$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft File: kjA85jYrWm8efhbSWMHJb7tnTWg.mft (raw, json) Hash identifier: GBgts07dnUQBagQjr5jRL96lAx7YryoomNOPezVTaxo= Subject key identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 Authority key identifier: 92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 Certificate issuer: /CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Certificate serial: 0125 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft Manifest number: 011F Signing time: Sun 01 Mar 2026 15:53:59 +0000 Manifest this update: Sun 01 Mar 2026 15:53:59 +0000 Manifest next update: Tue 03 Mar 2026 15:53:59 +0000 Files and hashes: 1: M2DrKbrVaOt762Ng9j8Q72KJjUE.roa (hash: j4Boy1ZrkdNIe6fh/9gUclWcmGuSqn2E+G1sGauAHLU=) 2: aeySRbmC0EN_TVFSKV61fOg48wI.roa (hash: OOVjHZNKXj1sLBdBMwlpYHTOFiud+Y3vgHhzkMmfW8s=) 3: gnGMZipzYg31fvn_z7scpHMh4so.roa (hash: UH5mG3KW5tw1jr9jVAB5gSPtCh9LEjXcVs6GtSpxqx4=) 4: kjA85jYrWm8efhbSWMHJb7tnTWg.crl (hash: m4J8LtSnRl3D4EXu/LD1rBLlj3oGiRtGbvZP6keebp8=) 5: uj6l6vh4_pCTYrvpExCYKS_qCHE.roa (hash: 4RO5oZIa9EygVDDPmgsjE6Ko2te6V/ym8NhtCCrrNWQ=) 6: ysgtSCJFDwoGbOcFC0ht_Bwovrk.roa (hash: 5ChWtorCRqm/XMa/GK0AOkn7zcH8LcQwrjtyG6oNjYQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 21:54:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 293 (0x125) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Validity Not Before: Mar 1 15:53:59 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=48357B49CB9DA6F336A2589A72DEDD7A725A9496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:7a:0d:ce:58:8d:c5:8e:5e:58:04:87:19: 01:f1:23:5b:9c:b9:5e:f2:53:3c:95:79:5c:e0:52: 63:e9:54:79:6e:0c:8d:d5:ad:ba:e3:74:39:d7:0c: 94:4a:8b:39:e1:52:07:51:df:46:1c:9e:35:1d:c8: 1b:d7:7b:2b:6b:70:92:b2:95:71:f4:e9:34:2e:c4: 64:59:8f:e5:58:6d:63:b8:b8:cb:65:cb:5d:ab:57: d6:84:7d:6a:81:70:94:2f:13:a0:f5:a1:dd:fa:16: 5d:9e:3f:87:af:f1:df:80:86:f3:ae:da:09:eb:df: f3:c3:e8:08:4e:84:77:c4:f5:47:a5:68:91:10:6b: 67:0f:d0:5b:f4:50:b2:2c:f3:a1:9d:23:7d:c7:81: 26:2f:8d:a9:c0:da:f7:49:63:89:8a:46:1e:74:6e: 6e:05:1e:b0:c0:87:a0:ed:6e:9d:99:b1:53:24:f1: c8:9f:09:3d:93:4d:49:6c:4d:31:eb:7b:1f:21:f3: 96:a4:da:69:87:65:7d:0a:72:8c:89:ea:8d:4a:aa: 8f:74:6e:77:8b:2f:b9:be:90:57:f4:12:4a:fd:a3: f4:1d:e5:b1:68:82:73:14:18:d5:59:86:23:16:8a: f1:5d:4f:3e:1d:45:44:71:bc:86:d8:d8:8f:0e:91: cb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 X509v3 Authority Key Identifier: keyid:92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:a3:81:53:c3:ac:1b:24:f0:3b:b7:4b:c2:30:91:3b:e8:2b: cf:1a:93:c0:0b:ae:b3:9e:a7:f5:30:14:31:87:4d:18:80:0e: 6b:96:e3:49:ed:b4:fe:d9:a8:d8:94:ad:b7:6b:e7:b9:62:22: 92:21:c1:96:c2:24:97:2a:dd:e0:51:a6:8d:32:85:03:e7:c3: 15:8b:61:a5:ac:be:90:2e:e4:26:d7:90:c4:89:25:71:63:58: 1c:9b:a4:9a:6a:29:88:a9:17:45:41:a0:f3:17:38:14:10:2e: ab:fd:9a:45:a3:b3:87:fc:8d:34:dd:32:7d:f0:b8:4a:ed:2a: 50:49:e0:1b:02:22:3e:6f:de:8c:15:77:3d:8e:6b:75:63:65: cf:8d:3f:76:f4:81:a2:f6:9d:91:c9:cc:bb:ad:42:b5:f8:d2: 13:9b:c6:c4:e4:9f:bf:07:54:71:ba:e2:7a:9c:b7:e7:95:a3: 46:5c:c3:fd:ba:d7:5c:33:ec:cb:79:b8:2e:0e:73:02:bf:ed: 66:a7:d8:cb:66:48:8e:a4:6a:39:95:4f:ae:c7:15:6f:66:33: eb:e6:fe:87:6d:26:be:66:d7:72:6d:05:e1:70:5d:e9:4c:7a: ae:c3:b2:34:ce:9a:61:6a:c6:9c:fb:cd:cf:b0:cb:05:7f:b1: 2a:f9:22:0c -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICASUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTIz MDNDRTYzNjJCNUE2RjFFN0UxNkQyNThDMUM5NkZCQjY3NEQ2ODAeFw0yNjAzMDEx NTUzNTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ4MzU3QjQ5Q0I5REE2 RjMzNkEyNTg5QTcyREVERDdBNzI1QTk0OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+i3oNzliNxY5eWASHGQHxI1ucuV7yUzyVeVzgUmPpVHluDI3V rbrjdDnXDJRKiznhUgdR30YcnjUdyBvXeytrcJKylXH06TQuxGRZj+VYbWO4uMtl y12rV9aEfWqBcJQvE6D1od36Fl2eP4ev8d+AhvOu2gnr3/PD6AhOhHfE9UelaJEQ a2cP0Fv0ULIs86GdI33HgSYvjanA2vdJY4mKRh50bm4FHrDAh6Dtbp2ZsVMk8cif CT2TTUlsTTHrex8h85ak2mmHZX0KcoyJ6o1Kqo90bneLL7m+kFf0Ekr9o/Qd5bFo gnMUGNVZhiMWivFdTz4dRURxvIbY2I8Okct3AgMBAAGjggINMIICCTAdBgNVHQ4E FgQUSDV7ScudpvM2oliact7denJalJYwHwYDVR0jBBgwFoAUkjA85jYrWm8efhbS WMHJb7tnTWgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9STk1B UExFL2tqQTg1allyV204ZWZoYlNXTUhKYjd0blRXZy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0Eva2pBODVqWXJXbThlZmhiU1dNSEpiN3RuVFdnLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9STk1BUExFL2tqQTg1allyV204 ZWZoYlNXTUhKYjd0blRXZy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBTo4FTw6wbJPA7t0vCMJE76CvPGpPAC66znqf1MBQxh00YgA5rluNJ7bT+ 2ajYlK23a+e5YiKSIcGWwiSXKt3gUaaNMoUD58MVi2GlrL6QLuQm15DEiSVxY1gc m6SaaimIqRdFQaDzFzgUEC6r/ZpFo7OH/I003TJ98LhK7SpQSeAbAiI+b96MFXc9 jmt1Y2XPjT929IGi9p2Rycy7rUK1+NITm8bE5J+/B1RxuuJ6nLfnlaNGXMP9utdc M+zLebguDnMCv+1mp9jLZkiOpGo5lU+uxxVvZjPr5v6HbSa+ZtdybQXhcF3pTHqu w7I0zpphasac+83PsMsFf7Eq+SIM -----END CERTIFICATE-----Generated at Mon Mar 2 20:55:55 2026 by rpki-client