$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft File: Uptgbbhig71KCK9-sz7ziiVmMbs.mft (raw, json) Hash identifier: qM+sQg87cBALXYmj2E1OJqAxYzdhK/WFLwaIK1QbMJk= Subject key identifier: FE:AD:35:29:A5:99:ED:7B:16:CF:C4:44:3C:03:E1:43:93:77:56:1F Authority key identifier: 52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB Certificate issuer: /CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Certificate serial: 0DF5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft Manifest number: 0D6F Signing time: Wed 05 Nov 2025 09:28:38 +0000 Manifest this update: Wed 05 Nov 2025 09:28:38 +0000 Manifest next update: Fri 07 Nov 2025 09:28:38 +0000 Files and hashes: 1: 22kQ8MnIvO958uXPKuyzasXiQ3k.roa (hash: Zmxde+QGybWi4Ba7JzXHmlHwOgD+xMgDtC+4ZUKYSqI=) 2: 4amXaaN3bAIg_uUSrPekB3kiaGw.roa (hash: 6KuV83R0OpmtQs2KdM6LV8l+AJ/kcLiGzTtXQWBLEto=) 3: 6g50AxGFPbhQMZznrmGWlLgBGKQ.roa (hash: hJs9OwoaNqoivT0YCq88JhOkDhcP0t1DtBLNEhB7vv4=) 4: BWlcig7KztDpG5hO9snMq6eiAO8.roa (hash: PfJeV82iz7cCgylipNzMnWUhMBZ6rpwG63c5UZfosiQ=) 5: Gf5viT2vUl8MDXXD5qFnJck2oZY.roa (hash: iQBN7IRm9XE8qw6qTqXKMGnDHT821G09G0yZy8ncnYM=) 6: GhTllQn97Wh3AXNmR1yB3GgRn0U.roa (hash: YgHlW3KHYqX/OZd81bf4RVhxonU8f3V6Cg/BUXAlzlw=) 7: PtraxRUq-zaxKogV1h3q4l5oDqg.roa (hash: OtRMocM47YaKYRM7/wqu3/kH/uwsP9trRXXP0rrB2Mc=) 8: RGvKgHVH-LTO8kVN7g187HfIK_Q.roa (hash: hx5Th35X+D3p3Vf/sYRnSiVXXpIKuboYORPSPR4WiQ8=) 9: TBBRwRF7X8VxfqLRLO_ibWZ2qzs.roa (hash: LGOIfnaeGTZ7ZE0LqGZsYaMB+BcsUmsj/08M9ke5VTE=) 10: Uptgbbhig71KCK9-sz7ziiVmMbs.crl (hash: 5iephoFBm4XP4vxceQedV3UJtxl3maeRfzxt3Alzaq4=) 11: V8xFM209d0-dvMcIfW9XF0bvwSM.roa (hash: QRQSk5+Io+2yBdALt4ALwxuBwk1CWYPUXMWWZEzp3Fo=) 12: YmZFwJiqrjyJPxv4AcsQNRb5E74.roa (hash: AlT71l3oz5P9Frb6cbMmIpj586gqCX6OvLivUwFPEhA=) 13: cV1GApm4gaemONxCzehkQ6oVZ6c.roa (hash: CdDSIv2HA0S43TkHRsh3P8rgBjCYakVPJFXPTf8cq3A=) 14: msvMGjjPLnHD6A3NOkfoWXnRGrE.roa (hash: 8sq3aS8YsDO1cdI5AnwUZZZDWTzAhv4YdKIMvHZnP9w=) 15: slBt3UZ6OeqUrjtCUKj33l60UUs.roa (hash: CZCP5Abpw/Iiia27K6Vo5S+3sKD6YM387itVpcBR7P0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3573 (0xdf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=529B606DB86283BD4A08AF7EB33EF38A256631BB Validity Not Before: Nov 5 09:28:38 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FEAD3529A599ED7B16CFC4443C03E1439377561F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a9:72:70:3c:c0:6e:bb:a7:f6:b9:c6:30:2e: 3c:ba:79:5c:0b:c2:60:e1:c4:21:51:16:88:8c:50: 6d:d1:e3:11:b6:cf:d1:3a:e7:ff:7a:6e:56:d2:65: cb:9c:f0:15:33:83:a3:e9:7f:b5:13:33:43:f8:8b: 54:92:3c:8d:b8:0f:a9:47:01:39:7e:3e:10:92:1a: 88:5e:72:c4:fd:ab:8a:3d:1e:7c:07:44:fc:bd:f9: 8a:b3:45:12:2f:57:a4:6b:ca:e4:f9:f6:30:a2:ce: ec:2b:42:ed:11:77:53:1c:f0:e0:5e:1e:0c:2c:b2: 6c:d7:01:87:3b:69:08:02:bb:f2:8b:88:e3:19:a3: 4e:6c:ab:b9:33:85:5d:e7:9a:98:d4:08:95:5b:35: d2:30:37:30:f7:9b:ab:46:1a:e1:4f:2f:2d:1a:b9: 5e:ef:18:b1:61:2f:43:91:1d:0e:7a:ac:a6:38:4f: 42:ff:be:65:de:bd:fc:91:c7:6c:a0:32:ea:d9:6f: