$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft File: eVqR7UCqoVuavKIcIFs27HSUn8g.mft (raw, json) Hash identifier: 2tE5WKMhU446ZI1frlONtnbT3mp0szYjVi1UWaMu54U= Subject key identifier: 36:0F:99:CB:59:D9:46:09:BC:F8:35:D3:0D:15:41:BD:FA:5C:04:C3 Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Certificate serial: 0DA0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft Manifest number: 0D68 Signing time: Tue 04 Nov 2025 12:59:42 +0000 Manifest this update: Tue 04 Nov 2025 12:59:42 +0000 Manifest next update: Thu 06 Nov 2025 12:59:42 +0000 Files and hashes: 1: 0lNmgdKNyQzK1YWH2IiTtkVBJpw.roa (hash: EFFixv4NWVFVAKKEs5tkYmFVD8maspWaD14gCZKFpVM=) 2: 7S7e62bEKmwRevYuUM8wpzIoIgg.roa (hash: S6yLfLdfpAiHyfEhnHNfXx2RN90/77nYlzGqQO9hQ8U=) 3: DbTR_42PxRdDjcfvOR5JRwqUvhY.roa (hash: jza32B/YvCCfpjBcKH45DbMdz+IvlEGkrRwOsSZcIkQ=) 4: MG5wPdJRdC7MVj4Zbjj5r-zzPsA.roa (hash: oGvwgoEKgK9g4aM/tlO8vSaVH2LIsoorQYL1VF1JGGY=) 5: _40La91SdSDUNpi13LuUPWFDMfA.roa (hash: crACswso246NZQXS0mCcLTzq/nfSkzs3LBj99oTSlkk=) 6: eVqR7UCqoVuavKIcIFs27HSUn8g.crl (hash: d0tBeDCraVfgZ7i28OQ8ePJ/3FxFV2qzQWTuW14IzFg=) 7: puT1b2Iu_TbWo3ohvhl5H8VPBkQ.roa (hash: IvmrZkmchOWAZ4kDbMXu/dO/7xTr50Vh5Zdz9ILC+RU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 06:29:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3488 (0xda0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Validity Not Before: Nov 4 12:59:42 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=360F99CB59D94609BCF835D30D1541BDFA5C04C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:44:5b:7b:6f:7e:7f:a2:4a:ea:41:67:ba:30: 6f:53:e1:42:8f:44:78:86:83:b2:06:a5:48:d8:13: 6f:a8:9e:ef:d1:53:5b:b9:29:82:de:c1:d2:08:04: 3a:ad:66:03:16:a8:98:41:f1:15:5a:3b:a6:c5:e6: e4:bb:64:6b:a8:64:d7:d7:93:fb:cd:b2:f2:29:5b: b4:af:58:25:25:7e:38:3f:99:e1:87:bd:83:b0:4d: ae:b4:9e:45:8d:7d:1e:76:f3:98:5e:96:77:b8:fd: 72:bd:5c:dc:8c:13:8b:46:2d:35:a0:5d:a5:18:36: 13:d2:98:ab:8e:f4:e1:e5:33:5f:75:14:b7:0e:c9: db:14:30:a4:83:7f:8a:59:bc:56:30:9c:05:be:33: d3:9f:3c:63:50:87:9b:61:89:8f:3e:c9:d6:38:b5: c8:67:15:55:1a:b9:2c:54:16:90:e1:62:4b:e9:a4: ef:1d:b5:32:da:eb:81:9d:79:ac:fb:28:4d:ce:20: cc:76:cb:b4:fe:fd:c2:02:da:3c:ec:bd:9d:89:a3: 02:14:8c:c1:de:2c:fa:60:5e:58:b4:de:29:c0:40: 0d:65:04:6f:61:02:39:1a:7d:80:12:71:43:61:dc: 91:13:40:ff:cf:8a:3d:cc:e7:a4:93:59:b8:23:fb: e1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:0F:99:CB:59:D9:46:09:BC:F8:35:D3:0D:15:41:BD:FA:5C:04:C3 X509v3 