$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft File: ma5DqX1RxaFOESh6mAJMNqWZN3s.mft (raw, json) Hash identifier: K9O9ELnQaxjkjacpCCJZKrvQOD8plT0p//FvF6M3sZI= Subject key identifier: 16:12:C5:FC:BD:EF:C3:5F:62:80:34:BC:D2:93:E4:49:B8:F5:FD:FF Authority key identifier: 99:AE:43:A9:7D:51:C5:A1:4E:11:28:7A:98:02:4C:36:A5:99:37:7B Certificate issuer: /CN=99AE43A97D51C5A14E11287A98024C36A599377B Certificate serial: 02CC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ma5DqX1RxaFOESh6mAJMNqWZN3s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft Manifest number: 02C9 Signing time: Tue 04 Nov 2025 03:58:18 +0000 Manifest this update: Tue 04 Nov 2025 03:58:18 +0000 Manifest next update: Thu 06 Nov 2025 03:58:18 +0000 Files and hashes: 1: dlnkppnZS-Yb41HFHeOtw78ae3A.roa (hash: SUlbl93+tTxfj+B+JAzuITDisAy6sjSivICTnsyb840=) 2: ma5DqX1RxaFOESh6mAJMNqWZN3s.crl (hash: 7ONmVGCngvp/DHPip43lWoG37lVotLNHm/b3DV2VNSQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ma5DqX1RxaFOESh6mAJMNqWZN3s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 716 (0x2cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=99AE43A97D51C5A14E11287A98024C36A599377B Validity Not Before: Nov 4 03:58:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1612C5FCBDEFC35F628034BCD293E449B8F5FDFF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f7:a6:39:79:46:b9:74:65:4b:8b:c9:dc:7a:d8: b4:dc:e8:61:fe:fb:11:55:eb:60:a1:3b:73:b3:fa: 8e:b4:33:e3:0e:60:cb:b5:5d:40:48:50:f7:01:eb: 51:b6:ec:bd:ae:32:8f:7d:33:8b:ce:32:b7:2b:a5: 61:89:ad:49:19:d6:26:05:27:bc:5c:28:b6:42:17: 46:27:a7:16:f6:f0:6d:9a:bc:ab:da:01:74:33:69: 8b:bc:f7:67:2d:9f:ca:a3:aa:2c:1b:c0:db:8b:ff: 5c:56:8f:3a:10:5f:39:b2:d2:9c:74:76:c2:5c:43: fc:4d:03:1d:9b:00:57:b3:3b:cf:87:ef:a3:59:58: 10:fe:09:88:06:dc:e6:41:51:0d:d8:d8:13:11:68: 55:b7:53:10:aa:e8:ce:eb:f5:5d:4f:bb:b2:e2:66: c3:83:5a:c7:1c:dc:33:76:66:c4:0e:9e:31:12:a1: 5e:42:23:18:c9:95:e3:1d:81:ee:c1:fe:83:50:14: 46:d8:23:ba:4d:18:39:8d:1f:ee:42:fd:1b:05:fe: a6:24:93:b9:0f:8f:02:25:0c:ed:1b:4c:d5:d5:28: cc:d6:46:40:13:f3:48:96:ec:fc:50:dc:57:c9:da: b4:eb:a3:6b:e1:91:57:fa:bc:ee:70:4e:02:d4:44: 40:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:12:C5:FC:BD:EF:C3:5F:62:80:34:BC:D2:93:E4:49:B8:F5:FD:FF X509v3 Authority Key Identifier: keyid:99:AE:43:A9:7D:51:C5:A1:4E:11:28:7A:98:02:4C:36:A5:99:37:7B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ma5DqX1RxaFOESh6mAJMNqWZN3s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHUMMYTECH/ma5DqX1RxaFOESh6mAJMNqWZN3s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:42:e9:13:d9:b5:56:66:3d:0f:08:c5:2e:d7:68:b6:05:6b: 