$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.mft File: -RPLekSlfQiT002P6dsed-_mqxw.mft (raw, json) Hash identifier: NvJO1NA5F2UJh9aEOwIIBFxtt1zOQ2aeGVf3MHAvZOA= Subject key identifier: 74:65:76:8B:F7:E0:8E:E5:AF:92:82:11:0A:62:C9:DC:1E:42:89:CD Authority key identifier: F9:13:CB:7A:44:A5:7D:08:93:D3:4D:8F:E9:DB:1E:77:EF:E6:AB:1C Certificate issuer: /CN=F913CB7A44A57D0893D34D8FE9DB1E77EFE6AB1C Certificate serial: BA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.mft Manifest number: B4 Signing time: Tue 04 Nov 2025 23:59:07 +0000 Manifest this update: Tue 04 Nov 2025 23:59:07 +0000 Manifest next update: Wed 05 Nov 2025 05:59:07 +0000 Files and hashes: 1: -RPLekSlfQiT002P6dsed-_mqxw.crl (hash: azJ5F2lQdRab6qm81fdc++M2E3dCCz2Ii6bt/Lc1xNs=) 2: TLPQMipyQ9NUb6ERNQ9lDl_4bKg.roa (hash: jRcLodBDWvjVPz32Ne0Y/NYa05fdOEpQEYX3EaEWKh0=) 3: TnQzIrExeMXFGPVOTF_J6O5o5KM.roa (hash: z+K5Dzd8KNeuwGCEUeS6n0VWekGc1trje0UAX+K19qs=) 4: i7omx6o11gBFgGp3c0tO3ImxhE4.roa (hash: /ELE9O+keNY3c44Uw0aAEp0XObWlYsiYEqIrlONgjQY=) 5: jghrzwIHfbEOsomTcsyn4XAv74c.roa (hash: a77IBy4z00+E00HPSY5jCFxLXKxBWsGeBy8P7o0Jr20=) 6: pc8Xin7jncSOJfT1Riuj1WKUU-U.roa (hash: VRo+LO7Q6SUHDMFQQRj3eJUm72eOCrczYJ5fqDCc+ls=) 7: qmlk2d0xQ0X1kqwuG4QTD3u-OHA.roa (hash: 5Quxz30Ou3mZt4snPNir5fbylaf9sNQgLYGgGV0XghE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 05:59:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 186 (0xba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F913CB7A44A57D0893D34D8FE9DB1E77EFE6AB1C Validity Not Before: Nov 4 23:59:07 2025 GMT Not After : Sep 25 15:30:20 2026 GMT Subject: CN=7465768BF7E08EE5AF9282110A62C9DC1E4289CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:ec:87:00:82:e3:e0:0d:0f:b4:65:8e:04:77: 45:55:f1:8b:3f:3e:4d:0e:83:0a:fd:72:b0:bf:1b: 7e:7f:41:b4:b0:5a:46:dd:88:a9:fb:db:f2:a6:2a: 0e:2f:fb:03:e6:c3:e2:af:7d:10:c9:c2:74:28:26: 81:de:1a:06:70:4b:66:96:a5:bc:bb:ba:2f:b5:8e: 2d:09:8d:ef:a9:0d:de:96:a8:f7:29:94:42:93:9e: a4:90:40:f5:fe:48:09:a2:a8:77:91:ca:f0:36:4a: 72:2d:7d:6d:c6:38:99:e3:60:e2:10:46:7b:67:ce: 50:b3:2f:81:e9:92:d6:09:a2:f1:6f:04:68:8a:9a: ea:e0:39:81:10:36:49:fa:8f:39:8d:4b:64:64:5b: 31:a9:83:33:78:b8:ca:65:c0:c5:35:19:80:fd:a7: 42:a5:53:eb:d1:e5:bb:3e:93:54:e5:a0:4c:36:a3: a0:1a:0d:d4:ab:9d:cf:9e:ac:5c:8e:dc:cd:9c:eb: f7:90:0e:0d:2b:b9:a1:80:7d:73:7a:20:4f:29:6e: 10:9e:af:5f:ac:8e:61:fa:d0:cc:9d:60:d1:ef:36: 5e:2d:50:35:10:01:be:21:39:c4:d5:c1:bf:a8:ee: 55:d7:62:27:0b:ad:11:5d:e9:00:22:54:7a:34:52: d3:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:65:76:8B:F7:E0:8E:E5:AF:92:82:11:0A:62:C9:DC:1E:42:89:CD X509v3 Authority Key Identifier: