$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft File: tKZaDrhmkhnEGFRC1J_J1vgltmU.mft (raw, json) Hash identifier: VROwwFQ3lGYiPvS6AiNgXf98Kb/Aqx90/vf2FpRF9s4= Subject key identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 10D9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft Manifest number: 0FCF Signing time: Tue 04 Nov 2025 16:28:44 +0000 Manifest this update: Tue 04 Nov 2025 16:28:44 +0000 Manifest next update: Thu 06 Nov 2025 16:28:44 +0000 Files and hashes: 1: 5Yp1V3CrTViPNdd70rxtjG7q0EA.roa (hash: L8BuAcMdxWPZeMk+D/4tVUKeJeQKYapbUsYUtfjtV30=) 2: 70ndj4uFe1wwNF18oZU6_USUWtU.roa (hash: jaSC8kceDXiWcHt1sdw3A2J38sFNSwMEdTDKoVzWN5c=) 3: 8Td2JCIj1A9DHRyJAI1P9i55qXo.roa (hash: Ijtv5s5RufRZ8sFRbblaCqvZdsvSyW80iIHvEML5n30=) 4: B_xVvNfEsMk8op57D-2t77GrOqk.roa (hash: GwdRWpD8xv5FKjMPkMFeI4VcIIYvWFGlF0bfXC28MXs=) 5: CRF-PT6-IJjgcbUt5Eit6XV9Pv0.roa (hash: Ayct/3QqzmOFm36Y017QbJCNp7DZGQzYHB6Qr7DMnYY=) 6: Iwcje_QXrw_90QUEj0AUh8XhmVc.roa (hash: bGq25cGbUfz8m5dkawv7IgYGzOp2WbhBJuXVoVeWr04=) 7: Jy2uyWfZVPUsHrHCi6SCe8zDUPQ.roa (hash: /8h500QcIkxMfPUjgGE3YiKFzVKuofx1cWZXpMhILS4=) 8: N__2K8xQY2BdjczN7Pl9htb1jKM.roa (hash: VELD7cAFloGsE403N3bSAf/b1Elhqqmin9H6C8IjWuc=) 9: OmykwDqKo_OhIj-e_WNN4PvU710.roa (hash: GBxL+xWYxc6wJ7cON+ySkKW27QmejcUQNNq0YHEMlgw=) 10: RM1xqhPL8D9SjQSOaxIJRrUlFC4.roa (hash: 69JZfl2pWT1F5pnjdKUrm2BBTIjD393y2O5ynSWdFnc=) 11: SXNrZ5Jz3QY0J5f0TZfZmh7wSZc.roa (hash: LmSpure0DYNnRbdaK/Ifeb7Kk2Rwus/vkzLEgAEyZXs=) 12: TTiz9UaPgKVOETFOKrGTb-r2azs.roa (hash: fuwiYvLZh3Kik8ffbss8bUFNmDxTKwmFObh6mWlWlHs=) 13: YbGnTW4nU7whUo_reR9sv2YVvf8.roa (hash: oUxU8nNQkfGxGH9Uhz/iikAOWnDaQEcitAZZB42rbqg=) 14: dZvF-0bsdl6n4-_a-7M1Jy8CjI0.roa (hash: XTLwtUAZ6bABqaO6i6/ZP5JEdnSMF7UcFZVU3ADitqc=) 15: ecmr5yzeNsrG95DrIt6VIM5Wcp0.roa (hash: kv62vCdZ77B2XLiakLimtHAAEiZwtjikOsz/UnoF0OA=) 16: fO6FcTv-X4P1RUCT_UnV_cuXthA.roa (hash: e7twuWlXTWBbDLXXNqy53GQSzi+V13eJY36lz5/UfwU=) 17: m7DhiFhAPZoIqr4BHoHXpao14gg.roa (hash: QJZbn+/p5A8gX8009rNNtxvt4K4wqcXdkOuZbFAakEg=) 18: p0GXIU6l8lmMfi8Oz8No7GeUW_g.roa (hash: L6aYgHnRHgrW3LkBxaL37f6kEtmoEN2V2ieBHHRPNY4=) 19: q7YmJaAyedPnRuodme0iBCOG8O4.roa (hash: PbTQ6PwNxUiM98h3T+XkfdR6IfSCM1d+C7mElmN6qt4=) 20: sCv0IluPSD3yzh5lwF7-ioRUBtE.roa (hash: 7bImmA59//gD8Zh/Hj5Fa6XZ/CS6zamqfY8fhtAUjs8=) 21: tKZaDrhmkhnEGFRC1J_J1vgltmU.crl (hash: KfLchXYcwB7htZyHf8HAQ1YmlZP41y+mKxG9Fs0h6hk=) 22: tmonIDoTBxz80Rf4Cw3JREtdp98.roa (hash: Dt0y86hRm4LS3ybuiAnGEmUpsvBW8FTHDawoPoFaQOM=) 23: tyU_Bi838SkcIgptGk9hz-4P1Hg.roa (hash: RIsH6RhgNRKRoJpmZ340Lz5Eqe+puO0XtDeOrEqs3ss=) 24: yLF0PyhsUR1bFZGoMDV7DGGXFDM.roa (hash: QjoKV5tDOI31w+pZ2L5+zoRheQRxMAZsR8oHNBxF83Q=) 25: ydo0i-OyJsNg9fnm5p7QSu32WVA.roa (hash: Pki7U1uqDuzpu3jSBdsJ66UyVJrSUVHMYFg7yIXDZJM=) 26: zHgv9UTH7pUAkHHmynN2MKStSZ8.roa (hash: 9B0xhRNfyD5e1vHZ0CZV0psSUHYgj+RMrYJqPc3arN8=) 27: zRJpjajR3PPfEKnB11lEsBEM2Pc.roa (hash: CzMZ31n5uJYTMuQsDkpCvQymXaXlaut5eWMI0uJsKqU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4313 (0x10d9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Nov 4 