$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft File: IsUSmNl6ECkCcx_cSb36s51Sqys.mft (raw, json) Hash identifier: gIYWCK+W5eo5eurTpvLv/HikPpxjePgLJ7QL6s1HrfA= Subject key identifier: 90:9E:A4:E6:27:3D:85:BE:13:8C:CD:AB:C3:E0:C0:16:F0:39:30:DB Authority key identifier: 22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B Certificate issuer: /CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Certificate serial: 044C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft Manifest number: 0438 Signing time: Tue 04 Nov 2025 10:28:18 +0000 Manifest this update: Tue 04 Nov 2025 10:28:18 +0000 Manifest next update: Thu 06 Nov 2025 10:28:18 +0000 Files and hashes: 1: 0c7mhw6wAI4CpRn1Hkyr3qb_5A8.roa (hash: vvB1FnDct6Ng/cIwpuOjmo9jsB5UGapjKebxfGVwDMM=) 2: 0mcwIl3xugeY7yYklmRRDrXtqUE.roa (hash: 4w4MyvoJOOzT6ryqc4UxEV1YPPBO4mkDDZbpp5saUsk=) 3: 2hDC2uRlzDb2lONQVJNKJYiemRc.roa (hash: PrE2A13rXu1Rw+WqjYL/5mhc+wnL8bhlRTDIgACgB74=) 4: IsUSmNl6ECkCcx_cSb36s51Sqys.crl (hash: 9Dn/bEex+tKMb9du6O/OUR+fNaEV2EKIGICpPu9kv0A=) 5: JH6qYgr3IAtOHKp_ITUCtiVXPbg.roa (hash: t95JaeX8j8so7N/rz1IBxOAXiQjGybTGN016LbMGzTw=) 6: nsVXvlaZC5sjPThoV6_6cGAPe5Y.roa (hash: fclIkSTECSk8GNoe6PnsG3XKY/t9UJJdEsw0zNRyhbk=) 7: wXNpkQmppBLq9rEzWKeNcufQD5c.roa (hash: JzHJvlWAKUiHUSiGJ9aqb6u+Fg27yeo7K0QNZZFGOVE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 11:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1100 (0x44c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=22C51298D97A102902731FDC49BDFAB39D52AB2B Validity Not Before: Nov 4 10:28:18 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=909EA4E6273D85BE138CCDABC3E0C016F03930DB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:a5:d6:62:d8:73:41:fe:f5:98:39:77:cb:58: c3:45:24:7c:ad:91:c7:3e:22:28:90:28:89:bf:76: 1f:28:22:21:fa:e0:5c:d0:f2:2c:28:12:ef:40:44: f8:0e:70:58:7d:9d:99:bc:ac:a4:76:78:8f:d9:9b: d7:99:94:06:7d:e4:01:11:3b:30:3c:88:f0:83:f1: 07:85:55:b3:16:a5:54:32:e4:25:26:2b:f7:44:ef: 57:7f:db:12:b8:60:80:4c:52:6b:ea:b0:4e:55:96: 0f:ca:62:51:71:e4:09:27:7c:39:7e:92:c8:5e:23: 9b:4f:0f:f7:14:08:46:9b:bc:22:30:9e:5f:28:d8: 11:85:a4:fe:94:2d:c0:76:03:f8:08:85:c4:bd:62: a5:92:88:9b:18:f9:d2:5a:dc:e7:ea:67:72:27:1e: c0:fb:12:5a:69:e8:89:84:e7:f6:0a:42:56:be:15: 86:03:7b:48:62:ce:eb:f6:80:d8:8e:ec:4a:7f:b4: c3:c9:12:ab:61:dd:b8:ee:25:a4:83:4a:d0:35:6c: 61:bf:89:21:dd:45:eb:ee:c6:9f:73:4d:94:9b:9f: 18:3d:f7:8a:a9:25:b1:95:c3:88:e3:83:ae:b8:79: 50:2b:79:21:d7:cb:c3:18:3b:8c:ab:d0:2a:cc:4d: 83:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 90:9E:A4:E6:27:3D:85:BE:13:8C:CD:AB:C3:E0:C0:16:F0:39:30:DB X509v3 Authority Key Identifier: keyid:22:C5:12:98:D9:7A:10:29:02:73:1F:DC:49:BD:FA:B3:9D:52:AB:2B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IsUSmNl6ECkCcx_cSb36s51Sqys.