$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft File: -FjQAAx8RqmGsuuWgV8GriaTqdA.mft (raw, json) Hash identifier: oyyRAM3rZYH25S6I+lellXUX+cARwPG6TCV0p5k5sLs= Subject key identifier: F2:EC:2A:9B:B1:6F:DF:9E:E2:25:92:79:BC:60:C2:12:E6:E9:E6:6E Authority key identifier: F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 Certificate issuer: /CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Certificate serial: 0DAC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft Manifest number: 0D96 Signing time: Tue 12 Aug 2025 15:10:46 +0000 Manifest this update: Tue 12 Aug 2025 15:10:46 +0000 Manifest next update: Thu 14 Aug 2025 15:10:46 +0000 Files and hashes: 1: -FjQAAx8RqmGsuuWgV8GriaTqdA.crl (hash: oGJX5nzn5i/s1471fy0vrRQT+2oxEQ+wHy01qOIpmJE=) 2: 6M67JmSEoaeUKxvtWpD-49a5JGo.roa (hash: 5IVv+j9HV8IsUWqwbiGKgH1ePVhxkXF8oORytispBLM=) 3: iUv9_WKZnnKO1LrJjOFge-ueXCU.roa (hash: xGKLcVSQpMXj9CPj5AclUmYYElMlKOlPw/NOLDN07gQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 Aug 2025 10:41:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3500 (0xdac) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F858D0000C7C46A986B2EB96815F06AE2693A9D0 Validity Not Before: Aug 12 15:10:46 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F2EC2A9BB16FDF9EE2259279BC60C212E6E9E66E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:76:f7:15:1f:f2:f9:59:9b:e6:61:5a:6a:74: df:af:6a:ea:40:c0:55:37:66:9d:94:7f:b2:bc:ae: 73:48:48:14:3e:ad:81:6e:cf:c5:d4:d2:ea:cd:27: d2:95:ff:cf:4c:fe:53:9e:77:94:6a:14:64:57:d9: ab:d4:5b:3b:65:d7:45:da:7b:7c:59:f0:93:b5:9b: a0:37:3c:12:00:e6:c7:22:67:05:a2:df:fe:e1:d2: 1b:09:57:16:d2:8b:ed:22:ff:ff:58:e5:ac:c3:4a: 3b:6a:63:1a:16:a2:58:0d:bb:b8:7e:53:f0:4b:8a: fd:52:e1:b6:60:1d:f6:02:b5:54:f6:ae:0b:66:b3: 4b:a5:af:d6:be:fe:a1:78:c6:fb:5b:41:6d:42:79: 45:9c:c7:fe:71:9c:37:e8:64:14:5b:d0:9f:5f:e8: e0:19:74:e8:24:fb:50:b1:c3:24:18:7f:81:ae:2c: 10:21:06:ec:10:ff:a8:0d:99:08:a1:36:d2:5b:19: 3f:3f:a4:d9:2b:27:74:39:ab:d1:3f:0d:a0:5a:31: fd:9b:34:68:c9:04:06:7a:0d:4f:70:de:53:f5:18: c8:a5:0c:1a:16:4e:41:50:b8:a9:c4:41:b3:96:b2: 47:4b:8a:2e:78:0e:16:60:b7:b9:bc:d9:96:27:8e: 93:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F2:EC:2A:9B:B1:6F:DF:9E:E2:25:92:79:BC:60:C2:12:E6:E9:E6:6E X509v3 Authority Key Identifier: keyid:F8:58:D0:00:0C:7C:46:A9:86:B2:EB:96:81:5F:06:AE:26:93:A9:D0 