$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft File: Z3gr2kgldGOtzabXLy7kG1_ZShE.mft (raw, json) Hash identifier: VQGxon3Zp5MERjBZRLyJCa+6oRKl5iviqmwbAnRDUsY= Subject key identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 Authority key identifier: 67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 Certificate issuer: /CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Certificate serial: 1023 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft Manifest number: 100C Signing time: Wed 05 Nov 2025 10:00:55 +0000 Manifest this update: Wed 05 Nov 2025 10:00:55 +0000 Manifest next update: Fri 07 Nov 2025 10:00:55 +0000 Files and hashes: 1: 1kRYpZuKM6z78NbnhHv79fJRmBI.roa (hash: 9taA7wtcMFAaeCJDfa+2OmXrTuwrPed79pzeqLGoU3o=) 2: Z3gr2kgldGOtzabXLy7kG1_ZShE.crl (hash: 92SjK30eTi83bsXW2iZaQDepQAR1CniuDapOaPw+zls=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4131 (0x1023) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Validity Not Before: Nov 5 10:00:55 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1E0E70F63546DF8BC7C14185082C052D16A84AC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:1f:19:fd:a1:a0:86:7a:d0:8f:91:43:cd: 92:06:58:14:7b:3c:94:a0:fa:89:07:a3:1a:b0:d0: 77:e4:d0:30:88:d9:18:04:e3:6e:98:ef:b6:a5:6d: 37:86:70:7d:a7:b3:a3:af:aa:af:b3:c8:64:65:4b: 6f:ff:01:33:c9:19:29:ec:68:ea:da:e7:6e:4e:63: bc:ea:c3:f7:6b:ef:55:9e:06:02:00:94:3f:27:5f: 6c:7e:82:c5:36:5a:77:6c:35:12:bc:bf:aa:3d:99: fa:00:ab:c1:be:4b:4f:5f:31:38:c7:6d:0e:01:5d: 2e:aa:cd:47:49:83:4e:6e:40:82:21:f5:f9:70:3e: 97:b5:e1:89:3c:ba:be:4f:94:b3:5d:3a:0d:05:61: 80:67:5e:f2:31:91:5d:eb:8a:79:23:cf:36:ec:5e: 7b:dd:96:f5:3d:8d:85:1a:32:9d:76:48:42:33:74: 54:38:b2:31:d0:b4:5b:df:f1:c2:86:18:7c:55:20: ff:00:cf:9e:58:39:a0:fd:3c:c2:0f:06:26:a7:2c: f3:e1:be:58:c3:30:34:21:c4:63:9e:f9:84:0f:7b: 9b:b2:39:7f:4b:11:ba:48:b6:96:6d:79:69:ba:df: 15:46:48:b1:75:00:86:47:f9:e7:66:f2:02:ce:d2: 32:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 X509v3 Authority Key Identifier: keyid:67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 34:95:1b:57:9d:d2:4b:22:7e:9e:c1:ba:78:bc:57:24:f6:97: 18:19:df:ae:1c:e9:05:5d:bd:56:fe:d0:3f:5b:41:50:bb:f9: 70:cb:07:a6:f8:22:25:35:8c:50:8b:eb:c4:49:6e:46:35:e5: 4a:32:46:4a:d7:43:c6:f3:d4:51:3b:06:6c:91:18:a7:ff:3d: eb:d4:ca:73:bf:41:95:5d:f1:99:d6:b0:e1:ce:ef:13:af:3b: 28:5b:3d:3d:8c:9c:f5:88:82:aa:43:f9:df:96:fb:19:bc:85: 03:fb:52:4d:c2:72:f2:55:ae:1d:58:c9:73:fb:c4:15:ec:39: a5:aa:0f:88:6d:45:23:62:30:67:ea:34:5a:b6:60:e5:6c:e1: ed:97:d3:ab:70:77:a5:a3:6b:5e:cc:b8:0e:72:b8:c0:f8:90: a8:a9:7b:56:f5:f1:75:d3:2a:11:e8:15:b4:5f:a7:ae:fd:e6: 6a:03:ea:64:b3:e6:ae:c8:35:b9:4e:1a:7d:0c:74:66:69:83: 75:95:f2:4e:38:83:49:a9:70:19:04:9a:50:5f:3f:c6:ac:8f: ab:48:8c:e4:44:b1:c6:8a:a9:c8:b2:db:90:80:6e:b6:6e:f7: a7:a5:2e:55:b7:70:5b:4d:9d:ce:31:5b:f8:c0:6c:3b:e5:75: 3e:1b:3b:8b -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICECMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjc3 ODJCREE0ODI1NzQ2M0FEQ0RBNkQ3MkYyRUU0MUI1RkQ5NEExMTAeFw0yNTExMDUx MDAwNTVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFMEU3MEY2MzU0NkRG OEJDN0MxNDE4NTA4MkMwNTJEMTZBODRBQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+HB8Z/aGghnrQj5FDzZIGWBR7PJSg+okHoxqw0Hfk0DCI2RgE 426Y77albTeGcH2ns6Ovqq+zyGRlS2//ATPJGSnsaOra525OY7zqw/dr71WeBgIA lD8nX2x+gsU2WndsNRK8v6o9mfoAq8G+S09fMTjHbQ4BXS6qzUdJg05uQIIh9flw Ppe14Yk8ur5PlLNdOg0FYYBnXvIxkV3rinkjzzbsXnvdlvU9jYUaMp12SEIzdFQ4 sjHQtFvf8cKGGHxVIP8Az55YOaD9PMIPBianLPPhvljDMDQhxGOe+YQPe5uyOX9L EbpItpZteWm63xVGSLF1AIZH+edm8gLO0jKdAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUHg5w9jVG34vHwUGFCCwFLRaoSsQwHwYDVR0jBBgwFoAUZ3gr2kgldGOtzabX Ly7kG1/ZShEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DTE9V RC9aM2dyMmtnbGRHT3R6YWJYTHk3a0cxX1pTaEUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ozZ3Iya2dsZEdPdHphYlhMeTdrRzFfWlNoRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lNQ0xPVUQvWjNncjJrZ2xkR090emFi WEx5N2tHMV9aU2hFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB ADSVG1ed0ksifp7Buni8VyT2lxgZ364c6QVdvVb+0D9bQVC7+XDLB6b4IiU1jFCL 68RJbkY15UoyRkrXQ8bz1FE7BmyRGKf/PevUynO/QZVd8ZnWsOHO7xOvOyhbPT2M nPWIgqpD+d+W+xm8hQP7Uk3CcvJVrh1YyXP7xBXsOaWqD4htRSNiMGfqNFq2YOVs 4e2X06twd6Wja17MuA5yuMD4kKipe1b18XXTKhHoFbRfp6795moD6mSz5q7INblO Gn0MdGZpg3WV8k44g0mpcBkEmlBfP8asj6tIjOREscaKqciy25CAbrZu96elLlW3 cFtNnc4xW/jAbDvldT4bO4s= -----END CERTIFICATE-----Generated at Wed Nov 5 17:16:28 2025 by rpki-client