$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft File: kjA85jYrWm8efhbSWMHJb7tnTWg.mft (raw, json) Hash identifier: Zv33VB9QYA+mWJ4W6ohrePzv0uBQt71AiVcm+Gro/1U= Subject key identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 Authority key identifier: 92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 Certificate issuer: /CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Certificate serial: D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft Manifest number: D1 Signing time: Wed 05 Nov 2025 10:00:50 +0000 Manifest this update: Wed 05 Nov 2025 10:00:50 +0000 Manifest next update: Fri 07 Nov 2025 10:00:50 +0000 Files and hashes: 1: EyH8tc3Eeg5V4X_o0jzVO7j-kPw.roa (hash: 3y8wuAdlPg2RCjhobqe/8iJ1QKhsh/Q99dT5uO6xQDc=) 2: L8g1hAdm4_Nha2YSRG41hCVaTlQ.roa (hash: 2/hJ09npkVZsqbRYanV/zl7+X0N3RvEk5RrpsEIVXLU=) 3: gSg_NQfblMf8GMwAFCZ3ITbcpKk.roa (hash: NWurS7/wKdRDs9XDd8vl82paWr52jlhURs+Io3+tbkk=) 4: j0-hPuEzf6H3nRsOiV51_V8CCKk.roa (hash: 16OypGr2/84L+EmAINBwWcj02mraRNCU5Ecf4Xw4Shg=) 5: kjA85jYrWm8efhbSWMHJb7tnTWg.crl (hash: UjAVa1F0ECz5R67K/ZcFDwHts87359IhI8ZdpHZYdH4=) 6: rYQdOZmNCNtQBDhc7veVS6e5BIE.roa (hash: i4K0MpZKeuMaorIu2hthmzN9sCX/lzEoqj3dRzy4K0k=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 214 (0xd6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Validity Not Before: Nov 5 10:00:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=48357B49CB9DA6F336A2589A72DEDD7A725A9496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:7a:0d:ce:58:8d:c5:8e:5e:58:04:87:19: 01:f1:23:5b:9c:b9:5e:f2:53:3c:95:79:5c:e0:52: 63:e9:54:79:6e:0c:8d:d5:ad:ba:e3:74:39:d7:0c: 94:4a:8b:39:e1:52:07:51:df:46:1c:9e:35:1d:c8: 1b:d7:7b:2b:6b:70:92:b2:95:71:f4:e9:34:2e:c4: 64:59:8f:e5:58:6d:63:b8:b8:cb:65:cb:5d:ab:57: d6:84:7d:6a:81:70:94:2f:13:a0:f5:a1:dd:fa:16: 5d:9e:3f:87:af:f1:df:80:86:f3:ae:da:09:eb:df: f3:c3:e8:08:4e:84:77:c4:f5:47:a5:68:91:10:6b: 67:0f:d0:5b:f4:50:b2:2c:f3:a1:9d:23:7d:c7:81: 26:2f:8d:a9:c0:da:f7:49:63:89:8a:46:1e:74:6e: 6e:05:1e:b0:c0:87:a0:ed:6e:9d:99:b1:53:24:f1: c8:9f:09:3d:93:4d:49:6c:4d:31:eb:7b:1f:21:f3: 96:a4:da:69:87:65:7d:0a:72:8c:89:ea:8d:4a:aa: 8f:74:6e:77:8b:2f:b9:be:90:57:f4:12:4a:fd:a3: f4:1d:e5:b1:68:82:73:14:18:d5:59:86:23:16:8a: f1:5d:4f:3e:1d:45:44:71:bc:86:d8:d8:8f:0e:91: cb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 X509v3 Authority Key Identifier: