$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft File: AaUyYbIAH6frV3k-LlebcyL452o.mft (raw, json) Hash identifier: F3h3lSvM1GAYrHLY2Qp2Ctrq/9lD0A08ihm9QMqud2k= Subject key identifier: C7:01:BF:6C:77:DF:67:12:0A:BF:8D:99:F4:30:58:7B:AB:7F:7A:2D Authority key identifier: 01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A Certificate issuer: /CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Certificate serial: 0E9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft Manifest number: 0DD2 Signing time: Wed 05 Nov 2025 09:28:30 +0000 Manifest this update: Wed 05 Nov 2025 09:28:30 +0000 Manifest next update: Fri 07 Nov 2025 09:28:30 +0000 Files and hashes: 1: 0BJDEPJGZfO3cR9jz5_oVGoL4MU.roa (hash: VsfRjBY3uD7bvJKsF88UtIrYJ/nXg3B+rM1M+RJblfs=) 2: 3zY4-7TWEGDTymgtcFjSVpfzKUM.roa (hash: FgA2aA7QAbskLK7a19oRDJ0n15pGpb1oCQwJv+rqQbw=) 3: AaUyYbIAH6frV3k-LlebcyL452o.crl (hash: W+q7b9/lktK+n0uDOL00Y9J+N28nzpACRP19ZJnSrNc=) 4: CdOVCzduR0gmGYzvxQs2Cqf69Dc.roa (hash: yqrkCfnpVK9X6UHB0YFH/n78K7fMnkWm0gzjeR97b7E=) 5: Da1isXUZPbA8qNa23Y0Pgw043XQ.roa (hash: QWUk4Xgvoa4yYeoUIHti7c6FVkVwiKS4XMqm8w7neug=) 6: HNa66nfKvkHUA8RrOgnARz54-Zs.roa (hash: G+17uvO2uUHRn1OnaL9F4eXRZTj+9p+wb+ykqsHXh1U=) 7: KyXrODuOd-fYsDPdNNrh1lWrTGg.roa (hash: GMKotDEC88NA+4fDY4Zr474R88l4xehGmWg+S+gHmGs=) 8: OcMZVyVloZZySYmNU42uJMFrw00.roa (hash: qo2SMPpbHqGeIkozGrC/IhsMjcA3oPz0SbjIugJKUvI=) 9: SurxeuMdlskjuu3oYAuFe-LzI8M.roa (hash: 9OemVku/OKkAc8vWIb9L3h+sirBxDXbcyQDLzj4sRek=) 10: bEH5Kb_JxIsOf8NFTGqjxxX7Xjg.roa (hash: Wkq56SxLjfQuAzigZV+LZ+Tz+MwclDnD23mbqM1t154=) 11: dL3IzOg1UpU0KLgrBKnEj4l1jA8.roa (hash: 3YgRQyZRliUMEGuznkNfu0Ufp0hvubNIOY9jpqd3stI=) 12: f7LsGrvkzonZbKx6h9rfNoJiATg.roa (hash: 9Dpm/+wE/UcHzDGMwoIiwEid3dR1ii8tlzzu9gMO19Y=) 13: fDzcJILtNy8gabJaWvP2k_a9E8Y.roa (hash: tu+lNHGPKDdRKEb9217W93fSnmTXENRYQcumtWXAHaA=) 14: iu7G1jMxQ2lv64XFMde8bbbPSLU.roa (hash: RgUNoo6pdNMILBtPiPfHX24EBiu494cJcX/6iG7d81E=) 15: kAYsCGHHapeWyRdB0_jPwzmQLrY.roa (hash: e2lpkolZKjE9NM4M8R/1yj50nSph0tqGdIs65nZCfxU=) 16: n03FakmoembHe5NoRgq9mBjrlUY.roa (hash: N1XJWkN5e1w9El2cyobAtRrOljOYUNTGJ0epFNlSttY=) 17: qk0FUWc4g7-rCf4jzHEzAHszGAA.roa (hash: GunTXkpwib+5vHDKky3KMzsex2PU+WTByaw3+Jj0UMA=) 18: rGGZg439vex95mUKgcMPvs4JMUQ.roa (hash: XpuXSU/j4dcZUykCyW8ZSTfN4ckH396cv2AUJySQhGA=) 19: taq1f8B4gDrPPLkRjB5G--cKZ6w.roa (hash: LNpmRHYAhx4349fbn+pqE7K8i0+U/zqTRDaULiTSoRw=) 20: v4eqK1b8zxDNQHwxOmW5wsyqdeI.roa (hash: eX7gYxG9IOP2iO3Mrrl0dV+jdD4i75o9WrpRKcFzoBs=) 21: ySYQijpah9jspq92Cty2PvGMt1k.roa (hash: fCH7j5wnTzYdAbg2fmEZmldxKqDMmeoSl0GGRroK9Io=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3738 (0xe9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=01A53261B2001FA7EB57793E2E579B7322F8E76A Validity Not Before: Nov 5 09:28:30 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C701BF6C77DF67120ABF8D99F430587BAB7F7A2D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c6:5f:99:08:bc:a5:93:d1:04:94:85:0d:43:66: cd:80:d9:ff:77:f9:9c:a2:6b:d8:7f:85:3c:41:66: 82:cd:12:d0:d9:2c:e5:da:0e:d6:c3:80:8c:63:69: 02:fd:03:fb:93:7b:ca:00:7e:68:d7:e2:20:4a:a5: c4:65:f4:78:66:4a:3e:70:f2:53:4b:71:63:45:c5: e8:43:7a:98:d5:29:13:46:87:cb:8d:66:fd:a3:1d: cb:a0:85:8d:36:21:ff:64:c9:f4:76:62:5b:39:4e: 6d:2d:b5:04:5b:98:b2:64:79:6a:e5:e8:ed:aa:0f: