$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft File: Qi58ldh96a7rISoMTMsBdOZcpdA.mft (raw, json) Hash identifier: L7a8HrCpr9NXnN2argmKHUNRpfcfoVvG9y/7dI7Q17s= Subject key identifier: BD:78:EC:D8:CE:A1:D0:EC:64:85:14:D1:BB:92:8A:0C:C1:55:0E:11 Authority key identifier: 42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 Certificate issuer: /CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Certificate serial: 0579 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft Manifest number: 0567 Signing time: Sun 19 Oct 2025 21:25:09 +0000 Manifest this update: Sun 19 Oct 2025 21:25:09 +0000 Manifest next update: Tue 21 Oct 2025 21:25:09 +0000 Files and hashes: 1: Iae4dMfDrfixhoVkKyWkgArhfX8.roa (hash: W9NVg3lBCf+opGF14C6jkXmBn/zjvnn8g7JT0A4HQGQ=) 2: Ke6CgNRg0pMHFjP_mSSyAY6Z41U.roa (hash: YqwlOGEcaAp5DCS0ajlmexYG+bj1rstuhn0f7Nk/oSY=) 3: Qi58ldh96a7rISoMTMsBdOZcpdA.crl (hash: a3uUk2cmMCT2H7ZwuugnDZo1/cSkc8tCFMTUwePbgRI=) 4: YQC29HfWE-aGDqVADjU2a3t15k4.roa (hash: 0Lch1heOBUZb3GWRcx+BzAkOQC5taYNtXAuOtTm7rYk=) 5: fqbH7UyMHQixCehc5FDezdRwvx0.roa (hash: u6AyZfGAeWSRk/Qw5OiynYlLBC33KbkbDJ+uDHw1Y8Y=) 6: qzPi6PMbzMqc1fg1ERlNAG4e19M.roa (hash: PnheDiQ6rF/u+0g0H8DopfJXpFVlYVmdjKWPFOiwSLg=) 7: zQ0rr8tgtODW2163ed1zEuwZd88.roa (hash: b1D1k4Y36e9xypzya2dDvoPUavL2UezXMxngXE7dFLo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1401 (0x579) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=422E7C95D87DE9AEEB212A0C4CCB0174E65CA5D0 Validity Not Before: Oct 19 21:25:09 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BD78ECD8CEA1D0EC648514D1BB928A0CC1550E11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:d7:42:47:0b:5a:68:6c:8c:27:93:dd:ed:dd: 4a:b2:d4:eb:00:26:24:26:e1:97:7a:87:90:16:95: 09:25:d1:5b:3b:4b:4c:0e:37:62:75:a7:65:30:94: c8:80:57:e7:12:55:ce:dc:c9:44:d4:79:46:7b:7a: 12:d1:7a:14:69:19:58:78:db:0c:b4:48:38:d2:64: 0a:9b:aa:75:58:4b:83:62:91:a6:02:f2:b1:00:00: 70:8c:0a:74:e4:d6:b9:be:f4:1e:ce:35:4a:f6:ac: c6:19:da:e8:8a:72:6a:6c:b9:d8:0e:de:ed:96:8b: 26:97:7b:6b:b3:5a:c5:d5:d7:39:83:52:75:6b:c1: 12:f8:88:c1:0a:69:b1:7c:77:a4:e6:56:a6:ca:45: d0:69:c7:86:0f:d3:b2:f7:75:d4:62:06:fb:da:e0: 08:40:a3:a5:dc:6a:08:f7:73:4f:2a:f0:72:02:bc: 5a:ab:99:fa:b1:9e:94:38:de:6e:5d:00:c7:13:ab: 1a:5b:d0:2c:7b:fd:15:d6:ed:43:37:5c:74:5c:58: de:68:a7:3f:32:f8:f6:5e:78:e2:69:fb:46:0f:91: bf:53:f8:a8:5e:91:d7:aa:93:ca:c9:fc:2d:63:67: c9:72:51:28:5d:ba:bd:f8:95:9b:87:83:49:ea:7c: f2:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:78:EC:D8:CE:A1:D0:EC:64:85:14:D1:BB:92:8A:0C:C1:55:0E:11 X509v3 Authority Key Identifier: