$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft File: gycg6wvqAFw-3ldOMcCrdWP6DMc.mft (raw, json) Hash identifier: ddWrYwUdbEtKlBJDmoGr6G6S6j4pgVBVeWJT28usD+U= Subject key identifier: D5:0E:33:A0:75:3C:45:A7:3A:48:40:3E:61:BB:59:77:C8:90:FC:5C Authority key identifier: 83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 Certificate issuer: /CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Certificate serial: 0EA3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft Manifest number: 0DB9 Signing time: Sun 19 Oct 2025 21:56:40 +0000 Manifest this update: Sun 19 Oct 2025 21:56:40 +0000 Manifest next update: Tue 21 Oct 2025 21:56:40 +0000 Files and hashes: 1: 01aokKDjDCtpTkg7kLwKuu6Km7I.roa (hash: IJ9BPAV/FnDHJitNmnXHCbtBbHb/EqJSj73l5q5/3Gk=) 2: 1N4TMqvkZPycK7_y6KbFaykXSrQ.roa (hash: a2ORtM7OK5OhMJp81zxhPOm5oBfhaRzESVQG83HXTds=) 3: 4JeLCEL33VtaMKZRTdHIxY0D0so.roa (hash: w9KqGxEZYWD6Lu/uwQfGnWMP/66folzZv0mTCCIo1vw=) 4: 5FX90Fmd8wLXP6bNxffFE3GG-4s.roa (hash: hnHW0HVTQEoljJZ7vMFaTtMk27agfta0TQWiZQLIL1c=) 5: 7whmrqIkmkaInVCtxI-Av1hQ5hE.roa (hash: hCk1vktFPij+CnuSZQ72yhvQnQc2dh3km9No3m4TfqE=) 6: 8Le8JR3u0fcXI2-OiQo7RjlQ7g0.roa (hash: vljD0HIGzqlz0QGd9R+xNLyySi8RXcJGqdTnLYzBVZw=) 7: H7-iyK8eeIB0A_OfWp0ikIZ-ny0.roa (hash: 6iBBuTnCJmCarzgf/jC1XrLwOjng+NL96LR7zKgko30=) 8: JUUVQweTr8bSXOvwl9pFYLcKav0.roa (hash: mhrf/gdeq7nXkbECMcEO6jri8iBrIZx1O+Zjo/ibyeo=) 9: K-Ogk6W6eQ9cu5ynqoOySlcKOww.roa (hash: 05iX85CNQSpO53eNoQ9xX7ZX79H74PLE4KTHXgvMZRY=) 10: OmoKANis5RZ49I0UunbaCwaQaew.roa (hash: 0uJpWqVAhhOZY/qcNfaTN0dmKIUjkk3DP9pz/bPuC+A=) 11: P51amNkIfo-VQJNudNPOEcNcAF4.roa (hash: wHQGCv2xdqPI6QnAgloUN/efu00O5lpirMyZYAAL/II=) 12: PB8QijqcypRE6FRxtPtImMO2iq0.roa (hash: R/78vaXcnyxjA5ohcpo5+C0AJA+xOEdeAHKBVjtFKik=) 13: UHf_HCjWSl4Bw71QBaRwKIynYu4.roa (hash: nqs7cqoopTH30zB7xhGQa+ftazZpm0LiSFEfsdqm0aI=) 14: VUjJILf7QLsupL5UYDlg7EZ603o.roa (hash: MHFv1KcDU6SE2eU4EohjKB6NQ+B07+iJxOxFdlpM5Ao=) 15: Xmux0Rvvz9qWsItEpxDb1-aW8-0.roa (hash: Em5/d9PXWfCNKiGUIRiQDaiUKHt42nQKjvg5eHPS8RQ=) 16: XzsI-8yv3d_T4ZgRc4y0ehSM5fs.roa (hash: tW8kaSf2cqDtHMAA5oDaQXpfDVsCNbMOv3DZ+4M0HPI=) 17: ZLSyPEY08KtlEuqHauLu9nqvXpI.roa (hash: FB2J0vZfqNAQluwYSjdZ+Ymo6nSGi+ENXIjykH4nVYA=) 18: ZoID3Op7APOX8z4ZXRLTuKMjY6E.roa (hash: WpA0L1Tyy190oFD0eZbpzuNi+W4tuixD7FgU7jev3nw=) 19: _i-V5u6mt4vjC8m0ztusepGV4Pw.roa (hash: kJnGRcKS66yrpFBJZnOKUnvTKS6em3t44NvcPex8jw8=) 20: a-k9Lo55SAWSg-1TKKBWdJYfrv0.roa (hash: VQOWqN5OCXUGd9mc87AZeSHVdTkWl9Jbhy3NuWqd86k=) 21: d03wrFU0BzyI3PI4HZaLvmmuTDA.roa (hash: h0sYgOEkGZa7UnH37AKu5Vwhi7y52FmpysovU04DvvM=) 