$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft File: U0x2J0ozCwce_SDbBfbQQpKTdD4.mft (raw, json) Hash identifier: omVL+7f1z2rmb2hLrx2n2l5ing28TE3OgGZFToRaxiw= Subject key identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF Authority key identifier: 53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E Certificate issuer: /CN=534C76274A330B071EFD20DB05F6D0429293743E Certificate serial: 0EDD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft Manifest number: 0ECD Signing time: Wed 05 Nov 2025 01:29:44 +0000 Manifest this update: Wed 05 Nov 2025 01:29:43 +0000 Manifest next update: Fri 07 Nov 2025 01:29:43 +0000 Files and hashes: 1: U0x2J0ozCwce_SDbBfbQQpKTdD4.crl (hash: hpUaSUWhmk8BMbrDV9IKvksdd9LBqRfoZGLfWaL8s0Q=) 2: VFXOUuf4mlxJS55YH8SI-orePSE.roa (hash: 86qxM5RGWAoIZdvnZByzYCseR1C45L3gZiH/lc14oTY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 05:59:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3805 (0xedd) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=534C76274A330B071EFD20DB05F6D0429293743E Validity Not Before: Nov 5 01:29:43 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8EFA600085AD19FB92E7AF72869E083CBA7A5FCF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:f6:aa:2a:b2:ec:54:31:bd:a6:fa:09:34:aa: 1d:69:f4:07:21:8d:ef:e6:1f:66:30:7a:b8:98:09: 97:99:53:36:e2:cd:b2:79:d6:06:55:6c:60:b7:c5: 74:c8:41:52:f6:42:2b:66:d4:21:a0:50:c6:92:49: 53:5b:ee:43:71:52:fa:bc:d6:4c:c0:3f:86:e2:73: ad:8d:a1:00:37:ee:a4:19:b2:08:d0:a3:2c:80:24: 79:d2:1b:e4:ba:6e:17:8e:72:fc:c8:27:22:39:76: 24:33:44:0c:00:42:b5:6b:6c:a6:cf:e7:58:e1:a3: dc:5b:98:f6:61:65:d2:b4:ea:b4:46:40:35:26:0b: dd:f0:7e:cc:d1:c4:e2:bd:72:a4:fd:a3:78:72:06: ec:65:ed:5d:4b:e1:c9:dc:20:14:5e:8a:ce:32:7d: ed:8b:18:49:c3:37:a2:f9:56:b8:d1:05:3d:c0:e1: f5:9d:c7:8c:44:54:e0:79:12:3e:21:2c:b3:2b:ac: 67:c4:f1:87:80:ae:8b:b8:25:84:28:35:f5:a3:e6: e9:62:1d:40:e6:11:89:cd:fb:e9:e7:c7:1c:bd:2a: 8b:7d:24:b0:97:94:25:ee:ea:de:9d:f6:b1:36:27: e4:c3:03:a2:50:8e:bb:87:86:a1:a4:53:cf:7c:81: af:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:FA:60:00:85:AD:19:FB:92:E7:AF:72:86:9E:08:3C:BA:7A:5F:CF X509v3 Authority Key Identifier: keyid:53:4C:76:27:4A:33:0B:07:1E:FD:20:DB:05:F6:D0:42:92:93:74:3E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/U0x2J0ozCwce_SDbBfbQQpKTdD4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HINET/U0x2J0ozCwce_SDbBfbQQpKTdD4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption dc:d2:b1:0c:e4:0c:7a:94:63:42:f0:3c:fb:e6:82:ef:73:4f: b6:77:49:66:f8:c1:ab:3a:f8:9a:aa:d6:21:86:4b:7c:7c:72: b5:12:ea:f1:bf:6d:8a:b2:9a:8f:8d:d5:12:65:cc:fb:89:24: b2:0a:b5:97:b6:06:c2:ef:fe:53:52:1a:bc:30:90:74:c4:ef: 11:c4:a8:cd:dd:c0:1c:ae:ba:ef:1f:f3:cb:67:76:20:6a:00: bc:56:0c:60:88:a1:92:75:d0:cf:b2:ce:f0:ce:42:ae:fb:cf: 49:a6:9b:c4:7b:d5:4f:dd:56:e3:85:b2:2a:dc:b9:c7:58:16: 74:df:ba:b6:c3:68:20:f4:43:e8:9d:78:76:10:97:e8:ea:1c: 9c:63:56:11:b9:a4:f1:b7:d1:68:67:90:e9:5c:ab:a5:fe:08: f6:11:99:87:43:aa:04:81:3a:74:75:1f:e7:fb:8f:d7:0f:f3: 6a:e4:8c:d3:be:a6:11:77:bd:98:5a:3b:6a:29:3e:c0:6a:a0: 56:c4:c1:65:e0:3b:ce:b2:bd:b5:3e:00:5e:dd:b9:0f:dd:97: 6b:4f:1b:89:a8:9c:1a:32:7c:ba:bb:b8:7e:7c:3a:c6:d2:a6: a3:2f:9e:d5:03:30:c2:ae:ed:0d:55:2b:c0:f0:a4:62:e2:15: ae:00:de:37 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDt0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTM0 Qzc2Mjc0QTMzMEIwNzFFRkQyMERCMDVGNkQwNDI5MjkzNzQzRTAeFw0yNTExMDUw MTI5NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhFRkE2MDAwODVBRDE5 RkI5MkU3QUY3Mjg2OUUwODNDQkE3QTVGQ0YwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDc9qoqsuxUMb2m+gk0qh1p9Achje/mH2YweriYCZeZUzbizbJ5 1gZVbGC3xXTIQVL2Qitm1CGgUMaSSVNb7kNxUvq81kzAP4bic62NoQA37qQZsgjQ oyyAJHnSG+S6bheOcvzIJyI5diQzRAwAQrVrbKbP51jho9xbmPZhZdK06rRGQDUm C93wfszRxOK9cqT9o3hyBuxl7V1L4cncIBReis4yfe2LGEnDN6L5VrjRBT3A4fWd x4xEVOB5Ej4hLLMrrGfE8YeArou4JYQoNfWj5uliHUDmEYnN++nnxxy9Kot9JLCX lCXu6t6d9rE2J+TDA6JQjruHhqGkU898ga/lAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUjvpgAIWtGfuS569yhp4IPLp6X88wHwYDVR0jBBgwFoAUU0x2J0ozCwce/SDb BfbQQpKTdD4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSElORVQv VTB4Mkowb3pDd2NlX1NEYkJmYlFRcEtUZEQ0LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VMHgySjBvekN3Y2VfU0RiQmZiUVFwS1RkRDQuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ISU5FVC9VMHgySjBvekN3Y2VfU0RiQmZi UVFwS1RkRDQubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA3NKx DOQMepRjQvA8++aC73NPtndJZvjBqzr4mqrWIYZLfHxytRLq8b9tirKaj43VEmXM +4kksgq1l7YGwu/+U1IavDCQdMTvEcSozd3AHK667x/zy2d2IGoAvFYMYIihknXQ z7LO8M5CrvvPSaabxHvVT91W44WyKty5x1gWdN+6tsNoIPRD6J14dhCX6OocnGNW Ebmk8bfRaGeQ6Vyrpf4I9hGZh0OqBIE6dHUf5/uP1w/zauSM076mEXe9mFo7aik+ wGqgVsTBZeA7zrK9tT4AXt25D92Xa08biaicGjJ8uru4fnw6xtKmoy+e1QMwwq7t DVUrwPCkYuIVrgDeNw== -----END CERTIFICATE-----Generated at Thu Nov 6 02:15:43 2025 by rpki-client