$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft File: ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft (raw, json) Hash identifier: V319S754TPWhIf7VT0622f7hfd2LzK8fnThc5nNZVNw= Subject key identifier: A0:F8:BF:34:6C:2B:66:4A:B0:BC:55:8D:86:0C:D9:86:09:0B:8E:BB Authority key identifier: 66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A Certificate issuer: /CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Certificate serial: 01BA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft Manifest number: 01B7 Signing time: Tue 12 Aug 2025 21:11:27 +0000 Manifest this update: Tue 12 Aug 2025 21:11:27 +0000 Manifest next update: Thu 14 Aug 2025 21:11:27 +0000 Files and hashes: 1: EjNpMXXvvVCwyFGWyMubdtB2030.roa (hash: buZM3Uc7yt29XNlsfjEbiJShEjAL9a1I5Rfck0Eo4CY=) 2: ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl (hash: zQq5GhxOtyQPw3Q2nU9jiyrHvXoJ/7DF3KzGcqiVJlo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 Aug 2025 00:11:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 442 (0x1ba) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Validity Not Before: Aug 12 21:11:27 2025 GMT Not After : Dec 26 15:30:27 2025 GMT Subject: CN=A0F8BF346C2B664AB0BC558D860CD986090B8EBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:c0:f9:d6:56:11:68:14:3f:24:70:ef:76: 42:51:f9:ff:82:22:2a:40:9e:6e:eb:99:cb:f5:36: fd:bb:41:a6:61:df:9e:98:85:78:8b:c4:38:62:8d: de:6b:11:76:33:03:44:ee:eb:e5:c5:f0:cc:2d:6b: fc:d1:f4:b3:18:54:44:d3:e8:dd:7e:a1:e5:a0:7f: b0:6b:3d:5e:10:b3:c4:54:87:8e:04:c2:f0:53:33: a8:ef:82:b9:4e:e5:89:e3:be:ad:f3:bf:bf:74:e9: 73:40:35:e9:77:c4:1c:ec:12:f2:17:27:7c:45:7a: 89:e5:3d:a9:30:85:3c:24:39:c9:00:18:79:15:3b: ff:8b:9f:5b:61:9f:b2:91:93:f8:78:04:6b:62:ad: be:ce:ce:c4:20:b8:88:d4:ba:e4:77:6c:33:2b:96: b6:62:c6:ef:bf:b1:59:7c:c8:9d:13:dd:83:92:dd: ad:f9:4f:ea:d8:59:b8:77:4b:87:f8:f1:69:bb:3d: ac:b5:7c:ee:56:3d:f3:36:92:50:10:8f:e3:27:2c: af:85:a1:db:a4:62:43:86:ff:e8:d0:c5:57:cb:ea: 33:9b:a7:b5:ad:a8:6d:5b:01:70:72:a8:af:f3:28: 1c:a8:8d:e8:48:e1:66:08:0c:c9:46:9d:84:ef:35: 58:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F8:BF:34:6C:2B:66:4A:B0:BC:55:8D:86:0C:D9:86:09:0B:8E:BB X509v3 Authority Key Identifier: keyid:66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:4d:6f:e6:fb:88:50:24:f9:3c:6c:9e:76:d1:9c:86:9b:07: ac:4b:8d:70:94:2e:c2:1b:dc:94:0f:2c:0a:5a:95:b6:1f:cb: d7:a5:13:7c:74:7e:22:56:84:63:50:35:31:8a:0e:f3:fa:88: cb:83:94:be:bf:58:3a:02:cb:b8:57:01:e9:e9:8e:6a:bd:f7: 30:92:b6:b0:4b:f8:6a:c5:db:6e:a9:5a:33:15:e1:05:71:ce: ff:07:26:45:ef:da:d5:66:8d:8c:f7:07:b8:54:2b:60:8c:0e: ff:52:a0:32:e1:75:bc:01:d8:9f:db:80:20:82:10:1b:32:35: 3e:cb:86:57:2e:80:6b:cf:3a:19:02:6f:c0:e1:6b:e3:89:ce: 24:ed:a2:45:35:08:6f:65:df:7b:b9:ca:5c:fa:f7:ab:74:50: 1f:a7:f2:53:91:aa:72:66:11:e8:9f:7e:92:40:3d:c0:53:1e: 33:4a:83:82:db:fc:91:3c:d9:ee:43:09:c9:cc:2f:57:e1:70: 7d:46:b3:1a:ed:a6:7b:a4:ea:04:23:d0:f0:11:85:06:ee:cc: 8d:01:68:df:a6:e4:bd:b2:e0:92:95:ed:d2:e1:36:11:d5:a6: f0:66:0e:54:71:8f:1e:0c:ba:89:2a:9b:85:e6:e9:80:64:3c: 8f:9d:4b:17 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAbowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjYw Mjk2NUE3RDNGN0ZGQkYzQjUxRURGMTRFM0JCQ0MyREYzQjY5QTAeFw0yNTA4MTIy MTExMjdaFw0yNTEyMjYxNTMwMjdaMDMxMTAvBgNVBAMTKEEwRjhCRjM0NkMyQjY2 NEFCMEJDNTU4RDg2MENEOTg2MDkwQjhFQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLqcD51lYRaBQ/JHDvdkJR+f+CIipAnm7rmcv1Nv27QaZh356Y hXiLxDhijd5rEXYzA0Tu6+XF8Mwta/zR9LMYVETT6N1+oeWgf7BrPV4Qs8RUh44E wvBTM6jvgrlO5Ynjvq3zv7906XNANel3xBzsEvIXJ3xFeonlPakwhTwkOckAGHkV O/+Ln1thn7KRk/h4BGtirb7OzsQguIjUuuR3bDMrlrZixu+/sVl8yJ0T3YOS3a35 T+rYWbh3S4f48Wm7Pay1fO5WPfM2klAQj+MnLK+FodukYkOG/+jQxVfL6jObp7Wt qG1bAXByqK/zKByojehI4WYIDMlGnYTvNVjzAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUoPi/NGwrZkqwvFWNhgzZhgkLjrswHwYDVR0jBBgwFoAUZgKWWn0/f/vztR7f FOO7zC3ztpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvWmdLV1duMF9mX3Z6dFI3ZkZPTzd6QzN6dHBvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9aZ0tXV24wX2Zfdnp0UjdmRk9PN3pDM3p0cG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9aZ0tXV24wX2Zfdnp0 UjdmRk9PN3pDM3p0cG8ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAeE1v5vuIUCT5PGyedtGchpsHrEuNcJQuwhvclA8sClqVth/L16UTfHR+IlaE Y1A1MYoO8/qIy4OUvr9YOgLLuFcB6emOar33MJK2sEv4asXbbqlaMxXhBXHO/wcm Re/a1WaNjPcHuFQrYIwO/1KgMuF1vAHYn9uAIIIQGzI1PsuGVy6Aa886GQJvwOFr 44nOJO2iRTUIb2Xfe7nKXPr3q3RQH6fyU5GqcmYR6J9+kkA9wFMeM0qDgtv8kTzZ 7kMJycwvV+FwfUazGu2me6TqBCPQ8BGFBu7MjQFo36bkvbLgkpXt0uE2EdWm8GYO VHGPHgy6iSqbhebpgGQ8j51LFw== -----END CERTIFICATE-----Generated at Wed Aug 13 22:11:49 2025 by rpki-client