$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft File: Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft (raw, json) Hash identifier: CuDHrS34PgDngc5dd3k4W20iY9csb66khTCF91/5YGk= Subject key identifier: 7E:05:F3:B7:9D:C4:FB:26:D9:7F:93:AE:0E:D8:3A:D0:C6:ED:6F:CD Authority key identifier: 62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 Certificate issuer: /CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Certificate serial: 0269 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft Manifest number: 0251 Signing time: Sat 09 Aug 2025 22:11:54 +0000 Manifest this update: Sat 09 Aug 2025 22:11:54 +0000 Manifest next update: Mon 11 Aug 2025 22:11:54 +0000 Files and hashes: 1: 0Rck18Sn5SS8SfyvJLkkZlZ1ASA.roa (hash: BFUUdTK/ExzNrZ0gWJD6fh1807QOfq333o+RUVRfbtk=) 2: Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl (hash: MWMz7zGK6qD/rCnRPNxCXGM0cyO+RAIbeXQujvNy0rQ=) 3: c4LoAVmfNvmmHmA5v26pvti8j0Y.roa (hash: F3QCsAdSCr76uq3OirACN7UfXUUV4dvPsA+GMj9iouk=) 4: wpX6wsavNL7YONNZwWtAT8-rF-o.roa (hash: 1TUgAazdDTIvfIn9ZyxuxyOSZgD0MUQEFLj1S7+g9QY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 617 (0x269) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=627D675FF5E2C8BA90F4B655B108B6925DAF1595 Validity Not Before: Aug 9 22:11:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=7E05F3B79DC4FB26D97F93AE0ED83AD0C6ED6FCD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:04:6f:7d:4c:d5:ab:35:eb:5c:6f:b2:6e:ae: 99:99:39:ad:76:b7:c8:aa:5d:e1:0f:0c:11:e4:da: 45:9d:db:f9:d3:c3:fc:05:21:d6:74:52:57:93:44: 54:30:37:b8:63:62:90:b4:15:88:82:ae:9d:4c:12: 52:09:66:7d:56:4e:bc:eb:78:85:b9:12:59:32:27: 65:08:14:0b:2a:95:69:59:e3:5a:e7:c3:8b:40:b9: 59:53:af:24:ca:2f:4f:2a:93:ae:1f:4e:89:70:57: bc:e1:99:90:9c:e4:7a:e5:a4:1b:37:28:bb:43:1d: e4:5c:e2:7f:3b:dc:65:cd:79:cb:44:c0:64:59:43: 88:bb:94:25:91:c6:5e:29:45:40:cd:11:d8:39:56: f7:a8:fd:f0:94:9d:0c:3c:1f:f8:70:29:4b:57:80: 4a:76:5f:63:fc:8f:66:e2:4a:72:e7:20:0c:8d:d0: dd:b5:23:9e:f4:04:1a:cd:6a:2c:73:d7:6f:70:b8: 1c:0d:8b:0b:60:d0:f5:bd:c5:7e:6b:1e:48:ce:c7: ff:76:66:83:8d:9b:3c:a2:ca:dc:64:cd:97:52:1f: ba:f0:90:27:33:c6:4c:bd:5c:97:90:8e:83:94:a6: 6e:6e:30:6d:ef:df:e2:e7:5f:ef:16:fb:85:98:18: 03:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7E:05:F3:B7:9D:C4:FB:26:D9:7F:93:AE:0E:D8:3A:D0:C6:ED:6F:CD X509v3 Authority Key Identifier: keyid:62:7D:67:5F:F5:E2:C8:BA:90:F4:B6:55:B1:08:B6:92:5D:AF:15:95 