keyid:92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:cd:e9:5f:f6:43:d0:d1:e5:8d:60:65:de:31:a3:3c:dd:38: 59:61:f4:a8:91:96:b4:4f:55:21:65:cf:31:c0:ff:5b:46:e6: d0:ff:7b:e9:cb:34:88:d4:31:18:f0:04:60:45:65:8b:f6:58: 6f:ff:54:72:c3:2e:b8:cc:ec:53:2b:0b:5c:4e:94:4d:c9:4a: 30:c6:1f:3d:c2:92:c4:cf:bd:fc:c3:ef:30:3e:62:5a:40:bc: 53:51:c6:71:5a:0c:b2:26:e1:e9:56:1a:ba:25:d2:00:37:fd: 34:33:34:7c:96:0c:c2:ec:96:4b:0e:2d:08:3e:85:5e:37:db: 54:c7:90:06:b8:02:53:9e:7c:f7:47:df:0b:63:c7:fc:76:1e: fd:e8:83:94:ab:7c:3f:bb:68:15:92:05:9d:f3:23:13:d9:87: 2f:f2:de:8a:b4:26:dd:99:5b:3d:ba:17:57:53:fa:61:e6:d4: d3:ff:46:72:ab:cf:4d:01:6b:75:92:12:98:68:08:82:1e:8c: 05:f3:d9:06:a6:c8:6b:1b:0d:00:91:2a:54:12:15:67:be:fd: bb:61:25:de:44:1d:3e:57:ca:ad:d1:bd:13:28:2c:14:41:c6: e6:cb:05:16:c3:ac:99:0d:6c:98:82:86:0a:0e:32:c1:60:d1: 25:4c:26:ac -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICANYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTIz MDNDRTYzNjJCNUE2RjFFN0UxNkQyNThDMUM5NkZCQjY3NEQ2ODAeFw0yNTExMDUx MDAwNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDQ4MzU3QjQ5Q0I5REE2 RjMzNkEyNTg5QTcyREVERDdBNzI1QTk0OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+i3oNzliNxY5eWASHGQHxI1ucuV7yUzyVeVzgUmPpVHluDI3V rbrjdDnXDJRKiznhUgdR30YcnjUdyBvXeytrcJKylXH06TQuxGRZj+VYbWO4uMtl y12rV9aEfWqBcJQvE6D1od36Fl2eP4ev8d+AhvOu2gnr3/PD6AhOhHfE9UelaJEQ a2cP0Fv0ULIs86GdI33HgSYvjanA2vdJY4mKRh50bm4FHrDAh6Dtbp2ZsVMk8cif CT2TTUlsTTHrex8h85ak2mmHZX0KcoyJ6o1Kqo90bneLL7m+kFf0Ekr9o/Qd5bFo gnMUGNVZhiMWivFdTz4dRURxvIbY2I8Okct3AgMBAAGjggINMIICCTAdBgNVHQ4E FgQUSDV7ScudpvM2oliact7denJalJYwHwYDVR0jBBgwFoAUkjA85jYrWm8efhbS WMHJb7tnTWgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9STk1B UExFL2tqQTg1allyV204ZWZoYlNXTUhKYjd0blRXZy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0Eva2pBODVqWXJXbThlZmhiU1dNSEpiN3RuVFdnLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9STk1BUExFL2tqQTg1allyV204 ZWZoYlNXTUhKYjd0blRXZy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCAzelf9kPQ0eWNYGXeMaM83ThZYfSokZa0T1UhZc8xwP9bRubQ/3vpyzSI 1DEY8ARgRWWL9lhv/1Rywy64zOxTKwtcTpRNyUowxh89wpLEz738w+8wPmJaQLxT UcZxWgyyJuHpVhq6JdIAN/00MzR8lgzC7JZLDi0IPoVeN9tUx5AGuAJTnnz3R98L Y8f8dh796IOUq3w/u2gVkgWd8yMT2Ycv8t6KtCbdmVs9uhdXU/ph5tTT/0Zyq89N AWt1khKYaAiCHowF89kGpshrGw0AkSpUEhVnvv27YSXeRB0+V8qt0b0TKCwUQcbm ywUWw6yZDWyYgoYKDjLBYNElTCas -----END CERTIFICATE-----Generated at Wed Nov 5 15:53:47 2025 by rpki-client