$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft File: wo9XMk52a8Xp-pnE161MQNOVj8Y.mft (raw, json) Hash identifier: fcUjq37fr1wxzS0vAI14PTgrOAUwaEAeeyBnrGAdMtw= Subject key identifier: DA:D3:44:CD:0E:9A:53:7B:02:43:E5:50:CC:80:DA:FC:E8:70:11:19 Authority key identifier: C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 Certificate issuer: /CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Certificate serial: 0D55 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft Manifest number: 0D20 Signing time: Sat 23 Aug 2025 21:13:10 +0000 Manifest this update: Sat 23 Aug 2025 21:13:10 +0000 Manifest next update: Mon 25 Aug 2025 21:13:10 +0000 Files and hashes: 1: 0I_EK12y05qQKc6gXdEO_Vh5_u0.roa (hash: qiD5FegzUvboYAm0zGyj5aWWHyraonD3e6CpVVD8G4c=) 2: D74v__A_3T--3vmJYIJ5RI2UMYc.roa (hash: aJwOlL4IH5jqfcLW3YBYHCAtZDUF2aY4X0U0ljhyCR4=) 3: GtanH2pbo7Zosh_oaZeL8Dy8PHo.roa (hash: KZNVWpKdL6u5VGo0vOnoQN2sYayMKnwo3OaHdq3Evgk=) 4: NwLdPXb7O2jdLea5-uucfn3xtlM.roa (hash: nyiTnh0Hs5Q4JqZc9fdFlAInCK/uXvS0qANIfW2m1yM=) 5: Z4b3y92hso2msh8Kr0eUIxiMNaE.roa (hash: Ko731AzhCAa9SNebREyRSdRoFV2NRetTIzIiuP4OcbQ=) 6: _LlHPaoCeUCA8aVSzo9wqaaJa74.roa (hash: Skhq/b9XxVAF4D6Duy1KdHyp4qh+J0gqtGUvVrAQLCs=) 7: wo9XMk52a8Xp-pnE161MQNOVj8Y.crl (hash: lXhk75hVVZyUFlBXXyAReN9EHCChFyrYWgFR/0j4p0c=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3413 (0xd55) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C28F57324E766BC5E9FA99C4D7AD4C40D3958FC6 Validity Not Before: Aug 23 21:13:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DAD344CD0E9A537B0243E550CC80DAFCE8701119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:2f:b8:8c:42:40:5c:32:ed:11:5c:66:61:a7: 10:aa:d5:88:6d:76:41:89:8a:b9:42:da:f0:00:41: e1:18:37:76:24:95:d4:88:a5:70:c4:82:80:ba:40: 6b:cf:1a:6d:c0:49:7f:fd:6b:53:56:86:bd:26:0a: 4e:3a:af:9e:ca:dc:3e:b3:20:15:ac:60:00:93:bf: b9:14:63:97:57:ea:cf:7f:3e:4b:f9:8c:10:c0:ed: 4b:7e:19:05:1a:98:83:8f:10:de:84:6f:3e:0a:84: 51:ef:11:d1:5d:d8:8b:4e:4e:2d:50:89:2c:35:b6: 24:95:06:64:21:f4:e4:19:e3:22:4a:0e:a4:b3:46: b4:e3:7d:69:4f:db:7c:88:fe:b4:a4:dd:01:a5:1d: 73:cc:ee:37:a2:d6:46:35:6d:23:7b:b8:6c:6c:19: 18:c0:f6:da:4b:e2:9a:56:01:61:26:11:5a:19:5c: 3c:1c:d0:ae:b6:d7:b9:3f:11:86:22:f3:51:d8:65: 74:5d:a5:2b:a0:f7:4a:51:37:d8:74:13:fb:cb:e3: 46:d0:3e:8b:3b:56:1e:b3:d8:05:b7:eb:67:42:09: 45:9e:55:f0:3d:54:37:6a:17:d6:36:dc:84:7f:74: f4:43:5d:4f:c2:af:0b:37:63:1b:af:3f:2c:0d:8a: c3:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:D3:44:CD:0E:9A:53:7B:02:43:E5:50:CC:80:DA:FC:E8:70:11:19 X509v3 Authority Key Identifier: keyid:C2:8F:57:32:4E:76:6B:C5:E9:FA:99:C4:D7:AD:4C:40:D3:95:8F:C6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wo9XMk52a8Xp-pnE161MQNOVj8Y.