$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft File: s1TTHFRizuxspNW_1vRhsrcL8LE.mft (raw, json) Hash identifier: b+XroaVb5A5uHWB6X7xwmtbCRg5mdQBUnM8b2G28DSw= Subject key identifier: 5C:43:9F:D5:D9:98:7F:6B:05:79:7D:86:BB:BA:C4:36:E2:C0:8D:CD Authority key identifier: B3:54:D3:1C:54:62:CE:EC:6C:A4:D5:BF:D6:F4:61:B2:B7:0B:F0:B1 Certificate issuer: /CN=B354D31C5462CEEC6CA4D5BFD6F461B2B70BF0B1 Certificate serial: 0313 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft Manifest number: 0312 Signing time: Mon 20 Oct 2025 16:24:45 +0000 Manifest this update: Mon 20 Oct 2025 16:24:45 +0000 Manifest next update: Mon 20 Oct 2025 22:24:45 +0000 Files and hashes: 1: iRKUuh79K81XRDn1kB4T_7QQ_a8.roa (hash: 18urDyn6ICt5b52RQ51LCS6obl5FebXJowDlflhnmgs=) 2: s1TTHFRizuxspNW_1vRhsrcL8LE.crl (hash: u20Kzm+n4jBQxrK/u7j3Y/7Vqv22d7j2tiskpsbvFhY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 22:24:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 787 (0x313) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B354D31C5462CEEC6CA4D5BFD6F461B2B70BF0B1 Validity Not Before: Oct 20 16:24:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5C439FD5D9987F6B05797D86BBBAC436E2C08DCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:55:d0:0d:e2:6c:2a:53:08:22:6c:b2:be:7e: 91:87:87:f9:7b:3c:d8:9a:d9:e9:ad:d8:6f:d4:0e: b2:79:8e:ee:28:a5:7c:e6:50:2e:58:f8:7f:c6:5a: 44:c1:cb:49:4e:33:ac:f8:07:57:86:be:d4:8c:f2: d4:65:2d:70:47:ab:d4:bc:08:c8:7c:bf:3b:6e:60: bb:b8:93:4e:fc:bd:cb:17:78:1a:b6:db:ae:07:c6: e7:a5:6b:f8:e2:0b:b8:67:43:5c:7b:97:17:b9:91: a6:46:03:5f:b3:44:bd:42:46:f7:9c:67:b4:6c:fc: 31:fb:f1:7f:fb:93:39:3f:44:67:16:06:a0:9d:d3: de:e7:18:fe:62:05:5f:d8:b9:49:71:3a:bb:a7:89: 2a:2f:af:1f:75:49:69:7a:5e:3b:89:5b:29:53:41: 08:30:1b:4c:b8:86:f2:80:f4:77:f1:e9:90:1e:71: 78:e6:57:53:eb:71:1d:1d:c0:99:db:7c:5e:37:ff: 03:ec:a0:00:c4:5d:ce:a3:5c:24:df:a8:da:5c:20: 1b:ce:aa:1b:ae:4e:ad:72:0e:fe:10:0d:91:2a:70: e9:6f:a1:ad:2c:5e:c7:be:41:6b:3e:bd:43:1e:6e: e8:0e:74:07:60:fa:eb:9e:13:7b:91:c6:df:9d:44: 7f:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:43:9F:D5:D9:98:7F:6B:05:79:7D:86:BB:BA:C4:36:E2:C0:8D:CD X509v3 Authority Key Identifier: keyid:B3:54:D3:1C:54:62:CE:EC:6C:A4:D5:BF:D6:F4:61:B2:B7:0B:F0:B1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/s1TTHFRizuxspNW_1vRhsrcL8LE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/UWAYIO/s1TTHFRizuxspNW_1vRhsrcL8LE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6c:b0:05:5b:99:9b:de:8a:da:b9:2f:d7:85:e9:6f:18:e2:d6: