$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft File: S0bOj4AxurdTZNpb2YHoiFBPtBE.mft (raw, json) Hash identifier: QDNK/s0oVxQqg5TF6QI5GtvgoPpxfwlM5fHF3/4unYE= Subject key identifier: 7D:80:8F:52:2F:B8:E9:CA:40:67:10:93:E5:88:0F:17:BE:18:18:66 Authority key identifier: 4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 Certificate issuer: /CN=4B46CE8F8031BAB75364DA5BD981E888504FB411 Certificate serial: 03AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft Manifest number: 03A8 Signing time: Mon 20 Oct 2025 03:55:07 +0000 Manifest this update: Mon 20 Oct 2025 03:55:07 +0000 Manifest next update: Wed 22 Oct 2025 03:55:07 +0000 Files and hashes: 1: S0bOj4AxurdTZNpb2YHoiFBPtBE.crl (hash: 4GMmP9yUsJuXtRsgbnOYhjneJn+K/x3Ne28GwkyyDB8=) 2: kY3dPOVnkxbfZxvdqBh_L7OUHh8.roa (hash: YzMXOnObmmXZZ7p0IM/yNYUju0gO3164QXTVeCaWMsQ=) 3: v812ACC3WzUI5gHVOf4k8ZsUkoI.roa (hash: ZPGnlGw+obPgg2Of2BpBXNhwAVN1VMSg75MMsnML/0o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:26:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 943 (0x3af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4B46CE8F8031BAB75364DA5BD981E888504FB411 Validity Not Before: Oct 20 03:55:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7D808F522FB8E9CA40671093E5880F17BE181866 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:dd:a1:14:ae:2d:4e:58:84:39:95:79:9b:95: dd:c8:e6:2b:a8:6d:4d:b1:42:88:6c:e1:4e:6b:c2: 68:b1:25:df:5b:e1:db:49:5b:42:0c:9c:3c:d7:34: 1d:2f:ba:2a:be:b1:c7:96:56:8d:45:3e:07:11:e4: 14:89:2f:d8:7e:c4:80:dd:4a:d3:c5:43:25:e1:cb: 5f:37:1c:61:b3:02:36:0f:3f:d8:81:0d:34:6d:e1: e1:c3:70:cc:6e:b8:57:7b:53:7f:d9:6a:0b:ee:19: ac:c2:81:b8:9f:e2:a9:85:9d:ad:ff:9d:9d:9b:4f: ab:8b:34:23:34:a1:8e:0a:ed:2a:ac:c0:0f:7b:58: e8:a2:02:b1:ed:01:81:ce:16:dc:ac:7e:fd:b6:90: ca:d8:b3:b0:8a:e5:07:b0:f2:23:15:9c:c0:2b:b4: a8:67:15:18:b4:d7:8c:86:6d:0d:b9:75:54:b0:99: 39:d2:83:c3:85:b2:a2:6b:f7:ef:71:42:b0:05:61: 11:b8:42:b1:7a:78:48:20:64:82:26:7d:bb:c4:3a: 91:62:54:1a:eb:c5:43:50:ba:cb:48:59:8c:0b:60: 54:3c:03:e4:d4:0d:4c:2a:27:29:ce:7c:06:6f:1e: e7:00:c6:ff:e3:34:fa:b8:81:f5:b3:20:50:e8:49: 50:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:80:8F:52:2F:B8:E9:CA:40:67:10:93:E5:88:0F:17:BE:18:18:66 X509v3 Authority Key Identifier: keyid:4B:46:CE:8F:80:31:BA:B7:53:64:DA:5B:D9:81:E8:88:50:4F:B4:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/S0bOj4AxurdTZNpb2YHoiFBPtBE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TAIWAN_NO1/S0bOj4AxurdTZNpb2YHoiFBPtBE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:fc:ea:97:94:9f:5b:32:ff:73:a3:12:a9:06:fc:a7:9d:46: 