ec:7b:b9:8c:a3:25:b5:0d:a8:04:a4:ba:ba:35:30: d8:be:99:20:d2:89:9f:24:69:23:7f:f3:de:77:71: 72:15:e8:97:a5:3b:3a:69:84:00:92:28:08:ed:ad: b4:cb:ef:3c:fe:1a:4a:90:99:6b:2a:1f:97:59:c0: 2a:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:AD:35:29:A5:99:ED:7B:16:CF:C4:44:3C:03:E1:43:93:77:56:1F X509v3 Authority Key Identifier: keyid:52:9B:60:6D:B8:62:83:BD:4A:08:AF:7E:B3:3E:F3:8A:25:66:31:BB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Uptgbbhig71KCK9-sz7ziiVmMbs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PAGIC/Uptgbbhig71KCK9-sz7ziiVmMbs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5c:50:8e:9d:1a:37:33:1b:c9:de:7a:fc:d4:5d:03:63:05:4b: 57:b9:b3:e1:b0:c2:f4:bb:59:f1:67:cf:2d:32:ab:5a:66:e0: 25:92:bb:98:98:b8:c0:db:f1:87:db:c2:73:4e:ff:b3:b9:c1: d3:19:51:99:fb:50:50:37:75:de:eb:25:af:fb:31:e1:6c:42: 36:ac:b9:26:72:c9:c1:41:86:4d:a5:5c:f7:59:00:e0:7d:d3: d7:b0:a2:c0:4b:8e:e4:c6:6b:c8:4e:51:fa:c1:7f:be:72:f5: 19:13:a4:16:d9:84:f8:ef:e6:30:00:78:c6:82:f8:bb:a0:b3: cd:5c:4a:51:45:d7:ef:fb:c4:20:7c:b6:62:26:58:70:b8:07: cd:a3:87:47:07:d2:4f:d1:ea:ca:ec:00:07:81:b2:35:31:04: f4:41:1d:16:25:65:15:d0:57:5a:e3:18:96:20:05:58:0e:8d: 00:63:14:f9:4e:3f:cc:bc:94:a0:1e:0f:74:96:40:72:6a:35: 55:b1:9a:9b:df:f1:30:fa:b2:7f:80:3b:97:de:b3:17:f8:46: c9:16:74:c4:a2:c4:44:b7:fc:25:a6:17:6e:c3:38:45:cc:25: bb:9a:ca:20:83:b9:22:05:e3:f9:0e:83:b1:da:2c:e8:b4:ab: 50:d7:86:ae -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDfUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTI5 QjYwNkRCODYyODNCRDRBMDhBRjdFQjMzRUYzOEEyNTY2MzFCQjAeFw0yNTExMDUw OTI4MzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZFQUQzNTI5QTU5OUVE N0IxNkNGQzQ0NDNDMDNFMTQzOTM3NzU2MUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC/qXJwPMBuu6f2ucYwLjy6eVwLwmDhxCFRFoiMUG3R4xG2z9E6 5/96blbSZcuc8BUzg6Ppf7UTM0P4i1SSPI24D6lHATl+PhCSGohecsT9q4o9HnwH RPy9+YqzRRIvV6RryuT59jCizuwrQu0Rd1Mc8OBeHgwssmzXAYc7aQgCu/KLiOMZ o05sq7kzhV3nmpjUCJVbNdIwNzD3m6tGGuFPLy0auV7vGLFhL0ORHQ56rKY4T0L/ vmXevfyRx2ygMurZb+x7uYyjJbUNqASkuro1MNi+mSDSiZ8kaSN/8953cXIV6Jel OzpphACSKAjtrbTL7zz+GkqQmWsqH5dZwCpPAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU/q01KaWZ7XsWz8REPAPhQ5N3Vh8wHwYDVR0jBBgwFoAUUptgbbhig71KCK9+ sz7ziiVmMbswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUEFHSUMv VXB0Z2JiaGlnNzFLQ0s5LXN6N3ppaVZtTWJzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9VcHRnYmJoaWc3MUtDSzktc3o3emlpVm1NYnMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9QQUdJQy9VcHRnYmJoaWc3MUtDSzktc3o3 emlpVm1NYnMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXFCO nRo3MxvJ3nr81F0DYwVLV7mz4bDC9LtZ8WfPLTKrWmbgJZK7mJi4wNvxh9vCc07/ s7nB0xlRmftQUDd13uslr/sx4WxCNqy5JnLJwUGGTaVc91kA4H3T17CiwEuO5MZr yE5R+sF/vnL1GROkFtmE+O/mMAB4xoL4u6CzzVxKUUXX7/vEIHy2YiZYcLgHzaOH RwfST9HqyuwAB4GyNTEE9EEdFiVlFdBXWuMYliAFWA6NAGMU+U4/zLyUoB4PdJZA cmo1VbGam9/xMPqyf4A7l96zF/hGyRZ0xKLERLf8JaYXbsM4Rcwlu5rKIIO5IgXj +Q6Dsdos6LSrUNeGrg== -----END CERTIFICATE-----Generated at Wed Nov 5 17:34:34 2025 by rpki-client