$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft File: TwAMtt3TdIem3h9-rb2hJwjrLBk.mft (raw, json) Hash identifier: ISCDzkVWZVaMZLy1LUgK+KY5M8pHJpgIp5bTK0fBNJg= Subject key identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 Authority key identifier: 4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 Certificate issuer: /CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Certificate serial: 023C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft Manifest number: 0239 Signing time: Tue 04 Nov 2025 03:58:19 +0000 Manifest this update: Tue 04 Nov 2025 03:58:19 +0000 Manifest next update: Thu 06 Nov 2025 03:58:19 +0000 Files and hashes: 1: TwAMtt3TdIem3h9-rb2hJwjrLBk.crl (hash: zJc/7rx1YIsb6oPAiyal9VYcrZAXxcKJt6cKeIkpXn8=) 2: _d-jZUiEDfO83PbVIn2gqWW69UA.roa (hash: ugvANw5msTs2WUJu2szekovokCLPID5epRFPn6Vko5k=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 572 (0x23c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4F000CB6DDD37487A6DE1F7EADBDA12708EB2C19 Validity Not Before: Nov 4 03:58:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6BA0B4DA6503A1532D5360C18EB1A32EBAA66400 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:1e:5d:3b:a1:99:c6:fb:3b:7a:74:a4:7e:e8: 5a:72:42:8e:25:eb:10:33:c3:96:55:5b:d2:40:e7: 21:01:fa:e3:1d:64:7e:e0:b5:b8:7a:de:05:10:27: 88:10:c4:88:8b:76:b3:fb:b3:98:fc:c7:2e:45:ba: 3e:4d:f3:cc:5a:c3:45:13:4a:8c:de:59:79:85:6f: c7:ed:14:0d:fb:9d:cd:4a:27:96:94:13:5b:2a:5a: c5:37:40:d8:78:84:88:fb:2a:90:27:fb:70:2a:9a: b3:ec:e5:34:d3:1c:48:37:6f:84:0b:e5:23:fe:b8: e4:55:82:0c:70:55:91:9a:87:e1:9c:f5:5d:94:e6: 76:d7:b8:ab:c8:f5:06:ef:f8:66:29:51:6b:07:7a: 21:fa:de:af:82:f0:c2:5a:1d:3e:91:24:4e:d2:67: 2e:9a:42:d1:1d:72:1a:5b:dd:ee:c5:2e:54:c7:59: df:c7:dd:5f:b4:1f:6f:95:76:d8:4b:e1:12:ad:2b: 08:8d:9d:2b:9d:7a:eb:da:f6:3e:d0:83:30:38:5d: 4c:4e:f1:fc:c3:30:9a:05:bf:fa:16:d7:1e:3c:fc: bc:4d:83:8a:1f:5e:cb:5b:73:c2:47:72:92:83:5b: 15:57:fa:95:85:6c:8f:7d:22:03:31:ec:22:d8:39: 0c:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6B:A0:B4:DA:65:03:A1:53:2D:53:60:C1:8E:B1:A3:2E:BA:A6:64:00 X509v3 Authority Key Identifier: keyid:4F:00:0C:B6:DD:D3:74:87:A6:DE:1F:7E:AD:BD:A1:27:08:EB:2C:19 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TwAMtt3TdIem3h9-rb2hJwjrLBk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCSKY/TwAMtt3TdIem3h9-rb2hJwjrLBk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:0d:b8:1b:19:ba:21:68:34:3a:0c:4a:bb:94:70:5f:38:61: 7b:b9:50:09:0d:56:93:8b:2b:2f:a7:28:d9:74:b9:df:a5:99: 6d:ec:e0:b8:53:54:d1:93:b0:cf:56:d6:fa:61:22:e9:8d:92: 5b:05:bf:a7:ef:44:ed:fb:9b:5f:08:54:2f:53:d8:e4:71:44: 85:86:9c:4a:bb:7a:d4:e3:ad:ff:fc:51:a7:66:6f:4f:e7:52: a6:8e:de:ba:8c:e1:76:8d:0f:a3:cb:7f:16:28:1e:d9:e5:42: fc:e3:85:c1:7d:b2:78:94:7b:f3:bc:ab:86:c8:fe:35:a0:f0: 29:b7:08:53:5c:f0:c5:8c:6d:80:fb:da:73:e6:38:8c:8b:ee: d3:8e:65:57:11:41:b7:5f:c8:3a:38:98:ca:1c:fd:7c:75:cd: 4c:d2:fb:7f:33:8c:fc:f8:6d:cf:63:08:46:88:eb:bd:e0:07: 9a:87:dd:65:1c:f2:65:8e:7c:86:c1:5a:65:9a:fc:e8:bc:80: 78:02:13:2f:74:3b:2d:37:e4:37:26:7d:23:af:e1:70:5b:2c: 5c:65:8b:ea:1e:89:41:9e:c3:bd:f7:ab:b5:4f:8d:5a:9f:d7: 61:60:38:f8:e0:53:43:1b:30:ac:1b:fd:0d:5b:4a:ab:7d:cc: 1c:50:85:8d -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAjwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEYw MDBDQjZEREQzNzQ4N0E2REUxRjdFQURCREExMjcwOEVCMkMxOTAeFw0yNTExMDQw MzU4MTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDZCQTBCNERBNjUwM0Ex NTMyRDUzNjBDMThFQjFBMzJFQkFBNjY0MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoHl07oZnG+zt6dKR+6FpyQo4l6xAzw5ZVW9JA5yEB+uMdZH7g tbh63gUQJ4gQxIiLdrP7s5j8xy5Fuj5N88xaw0UTSozeWXmFb8ftFA37nc1KJ5aU E1sqWsU3QNh4hIj7KpAn+3AqmrPs5TTTHEg3b4QL5SP+uORVggxwVZGah+Gc9V2U 5nbXuKvI9Qbv+GYpUWsHeiH63q+C8MJaHT6RJE7SZy6aQtEdchpb3e7FLlTHWd/H 3V+0H2+VdthL4RKtKwiNnSudeuva9j7QgzA4XUxO8fzDMJoFv/oW1x48/LxNg4of Xstbc8JHcpKDWxVX+pWFbI99IgMx7CLYOQwLAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUa6C02mUDoVMtU2DBjrGjLrqmZAAwHwYDVR0jBBgwFoAUTwAMtt3TdIem3h9+ rb2hJwjrLBkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENTS1kv VHdBTXR0M1RkSWVtM2g5LXJiMmhKd2pyTEJrLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9Ud0FNdHQzVGRJZW0zaDktcmIyaEp3anJMQmsuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UQ1NLWS9Ud0FNdHQzVGRJZW0zaDktcmIy aEp3anJMQmsubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEABQ24 Gxm6IWg0OgxKu5RwXzhhe7lQCQ1Wk4srL6co2XS536WZbezguFNU0ZOwz1bW+mEi 6Y2SWwW/p+9E7fubXwhUL1PY5HFEhYacSrt61OOt//xRp2ZvT+dSpo7euozhdo0P o8t/Fige2eVC/OOFwX2yeJR787yrhsj+NaDwKbcIU1zwxYxtgPvac+Y4jIvu045l VxFBt1/IOjiYyhz9fHXNTNL7fzOM/Phtz2MIRojrveAHmofdZRzyZY58hsFaZZr8 6LyAeAITL3Q7LTfkNyZ9I6/hcFssXGWL6h6JQZ7DvfertU+NWp/XYWA4+OBTQxsw rBv9DVtKq33MHFCFjQ== -----END CERTIFICATE-----Generated at Wed Nov 5 16:47:18 2025 by rpki-client