$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft File: 4hRiP9Epy5cnQNOR2vORlvKt8r0.mft (raw, json) Hash identifier: 0UtDC7WpwXrCvrbgNDkEjmLVs+0s5s9vXox4eAzx0cg= Subject key identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB Authority key identifier: E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD Certificate issuer: /CN=E214623FD129CB972740D391DAF39196F2ADF2BD Certificate serial: 0192 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft Manifest number: 018E Signing time: Wed 05 Nov 2025 10:00:51 +0000 Manifest this update: Wed 05 Nov 2025 10:00:50 +0000 Manifest next update: Fri 07 Nov 2025 10:00:50 +0000 Files and hashes: 1: 4hRiP9Epy5cnQNOR2vORlvKt8r0.crl (hash: AFzm6tSDU8dCISOgNyB/zUu/r9Pk7b4DZM6KCzvpJw0=) 2: iSwRk6JX6sq0zUYdAiJaQJwTSNU.roa (hash: ZfvLyZSU7HOwGerGgBmUBGoPowZcffgpfXRcA2OibPk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 402 (0x192) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E214623FD129CB972740D391DAF39196F2ADF2BD Validity Not Before: Nov 5 10:00:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5F4E013E8588F20D7604DFEA79DAC4D64B88E9AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3b:a8:8c:da:a4:d9:95:81:48:9d:98:2f:23: 36:0a:90:d7:70:72:d0:66:3b:92:cc:47:d1:62:8a: 61:2c:f3:fe:e2:cc:00:9b:2c:62:ff:19:9f:43:0a: 49:75:35:66:ab:6b:2a:9c:c6:38:70:dd:11:a3:c8: ed:c0:34:19:e9:f6:84:d1:18:53:59:fd:90:94:4a: 1f:75:c2:cb:4f:40:04:94:aa:04:17:48:7d:db:b3: ba:94:c3:97:d1:b5:c7:a1:a1:fa:97:cd:48:b6:b9: de:2f:2d:0d:97:e1:75:ba:6c:26:fd:a6:a6:3c:a5: 7e:e5:59:c2:5d:8a:3a:37:5a:ff:df:a2:2d:28:46: 8a:47:d6:e6:88:b8:d2:90:68:42:b2:40:76:b4:90: 0f:03:92:34:db:47:05:77:c8:95:eb:8d:b2:05:0e: a8:c7:47:57:4a:7a:47:f4:44:89:27:b7:ae:0d:bb: aa:c8:ff:14:93:de:ae:4c:e6:94:b5:e7:e7:7d:95: 0e:bd:b2:86:37:c0:03:26:fe:de:77:54:ff:99:08: 47:0d:74:88:b6:31:5a:1d:02:e0:13:89:c5:4b:0d: 13:ab:39:5a:f7:3d:b6:d1:a7:cb:e5:19:37:bf:18: 1b:34:58:ee:dd:33:56:ac:0b:83:53:d2:f6:dc:28: fc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB X509v3 Authority Key Identifier: keyid:E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:22:75:8f:4a:c9:45:39:5a:1a:ad:e1:68:2d:46:e5:67:ef: 73:bc:5b:5d:08:ae:b1:2e:a4:59:a6:6b:9f:ac:bc:c3:c2:a9: 51:b8:a8:dd:b5:57:71:69:9f:d4:89:12:3c:04:85:7f:5f:3a: 6f:63:0c:3b:f8:a0:4c:6b:13:30:8c:33:d3:61:af:5a:0b:05: 2f:12:9f:f9:af:ad:a2:6b:ee:c4:f3:9e:47:ae:1d:c5:03:36: 7f:9e:a5:37:c4:88:b0:fd:64:24:4a:86:92:61:7f:b5:bc:25: 41:db:06:b9:9e:63:d3:0c:02:b9:c8:be:9b:7a:63:8a:67:74: d1:a0:13:d7:2e:54:3a:b1:d4:fb:54:af:0d:50:c6:65:7d:84: af:e1:0c:be:2f:ad:1a:1c:e5:39:51:b7:d5:91:f4:7f:b5:b7: 38:f0:9f:ec:b8:fb:88:1f:f5:70:bf:b6:9c:fe:01:1f:7a:51: 4d:db:8c:ef:1b:9b:8c:d6:1b:ce:a8:0a:af:fc:05:e0:ac:52: c8:19:79:18:f3:bb:aa:91:06:44:2d:01:f0:e6:3e:f6:e1:e6: c2:31:58:83:ef:f7:5e:a5:0d:af:1e:b4:73:6a:57:5f:ee:2f: 49:8c:7d:25:0f:31:db:9b:bc:cc:a1:75:1f:20:e2:5a:16:37: 80:aa:9a:ce -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAZIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTIx NDYyM0ZEMTI5Q0I5NzI3NDBEMzkxREFGMzkxOTZGMkFERjJCRDAeFw0yNTExMDUx MDAwNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVGNEUwMTNFODU4OEYy MEQ3NjA0REZFQTc5REFDNEQ2NEI4OEU5QUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDWO6iM2qTZlYFInZgvIzYKkNdwctBmO5LMR9FiimEs8/7izACb LGL/GZ9DCkl1NWarayqcxjhw3RGjyO3ANBnp9oTRGFNZ/ZCUSh91wstPQASUqgQX SH3bs7qUw5fRtcehofqXzUi2ud4vLQ2X4XW6bCb9pqY8pX7lWcJdijo3Wv/foi0o RopH1uaIuNKQaEKyQHa0kA8DkjTbRwV3yJXrjbIFDqjHR1dKekf0RIknt64Nu6rI /xST3q5M5pS15+d9lQ69soY3wAMm/t53VP+ZCEcNdIi2MVodAuATicVLDROrOVr3 PbbRp8vlGTe/GBs0WO7dM1asC4NT0vbcKPx/AgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUX04BPoWI8g12BN/qedrE1kuI6aswHwYDVR0jBBgwFoAU4hRiP9Epy5cnQNOR 2vORlvKt8r0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0pNRS80 aFJpUDlFcHk1Y25RTk9SMnZPUmx2S3Q4cjAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRoUmlQOUVweTVjblFOT1Iydk9SbHZLdDhyMC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NKTUUvNGhSaVA5RXB5NWNuUU5PUjJ2T1Js dkt0OHIwLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAGYidY9K yUU5Whqt4WgtRuVn73O8W10IrrEupFmma5+svMPCqVG4qN21V3Fpn9SJEjwEhX9f Om9jDDv4oExrEzCMM9Nhr1oLBS8Sn/mvraJr7sTznkeuHcUDNn+epTfEiLD9ZCRK hpJhf7W8JUHbBrmeY9MMArnIvpt6Y4pndNGgE9cuVDqx1PtUrw1QxmV9hK/hDL4v rRoc5TlRt9WR9H+1tzjwn+y4+4gf9XC/tpz+AR96UU3bjO8bm4zWG86oCq/8BeCs UsgZeRjzu6qRBkQtAfDmPvbh5sIxWIPv916lDa8etHNqV1/uL0mMfSUPMdubvMyh dR8g4loWN4Cqms4= -----END CERTIFICATE-----Generated at Wed Nov 5 19:16:57 2025 by rpki-client