keyid:42:2E:7C:95:D8:7D:E9:AE:EB:21:2A:0C:4C:CB:01:74:E6:5C:A5:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Qi58ldh96a7rISoMTMsBdOZcpdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SKIPTECH/Qi58ldh96a7rISoMTMsBdOZcpdA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:27:53:8f:41:f5:67:90:16:fc:3a:58:3a:1a:30:64:72:eb: af:d2:cc:e4:1f:41:3f:6d:4d:c3:d3:d3:03:e9:6a:1e:f5:14: f9:55:3a:23:b9:08:96:97:a4:d9:82:3a:2d:9f:fc:43:f7:d7: 94:56:a6:b5:c2:f3:99:5e:e5:22:39:06:23:dc:54:4a:15:9f: 19:85:30:ef:73:55:e6:13:3e:77:81:30:51:f8:d6:83:b8:8e: 97:13:ce:ef:52:c7:16:a8:cc:68:54:52:6d:c2:d8:4c:1d:8f: b4:f4:63:23:8c:e5:9f:89:43:7d:c9:f0:f5:ec:07:f9:07:ce: b4:0c:37:a4:7e:a0:cf:c2:85:30:a6:7a:a2:a3:67:03:e7:2e: 18:fa:a9:4e:5c:c6:73:c2:fb:42:91:a0:1d:93:fe:59:2e:40: ad:b1:86:08:f8:16:a2:b1:bf:97:fe:c7:26:95:cd:3d:32:1d: 2f:e3:52:fc:69:9a:a0:c8:ba:f8:cd:60:c3:21:a8:5a:58:8f: ee:01:78:65:8a:15:a4:34:f9:74:d5:f4:0f:45:a8:09:e7:64: 15:0f:f8:f2:b6:2b:bb:a5:37:c6:3e:fe:53:6e:17:9e:1f:60: d0:65:d3:3f:95:bb:fd:87:1a:87:f2:ad:61:ac:e4:65:90:29: 6d:11:57:ce -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICBXkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDIy RTdDOTVEODdERTlBRUVCMjEyQTBDNENDQjAxNzRFNjVDQTVEMDAeFw0yNTEwMTky MTI1MDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJENzhFQ0Q4Q0VBMUQw RUM2NDg1MTREMUJCOTI4QTBDQzE1NTBFMTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC110JHC1pobIwnk93t3Uqy1OsAJiQm4Zd6h5AWlQkl0Vs7S0wO N2J1p2UwlMiAV+cSVc7cyUTUeUZ7ehLRehRpGVh42wy0SDjSZAqbqnVYS4NikaYC 8rEAAHCMCnTk1rm+9B7ONUr2rMYZ2uiKcmpsudgO3u2WiyaXe2uzWsXV1zmDUnVr wRL4iMEKabF8d6TmVqbKRdBpx4YP07L3ddRiBvva4AhAo6Xcagj3c08q8HICvFqr mfqxnpQ43m5dAMcTqxpb0Cx7/RXW7UM3XHRcWN5opz8y+PZeeOJp+0YPkb9T+Khe kdeqk8rJ/C1jZ8lyUShdur34lZuHg0nqfPLHAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUvXjs2M6h0OxkhRTRu5KKDMFVDhEwHwYDVR0jBBgwFoAUQi58ldh96a7rISoM TMsBdOZcpdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0tJUFRF Q0gvUWk1OGxkaDk2YTdySVNvTVRNc0JkT1pjcGRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9RaTU4bGRoOTZhN3JJU29NVE1zQmRPWmNwZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TS0lQVEVDSC9RaTU4bGRoOTZhN3JJ U29NVE1zQmRPWmNwZEEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmidTj0H1Z5AW/DpYOhowZHLrr9LM5B9BP21Nw9PTA+lqHvUU+VU6I7kIlpek 2YI6LZ/8Q/fXlFamtcLzmV7lIjkGI9xUShWfGYUw73NV5hM+d4EwUfjWg7iOlxPO 71LHFqjMaFRSbcLYTB2PtPRjI4zln4lDfcnw9ewH+QfOtAw3pH6gz8KFMKZ6oqNn A+cuGPqpTlzGc8L7QpGgHZP+WS5ArbGGCPgWorG/l/7HJpXNPTIdL+NS/GmaoMi6 +M1gwyGoWliP7gF4ZYoVpDT5dNX0D0WoCedkFQ/48rYru6U3xj7+U24Xnh9g0GXT P5W7/Ycah/KtYazkZZApbRFXzg== -----END CERTIFICATE-----Generated at Mon Oct 20 14:08:27 2025 by rpki-client