fb:73:aa:3c:92:3f:d4:47:4b:77:7b:69:d2:4b:61: 55:13:d6:4f:2b:3f:77:0c:cd:9e:17:59:56:bf:a6: b5:b9:e2:b2:54:65:6b:db:fe:cd:05:eb:33:e4:bf: 2a:e6:c2:2e:02:d1:b8:ff:9a:6e:10:c9:3c:e8:4c: 36:c0:1f:17:37:eb:1f:e5:df:33:42:4d:da:6c:91: d0:d6:90:b9:39:d7:90:0f:85:f3:1e:1d:b8:25:72: 25:6e:bd:c5:45:4a:2d:07:12:32:5d:d6:ea:24:02: 76:4c:d1:85:17:67:06:e3:2e:df:97:3f:98:6e:71: ba:0c:25:61:a6:dc:ec:2f:bd:65:93:c7:09:08:de: d9:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:01:BF:6C:77:DF:67:12:0A:BF:8D:99:F4:30:58:7B:AB:7F:7A:2D X509v3 Authority Key Identifier: keyid:01:A5:32:61:B2:00:1F:A7:EB:57:79:3E:2E:57:9B:73:22:F8:E7:6A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/AaUyYbIAH6frV3k-LlebcyL452o.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAVECOM/AaUyYbIAH6frV3k-LlebcyL452o.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:11:e6:95:d3:d6:18:e0:e6:c0:96:38:0d:67:45:3c:bf:1b: 0d:f4:c2:2f:fd:6f:d5:91:9a:19:f5:6f:d1:61:93:f9:07:7e: e4:7a:b6:08:07:05:f9:89:f5:5c:41:6f:ec:dd:18:e2:2c:fd: e4:12:62:40:84:19:e6:ce:0f:11:f5:14:05:31:be:89:0f:07: e6:67:a0:e6:cc:27:ec:e2:56:fc:2c:58:14:06:35:15:05:75: b1:9e:aa:8c:6a:eb:64:1e:6f:fa:6d:39:0c:60:46:3e:06:cc: 31:4d:26:1b:d8:a1:52:1d:7c:65:9d:6d:a0:c3:91:8a:01:d0: 21:97:22:2b:17:de:c9:ce:20:47:8e:35:35:a5:38:4b:3c:e8: 8d:ed:55:3c:0d:cd:6f:bc:55:dc:d5:73:1b:03:bc:67:f7:d0: b2:29:4f:52:3f:6a:f6:a5:70:6e:3b:a4:5e:68:87:c4:89:47: c1:30:cd:32:eb:3d:48:d4:a5:bc:22:5b:c2:75:d9:18:29:0c: ce:9a:a9:9e:64:bc:a8:e0:f2:61:5e:56:c5:3d:00:5a:af:e8: e4:dc:7b:8a:f6:f0:36:c2:d2:e8:fa:09:62:f8:17:14:01:28: 7e:ac:da:bf:c0:55:5f:93:c2:4d:4a:35:d3:ca:32:fd:a7:4f: fa:4c:5b:a3 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICDpowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDFB NTMyNjFCMjAwMUZBN0VCNTc3OTNFMkU1NzlCNzMyMkY4RTc2QTAeFw0yNTExMDUw OTI4MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM3MDFCRjZDNzdERjY3 MTIwQUJGOEQ5OUY0MzA1ODdCQUI3RjdBMkQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDGX5kIvKWT0QSUhQ1DZs2A2f93+Zyia9h/hTxBZoLNEtDZLOXa DtbDgIxjaQL9A/uTe8oAfmjX4iBKpcRl9HhmSj5w8lNLcWNFxehDepjVKRNGh8uN Zv2jHcughY02If9kyfR2Yls5Tm0ttQRbmLJkeWrl6O2qD/tzqjySP9RHS3d7adJL YVUT1k8rP3cMzZ4XWVa/prW54rJUZWvb/s0F6zPkvyrmwi4C0bj/mm4QyTzoTDbA Hxc36x/l3zNCTdpskdDWkLk515APhfMeHbglciVuvcVFSi0HEjJd1uokAnZM0YUX ZwbjLt+XP5hucboMJWGm3OwvvWWTxwkI3tnxAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUxwG/bHffZxIKv42Z9DBYe6t/ei0wHwYDVR0jBBgwFoAUAaUyYbIAH6frV3k+ LlebcyL452owGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FWRUNP TS9BYVV5WWJJQUg2ZnJWM2stTGxlYmN5TDQ1Mm8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0FhVXlZYklBSDZmclYzay1MbGViY3lMNDUyby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBVkVDT00vQWFVeVliSUFINmZyVjNr LUxsZWJjeUw0NTJvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AAwR5pXT1hjg5sCWOA1nRTy/Gw30wi/9b9WRmhn1b9Fhk/kHfuR6tggHBfmJ9VxB b+zdGOIs/eQSYkCEGebODxH1FAUxvokPB+ZnoObMJ+ziVvwsWBQGNRUFdbGeqoxq 62Qeb/ptOQxgRj4GzDFNJhvYoVIdfGWdbaDDkYoB0CGXIisX3snOIEeONTWlOEs8 6I3tVTwNzW+8VdzVcxsDvGf30LIpT1I/avalcG47pF5oh8SJR8EwzTLrPUjUpbwi W8J12RgpDM6aqZ5kvKjg8mFeVsU9AFqv6OTce4r28DbC0uj6CWL4FxQBKH6s2r/A VV+Twk1KNdPKMv2nT/pMW6M= -----END CERTIFICATE-----Generated at Wed Nov 5 17:19:31 2025 by rpki-client