$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft File: 1PDdD0-4AQJdWG75mcXu4C18IFk.mft (raw, json) Hash identifier: EIB5XYEIao6Flcy8BVqufu8YmCqJSQGaXOezxnbeGik= Subject key identifier: 36:66:64:52:32:0A:BA:DC:BA:A3:52:9D:6F:65:14:9C:19:94:8C:EB Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 10C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft Manifest number: 1041 Signing time: Wed 05 Nov 2025 10:29:49 +0000 Manifest this update: Wed 05 Nov 2025 10:29:49 +0000 Manifest next update: Fri 07 Nov 2025 10:29:49 +0000 Files and hashes: 1: 0WRaL5_FL0gREwobExy15IkSfjA.roa (hash: n65rFFtHkeOKbRbhFbsz1Sk1noQJHr7pgfMgN+cU/rk=) 2: 1PDdD0-4AQJdWG75mcXu4C18IFk.crl (hash: tH8UkdNJbn0ocSl/0Wba/st3K8ZRwCn+V5fRxBlwBjY=) 3: 1jFpDd7FByPDlxi0v_Ye1XbccM0.roa (hash: bX2rPkkl4cDArjbEYpul9oKgoBim6XcI0EM/d1T+m6g=) 4: 8k4zt9X75sdh9In_XuIC82OWo60.roa (hash: KtYJIyyKIP2ktitfxIibaxrlLK7W6Tk8qDZtemfO1cQ=) 5: DzkoBlao-oVj2bWXVEkN_8OapUI.roa (hash: bhN7kmPGBcdSR0I5FOSNDkTsOluKIN26NLrZzakfKC0=) 6: EL2WUu51Cpa2oHHntqxjhLYtaIU.roa (hash: 54aMr+QHa8bJ/gG4iZIiTF+sV6Q4vXRoy1ggNK+CR2k=) 7: Fg2blGCLPGT2sXYpGmQ0_XlU_y0.roa (hash: ILW8pVIdBCYN/Uxl0hWLWnXhsaSTQrt7JNTRVIynH0Y=) 8: HUa4sb_EelFLN_3kCMr8Ck2qrpQ.roa (hash: GZOiQH8JNnEvuUYCkmePFQXlEyLDaT6cJ5U70187DD8=) 9: J8jYdpuZmu7g-aExTjRS-H9_27o.roa (hash: 3Y1myIgZSkwi3mgspkEgZC3IS/wYma4N5MlzmKkGoGY=) 10: WpeYrOZGp-e43klrVKAC_ZgaMoE.roa (hash: 7pRNDAN8ksiqJu+SUl4zL0Yc6OuTm/bf18WPldPMaK8=) 11: ZH0eUG-WO8sOtJ_vbEo_RxHW0Ck.roa (hash: z8gLBb/4pn2mXS2IkEQAmbOdzPc3uyL2Qmrbt1B+XTI=) 12: c5T9FONk2kLvjD5v6En2a3SVkRE.roa (hash: aVb9IwSS74n6tVO7RufPji8gr7GooYp0eUZHxAtjJ2U=) 13: fR5NBPPnsDfJ3Z8PJWMCit2bpus.roa (hash: ZQKIG3DEyi25at8K+4pswQDmQetrvuRV6Ag1ndsbTws=) 14: i4FIaLZLUt8RBiWa5_651zVlU98.roa (hash: g6y3tsltvIR6+TX0LHurwfpYpXrR99UGSKWkl8LV/9k=) 15: n1wU49JlmCtERJNjFTWrwI3SnX4.roa (hash: Tn5EYtlR1jRydHa0x9uEoUzDLPD1I1B2JQAQa/PRxLQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4291 (0x10c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Nov 5 10:29:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=36666452320ABADCBAA3529D6F65149C19948CEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:3f:e0:8a:04:50:cd:e1:bd:8f:d1:d2:18: a7:fa:59:dc:58:40:b0:51:8e:7c:c4:b9:db:b4:75: 20:9f:0b:49:4e:ba:d6:9c:77:37:78:c6:19:f8:50: 87:2d:2c:10:c3:b1:5e:29:b4:b5:b6:3d:c6:a1:f1: e3:56:05:b7:ef:d3:b2:a3:dd:c0:db:27:86:74:dd: 5b:ad:28:4a:20:75:87:63:29:28:1a:42:ee:15:b0: 44:9c:11:e3:b6:43:6b:ec:56:c5:36:d5:5a:a8:56: 5b:64:e1:2f:b9:fe:13:75:ee:5a:5b:21:86:1c:21: d4:65:cd:c4:43:ed:80:e4:88:1c:ce:1f:80:7c:29: