$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft File: kjA85jYrWm8efhbSWMHJb7tnTWg.mft (raw, json) Hash identifier: ZdZ3je36KqwPYBlflxOHs2iB6ntpurdL+9cUIJj0jcs= Subject key identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 Authority key identifier: 92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 Certificate issuer: /CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Certificate serial: 9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft Manifest number: 97 Signing time: Mon 11 Aug 2025 09:11:31 +0000 Manifest this update: Mon 11 Aug 2025 09:11:31 +0000 Manifest next update: Wed 13 Aug 2025 09:11:31 +0000 Files and hashes: 1: EyH8tc3Eeg5V4X_o0jzVO7j-kPw.roa (hash: 3y8wuAdlPg2RCjhobqe/8iJ1QKhsh/Q99dT5uO6xQDc=) 2: L8g1hAdm4_Nha2YSRG41hCVaTlQ.roa (hash: 2/hJ09npkVZsqbRYanV/zl7+X0N3RvEk5RrpsEIVXLU=) 3: gSg_NQfblMf8GMwAFCZ3ITbcpKk.roa (hash: NWurS7/wKdRDs9XDd8vl82paWr52jlhURs+Io3+tbkk=) 4: j0-hPuEzf6H3nRsOiV51_V8CCKk.roa (hash: 16OypGr2/84L+EmAINBwWcj02mraRNCU5Ecf4Xw4Shg=) 5: kjA85jYrWm8efhbSWMHJb7tnTWg.crl (hash: bYzgN9Z4oMOgItm6qYe2vHrF3xhiUOZO4QBc+IQvFC0=) 6: rYQdOZmNCNtQBDhc7veVS6e5BIE.roa (hash: i4K0MpZKeuMaorIu2hthmzN9sCX/lzEoqj3dRzy4K0k=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 14:41:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 156 (0x9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=92303CE6362B5A6F1E7E16D258C1C96FBB674D68 Validity Not Before: Aug 11 09:11:31 2025 GMT Not After : Feb 13 15:30:28 2026 GMT Subject: CN=48357B49CB9DA6F336A2589A72DEDD7A725A9496 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:8b:7a:0d:ce:58:8d:c5:8e:5e:58:04:87:19: 01:f1:23:5b:9c:b9:5e:f2:53:3c:95:79:5c:e0:52: 63:e9:54:79:6e:0c:8d:d5:ad:ba:e3:74:39:d7:0c: 94:4a:8b:39:e1:52:07:51:df:46:1c:9e:35:1d:c8: 1b:d7:7b:2b:6b:70:92:b2:95:71:f4:e9:34:2e:c4: 64:59:8f:e5:58:6d:63:b8:b8:cb:65:cb:5d:ab:57: d6:84:7d:6a:81:70:94:2f:13:a0:f5:a1:dd:fa:16: 5d:9e:3f:87:af:f1:df:80:86:f3:ae:da:09:eb:df: f3:c3:e8:08:4e:84:77:c4:f5:47:a5:68:91:10:6b: 67:0f:d0:5b:f4:50:b2:2c:f3:a1:9d:23:7d:c7:81: 26:2f:8d:a9:c0:da:f7:49:63:89:8a:46:1e:74:6e: 6e:05:1e:b0:c0:87:a0:ed:6e:9d:99:b1:53:24:f1: c8:9f:09:3d:93:4d:49:6c:4d:31:eb:7b:1f:21:f3: 96:a4:da:69:87:65:7d:0a:72:8c:89:ea:8d:4a:aa: 8f:74:6e:77:8b:2f:b9:be:90:57:f4:12:4a:fd:a3: f4:1d:e5:b1:68:82:73:14:18:d5:59:86:23:16:8a: f1:5d:4f:3e:1d:45:44:71:bc:86:d8:d8:8f:0e:91: cb:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 48:35:7B:49:CB:9D:A6:F3:36:A2:58:9A:72:DE:DD:7A:72:5A:94:96 X509v3 Authority Key Identifier: keyid:92:30:3C:E6:36:2B:5A:6F:1E:7E:16:D2:58:C1:C9:6F:BB:67:4D:68 