2b:1c:6f:4e:a1:03:3f:64:aa:b2:cf:81:a9:d6:33:38:10:9e: ac:0a:ec:0e:e6:b5:48:fc:02:e6:f5:93:2c:65:e5:73:78:03: b3:2d:4b:27:16:b3:77:9d:c1:e4:3f:36:6e:bc:32:9e:83:93: 27:af:e4:f7:6d:c4:f3:7a:b4:02:6f:be:17:b9:17:17:40:7e: de:69:31:99:cc:ec:73:4c:06:59:8d:24:bf:4e:04:33:01:fa: 12:a2:25:7f:73:63:bb:55:0c:c1:18:8c:d5:88:09:51:53:c7: 1f:d6:85:64:25:7f:e8:d4:0a:f7:c8:ad:25:8e:1c:f9:d8:b2: 23:31:43:4f:18:c4:36:2d:cb:81:ae:6a:1f:ff:e1:13:9a:52: 15:f5:55:78:6e:4c:8b:18:fa:4f:be:06:93:aa:bf:cb:dc:af: 54:05:61:5a:94:21:b0:a7:b0:64:7f:95:d5:66:aa:34:bf:d7: 95:2c:f7:78:24:bb:96:a8:9f:ae:b6:4e:8a:3e:48:65:a2:68: 14:cc:24:15:d8:ca:33:3a:ad:e4:a3:f1:e2:80:41:85:48:f4: 33:90:02:89:2b:dd:7b:ec:f7:d5:0b:9f:d3:be:92:0a:0d:4a: e7:ee:08:b3 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICA68wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEI0 NkNFOEY4MDMxQkFCNzUzNjREQTVCRDk4MUU4ODg1MDRGQjQxMTAeFw0yNTEwMjAw MzU1MDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdEODA4RjUyMkZCOEU5 Q0E0MDY3MTA5M0U1ODgwRjE3QkUxODE4NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDC3aEUri1OWIQ5lXmbld3I5iuobU2xQohs4U5rwmixJd9b4dtJ W0IMnDzXNB0vuiq+sceWVo1FPgcR5BSJL9h+xIDdStPFQyXhy183HGGzAjYPP9iB DTRt4eHDcMxuuFd7U3/ZagvuGazCgbif4qmFna3/nZ2bT6uLNCM0oY4K7SqswA97 WOiiArHtAYHOFtysfv22kMrYs7CK5Qew8iMVnMArtKhnFRi014yGbQ25dVSwmTnS g8OFsqJr9+9xQrAFYRG4QrF6eEggZIImfbvEOpFiVBrrxUNQustIWYwLYFQ8A+TU DUwqJynOfAZvHucAxv/jNPq4gfWzIFDoSVDDAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUfYCPUi+46cpAZxCT5YgPF74YGGYwHwYDVR0jBBgwFoAUS0bOj4AxurdTZNpb 2YHoiFBPtBEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFJV0FO X05PMS9TMGJPajRBeHVyZFRaTnBiMllIb2lGQlB0QkUuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1MwYk9qNEF4dXJkVFpOcGIyWUhvaUZCUHRCRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RBSVdBTl9OTzEvUzBiT2o0QXh1 cmRUWk5wYjJZSG9pRkJQdEJFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAM386peUn1sy/3OjEqkG/KedRiscb06hAz9kqrLPganWMzgQnqwK7A7m tUj8Aub1kyxl5XN4A7MtSycWs3edweQ/Nm68Mp6Dkyev5PdtxPN6tAJvvhe5FxdA ft5pMZnM7HNMBlmNJL9OBDMB+hKiJX9zY7tVDMEYjNWICVFTxx/WhWQlf+jUCvfI rSWOHPnYsiMxQ08YxDYty4Guah//4ROaUhX1VXhuTIsY+k++BpOqv8vcr1QFYVqU IbCnsGR/ldVmqjS/15Us93gku5aon662Too+SGWiaBTMJBXYyjM6reSj8eKAQYVI 9DOQAokr3Xvs99ULn9O+kgoNSufuCLM= -----END CERTIFICATE-----Generated at Mon Oct 20 19:48:24 2025 by rpki-client