22: gI6AwCNAPmcDHbDU6hAqCGwyo58.roa (hash: vh073mGTNGvDo7S5FTVFvb65KoyWm+GUF67Wzd4KvHY=) 23: gycg6wvqAFw-3ldOMcCrdWP6DMc.crl (hash: sSqBtdE56ctKXh37NvvQ73IIenwP/S/qxAQ0EpbXfMM=) 24: hV41naxCDH_lEePq6WGfw2BlPM8.roa (hash: mHv8hyIMi33EE6exR7EwDsSSqmu1Ma3m3FCF3Zy5AMA=) 25: iGZHU6ox_qeckZ7zzcEnWndHnQM.roa (hash: z1fUXjUe+w+xeXn+Jt4E2KVjZA1znKkyNuLjVSSE39c=) 26: jwMIW6i_RHfle0vO5zgjXbRk8Co.roa (hash: JR5KA0BLsENAJQfNOEqnBiB3XaBoLRNzbIN98A1vmCo=) 27: oCbo4j_RowFohhS_3o-gRW0vNNs.roa (hash: 6/+w/RiuG7t9WcjT41dYBGCT3mlap7yM7yUePx6mDFQ=) 28: oK-ViXr7bj217cddUPIGwQOALGE.roa (hash: +xq+21sa4g/iDyjlH5yDG+cVFg6rZUJ94bwVhBXiDVc=) 29: oOd2jq6uUAtRp5fNdA28BQ7l-U4.roa (hash: 9E0hj5bG7xWVXPw0wj4aNSed+yub2w97E6UeeDZB0WI=) 30: oocsVqRD6XsGABoScgdvPpARvjs.roa (hash: skzmA1qrkx0Mj8WzIdHslgoAlW74pzyy5dEo1KdTeYw=) 31: qtyQL5WGDDE-TDdMKqa3eDX8bck.roa (hash: 6+6uJ1z3V838Kvx7WkZabAjnDtv6t0WNkzAKt3w8vCU=) 32: vIBcPxWLcoJ-cUnKfvZ_eWgZKUU.roa (hash: iwyQNILy4d7/veq42IaHkjzCyTuN3UeG2WBs+G+AHDA=) 33: yUR96OJO6FR1MdbDzyD3TQ-egKs.roa (hash: D0YLJp4m1F8Q/FafcxWZC+RJfYdqFBFumD+baIP5U60=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:56:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3747 (0xea3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=832720EB0BEA005C3EDE574E31C0AB7563FA0CC7 Validity Not Before: Oct 19 21:56:40 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D50E33A0753C45A73A48403E61BB5977C890FC5C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f2:3d:04:37:8d:ae:2d:d7:c8:3d:8f:38:55: 81:4a:b6:1e:0a:48:99:01:e3:57:1a:a3:4e:9d:40: 82:73:f5:9b:53:e9:9e:d1:d5:e3:34:d8:75:e5:68: 66:7c:ec:00:f7:73:57:64:af:61:23:74:2f:41:1f: 8e:84:bc:6d:2b:a3:22:a4:a3:3d:a5:e0:35:f0:84: 0b:41:32:05:09:41:2e:17:30:38:69:17:15:84:46: 08:cd:52:bb:49:a4:2a:0f:82:03:47:c0:8a:a4:63: 17:d1:da:b7:01:8d:cf:62:c3:f5:70:83:68:5c:00: 71:25:60:a9:3c:60:50:76:65:a2:1e:b0:33:38:b1: 67:06:3d:aa:3e:ce:dd:8b:cf:ed:57:92:cb:1e:f7: 25:69:ee:e2:e5:97:36:ac:74:77:4f:7b:22:3e:ba: 99:38:e9:bf:82:b6:d4:2c:da:8a:6e:27:d4:5c:f2: 1a:e4:3d:bd:5c:f0:a6:53:f1:b7:19:3f:66:25:94: ab:4b:80:d0:a6:09:31:64:2b:5c:55:09:2f:c6:3a: 15:bf:14:91:20:a5:97:dc:91:34:9d:1f:6d:df:a6: 7c:ed:e2:a9:4c:b5:dd:3b:ab:e8:6f:3f:a8:54:53: d8:04:39:cc:c8:cf:ff:04:0e:57:e8:af:d6:04:e6: 89:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:0E:33:A0:75:3C:45:A7:3A:48:40:3E:61:BB:59:77:C8:90:FC:5C X509v3 Authority Key Identifier: keyid:83:27:20:EB:0B:EA:00:5C:3E:DE:57:4E:31:C0:AB:75:63:FA:0C:C7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gycg6wvqAFw-3ldOMcCrdWP6DMc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TBCOM/gycg6wvqAFw-3ldOMcCrdWP6DMc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3d:e8:a3:cb:47:92:e7:03:9c:30:16:75:54:0f:37:1b:35:65: 1d:b8:47:5d:d7:4a:a3:59:1f:29:27:88:40:6c:6f:5d:d7:06: fa:56:4f:51:15:a3:c5:84:af:51:52:f8:c6:9c:47:4c:ef:c9: d9:be:2f:31:fb:54:24:85:2d:57:af:fe:54:fd:3f:58:d1:a4: 6f:dc:5d:ef:20:a2:f7:8d:57:c8:1f:90:f4:da:2b:ec:ae:35: 50:74:aa:69:71:0b:e5:12:93:9d:2a:61:25:2e:7c:44:0c:2e: fd:48:c2:82:6f:5e:d1:19:fd:88:97:bb:75:14:52:94:ea:ca: 79:2f:1e:e7:c9:c0:22:8c:d8:78:7b:71:35:9a:13:d4:c1:fe: 56:fc:87:ff:7b:94:e5:14:8c:94:b7:ab:60:f3:e1:46:f3:b9: 86:b8:f7:55:62:cc:32:53:0c:63:da:eb:44:dc:5a:2f:f4:cb: c5:31:37:f4:09:ee:e1:58:d2:5f:7a:9e:cc:c2:52:22:4d:be: f2:94:8f:0e:75:5c:09:c9:a1:e5:da:6c:4d:e5:84:30:d8:29: b0:6f:94:02:8b:f9:7f:88:45:0f:ff:58:d6:b3:ef:5d:32:25: b8:1a:33:67:8f:46:4d:f9:98:0b:e2:a1:eb:b2:0e:f2:72:bd: e4:da:62:d2 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDqMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODMy NzIwRUIwQkVBMDA1QzNFREU1NzRFMzFDMEFCNzU2M0ZBMENDNzAeFw0yNTEwMTky MTU2NDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ1MEUzM0EwNzUzQzQ1 QTczQTQ4NDAzRTYxQkI1OTc3Qzg5MEZDNUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDs8j0EN42uLdfIPY84VYFKth4KSJkB41cao06dQIJz9ZtT6Z7R 1eM02HXlaGZ87AD3c1dkr2EjdC9BH46EvG0royKkoz2l4DXwhAtBMgUJQS4XMDhp FxWERgjNUrtJpCoPggNHwIqkYxfR2rcBjc9iw/Vwg2hcAHElYKk8YFB2ZaIesDM4 sWcGPao+zt2Lz+1Xksse9yVp7uLllzasdHdPeyI+upk46b+CttQs2opuJ9Rc8hrk Pb1c8KZT8bcZP2YllKtLgNCmCTFkK1xVCS/GOhW/FJEgpZfckTSdH23fpnzt4qlM td07q+hvP6hUU9gEOczIz/8EDlfor9YE5on9AgMBAAGjggIFMIICATAdBgNVHQ4E FgQU1Q4zoHU8Rac6SEA+YbtZd8iQ/FwwHwYDVR0jBBgwFoAUgycg6wvqAFw+3ldO McCrdWP6DMcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEJDT00v Z3ljZzZ3dnFBRnctM2xkT01jQ3JkV1A2RE1jLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9neWNnNnd2cUFGdy0zbGRPTWNDcmRXUDZETWMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQkNPTS9neWNnNnd2cUFGdy0zbGRPTWND cmRXUDZETWMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPeij y0eS5wOcMBZ1VA83GzVlHbhHXddKo1kfKSeIQGxvXdcG+lZPURWjxYSvUVL4xpxH TO/J2b4vMftUJIUtV6/+VP0/WNGkb9xd7yCi941XyB+Q9Nor7K41UHSqaXEL5RKT nSphJS58RAwu/UjCgm9e0Rn9iJe7dRRSlOrKeS8e58nAIozYeHtxNZoT1MH+VvyH /3uU5RSMlLerYPPhRvO5hrj3VWLMMlMMY9rrRNxaL/TLxTE39Anu4VjSX3qezMJS Ik2+8pSPDnVcCcmh5dpsTeWEMNgpsG+UAov5f4hFD/9Y1rPvXTIluBozZ49GTfmY C+Kh67IO8nK95Npi0g== -----END CERTIFICATE-----Generated at Mon Oct 20 14:21:40 2025 by rpki-client