$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft File: g0159BJr-encCzK4Z2Tn1gJRTgE.mft (raw, json) Hash identifier: QmGDj2GoBJMCM18a5WwKELqZXBPjw1fB/MROlUCGk7I= Subject key identifier: 8D:FD:7A:22:67:3B:1B:3D:C7:02:8F:F1:34:99:E5:78:6B:9F:0B:12 Authority key identifier: 83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01 Certificate issuer: /CN=834D79F4126BF9E9DC0B32B86764E7D602514E01 Certificate serial: 0452 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft Manifest number: 0446 Signing time: Tue 04 Nov 2025 20:58:10 +0000 Manifest this update: Tue 04 Nov 2025 20:58:10 +0000 Manifest next update: Thu 06 Nov 2025 20:58:10 +0000 Files and hashes: 1: 36nsA44-EgZ5iAB5hXeyhrb7YxA.roa (hash: 0zMaPwZ6eFsw07prubZWqmgorrWt7r12wQ1DXZs6PFM=) 2: g0159BJr-encCzK4Z2Tn1gJRTgE.crl (hash: jcCs5kdjNSq1BC+ycl0KpqyOFSf9oW5ejDK5PAJrieQ=) 3: nyJBqoFvxKFkzTjlKLpxM_JtSFc.roa (hash: X9J/w6zPvv47uSTsa9dc+qigI4gp1lwzRNOcYNi9Ahg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1106 (0x452) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=834D79F4126BF9E9DC0B32B86764E7D602514E01 Validity Not Before: Nov 4 20:58:10 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8DFD7A22673B1B3DC7028FF13499E5786B9F0B12 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:0c:4a:98:2a:6f:e1:bc:b1:f9:37:00:09:28: 64:c1:83:03:97:c2:e3:ed:62:73:2e:38:7a:79:de: 7c:2e:1a:f4:40:f2:f9:8c:c2:f1:7e:13:1c:a7:b3: a4:1e:82:f6:ac:b3:22:59:ac:7e:ba:22:a1:d1:9a: 7a:be:40:5b:b5:8a:34:b8:32:48:51:45:20:36:47: 76:71:d3:a4:22:70:ff:78:fb:fd:af:c7:e8:e1:9b: 29:1b:83:ad:4d:e9:2c:dc:29:58:30:a4:fb:68:65: 6e:81:31:d0:08:a4:32:6a:7f:73:a1:b1:9c:b4:50: 5e:0f:34:46:c2:72:27:77:c2:84:89:57:26:b6:5d: c9:9b:f3:f1:3e:b6:e2:91:90:1a:e7:01:26:df:13: 2d:b6:9b:2a:90:23:12:28:2f:10:7f:f9:cb:fa:27: 44:1b:6f:7a:e2:48:a9:e9:c2:86:f4:f4:3d:ac:29: 47:2a:81:ac:93:1a:64:7f:c5:db:e6:76:5f:8c:2f: 86:81:c3:fa:ee:5a:c3:c8:79:f6:4a:ef:86:92:d4: ea:3f:8a:6e:4f:98:e3:a1:88:5f:08:40:92:51:87: ca:ad:b4:24:be:3b:14:6d:69:31:29:ad:f3:87:8e: 46:db:4a:b6:af:40:6c:3c:ff:85:5a:e5:18:52:48: 1b:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:FD:7A:22:67:3B:1B:3D:C7:02:8F:F1:34:99:E5:78:6B:9F:0B:12 X509v3 Authority Key Identifier: keyid:83:4D:79:F4:12:6B:F9:E9:DC:0B:32:B8:67:64:E7:D6:02:51:4E:01 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g0159BJr-encCzK4Z2Tn1gJRTgE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDNODE/g0159BJr-encCzK4Z2Tn1gJRTgE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c8:87:67:f5:6d:ca:f7:99:7f:b9:c7:c7:8d:69:74:67:08:32: