$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.mft File: gCumEj6hI_Q52pHKPeWlrgqkE3g.mft (raw, json) Hash identifier: AJ99D1sFfbZ3H+PEHqB6I7OpUkSmQ8KzM6eK5g+TMG0= Subject key identifier: FE:8C:F9:6E:D5:15:83:CF:93:7E:6E:FE:BF:5F:DF:F6:7B:A5:27:66 Authority key identifier: 80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78 Certificate issuer: /CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378 Certificate serial: 0DAC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.mft Manifest number: 0D9D Signing time: Wed 05 Nov 2025 09:58:14 +0000 Manifest this update: Wed 05 Nov 2025 09:58:14 +0000 Manifest next update: Fri 07 Nov 2025 09:58:14 +0000 Files and hashes: 1: gCumEj6hI_Q52pHKPeWlrgqkE3g.crl (hash: vWYtI8ZtE/tQ/CDN1LY71wskplLVufq3fIF2I0vF68Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3500 (0xdac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=802BA6123EA123F439DA91CA3DE5A5AE0AA41378 Validity Not Before: Nov 5 09:58:14 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FE8CF96ED51583CF937E6EFEBF5FDFF67BA52766 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:58:dd:ab:0e:e4:02:ae:39:eb:fc:31:1d:eb: 27:bd:c9:c3:b7:66:ee:a3:67:57:cd:67:ca:65:cb: 71:7e:b4:09:cb:47:fe:bb:46:91:09:51:36:b3:2e: 2a:b6:13:8a:51:fd:c3:62:f5:11:00:c5:17:7d:ca: 49:da:86:f7:7b:e6:f4:20:4d:fd:13:0d:22:23:b2: 22:1c:bf:81:ae:1a:e8:f0:ae:ee:bc:09:3e:2e:5b: d0:ac:d3:dd:d4:e4:cd:d7:e2:3b:0b:0a:26:80:d1: b1:33:05:91:39:9d:3a:56:d4:6a:73:a9:df:17:f5: c3:5e:50:a9:63:ad:cf:00:93:66:8e:0e:b7:6d:89: 89:87:10:3e:5e:bc:93:27:f5:ed:b0:e6:05:12:49: 0e:82:c8:2f:f2:d1:08:c8:bb:0a:7f:c4:fc:5b:ca: 00:1f:aa:1c:2c:a2:41:d1:e4:76:11:94:72:99:e4: f4:b4:c4:ff:75:f2:73:45:9d:1d:22:42:57:59:ca: 49:ce:7e:a2:99:c3:0b:a8:6d:d6:e2:09:5d:52:03: ac:91:66:72:02:2f:16:34:6d:b8:44:8c:4b:5b:07: 95:21:9e:e3:08:74:d2:7a:32:d6:07:9f:62:5f:57: 7c:d2:87:91:49:62:87:63:17:99:3c:23:ea:9f:cd: b6:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:8C:F9:6E:D5:15:83:CF:93:7E:6E:FE:BF:5F:DF:F6:7B:A5:27:66 X509v3 Authority Key Identifier: keyid:80:2B:A6:12:3E:A1:23:F4:39:DA:91:CA:3D:E5:A5:AE:0A:A4:13:78 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gCumEj6hI_Q52pHKPeWlrgqkE3g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ANSONNET/gCumEj6hI_Q52pHKPeWlrgqkE3g.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:1b:30:fe:ef:0d:54:8c:9f:a0:41:06:08:85:8f:5f:2c:3f: 73:29:37:f8:b2:13:5b:1e:cd:3c:cc:1d:b8:f0:f8:2c:66:16: 19:7b:6d:36:6c:4b:22:7e:b2:0f:29:fb:42:11:7c:19:3c:75: 98:b2:f6:dc:2a:9b:0a:7c:cc:ac:c3:0d:0e:de:ff:a7:4e:a4: 44:41:5f:77:4d:1f:e0:56:ee:89:16:53:a4:cf:ba:99:27:fd: 05:e5:78:35:05:bf:53:51:07:20:fc:d6:fe:44:a7:49:8e:9a: e2:26:81:e8:48:6c:8b:19:b9:d2:e5:4d:ba:4f:be:9a:61:30: b7:66:04:c0:fb:c2:07:f3:39:ff:4e:fe:3f:e7:d8:37:ee:1c: 89:9e:55:ba:6d:3b:f8:64:75:37:7c:93:6e:43:49:92:f2:ed: e8:be:25:5f:59:53:be:20:33:9c:d1:c0:aa:38:21:c1:58:5a: ba:09:ab:44:96:ad:5e:15:26:1a:e2:7b:16:6c:29:c6:52:15: 59:1d:3e:46:4d:a1:e3:dc:34:2f:8a:8a:91:2b:76:19:65:74: 78:fd:c2:f6:78:aa:d3:81:42:9a:1b:bf:35:f7:34:cf:3c:8d: 43:d8:57:4b:06:6c:43:e5:ad:f5:36:ba:07:31:ed:d8:40:c1: b7:64:f0:e5 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDawwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODAy QkE2MTIzRUExMjNGNDM5REE5MUNBM0RFNUE1QUUwQUE0MTM3ODAeFw0yNTExMDUw OTU4MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZFOENGOTZFRDUxNTgz Q0Y5MzdFNkVGRUJGNUZERkY2N0JBNTI3NjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4WN2rDuQCrjnr/DEd6ye9ycO3Zu6jZ1fNZ8ply3F+tAnLR/67 RpEJUTazLiq2E4pR/cNi9REAxRd9yknahvd75vQgTf0TDSIjsiIcv4GuGujwru68 CT4uW9Cs093U5M3X4jsLCiaA0bEzBZE5nTpW1Gpzqd8X9cNeUKljrc8Ak2aODrdt iYmHED5evJMn9e2w5gUSSQ6CyC/y0QjIuwp/xPxbygAfqhwsokHR5HYRlHKZ5PS0 xP918nNFnR0iQldZyknOfqKZwwuobdbiCV1SA6yRZnICLxY0bbhEjEtbB5UhnuMI dNJ6MtYHn2JfV3zSh5FJYodjF5k8I+qfzbZfAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU/oz5btUVg8+Tfm7+v1/f9nulJ2YwHwYDVR0jBBgwFoAUgCumEj6hI/Q52pHK PeWlrgqkE3gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQU5TT05O RVQvZ0N1bUVqNmhJX1E1MnBIS1BlV2xyZ3FrRTNnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9nQ3VtRWo2aElfUTUycEhLUGVXbHJncWtFM2cuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BTlNPTk5FVC9nQ3VtRWo2aElfUTUy cEhLUGVXbHJncWtFM2cubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEATBsw/u8NVIyfoEEGCIWPXyw/cyk3+LITWx7NPMwduPD4LGYWGXttNmxLIn6y Dyn7QhF8GTx1mLL23CqbCnzMrMMNDt7/p06kREFfd00f4FbuiRZTpM+6mSf9BeV4 NQW/U1EHIPzW/kSnSY6a4iaB6Ehsixm50uVNuk++mmEwt2YEwPvCB/M5/07+P+fY N+4ciZ5Vum07+GR1N3yTbkNJkvLt6L4lX1lTviAznNHAqjghwVhaugmrRJatXhUm GuJ7FmwpxlIVWR0+Rk2h49w0L4qKkSt2GWV0eP3C9niq04FCmhu/Nfc0zzyNQ9hX SwZsQ+Wt9Ta6BzHt2EDBt2Tw5Q== -----END CERTIFICATE-----Generated at Wed Nov 5 19:03:31 2025 by rpki-client