$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft File: mgzAu2MdFRMQI4SQg9lBotvN-mU.mft (raw, json) Hash identifier: m0PpC1pX1Im/PjcpfJhZ2vDrmx2JJkvhUdaXZWdXEMs= Subject key identifier: 4A:4D:F4:81:3E:4B:7F:8C:32:24:F4:1D:66:99:28:16:9D:E4:3A:B1 Authority key identifier: 9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 Certificate issuer: /CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Certificate serial: 0397 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft Manifest number: 0393 Signing time: Tue 04 Nov 2025 03:58:13 +0000 Manifest this update: Tue 04 Nov 2025 03:58:13 +0000 Manifest next update: Thu 06 Nov 2025 03:58:13 +0000 Files and hashes: 1: XPrM1LaVIbQwT7rMMnAaLDmpBhk.roa (hash: qYPJ4Rx3jWotbSaxl5ragkrBL0zTcKpqWVCvoBptGRQ=) 2: mgzAu2MdFRMQI4SQg9lBotvN-mU.crl (hash: 7OdI1/aCbRvEBCc2G6l4RnVqjzRlYNgWNT2lmAg4IsM=) 3: xTExfB0jOCFW_HvSExDO--zZxeQ.roa (hash: wn+mu83zqWZqHj4dYPxNAS1yFnh8c3TSnFKAeF+06b0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 919 (0x397) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9A0CC0BB631D15131023849083D941A2DBCDFA65 Validity Not Before: Nov 4 03:58:13 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=4A4DF4813E4B7F8C3224F41D669928169DE43AB1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:20:59:b7:a6:ee:5f:12:2a:71:4d:a5:03:68: 47:9b:ee:30:cf:46:7a:73:f7:10:93:10:f1:ee:d7: f5:c6:e4:e7:8b:cb:10:07:0b:7f:92:c1:fb:7e:d2: 91:62:a6:10:6d:f9:de:03:ce:88:d1:6a:82:55:5f: 4d:60:a4:12:8e:1f:49:be:05:89:52:d8:f3:10:bb: 4f:4b:92:0a:8d:c1:10:c8:64:b0:5e:e9:01:df:c8: 62:2f:d4:5b:9d:41:fe:e3:2b:36:19:28:f6:e2:ae: 26:a0:52:8c:9e:30:e1:90:7d:5e:68:27:29:91:cc: 6a:d6:5d:34:59:6d:1c:7d:e9:2f:d9:8b:44:2e:4e: c3:50:9b:97:87:66:d4:11:eb:f1:c8:fa:91:af:e7: 06:e5:af:cf:11:c2:03:e2:4c:09:6d:01:0a:cd:12: ee:3e:04:5b:97:46:44:d4:39:93:54:b2:0d:9b:6e: 0d:14:9d:94:26:3f:80:97:74:21:88:1a:ec:bd:13: 5c:a2:a5:26:5e:a5:60:c8:97:3f:6d:d5:46:2d:f0: d8:4a:e4:e2:70:ed:51:8e:e2:67:b8:80:cc:00:bc: 2f:d6:0b:4a:96:37:63:26:a6:4e:b5:c2:83:29:93: e1:ca:d2:44:55:5c:32:03:b3:71:ae:b1:45:67:43: 95:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:4D:F4:81:3E:4B:7F:8C:32:24:F4:1D:66:99:28:16:9D:E4:3A:B1 X509v3 Authority Key Identifier: keyid:9A:0C:C0:BB:63:1D:15:13:10:23:84:90:83:D9:41:A2:DB:CD:FA:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mgzAu2MdFRMQI4SQg9lBotvN-mU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/mgzAu2MdFRMQI4SQg9lBotvN-mU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption aa:48:bd:17:6b:44:50:5f:e3:59:78:a3:7f:e0:7f:ac:ac:b2: 64:ab:ba:02:90:bb:c7:be:79:32:6f:d4:f8:2a:5e:86:2a:37: 16:b5:94:c9:2a:a2:a9:1c:7e:a1:7d:6a:a3:bf:65:bd:63:26: fd:0e:e9:dc:d4:57:a8:39:b8:1a:01:7a:e1:65:50:3f:a9:d2: bd:e9:3d:ee:10:7f:41:c4:e7:05:b1:c8:70:4e:5d:9c:02:f5: 8e:5f:aa:57:c7:17:2d:de:0a:58:1d:ea:d1:51:1d:f5:dc:d1: f9:e3:e1:95:bb:ce:97:30:75:c9:c5:c1:4f:91:63:76:b7:20: 3e:51:1b:90:72:5c:cb:61:9c:5a:54:c8:4c:88:c1:74:01:96: 06:9a:b7:a6:63:42:cd:23:d3:fb:31:93:98:51:86:bc:a5:27: fb:7a:c2:d1:62:70:d1:75:1a:b2:4f:69:1c:5a:dd:03:7f:b6: fb:73:b9:2a:eb:e1:35:3b:a4:41:85:be:a9:b9:20:8d:3d:83: 36:84:b5:1a:7b:4d:1e:5a:60:58:89:da:6b:42:bb:ca:9d:9e: 46:3f:f3:67:32:23:2f:5f:e8:29:d3:b7:5f:4d:0c:0a:82:7c: dd:bc:be:d4:aa:31:82:30:a8:66:75:ef:c6:27:a0:8d:1a:c9: c8:d1:84:0a -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICA5cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUEw Q0MwQkI2MzFEMTUxMzEwMjM4NDkwODNEOTQxQTJEQkNERkE2NTAeFw0yNTExMDQw MzU4MTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDRBNERGNDgxM0U0QjdG OEMzMjI0RjQxRDY2OTkyODE2OURFNDNBQjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDKIFm3pu5fEipxTaUDaEeb7jDPRnpz9xCTEPHu1/XG5OeLyxAH C3+Swft+0pFiphBt+d4DzojRaoJVX01gpBKOH0m+BYlS2PMQu09LkgqNwRDIZLBe 6QHfyGIv1FudQf7jKzYZKPbiriagUoyeMOGQfV5oJymRzGrWXTRZbRx96S/Zi0Qu TsNQm5eHZtQR6/HI+pGv5wblr88RwgPiTAltAQrNEu4+BFuXRkTUOZNUsg2bbg0U nZQmP4CXdCGIGuy9E1yipSZepWDIlz9t1UYt8NhK5OJw7VGO4me4gMwAvC/WC0qW N2Mmpk61woMpk+HK0kRVXDIDs3GusUVnQ5VrAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUSk30gT5Lf4wyJPQdZpkoFp3kOrEwHwYDVR0jBBgwFoAUmgzAu2MdFRMQI4SQ g9lBotvN+mUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1ZS0wv bWd6QXUyTWRGUk1RSTRTUWc5bEJvdHZOLW1VLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9tZ3pBdTJNZEZSTVFJNFNRZzlsQm90dk4tbVUuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTVlLTC9tZ3pBdTJNZEZSTVFJNFNRZzls Qm90dk4tbVUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAqki9 F2tEUF/jWXijf+B/rKyyZKu6ApC7x755Mm/U+Cpehio3FrWUySqiqRx+oX1qo79l vWMm/Q7p3NRXqDm4GgF64WVQP6nSvek97hB/QcTnBbHIcE5dnAL1jl+qV8cXLd4K WB3q0VEd9dzR+ePhlbvOlzB1ycXBT5FjdrcgPlEbkHJcy2GcWlTITIjBdAGWBpq3 pmNCzSPT+zGTmFGGvKUn+3rC0WJw0XUask9pHFrdA3+2+3O5KuvhNTukQYW+qbkg jT2DNoS1GntNHlpgWInaa0K7yp2eRj/zZzIjL1/oKdO3X00MCoJ83by+1KoxgjCo ZnXvxiegjRrJyNGECg== -----END CERTIFICATE-----Generated at Wed Nov 5 15:51:28 2025 by rpki-client