cb:25:20:30:37:d2:49:bb:b0:35:b6:58:b5:ed:2d:11:e0:72: 9c:b0:97:5c:32:b4:21:41:a9:cb:4e:02:4b:52:a2:fb:0b:9b: c5:d3:25:cf:12:e5:25:4e:27:84:a2:c5:d4:7d:83:f5:66:c7: 31:b9:03:7e:0a:ed:50:d1:1c:ca:83:67:54:64:82:79:e0:0a: 35:8a:8f:86:41:20:4a:9a:19:b7:cc:da:dc:7c:45:df:cc:e0: 48:e5:05:cb:b7:50:e1:b2:b1:bc:d1:1d:95:38:ee:65:dd:11: eb:85:7e:6d:13:41:80:57:dc:ef:34:0d:3c:76:1c:31:41:f2: fb:aa:f6:ee:7a:2c:07:00:bb:95:5b:ba:b1:3b:28:a9:87:78: 1d:5b:9a:7d:9c:05:c7:3f:0f:15:22:fa:fc:c1:48:70:6e:e1: 10:3a:13:44:5d:41:4d:ba:a6:30:80:20:c5:ab:a9:88:46:9f: cb:fa:5a:65:f8:27:66:a1:74:41:1f:d8:ed:42:f8:f5:32:3c: 9d:aa:1c:9e:08:a4:03:ad:85:e8:ae:9a:ec:38:3f:79:5a:41: 80:b2:a5:5f:1a:73:54:0b:7c:ed:04:64:99:c8:d7:08:76:c5: 35:19:c3:e3 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBFIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODM0 RDc5RjQxMjZCRjlFOURDMEIzMkI4Njc2NEU3RDYwMjUxNEUwMTAeFw0yNTExMDQy MDU4MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhERkQ3QTIyNjczQjFC M0RDNzAyOEZGMTM0OTlFNTc4NkI5RjBCMTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCmDEqYKm/hvLH5NwAJKGTBgwOXwuPtYnMuOHp53nwuGvRA8vmM wvF+Exyns6QegvassyJZrH66IqHRmnq+QFu1ijS4MkhRRSA2R3Zx06QicP94+/2v x+jhmykbg61N6SzcKVgwpPtoZW6BMdAIpDJqf3OhsZy0UF4PNEbCcid3woSJVya2 Xcmb8/E+tuKRkBrnASbfEy22myqQIxIoLxB/+cv6J0Qbb3riSKnpwob09D2sKUcq gayTGmR/xdvmdl+ML4aBw/ruWsPIefZK74aS1Oo/im5PmOOhiF8IQJJRh8qttCS+ OxRtaTEprfOHjkbbSravQGw8/4Va5RhSSBsTAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUjf16Imc7Gz3HAo/xNJnleGufCxIwHwYDVR0jBBgwFoAUg0159BJr+encCzK4 Z2Tn1gJRTgEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURO T0RFL2cwMTU5QkpyLWVuY0N6SzRaMlRuMWdKUlRnRS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvZzAxNTlCSnItZW5jQ3pLNFoyVG4xZ0pSVGdFLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVUROT0RFL2cwMTU5QkpyLWVu Y0N6SzRaMlRuMWdKUlRnRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQDIh2f1bcr3mX+5x8eNaXRnCDLLJSAwN9JJu7A1tli17S0R4HKcsJdcMrQh QanLTgJLUqL7C5vF0yXPEuUlTieEosXUfYP1ZscxuQN+Cu1Q0RzKg2dUZIJ54Ao1 io+GQSBKmhm3zNrcfEXfzOBI5QXLt1DhsrG80R2VOO5l3RHrhX5tE0GAV9zvNA08 dhwxQfL7qvbueiwHALuVW7qxOyiph3gdW5p9nAXHPw8VIvr8wUhwbuEQOhNEXUFN uqYwgCDFq6mIRp/L+lpl+CdmoXRBH9jtQvj1MjydqhyeCKQDrYXorprsOD95WkGA sqVfGnNUC3ztBGSZyNcIdsU1GcPj -----END CERTIFICATE-----Generated at Wed Nov 5 13:34:07 2025 by rpki-client