$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft File: dK8EAv71bDShktHSGF5vtUaqcCw.mft (raw, json) Hash identifier: Py1QVMf/TvCOFh4z9trZ+L7MKKcHVa2gz/Pe4NsnCNQ= Subject key identifier: 3C:CC:70:A9:75:44:68:01:E0:FE:81:68:A6:08:C1:46:CE:67:2A:A8 Authority key identifier: 74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C Certificate issuer: /CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Certificate serial: 02FF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft Manifest number: 02E8 Signing time: Wed 05 Nov 2025 10:00:07 +0000 Manifest this update: Wed 05 Nov 2025 10:00:07 +0000 Manifest next update: Fri 07 Nov 2025 10:00:07 +0000 Files and hashes: 1: -zOZ-3_fo8tpQIfEWc2NXMfhUCM.roa (hash: LHQTyIR3LBJdsKp6X31L7Vt1B4EE8ydFAkCGpIgZpuY=) 2: 7TkXfDVq1uzZaKFfiFc7RC7dXt0.roa (hash: 6K3vxXAtFqfR+S22KzKUxLd6J62nFcd9DwibHNPlyGg=) 3: Ng4TCzfCqmXS1Gw47EAvoDedOn8.roa (hash: PsNPD1JWOR3rJrJ/JEy/1EaRwA0fhlpzjqJVHc/Pd6w=) 4: OsdVV21631qt5rr96nmrRgclUas.roa (hash: pTb6kcvGjpuCWdjNDxhE0r3asSaUxP8oxVvKNYFS0Hc=) 5: dK8EAv71bDShktHSGF5vtUaqcCw.crl (hash: 3aE1Lxf2vL5ywqZNoFiZsDDP9m6F3xOJHmuACVNw8hA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 09:18:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 767 (0x2ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=74AF0402FEF56C34A192D1D2185E6FB546AA702C Validity Not Before: Nov 5 10:00:07 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3CCC70A975446801E0FE8168A608C146CE672AA8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:a0:e4:88:4d:a9:1a:71:46:16:af:b3:15:e3: d4:dc:08:95:8f:cf:40:fb:64:58:39:3f:a6:a7:53: 3d:90:7b:d3:fe:8c:66:29:ce:a3:07:f8:fd:8d:82: 40:9f:2f:9d:42:7a:88:f5:92:75:20:4e:60:df:f2: 7a:0b:d8:a2:e3:5f:c9:60:95:9b:34:69:9e:a7:cc: ab:b4:85:99:ee:d5:63:a8:b0:7a:b0:78:9e:dd:5f: 9d:24:fc:2d:ce:f2:2f:ec:a8:14:8a:19:55:dc:29: 09:92:bb:f8:06:a7:a9:b5:22:c5:fe:30:c2:e3:4f: 66:cd:7f:62:30:dd:76:7f:f5:1d:36:22:8f:6c:33: 8a:a0:41:a4:b5:43:8f:b4:df:c6:7d:e1:ea:a8:49: 8a:07:d6:5f:db:b2:cc:db:48:05:c4:f9:55:69:c4: b4:94:b9:ee:54:5d:7f:13:46:f3:1f:f9:90:90:11: b4:1f:ac:c2:1d:1c:b3:26:52:99:26:89:1a:e8:ef: b4:47:90:5c:15:8b:6c:64:92:d1:70:5b:49:44:cc: 32:23:19:8a:4e:08:04:a6:fd:64:38:3f:6b:a8:a3: 0f:7d:99:a4:f2:20:53:bb:20:62:96:3b:b5:39:90: 62:90:30:0c:dd:59:eb:e5:c4:53:48:e0:ba:13:fd: ac:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:CC:70:A9:75:44:68:01:E0:FE:81:68:A6:08:C1:46:CE:67:2A:A8 X509v3 Authority Key Identifier: