$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft File: tKZaDrhmkhnEGFRC1J_J1vgltmU.mft (raw, json) Hash identifier: F/Dvs5f9b55irm4wGbYGdzq8q5iEr7hhnIJgghsLcQg= Subject key identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 1059 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft Manifest number: 0F69 Signing time: Mon 11 Aug 2025 04:10:30 +0000 Manifest this update: Mon 11 Aug 2025 04:10:30 +0000 Manifest next update: Wed 13 Aug 2025 04:10:30 +0000 Files and hashes: 1: -hXinkyERwOZmWW6tJRlYuYDnsw.roa (hash: 0UG4bKyKZC4S+DSXTHRARxITOvLWVdVciAo1fD+aHNg=) 2: 2nTTSCm2fpjBJGudHl8IJW3HcJM.roa (hash: 5pYK8M8BiQ0nMhl8APevik7u6634ukqlOBC0h6GRe8k=) 3: 7l6JMqjyS7ttKEFc5eS4vZBBiBc.roa (hash: gFGUfOtM7jIup7rrvRDQmz+sthA+/qFqVlP2iKq2cw8=) 4: 9k6qUIy-K5FcbrpVivxCiitUfec.roa (hash: 31TGrAi9aB9mouNzIdzaL+IcSQuFl+XGXKs6ZwZlAsw=) 5: AOv69UsHHgpCV9hQxZ8DYFvW8N0.roa (hash: ws92WPMzpFMn0rNkx9rAwD3umuOdkEOAF80TYgJWXZE=) 6: AcPLINHU0NWVVpnIaqxMdyt8hPw.roa (hash: TGD1JT0OmtjXuFr6GkQmJSzFWMnht7S+TZFXd5wO2tg=) 7: DmcVIRNe6GiZZZVn2nFgnIQ9T4E.roa (hash: Mi9q8jMU6PXK5qHVhj1KkAo1lkqnarMjcpsr4D9vJIY=) 8: GTrVPm__ebUNkcI5Xi5KjLZLGwo.roa (hash: qrtCH8X2ts8HXDL9nKr+7sTyIgRj8Jzerw+zU4vb984=) 9: IlenO6gLy_WSup6mEZHn4QkiLgA.roa (hash: Dp08m69GCDFKTY1ro9nM4yRCohaYIlR4/OudXrMcgPQ=) 10: KJxHeqPcv9_IeZifsf9aFzZ4znw.roa (hash: A/jDh7h71MxreYF/9V6H+XqGfTrpQJLZTedbMrRn4ko=) 11: PdAiL87YMA8f5Tv6d708S3blQrg.roa (hash: hfTDYDVMOHLiCZEYd1bzoCZfRSmiu7LDx8HoZPdkj5Q=) 12: R113cf6tPL7LcEqHjdOy3gLP1Cg.roa (hash: wfxmEVturK8lwOE0Tb8lXI8PsU0IUl6sg+MOky7bBy8=) 13: Y9oYj49n12Hdk3toPDTQ9XaRsaY.roa (hash: bcdSkdI+Tu9lltz6meDsQOl6LZn7r6IKbUMY961mnfQ=) 14: YADMAFioNbo8VJrOlFD6CT0_jWw.roa (hash: n7cVF1rcqrkoRbR1WinTXy+WuuvKS0WnE5vFC+yYu2k=) 15: YwAr9qGkqMlaGniFNTa2p2_yBO0.roa (hash: 7FxkAHf2ZbS3zENJ7tNe9rBkqXj1R3EeYTQpBTqT1cY=) 16: YzuPerJ85zOhfa63sVNTw9PQXnU.roa (hash: ZYVsK019XPfPOeatjw3Z6pUvt6RrHHrRCDfYuKp9xbE=) 17: _6lx53SZGJi7gemirUAjkhG1vK4.roa (hash: T/pM//GrpHV29ZttJSynIV2hBeOwYjfgJ4FLQTYGp4A=) 18: atw9IRYDyGoKtE2P0AuRs7sUE84.roa (hash: 12H6ffsztQGg/Fw+6Q7bNESogaNm1ojZihhkOH1zSLA=) 19: gGKi90fZai32MWlQ6XXbvvLb8As.roa (hash: SBe2iMLHorKWSY6cqEAe5wfDF7JQeoubbtOqY/qpwV4=) 20: lr4AB380PVCnFsEtSFv9UzWZY30.roa (hash: T8seleh/k7N1t2iSLJZ5+jS5avh+t93P4xJKH5G56BQ=) 21: mTHzUpQ1e1Juagv6b0QqzqUpdmQ.roa (hash: DXK2u9KEOzx/5Z+zSK4bJ11SjdmMJ1wqG1GOsgKOuj8=) 22: phK85_haumZeklMDMMKM5VS2kPA.roa (hash: b9XsarXI2YtKj7fGACAknfuV3NknbhlkkCqJmsOLbNs=) 23: sslHKU-uS0tQeIwSyd-QvAuW8Fc.roa (hash: DLaluWLeDXgVpXdpYFvNk3z/2sVn0NmWrO4tw3Szx9w=) 24: tKZaDrhmkhnEGFRC1J_J1vgltmU.crl (hash: FpJZEU8FkEurZA6/IDPjudncMDKHnRXZGa/h8qxCloM=) 25: vIZRdbZtyiH0Q8YHakndmIT-UTE.roa (hash: 58Jrbiu9GvQCu32V4isx+WAldZGHSwLgutccuRKQ4nI=) 26: xfV1b12RO5UrUseqwjU8L9cMokw.roa (hash: vff5szrdbQe+8n3p0zSOS5AjlqClA4bPofVtCJft8Bc=) 27: y1ycz2kpzad_oHR1DPNSlFxEBBM.roa (hash: 7s9BqDuBWj0mPIvB3PFAl4tQNvo8crBCWYagQYCSB3g=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 11 Aug 2025 12:11:11 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4185 (0x1059) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Aug 