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWD-COM-TW/wo9XMk52a8Xp-pnE161MQNOVj8Y.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4a:92:ac:d4:97:db:ce:a8:bd:af:b1:ee:73:b3:62:86:ec:6a: ae:90:df:5d:25:ad:25:ba:02:cb:e4:79:c1:1e:ef:73:3f:08: 0d:3e:16:b3:30:09:c7:3f:12:c5:80:20:93:0a:f8:a7:35:2a: 5f:75:27:c4:72:c9:e6:07:87:9a:eb:2d:49:82:d4:f4:f0:81: 7f:3f:e6:f7:1f:72:7e:81:b3:b3:7a:2f:88:5b:97:86:bc:06: c7:3b:ce:53:d1:7f:f9:be:df:4d:8b:d5:54:eb:0b:66:c1:57: e5:fd:9f:fd:e1:1d:a0:7e:9d:71:af:dd:db:f1:de:be:b5:1f: aa:40:6b:9e:0a:82:ad:ae:38:be:e0:09:da:17:25:8e:7b:54: 68:35:24:72:23:c2:ff:8f:e7:1d:73:77:be:4e:c6:09:b1:27: ec:d0:a6:dd:9a:a6:8a:7b:fb:09:37:10:87:72:ab:7b:46:f4: b6:24:dd:7a:c3:df:53:5d:33:f8:75:e6:a6:f9:6c:6d:8c:dc: ed:7e:fe:c2:de:70:07:e4:cc:2d:b2:de:8f:a9:c9:06:d6:ee: 6c:2d:93:7c:af:c8:78:d9:52:b6:94:54:42:ef:b3:e9:75:82: 16:f3:79:09:58:53:64:9f:08:c3:7b:18:17:e3:44:e7:41:9e: 73:5c:d7:0f -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDVUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzI4 RjU3MzI0RTc2NkJDNUU5RkE5OUM0RDdBRDRDNDBEMzk1OEZDNjAeFw0yNTA4MjMy MTEzMTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERBRDM0NENEMEU5QTUz N0IwMjQzRTU1MENDODBEQUZDRTg3MDExMTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDdL7iMQkBcMu0RXGZhpxCq1YhtdkGJirlC2vAAQeEYN3YkldSI pXDEgoC6QGvPGm3ASX/9a1NWhr0mCk46r57K3D6zIBWsYACTv7kUY5dX6s9/Pkv5 jBDA7Ut+GQUamIOPEN6Ebz4KhFHvEdFd2ItOTi1QiSw1tiSVBmQh9OQZ4yJKDqSz RrTjfWlP23yI/rSk3QGlHXPM7jei1kY1bSN7uGxsGRjA9tpL4ppWAWEmEVoZXDwc 0K6217k/EYYi81HYZXRdpSug90pRN9h0E/vL40bQPos7Vh6z2AW362dCCUWeVfA9 VDdqF9Y23IR/dPRDXU/Crws3YxuvPywNisPZAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQU2tNEzQ6aU3sCQ+VQzIDa/OhwERkwHwYDVR0jBBgwFoAUwo9XMk52a8Xp+pnE 161MQNOVj8YwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdELUNP TS1UVy93bzlYTWs1MmE4WHAtcG5FMTYxTVFOT1ZqOFkuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL3dvOVhNazUyYThYcC1wbkUxNjFNUU5PVmo4WS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RXRC1DT00tVFcvd285WE1rNTJh OFhwLXBuRTE2MU1RTk9WajhZLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAEqSrNSX286ova+x7nOzYobsaq6Q310lrSW6AsvkecEe73M/CA0+FrMw Ccc/EsWAIJMK+Kc1Kl91J8RyyeYHh5rrLUmC1PTwgX8/5vcfcn6Bs7N6L4hbl4a8 Bsc7zlPRf/m+302L1VTrC2bBV+X9n/3hHaB+nXGv3dvx3r61H6pAa54Kgq2uOL7g CdoXJY57VGg1JHIjwv+P5x1zd75OxgmxJ+zQpt2apop7+wk3EIdyq3tG9LYk3XrD 31NdM/h15qb5bG2M3O1+/sLecAfkzC2y3o+pyQbW7mwtk3yvyHjZUraUVELvs+l1 ghbzeQlYU2SfCMN7GBfjROdBnnNc1w8= -----END CERTIFICATE-----Generated at Sun Aug 24 09:06:25 2025 by rpki-client