$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft File: Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft (raw, json) Hash identifier: XP49S/VBgYKFAdvzFn26/1Am7fP21xCIZRpOqeyF48o= Subject key identifier: 7E:05:F3:B7:9D:C4:FB:26:D9:7F:93:AE:0E:D8:3A:D0:C6:ED:6F:CD Authority key identifier: 62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 Certificate issuer: /CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Certificate serial: 02A7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft Manifest number: 028C Signing time: Wed 05 Nov 2025 10:29:22 +0000 Manifest this update: Wed 05 Nov 2025 10:29:22 +0000 Manifest next update: Fri 07 Nov 2025 10:29:22 +0000 Files and hashes: 1: MGobDFg7QJxndLJaXE_-6EOvDwo.roa (hash: gulUp6Fo8TOp7Toeokeo+lWHrEcerIyoeH4VEkbpgIE=) 2: TeAmuCQOVIus3KCmeylABMfK400.roa (hash: VWp/dpmoWJ3G11SL13TKhC7kaE/D+oEN1p+a5BTE5Z8=) 3: Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl (hash: yN+TEibByTCAKunSBja4WeT6ltIM9URoKGaCxyrTA+0=) 4: mKGQlYhMDPyeNvtsofe0doy_PME.roa (hash: XDckfBhjRQglpuKL6wd4hTFj2yF/L+Wj0Wlr6P5OAzE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 679 (0x2a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Validity Not Before: Nov 5 10:29:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=7E05F3B79DC4FB26D97F93AE0ED83AD0C6ED6FCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:04:6f:7d:4c:d5:ab:35:eb:5c:6f:b2:6e:ae: 99:99:39:ad:76:b7:c8:aa:5d:e1:0f:0c:11:e4:da: 45:9d:db:f9:d3:c3:fc:05:21:d6:74:52:57:93:44: 54:30:37:b8:63:62:90:b4:15:88:82:ae:9d:4c:12: 52:09:66:7d:56:4e:bc:eb:78:85:b9:12:59:32:27: 65:08:14:0b:2a:95:69:59:e3:5a:e7:c3:8b:40:b9: 59:53:af:24:ca:2f:4f:2a:93:ae:1f:4e:89:70:57: bc:e1:99:90:9c:e4:7a:e5:a4:1b:37:28:bb:43:1d: e4:5c:e2:7f:3b:dc:65:cd:79:cb:44:c0:64:59:43: 88:bb:94:25:91:c6:5e:29:45:40:cd:11:d8:39:56: f7:a8:fd:f0:94:9d:0c:3c:1f:f8:70:29:4b:57:80: 4a:76:5f:63:fc:8f:66:e2:4a:72:e7:20:0c:8d:d0: dd:b5:23:9e:f4:04:1a:cd:6a:2c:73:d7:6f:70:b8: 1c:0d:8b:0b:60:d0:f5:bd:c5:7e:6b:1e:48:ce:c7: ff:76:66:83:8d:9b:3c:a2:ca:dc:64:cd:97:52:1f: ba:f0:90:27:33:c6:4c:bd:5c:97:90:8e:83:94:a6: 6e:6e:30:6d:ef:df:e2:e7:5f:ef:16:fb:85:98:18: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:05:F3:B7:9D:C4:FB:26:D9:7F:93:AE:0E:D8:3A:D0:C6:ED:6F:CD X509v3 Authority Key Identifier: keyid:62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:db:45:9d:c5:7c:85:64:05:0c:8a:bf:8e:ec:b3:48:1d:6e: ef:14:42:f2:6a:97:94:cd:18:0c:ea:5e:ec:12:99:05:03:e2: ce:5f:2d:bb:e5:db:99:55:f6:f6:c0:09:2b:fe:b4:77:7b:f9: 3b:2c:d8:41:9d:1c:14:a9:4b:1e:b6:fa:ce:18:65:7f:c7:24: 19:36:aa:5d:74:51:2b:60:fc:8b:19:f5:60:04:d2:8f:96:6c: 70:ba:5f:e1:cc:4c:fa:bf:c4:32:1c:92:f7:54:28:7c:29:05: ca:94:ec:4b:7f:1c:cb:e3:71:7f:11:bc:62:34:d5:51:20:3d: db:b8:3f:9d:8a:d1:ab:d2:89:35:bd:2e:a5:dd:6a:08:b0:5a: e1:f4:2d:be:f2:76:8c:02:d7:07:65:fe:c0:c1:99:71:05:2c: 2b:47:a8:c7:d9:87:8f:bf:d7:f8:31:a7:08:ad:db:e9:69:4f: b2:fa:22:5b:3f:af:fb:08:cf:13:70:3e:15:ab:21:d7:15:a2: 73:68:51:ba:ec:87:7a:a5:ea:1d:b4:ee:0f:ff:ea:e3:23:2c: f7:12:b3:9d:c6:09:1e:32:e8:ea:a1:05:8d:86:16:94:9a:e9: 81:94:da:40:85:de:c0:ce:f1:49:e9:7b:68:79:8d:c7:a8:8a: 7b:0c:24:04 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAqcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjI3 RDY3NUZGNUUyQzhCQTkwRjRCNjU1QjEwOEI2OTI1REFGMTU5NTAeFw0yNTExMDUx MDI5MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDdFMDVGM0I3OURDNEZC MjZEOTdGOTNBRTBFRDgzQUQwQzZFRDZGQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEBG99TNWrNetcb7JurpmZOa12t8iqXeEPDBHk2kWd2/nTw/wF IdZ0UleTRFQwN7hjYpC0FYiCrp1MElIJZn1WTrzreIW5ElkyJ2UIFAsqlWlZ41rn w4tAuVlTryTKL08qk64fTolwV7zhmZCc5HrlpBs3KLtDHeRc4n873GXNectEwGRZ Q4i7lCWRxl4pRUDNEdg5Vveo/fCUnQw8H/hwKUtXgEp2X2P8j2biSnLnIAyN0N21 I570BBrNaixz129wuBwNiwtg0PW9xX5rHkjOx/92ZoONmzyiytxkzZdSH7rwkCcz xky9XJeQjoOUpm5uMG3v3+LnX+8W+4WYGANbAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUfgXzt53E+ybZf5OuDtg60Mbtb80wHwYDVR0jBBgwFoAUYn1nX/XiyLqQ9LZV sQi2kl2vFZUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL1lu MW5YX1hpeUxxUTlMWlZzUWkya2wydkZaVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev WW4xblhfWGl5THFROUxaVnNRaTJrbDJ2RlpVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL1luMW5YX1hpeUxxUTlMWlZzUWkya2wy dkZaVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCz20WdxXyF ZAUMir+O7LNIHW7vFELyapeUzRgM6l7sEpkFA+LOXy275duZVfb2wAkr/rR3e/k7 LNhBnRwUqUsetvrOGGV/xyQZNqpddFErYPyLGfVgBNKPlmxwul/hzEz6v8QyHJL3 VCh8KQXKlOxLfxzL43F/EbxiNNVRID3buD+ditGr0ok1vS6l3WoIsFrh9C2+8naM AtcHZf7AwZlxBSwrR6jH2YePv9f4MacIrdvpaU+y+iJbP6/7CM8TcD4VqyHXFaJz aFG67Id6peodtO4P/+rjIyz3ErOdxgkeMujqoQWNhhaUmumBlNpAhd7AzvFJ6Xto eY3HqIp7DCQE -----END CERTIFICATE-----Generated at Wed Nov 5 12:08:06 2025 by rpki-client