21:e8:75:fe:86:c8:1c:5d:56:5a:2a:c0:31:05:8b:81:4d:06: 40:fd:31:91:7f:68:51:76:1e:b0:32:d0:b3:15:c2:49:6c:68: c5:12:df:e1:22:18:bb:63:de:b0:20:60:6c:5d:67:73:fe:91: a1:0e:a7:4b:aa:86:96:5a:4b:3c:91:2d:74:82:58:a4:d8:ec: 32:e6:ea:f8:00:16:5e:76:6a:94:b8:04:aa:ea:84:dc:f6:bc: b4:99:86:3a:ba:09:56:5a:a5:50:2b:d2:b9:93:33:ad:bf:a3: f6:c1:bb:ff:a4:40:19:f0:1f:b6:28:5d:ad:26:90:f1:ca:bc: b8:c8:c9:e6:6b:cb:31:e8:2e:d0:30:16:75:bb:bb:99:d8:6d: 82:21:f2:00:cb:6e:df:ef:07:eb:85:5b:43:c2:49:97:27:6a: 54:9d:47:75:d6:bb:45:c4:05:37:c9:49:76:4f:a9:34:26:3e: 6f:89:46:08:08:56:21:19:bc:46:9c:a8:dc:78:7b:87:99:b1: 33:af:17:2c:d7:95:b9:12:95:4c:e5:7a:92:83:2e:2b:7e:dc: 76:a3:2e:57:d5:62:94:1b:8a:ae:ce:9e:50:57:cf:1e:d3:c0: 39:b9:59:51 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAswwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTlB RTQzQTk3RDUxQzVBMTRFMTEyODdBOTgwMjRDMzZBNTk5Mzc3QjAeFw0yNTExMDQw MzU4MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE2MTJDNUZDQkRFRkMz NUY2MjgwMzRCQ0QyOTNFNDQ5QjhGNUZERkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD3pjl5Rrl0ZUuLydx62LTc6GH++xFV62ChO3Oz+o60M+MOYMu1 XUBIUPcB61G27L2uMo99M4vOMrcrpWGJrUkZ1iYFJ7xcKLZCF0Ynpxb28G2avKva AXQzaYu892ctn8qjqiwbwNuL/1xWjzoQXzmy0px0dsJcQ/xNAx2bAFezO8+H76NZ WBD+CYgG3OZBUQ3Y2BMRaFW3UxCq6M7r9V1Pu7LiZsODWscc3DN2ZsQOnjESoV5C IxjJleMdge7B/oNQFEbYI7pNGDmNH+5C/RsF/qYkk7kPjwIlDO0bTNXVKMzWRkAT 80iW7PxQ3FfJ2rTro2vhkVf6vO5wTgLURED3AgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUFhLF/L3vw19igDS80pPkSbj1/f8wHwYDVR0jBBgwFoAUma5DqX1RxaFOESh6 mAJMNqWZN3swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hVTU1Z VEVDSC9tYTVEcVgxUnhhRk9FU2g2bUFKTU5xV1pOM3MuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21hNURxWDFSeGFGT0VTaDZtQUpNTnFXWk4zcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NIVU1NWVRFQ0gvbWE1RHFYMVJ4 YUZPRVNoNm1BSk1OcVdaTjNzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAHhC6RPZtVZmPQ8IxS7XaLYFayHodf6GyBxdVloqwDEFi4FNBkD9MZF/ aFF2HrAy0LMVwklsaMUS3+EiGLtj3rAgYGxdZ3P+kaEOp0uqhpZaSzyRLXSCWKTY 7DLm6vgAFl52apS4BKrqhNz2vLSZhjq6CVZapVAr0rmTM62/o/bBu/+kQBnwH7Yo Xa0mkPHKvLjIyeZryzHoLtAwFnW7u5nYbYIh8gDLbt/vB+uFW0PCSZcnalSdR3XW u0XEBTfJSXZPqTQmPm+JRggIViEZvEacqNx4e4eZsTOvFyzXlbkSlUzlepKDLit+ 3HajLlfVYpQbiq7OnlBXzx7TwDm5WVE= -----END CERTIFICATE-----Generated at Wed Nov 5 14:35:45 2025 by rpki-client