$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.mft File: L_s3WM4eNSi-nhZU447PjSkkCWE.mft (raw, json) Hash identifier: cr3rfDvyhO6HuW+e+LtrF7NIVoDkV0z37YrsxDCffXg= Subject key identifier: D3:3F:05:19:81:19:34:C2:41:09:B6:8A:0B:EF:8D:C1:B0:D1:0A:1C Authority key identifier: 2F:FB:37:58:CE:1E:35:28:BE:9E:16:54:E3:8E:CF:8D:29:24:09:61 Certificate issuer: /CN=2FFB3758CE1E3528BE9E1654E38ECF8D29240961 Certificate serial: 0D40 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/L_s3WM4eNSi-nhZU447PjSkkCWE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.mft Manifest number: 0D40 Signing time: Wed 05 Nov 2025 09:59:31 +0000 Manifest this update: Wed 05 Nov 2025 09:59:31 +0000 Manifest next update: Fri 07 Nov 2025 09:59:31 +0000 Files and hashes: 1: L_s3WM4eNSi-nhZU447PjSkkCWE.crl (hash: c7CFF58GQlUbDMjKhM5516HXcspgv+cfUW7c9YQdIlg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/L_s3WM4eNSi-nhZU447PjSkkCWE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3392 (0xd40) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2FFB3758CE1E3528BE9E1654E38ECF8D29240961 Validity Not Before: Nov 5 09:59:31 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D33F0519811934C24109B68A0BEF8DC1B0D10A1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:97:a6:65:7c:87:20:0b:df:6d:14:38:7b:46: 96:67:a7:de:a0:39:c9:32:a9:4c:14:25:26:7b:a6: e0:03:a7:2b:6e:fe:13:13:bf:19:a1:28:c1:11:94: fd:4d:9d:11:82:8a:d0:95:ec:a9:de:80:ca:73:d2: 39:7f:5c:f7:c3:ea:e9:15:ba:96:4b:47:ae:52:98: 5c:e4:b0:c7:f3:0d:cf:4c:97:ad:e1:f5:79:15:c2: a6:3a:29:c1:0d:30:60:b2:6a:f0:5a:57:97:28:ba: 93:1a:26:2a:92:95:84:a4:21:5e:a4:73:ab:13:2c: ba:36:a1:90:2f:69:29:82:b5:a7:8c:08:3f:f8:da: 10:d4:b8:99:29:4b:61:dd:f6:ef:b0:75:06:6b:bc: a4:ac:20:cb:f4:a1:68:02:ca:09:14:30:6b:7d:ae: cc:7c:54:36:cd:36:6d:aa:19:26:f4:03:95:7c:bb: ec:d4:f4:8a:03:4e:af:63:53:85:ce:2a:57:e7:25: 00:67:2d:d6:c2:11:58:84:d1:e1:03:ef:db:be:6d: 35:80:19:c4:5a:2b:c8:ad:01:42:8f:55:1d:90:02: c0:d8:71:f3:90:2e:31:1d:ae:bd:5d:5b:76:63:1f: 01:47:9d:6f:5a:e7:96:01:31:1a:e8:7d:6e:86:18: a6:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:3F:05:19:81:19:34:C2:41:09:B6:8A:0B:EF:8D:C1:B0:D1:0A:1C X509v3 Authority Key Identifier: keyid:2F:FB:37:58:CE:1E:35:28:BE:9E:16:54:E3:8E:CF:8D:29:24:09:61 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/L_s3WM4eNSi-nhZU447PjSkkCWE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TATUNGINFO/L_s3WM4eNSi-nhZU447PjSkkCWE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0b:18:a4:5f:2e:de:40:6e:77:c8:d0:d4:9a:79:7d:06:31: