$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft File: ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft (raw, json) Hash identifier: huyY0vQOD3tElWjlw9XBU4BPr4KBp8GbvQtAo9J+0S8= Subject key identifier: A0:F8:BF:34:6C:2B:66:4A:B0:BC:55:8D:86:0C:D9:86:09:0B:8E:BB Authority key identifier: 66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A Certificate issuer: /CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Certificate serial: 01F3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft Manifest number: 01F0 Signing time: Wed 05 Nov 2025 10:00:04 +0000 Manifest this update: Wed 05 Nov 2025 10:00:04 +0000 Manifest next update: Fri 07 Nov 2025 10:00:04 +0000 Files and hashes: 1: EjNpMXXvvVCwyFGWyMubdtB2030.roa (hash: buZM3Uc7yt29XNlsfjEbiJShEjAL9a1I5Rfck0Eo4CY=) 2: ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl (hash: UjG1en3H/emjs5AnBvRdRtAPqd/nfSFhL/yjcf3CFsA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 20:59:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 499 (0x1f3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6602965A7D3F7FFBF3B51EDF14E3BBCC2DF3B69A Validity Not Before: Nov 5 10:00:04 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A0F8BF346C2B664AB0BC558D860CD986090B8EBB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a9:c0:f9:d6:56:11:68:14:3f:24:70:ef:76: 42:51:f9:ff:82:22:2a:40:9e:6e:eb:99:cb:f5:36: fd:bb:41:a6:61:df:9e:98:85:78:8b:c4:38:62:8d: de:6b:11:76:33:03:44:ee:eb:e5:c5:f0:cc:2d:6b: fc:d1:f4:b3:18:54:44:d3:e8:dd:7e:a1:e5:a0:7f: b0:6b:3d:5e:10:b3:c4:54:87:8e:04:c2:f0:53:33: a8:ef:82:b9:4e:e5:89:e3:be:ad:f3:bf:bf:74:e9: 73:40:35:e9:77:c4:1c:ec:12:f2:17:27:7c:45:7a: 89:e5:3d:a9:30:85:3c:24:39:c9:00:18:79:15:3b: ff:8b:9f:5b:61:9f:b2:91:93:f8:78:04:6b:62:ad: be:ce:ce:c4:20:b8:88:d4:ba:e4:77:6c:33:2b:96: b6:62:c6:ef:bf:b1:59:7c:c8:9d:13:dd:83:92:dd: ad:f9:4f:ea:d8:59:b8:77:4b:87:f8:f1:69:bb:3d: ac:b5:7c:ee:56:3d:f3:36:92:50:10:8f:e3:27:2c: af:85:a1:db:a4:62:43:86:ff:e8:d0:c5:57:cb:ea: 33:9b:a7:b5:ad:a8:6d:5b:01:70:72:a8:af:f3:28: 1c:a8:8d:e8:48:e1:66:08:0c:c9:46:9d:84:ef:35: 58:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:F8:BF:34:6C:2B:66:4A:B0:BC:55:8D:86:0C:D9:86:09:0B:8E:BB X509v3 Authority Key Identifier: keyid:66:02:96:5A:7D:3F:7F:FB:F3:B5:1E:DF:14:E3:BB:CC:2D:F3:B6:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ZgKWWn0_f_vztR7fFOO7zC3ztpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VERYFAST/ZgKWWn0_f_vztR7fFOO7zC3ztpo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 82:61:82:17:b2:0f:63:e6:83:33:a9:ce:33:e7:b6:dc:94:f2: de:99:ea:62:36:e1:b8:ba:75:22:d9:23:7b:3f:0b:7b:16:fd: d9:97:7c:98:93:93:10:6e:ad:df:16:49:38:3b:29:cc:7f:c7: 8c:22:67:27:32:42:ad:39:6a:eb:59:72:ba:26:ed:11:92:3f: 3b:07:27:04:e6:59:93:07:84:2a:63:e1:54:af:40:10:75:ad: f7:31:67:71:c5:ea:5c:64:5f:ae:39:d8:9a:ea:3c:f7:f5:b2: 0a:dc:b8:ec:17:dd:60:51:52:e4:45:4c:7b:22:d6:81:45:b7: d9:cc:d1:df:93:a0:30:06:cd:b5:8b:7a:45:3c:b0:dc:e9:d8: 28:61:06:ee:b0:90:bf:73:b0:3a:67:c6:7e:af:05:94:84:5d: 07:3f:d6:9a:33:64:18:26:cd:18:0c:ff:32:0b:50:0f:d2:9a: 9b:5e:7e:e0:d4:ec:10:eb:38:b4:58:b0:35:7e:45:cb:56:7e: 68:f2:b9:ee:71:86:3c:f1:4a:ff:b0:8f:ee:51:9d:a1:2f:8f: 8f:2a:29:ec:03:5b:26:39:99:57:c1:cf:93:2b:9d:4c:06:71: 44:ac:42:83:be:ee:b4:e8:d2:f0:27:d5:3c:a8:c0:e8:99:16: 43:db:14:25 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAfMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjYw Mjk2NUE3RDNGN0ZGQkYzQjUxRURGMTRFM0JCQ0MyREYzQjY5QTAeFw0yNTExMDUx MDAwMDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEEwRjhCRjM0NkMyQjY2 NEFCMEJDNTU4RDg2MENEOTg2MDkwQjhFQkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLqcD51lYRaBQ/JHDvdkJR+f+CIipAnm7rmcv1Nv27QaZh356Y hXiLxDhijd5rEXYzA0Tu6+XF8Mwta/zR9LMYVETT6N1+oeWgf7BrPV4Qs8RUh44E wvBTM6jvgrlO5Ynjvq3zv7906XNANel3xBzsEvIXJ3xFeonlPakwhTwkOckAGHkV O/+Ln1thn7KRk/h4BGtirb7OzsQguIjUuuR3bDMrlrZixu+/sVl8yJ0T3YOS3a35 T+rYWbh3S4f48Wm7Pay1fO5WPfM2klAQj+MnLK+FodukYkOG/+jQxVfL6jObp7Wt qG1bAXByqK/zKByojehI4WYIDMlGnYTvNVjzAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUoPi/NGwrZkqwvFWNhgzZhgkLjrswHwYDVR0jBBgwFoAUZgKWWn0/f/vztR7f FOO7zC3ztpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVkVSWUZB U1QvWmdLV1duMF9mX3Z6dFI3ZkZPTzd6QzN6dHBvLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9aZ0tXV24wX2Zfdnp0UjdmRk9PN3pDM3p0cG8uY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9WRVJZRkFTVC9aZ0tXV24wX2Zfdnp0 UjdmRk9PN3pDM3p0cG8ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAgmGCF7IPY+aDM6nOM+e23JTy3pnqYjbhuLp1Itkjez8Lexb92Zd8mJOTEG6t 3xZJODspzH/HjCJnJzJCrTlq61lyuibtEZI/OwcnBOZZkweEKmPhVK9AEHWt9zFn ccXqXGRfrjnYmuo89/WyCty47BfdYFFS5EVMeyLWgUW32czR35OgMAbNtYt6RTyw 3OnYKGEG7rCQv3OwOmfGfq8FlIRdBz/WmjNkGCbNGAz/MgtQD9Kam15+4NTsEOs4 tFiwNX5Fy1Z+aPK57nGGPPFK/7CP7lGdoS+Pjyop7ANbJjmZV8HPkyudTAZxRKxC g77utOjS8CfVPKjA6JkWQ9sUJQ== -----END CERTIFICATE-----Generated at Wed Nov 5 19:16:31 2025 by rpki-client