11 04:10:30 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0E53CFF1D0181F272D8AA565C2A113F9F95BAB28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:89:75:40:22:61:58:f1:31:e1:0d:ed:89:c7: 1c:c2:a7:48:ec:32:66:b0:0c:77:66:f9:c0:10:73: 43:71:67:86:f0:e2:f9:e6:a8:a3:b8:93:ea:61:8b: fc:b0:b8:f6:3f:c2:1b:69:1e:d6:5d:65:ca:37:5e: ba:46:d9:c4:f2:3e:05:48:7a:7e:27:53:2c:68:c7: 1b:e6:02:61:18:e7:8d:3f:0e:23:3b:4e:cb:01:43: 0b:8f:05:e1:5e:3c:bc:9b:33:45:f4:db:cf:ee:5e: 9e:18:80:3a:fe:bc:fb:d3:34:c7:d5:ca:35:93:11: c9:78:3a:df:ac:fc:69:69:a5:74:c4:da:0a:08:ab: e4:9e:fd:53:2c:9a:52:15:35:8c:26:79:4d:69:78: 3e:7a:98:f0:bd:f6:e1:c0:18:a6:44:96:5c:d8:93: a0:f9:4e:ff:4d:fe:4f:ed:72:03:ac:3f:1e:19:62: ae:49:01:42:1a:2f:b1:e6:51:12:2e:e9:3c:6a:62: dd:45:18:9c:31:88:6a:95:05:ff:2e:59:d4:86:96: 36:2e:17:8e:51:25:25:97:fe:83:c0:35:5e:c5:78: 53:3a:2c:c0:63:fa:d6:e1:2b:ad:61:43:f6:c3:bd: e7:bc:10:3b:a7:7d:16:f5:08:2e:49:be:06:69:1f: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:8b:60:d1:59:b2:e1:cc:4a:bd:a2:35:8d:0a:63:37:bf:d4: 8f:37:71:46:3d:77:e2:01:60:02:d4:3b:f4:e5:90:b3:80:b0: 9f:3d:ad:e5:5e:d0:98:87:49:45:94:22:f6:26:2d:2c:2a:d9: 94:ca:24:f5:f2:87:e7:cd:01:6a:4c:e1:1e:07:f4:9a:e8:d8: 85:07:82:fa:08:05:23:32:4d:e5:b6:33:de:d2:42:84:a3:fd: 10:55:57:30:7e:df:5e:11:97:df:25:71:1c:f1:b3:5f:af:92: 74:23:34:f9:fc:42:71:54:7c:ed:cd:15:c9:da:b7:58:6d:65: 35:60:05:b3:f9:11:11:b6:7f:e9:53:16:56:88:ba:64:bb:43: ee:b9:e6:30:30:9d:5e:34:e6:50:b6:9d:bf:1d:2c:78:c0:24: 22:67:79:18:f2:ac:26:2c:4c:4c:0c:01:f6:6a:48:4a:22:0a: 68:f8:04:cc:e2:88:68:6b:e0:0e:95:57:79:a0:67:84:89:36: 9b:2f:59:5a:19:b0:c4:05:24:05:10:bb:34:01:3f:da:a7:4c: a5:4c:80:f8:f6:5a:11:92:a1:33:dd:36:43:8a:7b:90:b8:3b: 33:6c:7a:99:41:a4:a9:d8:e7:97:f9:0e:ca:5b:8f:6c:20:b3: cd:64:79:02 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICEFkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTA4MTEw NDEwMzBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBFNTNDRkYxRDAxODFG MjcyRDhBQTU2NUMyQTExM0Y5Rjk1QkFCMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxiXVAImFY8THhDe2JxxzCp0jsMmawDHdm+cAQc0NxZ4bw4vnm qKO4k+phi/ywuPY/whtpHtZdZco3XrpG2cTyPgVIen4nUyxoxxvmAmEY540/DiM7 TssBQwuPBeFePLybM0X028/uXp4YgDr+vPvTNMfVyjWTEcl4Ot+s/GlppXTE2goI q+Se/VMsmlIVNYwmeU1peD56mPC99uHAGKZEllzYk6D5Tv9N/k/tcgOsPx4ZYq5J AUIaL7HmURIu6TxqYt1FGJwxiGqVBf8uWdSGljYuF45RJSWX/oPANV7FeFM6LMBj +tbhK61hQ/bDvee8EDunfRb1CC5JvgZpH1ElAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUDlPP8dAYHyctiqVlwqET+flbqygwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdEtaYURyaG1raG5FR0ZSQzFKX0ox dmdsdG1VLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBABaLYNFZ suHMSr2iNY0KYze/1I83cUY9d+IBYALUO/TlkLOAsJ89reVe0JiHSUWUIvYmLSwq 2ZTKJPXyh+fNAWpM4R4H9Jro2IUHgvoIBSMyTeW2M97SQoSj/RBVVzB+314Rl98l cRzxs1+vknQjNPn8QnFUfO3NFcnat1htZTVgBbP5ERG2f+lTFlaIumS7Q+655jAw nV405lC2nb8dLHjAJCJneRjyrCYsTEwMAfZqSEoiCmj4BMziiGhr4A6VV3mgZ4SJ NpsvWVoZsMQFJAUQuzQBP9qnTKVMgPj2WhGSoTPdNkOKe5C4OzNseplBpKnY55f5 Dspbj2wgs81keQI= -----END CERTIFICATE-----Generated at Mon Aug 11 07:55:01 2025 by rpki-client