keyid:74:AF:04:02:FE:F5:6C:34:A1:92:D1:D2:18:5E:6F:B5:46:AA:70:2C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/dK8EAv71bDShktHSGF5vtUaqcCw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLARK/dK8EAv71bDShktHSGF5vtUaqcCw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 29:8e:f3:d0:e9:67:7a:00:12:fd:ee:96:74:66:f1:41:56:c8: 68:7c:09:25:3b:2d:e4:52:ee:4a:8e:1d:d3:38:ad:a9:85:dc: 28:4b:e3:6e:56:ad:3d:82:a5:f3:50:ed:cd:d3:8b:cf:e0:6d: 0d:33:aa:02:72:4e:a2:87:08:21:3a:be:4b:d4:3f:33:69:58: c6:68:2d:2c:0e:a8:ba:f2:77:df:d1:e3:14:e3:bd:9e:da:9c: f7:a6:b9:90:c1:24:b8:76:c5:3b:d9:62:cd:56:84:05:60:34: 1b:f7:ea:a2:ff:ef:ab:9f:26:0b:ee:7c:93:d7:58:19:25:9f: 4a:d4:a9:04:fd:40:d1:11:4a:fa:82:d6:e1:fd:d9:c8:1c:5b: 9d:6f:e7:95:b5:bb:ab:9a:af:32:34:91:c3:bb:6a:10:93:11: 12:f7:92:d6:1c:9e:66:ec:36:e5:fa:9f:62:14:f7:b6:1d:f4: 51:7c:09:59:93:52:94:db:26:73:58:90:7a:e4:58:57:47:13: 5d:a9:ee:2b:86:01:b4:0f:2e:c7:7e:d8:df:95:a8:9f:6e:ed: a0:9c:35:60:12:3c:1e:13:d4:c9:12:ac:6b:31:16:91:aa:21: 9e:cc:bd:f7:6c:1a:65:d7:32:9d:ab:09:91:ac:c2:94:2f:e1: 56:39:a3:77 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAv8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzRB RjA0MDJGRUY1NkMzNEExOTJEMUQyMTg1RTZGQjU0NkFBNzAyQzAeFw0yNTExMDUx MDAwMDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNDQ0M3MEE5NzU0NDY4 MDFFMEZFODE2OEE2MDhDMTQ2Q0U2NzJBQTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHoOSITakacUYWr7MV49TcCJWPz0D7ZFg5P6anUz2Qe9P+jGYp zqMH+P2NgkCfL51Ceoj1knUgTmDf8noL2KLjX8lglZs0aZ6nzKu0hZnu1WOosHqw eJ7dX50k/C3O8i/sqBSKGVXcKQmSu/gGp6m1IsX+MMLjT2bNf2Iw3XZ/9R02Io9s M4qgQaS1Q4+038Z94eqoSYoH1l/bsszbSAXE+VVpxLSUue5UXX8TRvMf+ZCQEbQf rMIdHLMmUpkmiRro77RHkFwVi2xkktFwW0lEzDIjGYpOCASm/WQ4P2uoow99maTy IFO7IGKWO7U5kGKQMAzdWevlxFNI4LoT/azbAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUPMxwqXVEaAHg/oFopgjBRs5nKqgwHwYDVR0jBBgwFoAUdK8EAv71bDShktHS GF5vtUaqcCwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xBUksv ZEs4RUF2NzFiRFNoa3RIU0dGNXZ0VWFxY0N3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9kSzhFQXY3MWJEU2hrdEhTR0Y1dnRVYXFjQ3cuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTEFSSy9kSzhFQXY3MWJEU2hrdEhTR0Y1 dnRVYXFjQ3cubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAKY7z 0OlnegAS/e6WdGbxQVbIaHwJJTst5FLuSo4d0zitqYXcKEvjblatPYKl81DtzdOL z+BtDTOqAnJOoocIITq+S9Q/M2lYxmgtLA6ouvJ339HjFOO9ntqc96a5kMEkuHbF O9lizVaEBWA0G/fqov/vq58mC+58k9dYGSWfStSpBP1A0RFK+oLW4f3ZyBxbnW/n lbW7q5qvMjSRw7tqEJMREveS1hyeZuw25fqfYhT3th30UXwJWZNSlNsmc1iQeuRY V0cTXanuK4YBtA8ux37Y35Won27toJw1YBI8HhPUyRKsazEWkaohnsy992waZdcy nasJkazClC/hVjmjdw== -----END CERTIFICATE-----Generated at Thu Nov 6 06:20:49 2025 by rpki-client