63:53:BF:A6:5E:0B:46:4C:7E:2A X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0e:56:a3:ba:9d:c8:17:f8:a5:4e:fe:5d:c1:eb:9e:13:f3:79: 10:6f:7a:3e:4e:1d:00:13:da:6c:54:32:59:9e:7f:1a:66:c7: 8c:b6:5d:8a:13:a2:45:76:9d:87:5f:93:6c:02:45:84:5a:8d: 58:b0:2b:3d:30:c1:bd:a8:b8:6f:1b:2a:d1:c8:6c:5d:19:02: 2f:e1:69:32:f1:48:b4:b6:10:b7:5a:a3:81:74:9a:1e:2f:1f: cc:53:f8:d2:df:54:43:67:31:6f:d0:36:1c:6a:22:7f:60:84: 86:25:78:e3:90:4f:c0:3c:0d:d5:67:97:f0:99:cc:87:c7:da: a2:21:21:a9:46:f0:8d:46:1d:c1:1e:35:8e:9c:44:7e:53:a1: 33:9f:39:0d:ee:1e:9b:e9:4e:1b:72:55:9a:c0:6f:8e:0e:be: 43:ed:34:13:83:51:fa:93:36:30:6f:bc:98:74:83:f5:a9:24: d8:85:4e:c6:a5:31:a1:0b:d8:7f:1e:ab:55:f0:6e:58:9c:39: 28:40:e7:7d:f9:2c:2d:a1:f6:6f:a7:da:56:97:57:85:01:95: 3c:25:92:ee:b8:00:a6:a8:0e:fc:16:65:7c:6a:07:07:9b:4a: 7e:16:8e:64:1d:5a:b9:fb:47:fc:f3:bb:1b:d9:d3:1a:65:48: 2b:0f:72:4f -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDmowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNTA4MjMy MTE0NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA5RTM5NEQwRTBENkE0 Q0RCOEU5NjM1M0JGQTY1RTBCNDY0QzdFMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqaCH/L39+CvAi+7QBiN3cdrW+KPyGufhOYk4/QUfGbAHdIlpR 78zcQbMUyPRLG23b3RCswBKcW95I7Bm0tO0ZGDRwNaqTJ2MbSq1ZP25m9URcw03S e8Y4CJlna/qsVvyx0MOc94eG7Vztf6RWGigDeH069ryRSa76vbVGHRa/8EOJN/sD YIPIjU6LrKyZVZzTJj3PedOMxTg/htQpBs+n5BpFnKLqTiWrDNTweYnICkb1Q3no lkwlylTl7OyiJBEO/VDWnmBncAGlE/xFL7WOHi6LP5iYGIY9U8UF9O48VUbYFKmz 1/7YwF+53z3yNKUapphFMHujPfd72d4Y9L+LAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUCeOU0ODWpM246WNTv6ZeC0ZMfiowHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9PLWJHVVRVT2o2SDhmUW8tcTgt WS1Cc3hHZE0ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEADlaj up3IF/ilTv5dweueE/N5EG96Pk4dABPabFQyWZ5/GmbHjLZdihOiRXadh1+TbAJF hFqNWLArPTDBvai4bxsq0chsXRkCL+FpMvFItLYQt1qjgXSaHi8fzFP40t9UQ2cx b9A2HGoif2CEhiV445BPwDwN1WeX8JnMh8faoiEhqUbwjUYdwR41jpxEflOhM585 De4em+lOG3JVmsBvjg6+Q+00E4NR+pM2MG+8mHSD9akk2IVOxqUxoQvYfx6rVfBu WJw5KEDnffksLaH2b6faVpdXhQGVPCWS7rgApqgO/BZlfGoHB5tKfhaOZB1auftH /PO7G9nTGmVIKw9yTw== -----END CERTIFICATE-----Generated at Sun Aug 24 03:39:42 2025 by rpki-client