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JFT/Yn1nX_XiyLqQ9LZVsQi2kl2vFZU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 86:c9:d4:be:62:aa:f7:9c:fe:ed:04:6d:e5:61:db:b2:0a:e3: 3d:1e:de:bc:fd:88:7c:de:ec:f9:70:8f:86:92:74:09:37:30: 2d:84:32:54:14:4b:7c:32:7e:dd:f2:47:d1:88:a7:49:fa:f4: 32:62:cd:59:aa:65:da:7e:1a:bd:60:ca:62:a0:2a:56:d3:cc: d4:45:36:c0:25:b0:4d:5d:9e:20:09:db:3d:f6:3f:d8:79:9d: 18:0b:a8:2a:dc:38:3f:e2:a2:6d:d8:7c:be:05:b5:8f:34:6c: b8:43:04:f1:f7:30:42:ca:58:ac:0b:12:c8:4c:4b:4c:fa:c1: 1b:df:1d:e5:9b:43:11:d0:61:35:c3:2b:58:0f:a4:c0:1f:5a: 0c:82:ca:35:55:89:c8:c7:77:d4:96:10:ec:cd:4e:6a:1b:07: 9c:5f:d7:c9:42:e0:ad:8b:d5:aa:c6:58:95:6b:32:aa:70:f9: ef:db:ff:ae:02:c8:57:5c:f2:57:ea:3c:94:67:28:67:c6:c6: 89:a6:b7:04:8a:60:bd:03:f9:d7:ce:51:01:a1:45:73:43:73: d3:36:e8:6d:ba:6d:fe:14:ac:17:c2:e8:93:a6:f7:96:7b:3b: 98:ad:98:06:b0:65:6c:13:9f:7e:e4:49:c0:d6:99:fe:04:60: 93:16:5a:19 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAmkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjI3 RDY3NUZGNUUyQzhCQTkwRjRCNjU1QjEwOEI2OTI1REFGMTU5NTAeFw0yNTA4MDky MjExNTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDdFMDVGM0I3OURDNEZC MjZEOTdGOTNBRTBFRDgzQUQwQzZFRDZGQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEBG99TNWrNetcb7JurpmZOa12t8iqXeEPDBHk2kWd2/nTw/wF IdZ0UleTRFQwN7hjYpC0FYiCrp1MElIJZn1WTrzreIW5ElkyJ2UIFAsqlWlZ41rn w4tAuVlTryTKL08qk64fTolwV7zhmZCc5HrlpBs3KLtDHeRc4n873GXNectEwGRZ Q4i7lCWRxl4pRUDNEdg5Vveo/fCUnQw8H/hwKUtXgEp2X2P8j2biSnLnIAyN0N21 I570BBrNaixz129wuBwNiwtg0PW9xX5rHkjOx/92ZoONmzyiytxkzZdSH7rwkCcz xky9XJeQjoOUpm5uMG3v3+LnX+8W+4WYGANbAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUfgXzt53E+ybZf5OuDtg60Mbtb80wHwYDVR0jBBgwFoAUYn1nX/XiyLqQ9LZV sQi2kl2vFZUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL1lu MW5YX1hpeUxxUTlMWlZzUWkya2wydkZaVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev WW4xblhfWGl5THFROUxaVnNRaTJrbDJ2RlpVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkZUL1luMW5YX1hpeUxxUTlMWlZzUWkya2wy dkZaVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCGydS+Yqr3 nP7tBG3lYduyCuM9Ht68/Yh83uz5cI+GknQJNzAthDJUFEt8Mn7d8kfRiKdJ+vQy Ys1ZqmXafhq9YMpioCpW08zURTbAJbBNXZ4gCds99j/YeZ0YC6gq3Dg/4qJt2Hy+ BbWPNGy4QwTx9zBCylisCxLITEtM+sEb3x3lm0MR0GE1wytYD6TAH1oMgso1VYnI x3fUlhDszU5qGwecX9fJQuCti9WqxliVazKqcPnv2/+uAshXXPJX6jyUZyhnxsaJ prcEimC9A/nXzlEBoUVzQ3PTNuhtum3+FKwXwuiTpveWezuYrZgGsGVsE59+5EnA 1pn+BGCTFloZ -----END CERTIFICATE-----Generated at Mon Aug 11 10:36:27 2025 by rpki-client