$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft File: -FjQAAx8RqmGsuuWgV8GriaTqdA.mft (raw, json) Hash identifier: hMnQr/VNf/e/EogUyElypCy6HyyCcyubE4EiztsVmsg= Subject key identifier: F2:EC:2A:9B:B1:6F:DF:9E:E2:25:92:79:BC:60:C2:12:E6:E9:E6:6E Authority key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 Certificate issuer: /CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Certificate serial: 0DE7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft Manifest number: 0DCF Signing time: Wed 05 Nov 2025 10:28:22 +0000 Manifest this update: Wed 05 Nov 2025 10:28:22 +0000 Manifest next update: Fri 07 Nov 2025 10:28:22 +0000 Files and hashes: 1: -FjQAAx8RqmGsuuWgV8GriaTqdA.crl (hash: Xvcr+QKE+MyZUndUuZZ+1zq+54dF8LZUn6c5L6/owrk=) 2: opBASSYxNCA-siC7yMVutVf2Yi0.roa (hash: NR3AnHqYUxCkDiDjMH48F9LVtd3nza47ESd2FLU2fnM=) 3: x8MqJK8MJGEqfHojuq-R7qs8-9A.roa (hash: QFHBYFbFbYCveSIkF81srWyRoggopb7755Xf+y919WQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3559 (0xde7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Validity Not Before: Nov 5 10:28:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F2EC2A9BB16FDF9EE2259279BC60C212E6E9E66E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:76:f7:15:1f:f2:f9:59:9b:e6:61:5a:6a:74: df:af:6a:ea:40:c0:55:37:66:9d:94:7f:b2:bc:ae: 73:48:48:14:3e:ad:81:6e:cf:c5:d4:d2:ea:cd:27: d2:95:ff:cf:4c:fe:53:9e:77:94:6a:14:64:57:d9: ab:d4:5b:3b:65:d7:45:da:7b:7c:59:f0:93:b5:9b: a0:37:3c:12:00:e6:c7:22:67:05:a2:df:fe:e1:d2: 1b:09:57:16:d2:8b:ed:22:ff:ff:58:e5:ac:c3:4a: 3b:6a:63:1a:16:a2:58:0d:bb:b8:7e:53:f0:4b:8a: fd:52:e1:b6:60:1d:f6:02:b5:54:f6:ae:0b:66:b3: 4b:a5:af:d6:be:fe:a1:78:c6:fb:5b:41:6d:42:79: 45:9c:c7:fe:71:9c:37:e8:64:14:5b:d0:9f:5f:e8: e0:19:74:e8:24:fb:50:b1:c3:24:18:7f:81:ae:2c: 10:21:06:ec:10:ff:a8:0d:99:08:a1:36:d2:5b:19: 3f:3f:a4:d9:2b:27:74:39:ab:d1:3f:0d:a0:5a:31: fd:9b:34:68:c9:04:06:7a:0d:4f:70:de:53:f5:18: c8:a5:0c:1a:16:4e:41:50:b8:a9:c4:41:b3:96:b2: 47:4b:8a:2e:78:0e:16:60:b7:b9:bc:d9:96:27:8e: 93:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EC:2A:9B:B1:6F:DF:9E:E2:25:92:79:BC:60:C2:12:E6:E9:E6:6E X509v3 Authority Key Identifier: keyid:F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 52:ad:ae:9a:d6:82:92:3d:e9:c9:37:1c:86:2a:52:a2:a3:d4: d8:10:4a:34:60:13:f6:19:00:89:a9:21:ba:4d:18:0d:a4:5b: 94:58:ab:80:ad:fc:99:bd:80:dd:04:a3:75:dc:04:14:c5:08: da:ba:76:73:b2:1a:20:ab:d2:56:81:db:77:47:70:a9:92:46: 33:73:93:b9:c7:98:fd:1e:58:78:4f:75:06:9e:25:94:b4:50: aa:cb:e0:24:39:b7:12:25:57:b1:6a:ed:b8:b3:ea:ef:b4:18: 62:e9:b7:21:c7:f5:6e:5a:b0:55:dd:f8:ef:a4:7b:5a:e9:5d: 06:17:6e:7b:2b:77:d7:8b:b3:64:cd:85:fd:45:ea:e8:b9:c1: 73:38:c7:2b:99:a7:09:82:9b:52:53:48:5b:03:e1:21:53:76: 44:7e:d8:49:b4:b2:a5:dd:96:d6:67:3a:58:72:cf:62:44:25: cc:f1:68:7c:76:01:a3:41:d8:14:d1:5d:67:a1:45:00:18:77: e2:2a:1b:99:08:f6:12:73:3e:3a:b9:c0:33:26:20:5d:9e:b4: bc:59:36:44:1e:67:4f:a4:40:a3:f9:05:42:54:86:d2:9e:52: a1:49:25:b1:a0:40:91:9b:1d:60:8f:a8:d8:e1:23:17:c4:52: 03:d6:70:eb -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDecwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjg1 OEQwMDAwQzdDNDZBOTg2QjJFQjk2ODE1RjA2QUUyNjkzQTlEMDAeFw0yNTExMDUx MDI4MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEYyRUMyQTlCQjE2RkRG OUVFMjI1OTI3OUJDNjBDMjEyRTZFOUU2NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCodvcVH/L5WZvmYVpqdN+vaupAwFU3Zp2Uf7K8rnNISBQ+rYFu z8XU0urNJ9KV/89M/lOed5RqFGRX2avUWztl10Xae3xZ8JO1m6A3PBIA5sciZwWi 3/7h0hsJVxbSi+0i//9Y5azDSjtqYxoWolgNu7h+U/BLiv1S4bZgHfYCtVT2rgtm s0ulr9a+/qF4xvtbQW1CeUWcx/5xnDfoZBRb0J9f6OAZdOgk+1CxwyQYf4GuLBAh BuwQ/6gNmQihNtJbGT8/pNkrJ3Q5q9E/DaBaMf2bNGjJBAZ6DU9w3lP1GMilDBoW TkFQuKnEQbOWskdLii54DhZgt7m82ZYnjpPJAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU8uwqm7Fv357iJZJ5vGDCEubp5m4wHwYDVR0jBBgwFoAU+FjQAAx8RqmGsuuW gV8GriaTqdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvLUZqUUFBeDhScW1Hc3V1V2dWOEdyaWFUcWRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS8tRmpRQUF4OFJxbUdzdXVXZ1Y4R3JpYVRxZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy8tRmpRQUF4OFJxbUdz dXVXZ1Y4R3JpYVRxZEEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAUq2umtaCkj3pyTcchipSoqPU2BBKNGAT9hkAiakhuk0YDaRblFirgK38mb2A 3QSjddwEFMUI2rp2c7IaIKvSVoHbd0dwqZJGM3OTuceY/R5YeE91Bp4llLRQqsvg JDm3EiVXsWrtuLPq77QYYum3Icf1blqwVd3476R7WuldBhdueyt314uzZM2F/UXq 6LnBczjHK5mnCYKbUlNIWwPhIVN2RH7YSbSypd2W1mc6WHLPYkQlzPFofHYBo0HY FNFdZ6FFABh34iobmQj2EnM+OrnAMyYgXZ60vFk2RB5nT6RAo/kFQlSG0p5SoUkl saBAkZsdYI+o2OEjF8RSA9Zw6w== -----END CERTIFICATE-----Generated at Wed Nov 5 15:52:50 2025 by rpki-client