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/-FjQAAx8RqmGsuuWgV8GriaTqdA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/-FjQAAx8RqmGsuuWgV8GriaTqdA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:47:c3:0a:01:5c:96:08:8a:eb:1e:a8:4c:73:bd:b9:71:d0: eb:f1:89:11:a7:63:89:4e:83:b8:e1:4c:5f:29:4d:23:e2:ac: f5:05:f9:3f:57:28:c2:61:36:43:7c:34:a7:5f:b3:69:a1:1a: fc:0c:98:e7:49:2b:c0:2e:a6:3d:ae:b0:25:84:ed:29:c9:b5: 96:97:8e:73:a3:93:1c:6e:8a:04:9a:31:7d:ca:8e:53:fe:69: 21:14:d2:98:20:ec:cb:40:64:5c:43:a7:ae:52:fb:7e:c4:47: 86:26:cd:17:f7:2c:97:9f:0b:5f:c2:c5:18:5e:ad:35:ca:3f: 17:33:ed:68:d7:08:ed:32:05:d3:e8:a5:74:db:1d:ed:59:4d: ba:04:5f:13:e2:59:3b:f4:5b:cd:6b:f8:5b:80:b0:7c:b9:bc: 47:6f:cb:63:10:29:df:6c:5f:b9:88:0f:0e:c1:1c:cf:15:c7: f1:e1:9d:85:bc:1b:b9:16:40:d9:c5:f6:c7:0b:7f:8d:4a:68: 1f:ae:56:55:f5:5f:42:e3:9a:4a:b9:c1:6f:a3:58:71:96:7f: e0:55:1d:f9:4b:17:96:11:30:fa:1c:f3:b1:0b:52:fb:1c:ff: 37:98:c4:34:7b:6f:aa:2c:fb:db:8d:ab:f5:49:fd:a1:8e:c8: e4:2c:4d:c1 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDawwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjg1 OEQwMDAwQzdDNDZBOTg2QjJFQjk2ODE1RjA2QUUyNjkzQTlEMDAeFw0yNTA4MTIx NTEwNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYyRUMyQTlCQjE2RkRG OUVFMjI1OTI3OUJDNjBDMjEyRTZFOUU2NkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCodvcVH/L5WZvmYVpqdN+vaupAwFU3Zp2Uf7K8rnNISBQ+rYFu z8XU0urNJ9KV/89M/lOed5RqFGRX2avUWztl10Xae3xZ8JO1m6A3PBIA5sciZwWi 3/7h0hsJVxbSi+0i//9Y5azDSjtqYxoWolgNu7h+U/BLiv1S4bZgHfYCtVT2rgtm s0ulr9a+/qF4xvtbQW1CeUWcx/5xnDfoZBRb0J9f6OAZdOgk+1CxwyQYf4GuLBAh BuwQ/6gNmQihNtJbGT8/pNkrJ3Q5q9E/DaBaMf2bNGjJBAZ6DU9w3lP1GMilDBoW TkFQuKnEQbOWskdLii54DhZgt7m82ZYnjpPJAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU8uwqm7Fv357iJZJ5vGDCEubp5m4wHwYDVR0jBBgwFoAU+FjQAAx8RqmGsuuW gV8GriaTqdAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9OR0ZP TkcvLUZqUUFBeDhScW1Hc3V1V2dWOEdyaWFUcWRBLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS8tRmpRQUF4OFJxbUdzdXVXZ1Y4R3JpYVRxZEEuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ET05HRk9ORy8tRmpRQUF4OFJxbUdz dXVXZ1Y4R3JpYVRxZEEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeEfDCgFclgiK6x6oTHO9uXHQ6/GJEadjiU6DuOFMXylNI+Ks9QX5P1cowmE2 Q3w0p1+zaaEa/AyY50krwC6mPa6wJYTtKcm1lpeOc6OTHG6KBJoxfcqOU/5pIRTS mCDsy0BkXEOnrlL7fsRHhibNF/csl58LX8LFGF6tNco/FzPtaNcI7TIF0+ildNsd 7VlNugRfE+JZO/RbzWv4W4CwfLm8R2/LYxAp32xfuYgPDsEczxXH8eGdhbwbuRZA 2cX2xwt/jUpoH65WVfVfQuOaSrnBb6NYcZZ/4FUd+UsXlhEw+hzzsQtS+xz/N5jE NHtvqiz7242r9Un9oY7I5CxNwQ== -----END CERTIFICATE-----Generated at Wed Aug 13 08:06:10 2025 by rpki-client