$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.mft File: 4q-M_ZUnD89cLKZdh3d_b7er_TI.mft (raw, json) Hash identifier: kkNsytNjWhVpdhh8b0bSLasHfn4NVRgJJb8ip+i/wHc= Subject key identifier: 5C:6A:C1:CE:6B:B5:0E:99:09:73:8E:73:61:A1:2C:AC:5C:60:03:7B Authority key identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32 Certificate issuer: /CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32 Certificate serial: 0494 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.mft Manifest number: 0482 Signing time: Wed 05 Nov 2025 10:29:52 +0000 Manifest this update: Wed 05 Nov 2025 10:29:52 +0000 Manifest next update: Fri 07 Nov 2025 10:29:52 +0000 Files and hashes: 1: 4q-M_ZUnD89cLKZdh3d_b7er_TI.crl (hash: qU2u1W6tjt6k80F0GGwkceQb1YTkjEFE0hx2huANM6c=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1172 (0x494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32 Validity Not Before: Nov 5 10:29:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5C6AC1CE6BB50E9909738E7361A12CAC5C60037B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:1d:6f:cd:62:e4:c0:c0:d6:cf:8a:15:46:04: 26:8b:1d:25:3c:5f:32:a7:13:2c:60:b9:c3:dd:55: 08:0d:0c:2e:73:fb:9c:e5:f8:eb:c0:11:6c:4d:e0: aa:fc:51:88:83:7c:0f:e1:75:f4:05:5c:9a:bc:0b: bc:53:a1:14:04:0f:be:68:6b:fc:d1:ba:f2:16:f3: 10:d1:0f:47:20:72:f8:e2:fb:5f:e9:66:dc:35:a3: b7:94:c3:fa:b3:4c:1d:ee:fb:aa:a2:3d:84:af:cd: ee:df:7b:c0:95:d4:26:e7:f2:a3:1f:3d:16:4e:17: 7c:01:b1:45:b7:b7:6a:e4:a3:08:97:77:a0:f8:46: 49:09:91:10:f3:3c:f7:f9:ab:57:f5:43:fa:41:ba: 00:22:e4:11:d9:ac:eb:e2:67:52:f1:ce:f7:9d:32: 3b:a9:73:b4:17:ad:23:04:96:92:09:b5:ff:b1:b9: ed:16:29:e2:6f:d7:34:e2:f7:0d:b9:55:52:06:92: dc:35:0f:68:9b:90:03:e4:10:bf:ec:14:6e:2a:a9: 97:dc:5e:f6:66:8a:a5:21:ff:6d:b8:b6:f4:ac:3a: da:9d:d8:d8:82:3e:dc:96:8b:4b:22:94:5e:72:2d: d7:8f:1f:f0:0d:20:e4:98:dd:bb:79:b0:69:12:51: b0:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:6A:C1:CE:6B:B5:0E:99:09:73:8E:73:61:A1:2C:AC:5C:60:03:7B X509v3 Authority Key Identifier: keyid:E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:2e:78:db:7d:5e:9d:55:06:9a:48:a3:33:3a:e9:7a:92:c7: ee:2b:d4:db:be:4f:5b:d4:16:5d:05:9e:66:79:ad:df:af:ce: 2f:97:7d:aa:22:ce:e1:c9:f7:f4:0b:6a:e7:36:7d:b3:1a:5f: 9b:f4:5b:2c:f1:01:a9:b9:ca:71:b5:57:47:ce:4d:0a:23:61: a9:d2:11:a4:cb:e2:b5:ab:0d:a4:c5:d1:95:f7:9a:91:da:0a: f5:8f:da:9b:39:d1:8e:b6:65:d2:0e:1d:12:70:1d:f2:99:02: 5d:6a:5a:80:8f:58:24:14:b8:87:95:92:ab:d7:bf:22:68:31: ad:82:49:17:6b:3c:df:6a:25:f3:33:e0:49:53:a7:b4:26:2b: b6:46:26:b8:b2:c7:65:f3:7a:77:71:45:78:bd:56:98:65:2e: fe:e1:36:12:25:bf:b1:1c:60:01:42:16:49:f2:09:73:2c:0b: ac:01:80:ca:78:3f:73:2a:d6:a0:4c:51:9d:ef:0c:52:38:c6: 8f:85:d4:4d:33:ee:e0:1c:52:f1:c2:13:a0:9b:41:70:9f:3d: 7b:54:02:0a:1e:4a:6e:9e:d6:54:25:aa:2f:e8:b3:3b:24:17: a7:16:a0:16:82:47:17:ce:07:0c:a5:d1:8c:8c:f5:2e:f0:92: 7a:4d:67:02 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICBJQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTJB RjhDRkQ5NTI3MEZDRjVDMkNBNjVEODc3NzdGNkZCN0FCRkQzMjAeFw0yNTExMDUx MDI5NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVDNkFDMUNFNkJCNTBF OTkwOTczOEU3MzYxQTEyQ0FDNUM2MDAzN0IwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxHW/NYuTAwNbPihVGBCaLHSU8XzKnEyxgucPdVQgNDC5z+5zl +OvAEWxN4Kr8UYiDfA/hdfQFXJq8C7xToRQED75oa/zRuvIW8xDRD0cgcvji+1/p Ztw1o7eUw/qzTB3u+6qiPYSvze7fe8CV1Cbn8qMfPRZOF3wBsUW3t2rkowiXd6D4 RkkJkRDzPPf5q1f1Q/pBugAi5BHZrOviZ1LxzvedMjupc7QXrSMElpIJtf+xue0W KeJv1zTi9w25VVIGktw1D2ibkAPkEL/sFG4qqZfcXvZmiqUh/224tvSsOtqd2NiC PtyWi0silF5yLdePH/ANIOSY3bt5sGkSUbD3AgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUXGrBzmu1DpkJc45zYaEsrFxgA3swHwYDVR0jBBgwFoAU4q+M/ZUnD89cLKZd h3d/b7er/TIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUkVDVEFM RS80cS1NX1pVbkQ4OWNMS1pkaDNkX2I3ZXJfVEkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBLzRxLU1fWlVuRDg5Y0xLWmRoM2RfYjdlcl9USS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1JFQ1RBTEUvNHEtTV9aVW5EODljTEta ZGgzZF9iN2VyX1RJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AKAueNt9Xp1VBppIozM66XqSx+4r1Nu+T1vUFl0FnmZ5rd+vzi+XfaoizuHJ9/QL auc2fbMaX5v0WyzxAam5ynG1V0fOTQojYanSEaTL4rWrDaTF0ZX3mpHaCvWP2ps5 0Y62ZdIOHRJwHfKZAl1qWoCPWCQUuIeVkqvXvyJoMa2CSRdrPN9qJfMz4ElTp7Qm K7ZGJriyx2XzendxRXi9VphlLv7hNhIlv7EcYAFCFknyCXMsC6wBgMp4P3Mq1qBM UZ3vDFI4xo+F1E0z7uAcUvHCE6CbQXCfPXtUAgoeSm6e1lQlqi/oszskF6cWoBaC RxfOBwyl0YyM9S7wknpNZwI= -----END CERTIFICATE-----Generated at Wed Nov 5 20:01:50 2025 by rpki-client