$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft File: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft (raw, json) Hash identifier: BezXz6p6lLG5rRKdtBWstjjWbM0y/3IsB+IKGHYXkG8= Subject key identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 Authority key identifier: 5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 Certificate issuer: /CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Certificate serial: 0D66 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft Manifest number: 0D66 Signing time: Wed 05 Nov 2025 10:00:49 +0000 Manifest this update: Wed 05 Nov 2025 10:00:49 +0000 Manifest next update: Fri 07 Nov 2025 10:00:49 +0000 Files and hashes: 1: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl (hash: PT1mi6xrZ1GfwQBqPkEmqXKRWyYmu5QrcHB+psmnaBc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 06 Nov 2025 01:29:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3430 (0xd66) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Validity Not Before: Nov 5 10:00:49 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3E8675F5553B5C3EF6E9EE78294BC6B8A6B459D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a4:6d:10:39:89:15:32:d8:c6:b6:a8:fc:76: 5e:55:ad:f7:01:1e:a9:c9:51:66:84:80:5c:fe:e9: 88:6a:07:4d:fb:11:28:d0:2c:5d:b8:ab:d6:56:6a: b0:bd:c7:80:00:f7:2f:55:1a:b5:84:78:e5:d8:95: 87:c6:57:0c:6c:ca:a8:10:3b:e4:80:d8:ae:10:b6: 91:88:2f:35:7b:64:68:4e:04:bf:b1:52:95:7f:49: 50:6f:bb:69:31:7e:a2:fa:a7:79:b8:88:85:51:ee: a2:b5:30:19:bb:fa:ec:67:0a:65:08:21:f6:76:d3: f2:76:16:64:12:06:c2:83:8a:ac:50:9b:e7:70:97: a9:4e:47:fd:ff:21:3d:23:57:d8:ba:58:05:14:0e: ae:42:cf:d5:6b:82:5e:45:12:32:5d:90:31:d8:58: 4a:db:8b:f1:9a:9c:ff:f0:d7:fa:42:65:a0:d2:c5: 25:e7:0b:81:49:ba:d0:cf:30:0b:3e:7e:fa:40:34: 4c:fb:a7:19:97:97:ed:18:1e:b4:30:70:35:e5:16: 49:6b:ef:1b:c3:7b:f4:c0:c6:6a:9c:5c:68:a3:66: 6c:60:59:98:67:2e:36:03:a7:d6:d0:23:bd:65:7a: 5a:ae:82:c0:f7:07:bb:af:b5:20:84:53:fe:a1:17: 01:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 X509v3 Authority Key Identifier: keyid:5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:dc:b5:81:a4:58:a4:93:19:c7:fc:27:30:a7:8a:9b:90:9a: cf:a5:af:f8:ae:d4:ba:1c:db:a2:e1:d5:d6:fd:e4:5b:eb:41: 17:b0:47:d6:4b:20:f8:67:a3:de:d6:a8:7e:0f:51:b0:5f:8e: e1:28:0f:b0:6d:75:1b:78:78:e9:0a:ff:49:9c:0e:b6:38:55: 42:a5:55:ea:d8:24:a9:63:f2:08:08:0c:a9:a8:cb:4d:d3:85: b3:28:f9:b3:16:70:17:5d:77:2c:12:ce:a3:e0:29:78:0b:db: 0f:33:3d:d1:4a:69:cb:aa:27:cf:c4:9b:d8:4c:0f:7f:27:1a: a3:47:aa:e3:25:9e:4b:9b:8b:6c:b5:68:4e:12:fb:81:a2:fd: 4e:e2:d4:e5:67:7c:9e:9c:fd:96:9a:72:f1:b2:ca:25:16:fe: 50:09:7f:7f:51:f3:c4:43:6e:85:51:e2:c1:5e:b8:a3:1e:ad: 59:11:9f:1f:28:68:75:ad:0f:84:4f:e7:f5:43:f4:ff:90:06: cb:e6:e8:c7:c3:3c:4e:a6:25:c7:16:32:25:c9:7f:cd:22:1f: f9:17:1f:fb:49:82:62:b0:d1:5c:18:08:02:c5:2c:15:bf:26: c3:4f:30:2c:55:d4:c8:c1:78:bd:2c:94:24:3f:69:10:e7:cc: 78:d6:2b:0f -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDWYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUI5 MjZEQkIwNzRDRjRGRjFBMUZBMzIwMjExRjU5RDY5NUNFRDI3OTAeFw0yNTExMDUx MDAwNDlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNFODY3NUY1NTUzQjVD M0VGNkU5RUU3ODI5NEJDNkI4QTZCNDU5RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCopG0QOYkVMtjGtqj8dl5VrfcBHqnJUWaEgFz+6YhqB037ESjQ LF24q9ZWarC9x4AA9y9VGrWEeOXYlYfGVwxsyqgQO+SA2K4QtpGILzV7ZGhOBL+x UpV/SVBvu2kxfqL6p3m4iIVR7qK1MBm7+uxnCmUIIfZ20/J2FmQSBsKDiqxQm+dw l6lOR/3/IT0jV9i6WAUUDq5Cz9Vrgl5FEjJdkDHYWErbi/GanP/w1/pCZaDSxSXn C4FJutDPMAs+fvpANEz7pxmXl+0YHrQwcDXlFklr7xvDe/TAxmqcXGijZmxgWZhn LjYDp9bQI71lelqugsD3B7uvtSCEU/6hFwEVAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUPoZ19VU7XD726e54KUvGuKa0WdkwHwYDVR0jBBgwFoAUW5JtuwdM9P8aH6Mg IR9Z1pXO0nkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkhSSS9X NUp0dXdkTTlQOGFINk1nSVI5WjFwWE8wbmsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1c1SnR1d2RNOVA4YUg2TWdJUjlaMXBYTzBuay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05IUkkvVzVKdHV3ZE05UDhhSDZNZ0lSOVox cFhPMG5rLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAFPctYGk WKSTGcf8JzCnipuQms+lr/iu1Loc26Lh1db95FvrQRewR9ZLIPhno97WqH4PUbBf juEoD7BtdRt4eOkK/0mcDrY4VUKlVerYJKlj8ggIDKmoy03ThbMo+bMWcBdddywS zqPgKXgL2w8zPdFKacuqJ8/Em9hMD38nGqNHquMlnkubi2y1aE4S+4Gi/U7i1OVn fJ6c/ZaacvGyyiUW/lAJf39R88RDboVR4sFeuKMerVkRnx8oaHWtD4RP5/VD9P+Q Bsvm6MfDPE6mJccWMiXJf80iH/kXH/tJgmKw0VwYCALFLBW/JsNPMCxV1MjBeL0s lCQ/aRDnzHjWKw8= -----END CERTIFICATE-----Generated at Wed Nov 5 22:19:43 2025 by rpki-client