keyid:F9:13:CB:7A:44:A5:7D:08:93:D3:4D:8F:E9:DB:1E:77:EF:E6:AB:1C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-RPLekSlfQiT002P6dsed-_mqxw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DAFU/-RPLekSlfQiT002P6dsed-_mqxw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 4c:28:b5:e3:4d:5a:18:7e:05:ed:59:1c:fc:9d:56:2d:66:82: 2d:8c:c7:87:a0:94:3a:d0:9d:1b:6a:e7:54:2b:89:0b:b5:e9: e3:56:b1:74:22:d5:41:c1:12:16:d4:05:1d:45:09:d9:29:4b: ce:ff:22:69:a9:b4:33:ee:1a:e5:0f:52:d6:f0:7c:c4:62:09: 55:ca:9a:d8:d5:3d:b4:6a:cd:bb:02:c1:8f:df:ea:00:4c:87: c6:8c:67:66:66:31:d7:76:c6:a2:52:7c:66:29:f8:f0:dd:75: 7a:b5:1f:61:54:42:20:08:d4:79:12:86:a5:89:fc:8f:1b:11: bd:3f:5e:08:39:d0:96:66:b4:b8:4f:6a:3a:99:b6:aa:40:01: f3:6d:3b:62:09:e4:dc:5b:a9:b7:83:95:ba:7f:52:64:51:31: 99:2f:22:d8:87:bc:a4:cd:21:f9:70:fa:40:31:92:cd:fa:ea: 03:eb:1b:ab:df:97:29:b5:1b:2a:36:ec:ef:94:ba:c6:c2:ef: 8b:c6:f6:2c:21:73:f8:89:76:c1:7e:19:b9:24:c9:92:0f:64: bd:f3:66:80:9a:4f:cb:a3:74:ac:35:03:3f:07:be:4f:6c:62: 6c:45:95:ea:3e:73:76:38:9b:91:37:14:1c:a9:a3:53:14:80: d5:44:e2:e4 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICALowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjkx M0NCN0E0NEE1N0QwODkzRDM0RDhGRTlEQjFFNzdFRkU2QUIxQzAeFw0yNTExMDQy MzU5MDdaFw0yNjA5MjUxNTMwMjBaMDMxMTAvBgNVBAMTKDc0NjU3NjhCRjdFMDhF RTVBRjkyODIxMTBBNjJDOURDMUU0Mjg5Q0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD7IcAguPgDQ+0ZY4Ed0VV8Ys/Pk0Ogwr9crC/G35/QbSwWkbd iKn72/KmKg4v+wPmw+KvfRDJwnQoJoHeGgZwS2aWpby7ui+1ji0Jje+pDd6WqPcp lEKTnqSQQPX+SAmiqHeRyvA2SnItfW3GOJnjYOIQRntnzlCzL4HpktYJovFvBGiK murgOYEQNkn6jzmNS2RkWzGpgzN4uMplwMU1GYD9p0KlU+vR5bs+k1TloEw2o6Aa DdSrnc+erFyO3M2c6/eQDg0ruaGAfXN6IE8pbhCer1+sjmH60MydYNHvNl4tUDUQ Ab4hOcTVwb+o7lXXYicLrRFd6QAiVHo0UtONAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUdGV2i/fgjuWvkoIRCmLJ3B5Cic0wHwYDVR0jBBgwFoAU+RPLekSlfQiT002P 6dsed+/mqxwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREFGVS8t UlBMZWtTbGZRaVQwMDJQNmRzZWQtX21xeHcuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB Ly1SUExla1NsZlFpVDAwMlA2ZHNlZC1fbXF4dy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0RBRlUvLVJQTGVrU2xmUWlUMDAyUDZkc2Vk LV9tcXh3Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAEwoteNN Whh+Be1ZHPydVi1mgi2Mx4eglDrQnRtq51QriQu16eNWsXQi1UHBEhbUBR1FCdkp S87/ImmptDPuGuUPUtbwfMRiCVXKmtjVPbRqzbsCwY/f6gBMh8aMZ2ZmMdd2xqJS fGYp+PDddXq1H2FUQiAI1HkShqWJ/I8bEb0/Xgg50JZmtLhPajqZtqpAAfNtO2IJ 5NxbqbeDlbp/UmRRMZkvItiHvKTNIflw+kAxks366gPrG6vflym1Gyo27O+UusbC 74vG9iwhc/iJdsF+GbkkyZIPZL3zZoCaT8ujdKw1Az8Hvk9sYmxFleo+c3Y4m5E3 FBypo1MUgNVE4uQ= -----END CERTIFICATE-----Generated at Wed Nov 5 04:23:07 2025 by rpki-client