Authority Key Identifier: keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d2:ab:44:96:c5:77:f8:f9:07:61:fb:20:1b:19:38:0d:a8:40: f7:de:a2:7c:f8:c4:5f:f6:72:9b:62:b7:23:7a:2c:4b:48:9a: f4:2e:52:db:fd:38:c5:f8:36:aa:c2:01:36:55:db:af:c2:f3: d0:1c:bb:3f:83:fc:b0:bf:0c:ac:fe:75:71:6f:f5:97:7b:2a: cd:5c:2c:d0:85:40:39:2e:c6:6c:a9:e4:a5:de:1a:83:8f:f4: bb:1e:c9:4a:45:02:2f:e9:cb:c7:5a:fc:84:c4:72:79:c8:00: fe:c6:90:56:bc:15:02:df:39:40:bb:f8:01:09:e0:4a:21:72: ba:c2:d0:c6:26:c3:d2:40:1c:22:70:a7:cb:9f:7c:27:33:8e: fe:36:9b:82:cb:47:9d:77:76:72:f0:ff:0a:ef:de:e5:0a:02: 5d:7d:2a:ba:fd:28:df:64:fb:4e:11:92:fd:f1:51:24:fd:40: 38:07:29:85:be:30:29:e9:b4:3c:7e:9e:8b:00:db:e7:2b:0f: 44:f3:b4:c5:72:fd:40:8f:f1:76:cb:10:6c:7f:f6:50:0f:50: ec:bf:0a:3c:dd:39:02:51:16:ac:bd:b3:21:cc:51:f0:d5:ab: 3b:bd:73:fd:94:33:5b:26:93:af:67:3d:76:54:91:d1:ce:f9: 37:0e:1c:8e -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDaAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzk1 QTkxRUQ0MEFBQTE1QjlBQkNBMjFDMjA1QjM2RUM3NDk0OUZDODAeFw0yNTExMDQx MjU5NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2MEY5OUNCNTlEOTQ2 MDlCQ0Y4MzVEMzBEMTU0MUJERkE1QzA0QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIRFt7b35/okrqQWe6MG9T4UKPRHiGg7IGpUjYE2+onu/RU1u5 KYLewdIIBDqtZgMWqJhB8RVaO6bF5uS7ZGuoZNfXk/vNsvIpW7SvWCUlfjg/meGH vYOwTa60nkWNfR5285helne4/XK9XNyME4tGLTWgXaUYNhPSmKuO9OHlM191FLcO ydsUMKSDf4pZvFYwnAW+M9OfPGNQh5thiY8+ydY4tchnFVUauSxUFpDhYkvppO8d tTLa64Gdeaz7KE3OIMx2y7T+/cIC2jzsvZ2JowIUjMHeLPpgXli03inAQA1lBG9h AjkafYAScUNh3JETQP/Pij3M56STWbgj++GnAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUNg+Zy1nZRgm8+DXTDRVBvfpcBMMwHwYDVR0jBBgwFoAUeVqR7UCqoVuavKIc IFs27HSUn8gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0VOVFJP SUQvZVZxUjdVQ3FvVnVhdktJY0lGczI3SFNVbjhnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lVnFSN1VDcW9WdWF2S0ljSUZzMjdIU1VuOGcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DRU5UUk9JRC9lVnFSN1VDcW9WdWF2 S0ljSUZzMjdIU1VuOGcubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEA0qtElsV3+PkHYfsgGxk4DahA996ifPjEX/Zym2K3I3osS0ia9C5S2/04xfg2 qsIBNlXbr8Lz0By7P4P8sL8MrP51cW/1l3sqzVws0IVAOS7GbKnkpd4ag4/0ux7J SkUCL+nLx1r8hMRyecgA/saQVrwVAt85QLv4AQngSiFyusLQxibD0kAcInCny598 JzOO/jabgstHnXd2cvD/Cu/e5QoCXX0quv0o32T7ThGS/fFRJP1AOAcphb4wKem0 PH6eiwDb5ysPRPO0xXL9QI/xdssQbH/2UA9Q7L8KPN05AlEWrL2zIcxR8NWrO71z /ZQzWyaTr2c9dlSR0c75Nw4cjg== -----END CERTIFICATE-----Generated at Wed Nov 5 05:29:02 2025 by rpki-client