e3:fd:9b:a1:1a:f2:95:b9:8d:ba:31:c2:24:0e:da: f2:4d:d3:51:15:cd:bc:c0:3a:89:0d:10:2f:32:86: 46:e1:1e:6f:30:96:90:f8:52:63:1e:8e:6b:b3:e0: fd:61:d3:70:30:d6:5c:d7:99:57:eb:9f:34:bf:54: 02:af:ff:b5:ff:52:ff:d9:f7:d7:02:5b:31:b2:ea: 66:61:6c:fb:90:5e:55:4e:43:0b:dd:8c:d9:aa:77: 55:16:f5:7e:a8:8a:bf:6d:dd:52:db:77:e8:1a:1e: 75:31:2a:57:a9:da:6d:c7:4f:09:28:09:35:46:40: d5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:66:64:52:32:0A:BA:DC:BA:A3:52:9D:6F:65:14:9C:19:94:8C:EB X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:e9:c2:e0:9c:76:7b:d3:2e:29:9b:f9:85:d8:b8:be:99:cb: a3:7d:18:8b:64:4d:df:0f:2d:e4:b8:1b:fc:e3:4a:4c:25:1e: 34:3c:18:c2:21:8b:f5:a4:8c:8a:c0:f7:eb:9a:7d:0b:d7:af: d3:c6:db:7c:8a:6e:36:b9:7e:5c:de:1e:cd:92:39:1a:e1:1a: 46:20:e2:49:1b:18:16:f3:f3:62:c1:fe:9e:2a:50:eb:52:41: c4:f8:57:95:ba:7a:05:a6:f8:55:b3:4e:c3:93:0f:ee:dd:e9: 0b:19:f1:ef:87:a6:d7:cb:55:3b:6d:99:37:2f:28:67:cd:2e: 90:9d:23:ec:e8:37:35:63:f1:2d:24:b6:c5:cb:83:05:66:38: ed:af:8f:e7:2d:53:3b:25:07:9f:e0:20:dc:7b:5c:c9:23:6a: f4:f9:09:5a:42:78:3b:9c:84:ab:85:30:29:20:39:26:50:9d: d9:0b:e6:74:90:a8:cb:a8:59:94:2b:92:7f:88:44:b9:ae:57: 16:63:d1:61:51:54:bf:cc:56:7c:96:0a:46:87:c3:29:fb:6a: 58:09:8b:ab:66:33:2e:7d:e2:6e:5d:22:55:e0:82:18:3d:04: 9a:18:55:0f:7a:79:67:d8:45:5b:14:4e:7d:97:fa:46:51:99: f8:06:a3:a8 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICEMMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNTExMDUx MDI5NDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2NjY2NDUyMzIwQUJB RENCQUEzNTI5RDZGNjUxNDlDMTk5NDhDRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDItz/gigRQzeG9j9HSGKf6WdxYQLBRjnzEudu0dSCfC0lOutac dzd4xhn4UIctLBDDsV4ptLW2Pcah8eNWBbfv07Kj3cDbJ4Z03VutKEogdYdjKSga Qu4VsEScEeO2Q2vsVsU21VqoVltk4S+5/hN17lpbIYYcIdRlzcRD7YDkiBzOH4B8 KeP9m6Ea8pW5jboxwiQO2vJN01EVzbzAOokNEC8yhkbhHm8wlpD4UmMejmuz4P1h 03Aw1lzXmVfrnzS/VAKv/7X/Uv/Z99cCWzGy6mZhbPuQXlVOQwvdjNmqd1UW9X6o ir9t3VLbd+gaHnUxKlep2m3HTwkoCTVGQNVzAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUNmZkUjIKuty6o1Kdb2UUnBmUjOswHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQRGREMC00QVFKZFdHNzVtY1h1NEMx OElGay5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQA36cLgnHZ7 0y4pm/mF2Li+mcujfRiLZE3fDy3kuBv840pMJR40PBjCIYv1pIyKwPfrmn0L16/T xtt8im42uX5c3h7Nkjka4RpGIOJJGxgW8/Niwf6eKlDrUkHE+FeVunoFpvhVs07D kw/u3ekLGfHvh6bXy1U7bZk3LyhnzS6QnSPs6Dc1Y/EtJLbFy4MFZjjtr4/nLVM7 JQef4CDce1zJI2r0+QlaQng7nISrhTApIDkmUJ3ZC+Z0kKjLqFmUK5J/iES5rlcW Y9FhUVS/zFZ8lgpGh8Mp+2pYCYurZjMufeJuXSJV4IIYPQSaGFUPenln2EVbFE59 l/pGUZn4BqOo -----END CERTIFICATE-----Generated at Wed Nov 5 13:53:58 2025 by rpki-client