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/kjA85jYrWm8efhbSWMHJb7tnTWg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MORNMAPLE/kjA85jYrWm8efhbSWMHJb7tnTWg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:4d:8f:cf:b9:a3:ac:80:3e:26:35:d6:ba:53:1f:3c:40:1f: 6d:1f:8e:b9:16:5d:ca:61:88:f4:75:60:02:cf:e2:e6:7d:97: f5:32:2f:26:18:d2:71:e2:4b:ef:c8:44:98:2a:7f:96:05:17: 52:d2:88:e0:5e:5a:64:13:ea:e6:14:30:74:cb:8a:8d:43:49: 73:f7:ba:31:cb:84:aa:f8:3e:ad:2b:8a:d8:44:4f:d8:2c:63: 59:04:3b:d8:65:49:87:93:d1:19:f9:df:96:d0:f6:a6:77:2c: bb:09:cd:82:d9:be:83:2a:08:1e:ac:17:24:68:30:7f:00:a2: 56:ff:75:f9:7a:5e:a5:89:ca:7c:59:8a:85:79:e2:44:dc:ce: c6:a9:e2:a2:8b:51:01:7c:4f:c5:3d:76:16:6f:7e:dc:a9:56: 19:8c:16:28:03:3a:70:9a:69:e4:13:d0:6c:07:28:f5:5f:42: 09:7c:bb:65:d3:bb:28:9d:e5:c8:ad:97:07:e7:0a:53:60:f8: 04:a6:e8:6e:95:62:85:6b:fa:cf:09:41:6b:f0:7c:3e:5d:6c: 0b:75:e4:55:92:4c:3b:4f:d8:ba:d3:1c:5b:90:19:ab:64:c3: a9:27:b8:b0:ec:87:ad:68:22:12:d1:a8:a4:1e:ff:4d:79:3f: ae:c6:8b:63 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAJwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTIz MDNDRTYzNjJCNUE2RjFFN0UxNkQyNThDMUM5NkZCQjY3NEQ2ODAeFw0yNTA4MTEw OTExMzFaFw0yNjAyMTMxNTMwMjhaMDMxMTAvBgNVBAMTKDQ4MzU3QjQ5Q0I5REE2 RjMzNkEyNTg5QTcyREVERDdBNzI1QTk0OTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+i3oNzliNxY5eWASHGQHxI1ucuV7yUzyVeVzgUmPpVHluDI3V rbrjdDnXDJRKiznhUgdR30YcnjUdyBvXeytrcJKylXH06TQuxGRZj+VYbWO4uMtl y12rV9aEfWqBcJQvE6D1od36Fl2eP4ev8d+AhvOu2gnr3/PD6AhOhHfE9UelaJEQ a2cP0Fv0ULIs86GdI33HgSYvjanA2vdJY4mKRh50bm4FHrDAh6Dtbp2ZsVMk8cif CT2TTUlsTTHrex8h85ak2mmHZX0KcoyJ6o1Kqo90bneLL7m+kFf0Ekr9o/Qd5bFo gnMUGNVZhiMWivFdTz4dRURxvIbY2I8Okct3AgMBAAGjggINMIICCTAdBgNVHQ4E FgQUSDV7ScudpvM2oliact7denJalJYwHwYDVR0jBBgwFoAUkjA85jYrWm8efhbS WMHJb7tnTWgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9STk1B UExFL2tqQTg1allyV204ZWZoYlNXTUhKYjd0blRXZy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0Eva2pBODVqWXJXbThlZmhiU1dNSEpiN3RuVFdnLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTU9STk1BUExFL2tqQTg1allyV204 ZWZoYlNXTUhKYjd0blRXZy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBJTY/PuaOsgD4mNda6Ux88QB9tH465Fl3KYYj0dWACz+LmfZf1Mi8mGNJx 4kvvyESYKn+WBRdS0ojgXlpkE+rmFDB0y4qNQ0lz97oxy4Sq+D6tK4rYRE/YLGNZ BDvYZUmHk9EZ+d+W0Pamdyy7Cc2C2b6DKggerBckaDB/AKJW/3X5el6licp8WYqF eeJE3M7GqeKii1EBfE/FPXYWb37cqVYZjBYoAzpwmmnkE9BsByj1X0IJfLtl07so neXIrZcH5wpTYPgEpuhulWKFa/rPCUFr8Hw+XWwLdeRVkkw7T9i60xxbkBmrZMOp J7iw7IetaCIS0aikHv9NeT+uxotj -----END CERTIFICATE-----Generated at Mon Aug 11 10:55:04 2025 by rpki-client