$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.mft File: eCczeuX0S1Tzhcty1PzQf66lyUM.mft (raw, json) Hash identifier: 8ktpzeNswHk+9oPs0LsnDGANb6LcIms4ExWLxpAkHf4= Subject key identifier: 21:66:D9:48:4D:34:50:F3:17:A1:0B:1D:76:6A:3C:C6:28:2E:B0:6F Authority key identifier: 78:27:33:7A:E5:F4:4B:54:F3:85:CB:72:D4:FC:D0:7F:AE:A5:C9:43 Certificate issuer: /CN=7827337AE5F44B54F385CB72D4FCD07FAEA5C943 Certificate serial: BE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eCczeuX0S1Tzhcty1PzQf66lyUM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.mft Manifest number: BC Signing time: Tue 04 Nov 2025 22:28:36 +0000 Manifest this update: Tue 04 Nov 2025 22:28:36 +0000 Manifest next update: Wed 05 Nov 2025 04:28:36 +0000 Files and hashes: 1: 1NDpSjHhquIex5BS_BQQJ2Zld8o.roa (hash: Ij5zM+rxtLDDFyY9z8vsPVRUsSJJmzIUgNwuizCH6jc=) 2: KAU6wUbri2krkxuiY2fzVqbaR1w.roa (hash: HpnxJTtpUqdddwvBmEtSRnlPDoFYZfXah0i09cLzgqg=) 3: eCczeuX0S1Tzhcty1PzQf66lyUM.crl (hash: mR7YSPyFIgYc0jALZuvVGe9wZTQctW2BCgM5UVB4JhQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eCczeuX0S1Tzhcty1PzQf66lyUM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 04:28:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 190 (0xbe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7827337AE5F44B54F385CB72D4FCD07FAEA5C943 Validity Not Before: Nov 4 22:28:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2166D9484D3450F317A10B1D766A3CC6282EB06F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:d0:93:75:5b:4d:38:52:6b:91:98:ae:92:28: c2:65:d1:24:14:17:95:04:ca:87:e0:ef:22:e3:cb: 74:72:20:ca:7c:38:25:d9:2f:1b:a2:18:d6:7f:32: 4a:c3:14:ef:13:b6:06:04:0e:c0:ee:3b:0a:04:94: 0f:87:e8:9d:4b:22:bd:5b:a9:a7:c6:25:8d:c0:4d: 39:59:d8:d1:32:8f:02:ad:72:6f:2d:cb:bc:c4:57: f2:10:ec:69:ee:ed:dd:86:5a:90:5b:3c:c5:c0:85: ee:7b:c7:26:82:a7:cf:41:49:37:db:d6:c2:5f:b1: 5b:2a:95:2a:50:26:68:13:fc:b1:1a:46:25:2d:99: 45:4e:fa:eb:6b:58:77:4d:b5:02:93:42:7d:90:2f: 2f:a7:34:ca:0f:49:dd:da:29:2e:98:26:bd:9c:b6: e7:26:24:0b:86:29:f7:73:51:62:12:7b:30:35:28: 06:c8:cc:14:ee:f3:48:f0:21:1d:46:fa:8c:8e:47: 51:b4:3e:33:95:92:5c:8f:21:4a:e3:2f:59:85:11: ab:35:cb:fd:cc:f8:f0:fb:36:72:0d:9a:e9:0e:28: 5e:29:2f:0d:be:81:f2:07:36:b0:39:a9:ad:c1:71: ba:6c:ce:1b:82:76:d5:a0:9e:27:22:8f:d4:2a:8c: bc:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:66:D9:48:4D:34:50:F3:17:A1:0B:1D:76:6A:3C:C6:28:2E:B0:6F X509v3 Authority Key Identifier: keyid:78:27:33:7A:E5:F4:4B:54:F3:85:CB:72:D4:FC:D0:7F:AE:A5:C9:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eCczeuX0S1Tzhcty1PzQf66lyUM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SHIYIYI/eCczeuX0S1Tzhcty1PzQf66lyUM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 63:7b:64:de:11:e1:49:94:b4:b5:bb:f2:00:05:da:bd:6b:0e: c3:91:0a:3f:4c:14:ff:cc:01:72:38:98:fe:c9:ad:0d:ff:69: 5c:f5:63:ec:57:88:00:b8:7e:c0:5d:14:da:a0:26:9c:20:7d: 8b:5d:bd:7e:1b:49:08:a5:b2:b4:a8:f0:ee:14:29:d1:ce:25: 92:37:f8:ad:73:c5:b5:17:01:b9:a9:3d:80:de:9e:a9:1c:70: 33:91:c2:be:9b:0c:67:3a:a7:df:d8:40:4c:b1:e3:6f:3b:51: ff:28:70:a8:c3:a8:cd:8c:3c:29:65:0a:b2:32:e8:5f:e8:f5: ad:e7:64:3d:f5:5f:2e:d6:9c:9d:00:69:af:b4:e3:da:6d:db: 48:dc:03:98:00:ba:f3:96:6f:c6:d2:37:be:84:73:d5:d4:cf: e7:6e:17:5c:fc:1c:ad:cf:0c:16:ed:18:c2:82:de:bc:b9:2d: 0f:4e:ce:69:b3:b5:9b:a8:8a:d3:f2:4e:d3:de:df:5a:dd:ca: d3:4e:fa:71:91:69:9e:d5:67:29:4f:7f:4e:ee:79:b4:94:d8: f5:9e:bb:b0:11:4b:61:40:c9:48:50:33:31:de:f2:76:e8:3c: 3e:00:e5:ec:60:e9:60:58:a8:d6:72:e4:c7:bb:f5:23:60:4c: 1c:c8:79:b4 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICAL4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzgy NzMzN0FFNUY0NEI1NEYzODVDQjcyRDRGQ0QwN0ZBRUE1Qzk0MzAeFw0yNTExMDQy MjI4MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIxNjZEOTQ4NEQzNDUw RjMxN0ExMEIxRDc2NkEzQ0M2MjgyRUIwNkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCt0JN1W004UmuRmK6SKMJl0SQUF5UEyofg7yLjy3RyIMp8OCXZ LxuiGNZ/MkrDFO8TtgYEDsDuOwoElA+H6J1LIr1bqafGJY3ATTlZ2NEyjwKtcm8t y7zEV/IQ7Gnu7d2GWpBbPMXAhe57xyaCp89BSTfb1sJfsVsqlSpQJmgT/LEaRiUt mUVO+utrWHdNtQKTQn2QLy+nNMoPSd3aKS6YJr2ctucmJAuGKfdzUWISezA1KAbI zBTu80jwIR1G+oyOR1G0PjOVklyPIUrjL1mFEas1y/3M+PD7NnINmukOKF4pLw2+ gfIHNrA5qa3BcbpszhuCdtWgnicij9QqjLy5AgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUIWbZSE00UPMXoQsddmo8xigusG8wHwYDVR0jBBgwFoAUeCczeuX0S1Tzhcty 1PzQf66lyUMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0hJWUlZ SS9lQ2N6ZXVYMFMxVHpoY3R5MVB6UWY2Nmx5VU0uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2VDY3pldVgwUzFUemhjdHkxUHpRZjY2bHlVTS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NISVlJWUkvZUNjemV1WDBTMVR6aGN0 eTFQelFmNjZseVVNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AGN7ZN4R4UmUtLW78gAF2r1rDsORCj9MFP/MAXI4mP7JrQ3/aVz1Y+xXiAC4fsBd FNqgJpwgfYtdvX4bSQilsrSo8O4UKdHOJZI3+K1zxbUXAbmpPYDenqkccDORwr6b DGc6p9/YQEyx4287Uf8ocKjDqM2MPCllCrIy6F/o9a3nZD31Xy7WnJ0Aaa+049pt 20jcA5gAuvOWb8bSN76Ec9XUz+duF1z8HK3PDBbtGMKC3ry5LQ9OzmmztZuoitPy TtPe31rdytNO+nGRaZ7VZylPf07uebSU2PWeu7ARS2FAyUhQMzHe8nboPD4A5exg 6WBYqNZy5Me79SNgTBzIebQ= -----END CERTIFICATE-----Generated at Wed Nov 5 04:07:13 2025 by rpki-client