$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft File: OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft (raw, json) Hash identifier: 6TMC6vcenmAgXlIogaI40rKDdGBkr3UjNNG/2RFiVnI= Subject key identifier: 47:3B:B5:F3:F7:69:A0:EA:0C:96:E3:67:3D:14:3F:8C:37:D9:68:D0 Authority key identifier: 38:BF:B3:0C:72:CA:95:48:F7:96:CC:3D:4F:B6:00:6B:88:3E:27:01 Certificate issuer: /CN=38BFB30C72CA9548F796CC3D4FB6006B883E2701 Certificate serial: 0329 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OL-zDHLKlUj3lsw9T7YAa4g-JwE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft Manifest number: 0326 Signing time: Mon 06 Apr 2026 09:30:15 +0000 Manifest this update: Mon 06 Apr 2026 09:30:15 +0000 Manifest next update: Mon 06 Apr 2026 15:30:15 +0000 Files and hashes: 1: EGKl5CYR7Wo7MTVry6m0RiGIszQ.roa (hash: N1oxQKaruPhZdubEt3F+SP4Er0o2oeS8aWzvn/bDc9s=) 2: OL-zDHLKlUj3lsw9T7YAa4g-JwE.crl (hash: tg2QFd8KbvI66VOzJK2rgnOtYt8EUYqn9N/D8z6v/Bk=) 3: SLabTJZUnd9dxEvzHYFFrWea9UU.roa (hash: c8h/LrBIXQYnRPMFpRWKge88DSjxLRkfZbFW0lzmsog=) 4: y0It2rSVIUtpZCaFm-g0FOIFWKE.roa (hash: hT1m3KE7RGg7+zcFGlXdugL1MYYVOxzwx6SEZ/67da0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/OL-zDHLKlUj3lsw9T7YAa4g-JwE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 06 Apr 2026 15:30:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 809 (0x329) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=38BFB30C72CA9548F796CC3D4FB6006B883E2701 Validity Not Before: Apr 6 09:30:15 2026 GMT Not After : Oct 30 15:30:19 2026 GMT Subject: CN=473BB5F3F769A0EA0C96E3673D143F8C37D968D0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:80:14:a1:8c:fc:46:61:77:08:c2:73:d3:3f: 9e:39:53:fe:5a:dc:d5:ca:28:e9:9a:e1:46:63:da: 4d:43:d7:dc:6c:66:f1:7c:c5:4b:b5:e8:3c:a8:49: 66:3f:8e:13:9c:dd:99:dd:8e:ca:00:74:c4:03:91: ba:6a:66:19:6e:8b:42:93:77:b5:08:d6:0c:bc:73: a8:21:02:98:ed:1b:9a:db:3a:3f:66:cb:a5:2c:9d: 46:ce:a2:9d:0c:38:e3:a2:2c:80:91:e0:92:9a:5e: b6:39:08:08:aa:a9:b4:ca:bf:88:01:e8:65:42:95: df:cb:e3:94:02:23:d9:eb:0f:f8:96:b7:29:4a:58: 94:ba:18:86:77:30:4d:31:d6:90:49:d6:e3:d7:3b: bb:1f:68:84:3b:69:9c:fe:ea:36:59:0f:f0:02:6c: 33:1f:9c:97:f5:16:18:fb:90:12:e6:05:4d:31:6c: 41:1b:7f:35:4f:75:e5:b9:29:97:c5:ea:1f:65:12: 4b:31:39:a6:6d:b2:4e:9a:ed:34:7e:d2:06:2d:df: 79:a7:d8:ee:97:d2:46:3d:38:f8:a8:a9:bf:f1:b2: 5b:2a:71:48:b2:82:01:4b:69:0e:1b:49:b2:22:53: dd:7a:ec:83:63:26:1e:ea:c9:86:5c:6f:96:47:41: 24:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:3B:B5:F3:F7:69:A0:EA:0C:96:E3:67:3D:14:3F:8C:37:D9:68:D0 X509v3 Authority Key Identifier: keyid:38:BF:B3:0C:72:CA:95:48:F7:96:CC:3D:4F:B6:00:6B:88:3E:27:01 