$ rpki-client -vvf rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft File: DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft (raw, json) Hash identifier: +pd5qcFZJgn0EVyjAQduVGLtwee8OT2I5o9VBlZC0tM= Subject key identifier: 34:5F:15:D8:54:59:C1:7B:74:84:5E:EC:A0:48:D5:0E:38:97:D9:9E Authority key identifier: DB:E0:6A:5F:C5:A5:E2:89:AC:EB:48:7B:50:C5:EC:D3:B6:DE:23:4C Certificate issuer: /CN=DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C Certificate serial: 5DC2A8A3D2F1F461196FDAB2D2B22F38EBF49A93 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.cer Subject info access: rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft Manifest number: 52 Signing time: Tue 30 Jun 2026 09:33:34 +0000 Manifest this update: Tue 30 Jun 2026 09:28:34 +0000 Manifest next update: Wed 01 Jul 2026 11:07:34 +0000 Files and hashes: 1: 3134342e37392e3233372e302f32342d3234203d3e20313532363132.roa (hash: aqUYGYZZ4SIzEA/BLO0DH4FickVrqbLzNS8KzmVfkyA=) 2: 3134342e37392e3233362e302f32342d3234203d3e203138303430.roa (hash: ZudjpagHov1aZlrdTbsVSXtYt3YeCsmSW4h5XCZ/uzs=) 3: 3134342e37392e3233362e302f32332d3234203d3e203138303430.roa (hash: mOpy66eNRndunzE6G06U+/veEB8DXbUp/i9Rna0dvIY=) 4: 3134342e37392e3233362e302f32342d3332203d3e203138303430.roa (hash: 1FIFjMBcizShdvw6u5phvDGtZhnMBusqAuzpJLq+G90=) 5: DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.crl (hash: gOEhRjzBXTkr9kZZ2b8EbJMEh08Zk+hWjtRlsMG3CV0=) 6: 3134342e37392e3233372e302f32342d3332203d3e20313532363132.roa (hash: y2jSoNJLs5+nwOx7mIkDPFacP932HoFtwivGyzUzSlg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.crl rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 19:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:c2:a8:a3:d2:f1:f4:61:19:6f:da:b2:d2:b2:2f:38:eb:f4:9a:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C Validity Not Before: Jun 30 09:28:34 2026 GMT Not After : Jul 1 11:07:34 2026 GMT Subject: CN=345F15D85459C17B74845EECA048D50E3897D99E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d9:31:1d:9b:ed:4c:58:ae:45:f7:c2:6a:58: fa:f6:4e:33:8d:08:25:db:bd:6a:f6:a2:24:1b:c9: 03:86:aa:c0:6a:17:fc:09:43:05:66:f8:aa:2e:6d: 89:56:26:8f:f8:54:7a:06:58:a2:c7:04:62:02:d0: bd:34:d1:b3:bf:bc:d2:09:df:07:40:bf:c9:c2:2f: b5:d5:61:3c:7e:8c:91:6d:ca:16:9e:82:7b:62:1b: 13:64:32:d4:63:01:a8:61:0f:55:98:74:f8:3e:ef: 57:7b:c1:3a:4a:43:84:e3:8c:1a:db:9c:cc:4b:40: e3:06:eb:b6:5d:90:d0:93:24:0b:df:2f:4f:55:b7: f1:9c:37:6d:21:2a:76:36:72:14:46:49:87:0e:cc: bd:9e:f7:aa:5c:0d:c0:1f:dd:4c:78:10:8f:e0:13: 11:d6:d5:71:38:35:c9:db:2d:82:04:b3:48:d9:f0: b0:db:c5:79:99:bb:eb:09:60:ab:50:08:c3:df:0d: 6b:90:9d:09:5e:07:8b:8d:3d:76:26:91:1f:80:04: 15:1a:ad:c6:81:46:b9:1e:9b:41:6b:52:66:c0:53: 08:81:c7:8d:dd:c9:b7:bd:0d:06:02:26:84:85:96: 4d:2d:46:21:1b:60:ae:1c:fb:82:aa:c6:d0:2d:c2: b7:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 34:5F:15:D8:54:59:C1:7B:74:84:5E:EC:A0:48:D5:0E:38:97:D9:9E X509v3 Authority Key Identifier: keyid:DB:E0:6A:5F:C5:A5:E2:89:AC:EB:48:7B:50:C5:EC:D3:B6:DE:23:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 26:cd:1a:4f:41:90:95:1f:d1:9b:69:cd:15:73:4c:19:a2:cd: 99:51:6f:4e:ab:7f:da:d2:bc:aa:e2:b5:d9:92:e4:af:56:c6: 7a:f7:aa:8d:55:80:e2:8b:7e:c3:86:7e:ca:dd:70:63:66:88: 96:63:3c:3b:c5:6d:bb:24:5e:d6:63:cb:44:a7:c5:5d:e8:44: 7b:dc:8f:aa:43:55:2a:e3:96:77:56:45:3e:1a:30:44:de:24: 09:60:52:5e:1b:c8:2a:de:60:ec:6a:8a:4f:e9:ca:e5:d2:a1: 0e:20:42:ab:e9:d5:e9:84:a9:ca:0f:1d:35:74:3c:ed:06:a2: 05:17:83:0e:0a:4d:ce:b6:36:65:d9:98:e5:18:ea:c0:b6:12: d6:63:96:81:f7:32:88:48:63:1a:f7:ce:0b:48:39:52:e8:3f: da:e0:39:a0:41:31:d1:6a:de:e4:d8:3e:c7:61:ab:e0:2b:82: 53:2b:90:db:87:aa:11:ca:ee:17:92:59:e0:b6:88:cd:98:aa: d3:58:fc:53:48:df:9c:62:f2:60:a0:d9:39:7a:04:27:20:c0: df:cf:d5:5a:f1:c7:ae:96:ff:6d:1d:ae:ff:1d:28:08:90:a8: 45:70:d3:83:d0:3c:af:42:10:24:70:c2:c6:65:b5:48:8f:d9: 52:29:d3:b7 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUXcKoo9Lx9GEZb9qy0rIvOOv0mpMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFMDZBNUZDNUE1RTI4OUFDRUI0ODdCNTBDNUVDRDNC NkRFMjM0QzAeFw0yNjA2MzAwOTI4MzRaFw0yNjA3MDExMTA3MzRaMDMxMTAvBgNV BAMTKDM0NUYxNUQ4NTQ1OUMxN0I3NDg0NUVFQ0EwNDhENTBFMzg5N0Q5OUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCS2TEdm+1MWK5F98JqWPr2TjON CCXbvWr2oiQbyQOGqsBqF/wJQwVm+KoubYlWJo/4VHoGWKLHBGIC0L000bO/vNIJ 3wdAv8nCL7XVYTx+jJFtyhaegntiGxNkMtRjAahhD1WYdPg+71d7wTpKQ4TjjBrb nMxLQOMG67ZdkNCTJAvfL09Vt/GcN20hKnY2chRGSYcOzL2e96pcDcAf3Ux4EI/g ExHW1XE4NcnbLYIEs0jZ8LDbxXmZu+sJYKtQCMPfDWuQnQleB4uNPXYmkR+ABBUa rcaBRrkem0FrUmbAUwiBx43dybe9DQYCJoSFlk0tRiEbYK4c+4KqxtAtwrfNAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUNF8V2FRZwXt0hF7soEjVDjiX2Z4wHwYDVR0j BBgwFoAU2+BqX8Wl4oms60h7UMXs07beI0wwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQU9URVJO RVQvMS9EQkUwNkE1RkM1QTVFMjg5QUNFQjQ4N0I1MEM1RUNEM0I2REUyMzRDLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8wL0RCRTA2QTVGQzVBNUUyODlBQ0VCNDg3QjUw QzVFQ0QzQjZERTIzNEMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZU cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9BT1RFUk5FVC8xL0RCRTA2QTVG QzVBNUUyODlBQ0VCNDg3QjUwQzVFQ0QzQjZERTIzNEMubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAmzRpP QZCVH9Gbac0Vc0wZos2ZUW9Oq3/a0ryq4rXZkuSvVsZ696qNVYDii37Dhn7K3XBj ZoiWYzw7xW27JF7WY8tEp8Vd6ER73I+qQ1Uq45Z3VkU+GjBE3iQJYFJeG8gq3mDs aopP6crl0qEOIEKr6dXphKnKDx01dDztBqIFF4MOCk3OtjZl2ZjlGOrAthLWY5aB 9zKISGMa984LSDlS6D/a4DmgQTHRat7k2D7HYavgK4JTK5Dbh6oRyu4XklngtojN mKrTWPxTSN+cYvJgoNk5egQnIMDfz9Va8ceulv9tHa7/HSgIkKhFcNOD0DyvQhAk cMLGZbVIj9lSKdO3 -----END CERTIFICATE-----Generated at Tue Jun 30 13:09:08 2026 by rpki-client