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCRS/IsUSmNl6ECkCcx_cSb36s51Sqys.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:25:09:6d:6a:69:e1:93:f5:a6:2e:84:06:fc:e5:60:69:e8: c0:33:82:50:24:0d:9a:cc:bd:d8:67:f3:84:39:e1:37:88:4c: 8c:86:72:2e:2a:8a:31:66:ae:f6:26:36:a6:7d:0e:6e:77:b5: b0:11:23:f6:82:d7:e3:60:f0:1c:b2:e2:e9:66:cf:e4:ce:17: 51:09:34:ef:43:02:e4:51:62:3d:90:9d:4b:e0:73:e0:87:4d: 69:40:bf:77:b9:1c:c6:65:32:aa:7b:35:2a:00:4a:c4:43:63: c2:61:ae:86:b6:32:e3:b5:67:66:69:d2:aa:d7:df:34:ca:01: 4f:58:59:78:c9:34:be:31:f3:03:b1:db:b5:61:2e:1a:75:86: d0:e6:f1:83:4a:fd:49:5b:db:5a:ea:0e:18:bb:c9:e0:fb:0d: 40:56:e4:ac:db:e1:ee:3e:d0:14:16:43:de:f4:be:ec:81:75: b8:35:5f:3b:7f:ef:fe:fa:01:0d:f2:e0:73:27:cf:1f:42:ec: e9:9d:12:97:3e:af:4f:be:fa:b5:53:91:25:a2:13:00:81:7a: 82:ad:72:f8:79:7d:d7:56:40:cf:bb:c7:67:13:fd:79:5e:86: 9d:ff:85:ea:00:f3:6d:36:0d:3d:93:8b:78:ae:75:e6:ba:f9: 45:e8:fe:6e -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICBEwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjJD NTEyOThEOTdBMTAyOTAyNzMxRkRDNDlCREZBQjM5RDUyQUIyQjAeFw0yNTExMDQx MDI4MThaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDkwOUVBNEU2MjczRDg1 QkUxMzhDQ0RBQkMzRTBDMDE2RjAzOTMwREIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCspdZi2HNB/vWYOXfLWMNFJHytkcc+IiiQKIm/dh8oIiH64FzQ 8iwoEu9ARPgOcFh9nZm8rKR2eI/Zm9eZlAZ95AEROzA8iPCD8QeFVbMWpVQy5CUm K/dE71d/2xK4YIBMUmvqsE5Vlg/KYlFx5AknfDl+ksheI5tPD/cUCEabvCIwnl8o 2BGFpP6ULcB2A/gIhcS9YqWSiJsY+dJa3OfqZ3InHsD7Elpp6ImE5/YKQla+FYYD e0hizuv2gNiO7Ep/tMPJEqth3bjuJaSDStA1bGG/iSHdRevuxp9zTZSbnxg994qp JbGVw4jjg664eVAreSHXy8MYO4yr0CrMTYOhAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUkJ6k5ic9hb4TjM2rw+DAFvA5MNswHwYDVR0jBBgwFoAUIsUSmNl6ECkCcx/c Sb36s51SqyswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DUlMv SXNVU21ObDZFQ2tDY3hfY1NiMzZzNTFTcXlzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Jc1VTbU5sNkVDa0NjeF9jU2IzNnM1MVNxeXMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTUNSUy9Jc1VTbU5sNkVDa0NjeF9jU2Iz NnM1MVNxeXMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWSUJ bWpp4ZP1pi6EBvzlYGnowDOCUCQNmsy92GfzhDnhN4hMjIZyLiqKMWau9iY2pn0O bne1sBEj9oLX42DwHLLi6WbP5M4XUQk070MC5FFiPZCdS+Bz4IdNaUC/d7kcxmUy qns1KgBKxENjwmGuhrYy47VnZmnSqtffNMoBT1hZeMk0vjHzA7HbtWEuGnWG0Obx g0r9SVvbWuoOGLvJ4PsNQFbkrNvh7j7QFBZD3vS+7IF1uDVfO3/v/voBDfLgcyfP H0Ls6Z0Slz6vT776tVORJaITAIF6gq1y+Hl911ZAz7vHZxP9eV6Gnf+F6gDzbTYN PZOLeK515rr5Rej+bg== -----END CERTIFICATE-----Generated at Wed Nov 5 10:30:22 2025 by rpki-client