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OL-zDHLKlUj3lsw9T7YAa4g-JwE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGXI/OL-zDHLKlUj3lsw9T7YAa4g-JwE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6d:bc:fe:ae:14:fa:a1:1e:ae:c3:44:fd:3e:ce:53:a1:ee:88: 6b:82:90:38:88:3f:92:e1:bc:cc:f0:94:6f:8e:06:fc:76:d0: 9b:72:d4:e1:48:18:8b:63:dc:6a:d2:36:c5:71:24:3b:16:05: 55:8f:a9:fc:a0:a9:87:79:4c:7d:dd:68:20:0b:64:50:5f:c8: 63:98:a9:9a:be:da:8e:e7:5a:1b:af:fd:7b:77:19:aa:86:09: 8a:12:4d:88:c9:61:38:20:ec:4c:c7:32:9d:8d:21:bb:6e:09: a8:c3:7a:61:11:b7:a3:87:b2:ee:6f:c3:cc:95:05:2c:8f:be: ab:0b:49:61:f9:9f:f0:f3:31:c1:16:a9:10:a3:8d:71:39:57: 05:df:39:a7:75:a4:46:e8:41:20:54:05:da:a1:a5:39:bf:b8: 8d:7f:97:00:46:54:15:8d:b0:23:41:2a:60:1c:00:46:43:92: 57:3b:94:94:35:3d:b6:34:21:d5:b5:a4:f3:12:b6:48:bf:ac: 1a:aa:82:fb:2b:73:1c:5b:3a:b5:13:96:e5:0a:8a:60:03:9b: 58:b1:9b:b3:83:12:b1:1f:1b:43:97:9d:d7:62:48:53:c3:ab: fd:48:8b:27:d2:b1:13:17:47:bf:a3:cb:23:f8:1b:c8:f6:72: c6:95:13:e0 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICAykwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzhC RkIzMEM3MkNBOTU0OEY3OTZDQzNENEZCNjAwNkI4ODNFMjcwMTAeFw0yNjA0MDYw OTMwMTVaFw0yNjEwMzAxNTMwMTlaMDMxMTAvBgNVBAMTKDQ3M0JCNUYzRjc2OUEw RUEwQzk2RTM2NzNEMTQzRjhDMzdEOTY4RDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVgBShjPxGYXcIwnPTP545U/5a3NXKKOma4UZj2k1D19xsZvF8 xUu16DyoSWY/jhOc3ZndjsoAdMQDkbpqZhlui0KTd7UI1gy8c6ghApjtG5rbOj9m y6UsnUbOop0MOOOiLICR4JKaXrY5CAiqqbTKv4gB6GVCld/L45QCI9nrD/iWtylK WJS6GIZ3ME0x1pBJ1uPXO7sfaIQ7aZz+6jZZD/ACbDMfnJf1Fhj7kBLmBU0xbEEb fzVPdeW5KZfF6h9lEksxOaZtsk6a7TR+0gYt33mn2O6X0kY9OPioqb/xslsqcUiy ggFLaQ4bSbIiU9167INjJh7qyYZcb5ZHQSQ7AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQURzu18/dpoOoMluNnPRQ/jDfZaNAwHwYDVR0jBBgwFoAUOL+zDHLKlUj3lsw9 T7YAa4g+JwEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1hJ L09MLXpESExLbFVqM2xzdzlUN1lBYTRnLUp3RS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvT0wtekRITEtsVWozbHN3OVQ3WUFhNGctSndFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR1hJL09MLXpESExLbFVqM2xzdzlU N1lBYTRnLUp3RS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBt vP6uFPqhHq7DRP0+zlOh7ohrgpA4iD+S4bzM8JRvjgb8dtCbctThSBiLY9xq0jbF cSQ7FgVVj6n8oKmHeUx93WggC2RQX8hjmKmavtqO51obr/17dxmqhgmKEk2IyWE4 IOxMxzKdjSG7bgmow3phEbejh7Lub8PMlQUsj76rC0lh+Z/w8zHBFqkQo41xOVcF 3zmndaRG6EEgVAXaoaU5v7iNf5cARlQVjbAjQSpgHABGQ5JXO5SUNT22NCHVtaTz ErZIv6waqoL7K3McWzq1E5blCopgA5tYsZuzgxKxHxtDl53XYkhTw6v9SIsn0rET F0e/o8sj+BvI9nLGlRPg -----END CERTIFICATE-----Generated at Mon Apr 6 13:39:26 2026 by rpki-client