a5:d8:aa:9b:a1:76:a7:d9:00:1c:5f:60:5d:e8:a6:d0:ad:c8: 91:aa:ed:7e:1f:fb:ad:f5:cb:26:b2:41:69:21:6d:0d:91:ca: 03:a7:d4:81:a6:62:4e:49:45:5a:c4:88:c2:b2:2a:95:ab:3e: 64:29:1e:d3:43:ae:9e:f7:30:19:b8:bf:33:68:8f:31:cf:be: 08:31:8a:f9:d6:a3:b5:c5:3b:ab:bc:3a:ec:0e:47:c3:c4:6e: 39:ba:0a:24:58:4e:7b:a6:12:9d:ab:dc:43:73:49:fb:54:53: 25:17:d7:55:f5:b2:90:96:bc:52:e9:77:42:cc:56:f5:4e:64: 09:18:61:84:d8:2a:e2:76:a2:82:73:b9:77:a2:48:93:bb:f5: 7f:fa:0c:19:cc:9b:d3:bb:d2:d1:d0:5d:67:cd:1e:d5:9c:ac: 09:79:b6:00:eb:b1:e9:fb:2a:ba:9e:0c:dd:93:97:60:1c:46: 2e:bf:45:60:26:18:4a:82:04:31:38:81:91:3f:aa:01:18:5d: 5c:cf:81:07:81:5f:6c:ed:17:c5:58:72:19:06:4a:67:62:8e: 10:30:ec:0a:49:26:a6:2c:07:22:f7:f5:32:28:4b:45:dd:73: 70:5a:d3:fa -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICAxMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjM1 NEQzMUM1NDYyQ0VFQzZDQTRENUJGRDZGNDYxQjJCNzBCRjBCMTAeFw0yNTEwMjAx NjI0NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVDNDM5RkQ1RDk5ODdG NkIwNTc5N0Q4NkJCQkFDNDM2RTJDMDhEQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXVdAN4mwqUwgibLK+fpGHh/l7PNia2emt2G/UDrJ5ju4opXzm UC5Y+H/GWkTBy0lOM6z4B1eGvtSM8tRlLXBHq9S8CMh8vztuYLu4k078vcsXeBq2 264Hxuela/jiC7hnQ1x7lxe5kaZGA1+zRL1CRvecZ7Rs/DH78X/7kzk/RGcWBqCd 097nGP5iBV/YuUlxOruniSovrx91SWl6XjuJWylTQQgwG0y4hvKA9Hfx6ZAecXjm V1PrcR0dwJnbfF43/wPsoADEXc6jXCTfqNpcIBvOqhuuTq1yDv4QDZEqcOlvoa0s Xse+QWs+vUMebugOdAdg+uueE3uRxt+dRH8bAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUXEOf1dmYf2sFeX2Gu7rENuLAjc0wHwYDVR0jBBgwFoAUs1TTHFRizuxspNW/ 1vRhsrcL8LEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVVdBWUlP L3MxVFRIRlJpenV4c3BOV18xdlJoc3JjTDhMRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvczFUVEhGUml6dXhzcE5XXzF2UmhzcmNMOExFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVVdBWUlPL3MxVFRIRlJpenV4c3BOV18x dlJoc3JjTDhMRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBs sAVbmZveitq5L9eF6W8Y4tal2KqboXan2QAcX2Bd6KbQrciRqu1+H/ut9csmskFp IW0NkcoDp9SBpmJOSUVaxIjCsiqVqz5kKR7TQ66e9zAZuL8zaI8xz74IMYr51qO1 xTurvDrsDkfDxG45ugokWE57phKdq9xDc0n7VFMlF9dV9bKQlrxS6XdCzFb1TmQJ GGGE2CridqKCc7l3okiTu/V/+gwZzJvTu9LR0F1nzR7VnKwJebYA67Hp+yq6ngzd k5dgHEYuv0VgJhhKggQxOIGRP6oBGF1cz4EHgV9s7RfFWHIZBkpnYo4QMOwKSSam LAci9/UyKEtF3XNwWtP6 -----END CERTIFICATE-----Generated at Mon Oct 20 18:23:27 2025 by rpki-client