16:28:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=0E53CFF1D0181F272D8AA565C2A113F9F95BAB28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:89:75:40:22:61:58:f1:31:e1:0d:ed:89:c7: 1c:c2:a7:48:ec:32:66:b0:0c:77:66:f9:c0:10:73: 43:71:67:86:f0:e2:f9:e6:a8:a3:b8:93:ea:61:8b: fc:b0:b8:f6:3f:c2:1b:69:1e:d6:5d:65:ca:37:5e: ba:46:d9:c4:f2:3e:05:48:7a:7e:27:53:2c:68:c7: 1b:e6:02:61:18:e7:8d:3f:0e:23:3b:4e:cb:01:43: 0b:8f:05:e1:5e:3c:bc:9b:33:45:f4:db:cf:ee:5e: 9e:18:80:3a:fe:bc:fb:d3:34:c7:d5:ca:35:93:11: c9:78:3a:df:ac:fc:69:69:a5:74:c4:da:0a:08:ab: e4:9e:fd:53:2c:9a:52:15:35:8c:26:79:4d:69:78: 3e:7a:98:f0:bd:f6:e1:c0:18:a6:44:96:5c:d8:93: a0:f9:4e:ff:4d:fe:4f:ed:72:03:ac:3f:1e:19:62: ae:49:01:42:1a:2f:b1:e6:51:12:2e:e9:3c:6a:62: dd:45:18:9c:31:88:6a:95:05:ff:2e:59:d4:86:96: 36:2e:17:8e:51:25:25:97:fe:83:c0:35:5e:c5:78: 53:3a:2c:c0:63:fa:d6:e1:2b:ad:61:43:f6:c3:bd: e7:bc:10:3b:a7:7d:16:f5:08:2e:49:be:06:69:1f: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:24:c5:0c:96:5c:3b:5f:12:e8:06:d1:a5:44:b5:52:85:b9: 2c:5e:03:c6:2f:f6:29:9c:1b:ee:da:d6:e6:71:3b:a8:a8:63: 4e:bf:df:50:c5:b8:e7:9b:7a:bf:76:1e:8b:63:b3:1d:de:22: e5:b2:c9:43:d6:f4:13:95:d1:25:8a:a7:c5:72:19:ac:ee:41: a0:79:e1:04:f9:cf:d3:bf:5f:5a:78:a4:03:08:a8:af:2f:d7: cf:e4:b3:2a:33:de:e3:63:8a:73:cc:08:19:03:87:6c:56:98: e9:58:f8:38:ca:37:e6:d1:1f:4c:4f:76:7f:34:ad:98:e3:85: 29:3f:f4:6b:1d:25:44:68:f8:1b:37:92:c2:0c:ef:b2:cc:8b: 5a:82:a6:ed:9a:95:1d:07:52:d8:98:ad:7e:3d:e9:78:19:89: b5:b8:45:ee:3d:5c:ad:c2:dc:5b:b2:73:c3:42:9d:8e:fc:6c: 41:c0:32:e8:fa:72:6d:32:96:c6:b0:b7:54:41:7a:7b:93:0a: 70:56:fe:43:6c:9f:e9:a0:67:9d:27:ed:25:be:4c:f7:e6:5c: 15:c6:4c:aa:85:5d:00:f6:b5:96:f1:a1:1d:cc:5f:4c:ef:ea: 8a:9d:52:76:74:9f:2a:2a:d4:81:2d:73:7c:33:7d:d7:8b:b5: f6:fb:fa:06 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICENkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNTExMDQx NjI4NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDBFNTNDRkYxRDAxODFG MjcyRDhBQTU2NUMyQTExM0Y5Rjk1QkFCMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxiXVAImFY8THhDe2JxxzCp0jsMmawDHdm+cAQc0NxZ4bw4vnm qKO4k+phi/ywuPY/whtpHtZdZco3XrpG2cTyPgVIen4nUyxoxxvmAmEY540/DiM7 TssBQwuPBeFePLybM0X028/uXp4YgDr+vPvTNMfVyjWTEcl4Ot+s/GlppXTE2goI q+Se/VMsmlIVNYwmeU1peD56mPC99uHAGKZEllzYk6D5Tv9N/k/tcgOsPx4ZYq5J AUIaL7HmURIu6TxqYt1FGJwxiGqVBf8uWdSGljYuF45RJSWX/oPANV7FeFM6LMBj +tbhK61hQ/bDvee8EDunfRb1CC5JvgZpH1ElAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUDlPP8dAYHyctiqVlwqET+flbqygwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdEtaYURyaG1raG5FR0ZSQzFKX0ox dmdsdG1VLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAJEkxQyW XDtfEugG0aVEtVKFuSxeA8Yv9imcG+7a1uZxO6ioY06/31DFuOeber92Hotjsx3e IuWyyUPW9BOV0SWKp8VyGazuQaB54QT5z9O/X1p4pAMIqK8v18/ksyoz3uNjinPM CBkDh2xWmOlY+DjKN+bRH0xPdn80rZjjhSk/9GsdJURo+Bs3ksIM77LMi1qCpu2a lR0HUtiYrX496XgZibW4Re49XK3C3Fuyc8NCnY78bEHAMuj6cm0ylsawt1RBenuT CnBW/kNsn+mgZ50n7SW+TPfmXBXGTKqFXQD2tZbxoR3MX0zv6oqdUnZ0nyoq1IEt c3wzfdeLtfb7+gY= -----END CERTIFICATE-----Generated at Wed Nov 5 14:34:33 2025 by rpki-client