c8:0c:c6:2a:92:87:df:96:69:77:ce:0d:cc:7e:3c:28:8d:c8: 6d:56:a0:93:13:7d:3f:13:ab:12:d4:a1:9d:45:5f:c5:17:2e: a0:17:3b:9f:ec:2d:43:2c:e2:3e:ec:12:6d:90:2a:9b:d9:99: 4f:0c:5e:88:23:a5:8a:7c:b0:73:27:e1:95:0f:d9:57:59:05: c9:17:dd:5d:a5:b0:4e:f2:b0:95:10:e3:29:34:2e:cd:92:50: 0f:ec:50:1e:55:6b:cb:0f:75:12:f4:b1:ad:69:92:4c:55:9f: 4c:8e:2a:2c:03:48:6a:74:4c:76:b3:53:17:af:5d:5c:ea:52: c1:13:3d:af:81:85:78:b4:fe:4f:0b:12:6f:69:85:d8:6d:bf: 82:ca:16:d5:d1:60:81:b1:19:3b:b6:98:9c:f6:b0:38:1e:3e: a9:e7:f6:5b:0d:55:d7:31:cf:06:2b:22:4e:cd:3b:8e:24:08: b7:e6:cd:21:f5:1a:86:cb:12:0f:48:24:24:d3:11:8a:ae:fc: 15:16:6a:22:cc:16:e1:a1:91:66:74:f9:e6:3d:f2:71:83:17: e5:39:36:77:3d:ab:0a:ed:bb:a8:a6:ce:eb:36:f9:91:eb:fd: 0b:11:41:15 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDUAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkZG QjM3NThDRTFFMzUyOEJFOUUxNjU0RTM4RUNGOEQyOTI0MDk2MTAeFw0yNTExMDUw OTU5MzFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQzM0YwNTE5ODExOTM0 QzI0MTA5QjY4QTBCRUY4REMxQjBEMTBBMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBl6ZlfIcgC99tFDh7RpZnp96gOckyqUwUJSZ7puADpytu/hMT vxmhKMERlP1NnRGCitCV7KnegMpz0jl/XPfD6ukVupZLR65SmFzksMfzDc9Ml63h 9XkVwqY6KcENMGCyavBaV5coupMaJiqSlYSkIV6kc6sTLLo2oZAvaSmCtaeMCD/4 2hDUuJkpS2Hd9u+wdQZrvKSsIMv0oWgCygkUMGt9rsx8VDbNNm2qGSb0A5V8u+zU 9IoDTq9jU4XOKlfnJQBnLdbCEViE0eED79u+bTWAGcRaK8itAUKPVR2QAsDYcfOQ LjEdrr1dW3ZjHwFHnW9a55YBMRrofW6GGKa5AgMBAAGjggIPMIICCzAdBgNVHQ4E FgQU0z8FGYEZNMJBCbaKC++NwbDRChwwHwYDVR0jBBgwFoAUL/s3WM4eNSi+nhZU 447PjSkkCWEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEFUVU5H SU5GTy9MX3MzV000ZU5TaS1uaFpVNDQ3UGpTa2tDV0UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL0xfczNXTTRlTlNpLW5oWlU0NDdQalNra0NXRS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RBVFVOR0lORk8vTF9zM1dNNGVO U2ktbmhaVTQ0N1BqU2trQ1dFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAB4LGKRfLt5AbnfI0NSaeX0GMcgMxiqSh9+WaXfODcx+PCiNyG1WoJMT fT8TqxLUoZ1FX8UXLqAXO5/sLUMs4j7sEm2QKpvZmU8MXogjpYp8sHMn4ZUP2VdZ BckX3V2lsE7ysJUQ4yk0Ls2SUA/sUB5Va8sPdRL0sa1pkkxVn0yOKiwDSGp0THaz UxevXVzqUsETPa+BhXi0/k8LEm9phdhtv4LKFtXRYIGxGTu2mJz2sDgePqnn9lsN VdcxzwYrIk7NO44kCLfmzSH1GobLEg9IJCTTEYqu/BUWaiLMFuGhkWZ0+eY98nGD F+U5Nnc9qwrtu6imzus2+ZHr/QsRQRU= -----END CERTIFICATE-----Generated at Wed Nov 5 15:34:49 2025 by rpki-client