$ rpki-client -vvf rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft File: B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft (raw, json) Hash identifier: xQdoAbIY/mkUTfoIPsNlZwDldTrPl/XQ+S+FkfJE3ro= Subject key identifier: 4D:7D:29:7E:BF:02:1A:CC:8F:5C:AD:84:E1:DF:FE:68:64:D7:6C:EE Authority key identifier: B7:2C:12:A5:51:5B:F3:3E:A3:5A:CD:6C:99:11:C9:AC:6D:E9:EA:05 Certificate issuer: /CN=B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05 Certificate serial: 21C8685159FAB3D9BF9F99D2623751DB661655 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft Manifest number: 07 Signing time: Fri 15 May 2026 14:17:29 +0000 Manifest this update: Fri 15 May 2026 14:12:29 +0000 Manifest next update: Sat 16 May 2026 18:05:29 +0000 Files and hashes: 1: B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.crl (hash: ZO6ZvO1GU91glPRbEnNdRupDi2GmDEWja8mdrixqPeE=) 2: 3135372e31352e37302e302f32332d3233203d3e20313530373639.roa (hash: RIJKr3g2uIwf5iqGFGjqViDDGGsabsMlFTzqof1niUM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.crl rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 18:05:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 21:c8:68:51:59:fa:b3:d9:bf:9f:99:d2:62:37:51:db:66:16:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05 Validity Not Before: May 15 14:12:29 2026 GMT Not After : May 16 18:05:29 2026 GMT Subject: CN=4D7D297EBF021ACC8F5CAD84E1DFFE6864D76CEE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:60:53:c2:4c:a8:95:65:50:84:73:50:d9:76: 81:80:dc:df:90:68:f0:55:09:bc:7e:a2:a4:75:12: d1:63:83:90:6b:fc:fe:b1:24:3c:4b:9b:f0:a3:b3: 72:d6:d2:ac:ac:e0:a0:ee:a6:3c:6c:c7:99:7a:52: 10:09:a0:95:75:9a:be:17:31:44:2e:af:e4:f4:0e: dd:9d:b0:1b:20:c3:fe:f7:fd:5f:63:b7:ca:39:ed: 8c:a8:68:1b:62:bd:c4:2d:93:49:bf:f8:ea:f1:f0: 5b:9e:74:06:76:91:1e:00:51:5c:67:86:91:a5:e0: 6f:da:61:30:14:67:6c:ba:5b:ff:87:aa:0e:e2:22: 43:2f:d5:5e:ec:15:7d:fd:ce:48:e6:de:ee:81:27: 8a:d1:d8:f9:fb:c5:4a:73:01:77:ea:c1:69:db:7c: 97:b8:3b:d5:59:3e:16:7b:84:50:bb:0b:1e:e4:60: 43:bc:93:76:25:23:9d:71:84:bb:76:45:38:93:04: bb:53:93:c9:de:da:49:01:47:08:42:c3:9f:64:40: d2:7e:73:34:c9:1c:70:fb:5d:77:be:53:8b:a7:b9: 3c:23:ed:92:12:be:65:06:da:71:d6:51:cd:81:7d: 36:6a:c8:d9:43:54:5c:3f:ed:62:07:92:92:27:6c: c6:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:7D:29:7E:BF:02:1A:CC:8F:5C:AD:84:E1:DF:FE:68:64:D7:6C:EE X509v3 Authority Key Identifier: keyid:B7:2C:12:A5:51:5B:F3:3E:A3:5A:CD:6C:99:11:C9:AC:6D:E9:EA:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4d:ca:fa:ac:ed:ca:5a:5a:05:17:51:1d:02:6a:28:29:ea:3b: ba:12:ee:1e:a5:8d:a2:f9:c2:ac:1f:c8:83:c7:a9:8b:a6:59: 26:11:56:f6:39:15:6b:a5:97:ca:f4:6e:d4:60:64:8b:62:0e: de:d0:d2:17:91:17:63:22:6c:e8:44:c0:7a:cb:04:97:69:91: 26:2f:8a:44:a9:37:05:2b:1f:fe:f5:cf:cf:87:93:a5:cf:d6: aa:1f:ab:63:5c:7f:07:e8:73:f7:e7:be:e8:bf:60:db:50:bd: 05:42:d0:4a:b7:d3:6b:5d:d0:da:63:85:50:b4:6f:14:f8:4a: 0d:c1:4c:07:3c:10:6d:a9:36:1a:08:cb:a4:5b:7e:4d:11:d6: cc:37:48:b3:28:d3:63:e1:48:b7:d8:69:ef:fe:8b:1f:09:39: 24:6d:a9:2e:36:4a:c8:55:75:5e:eb:c7:b1:03:fb:ef:5d:13: 96:f5:ad:63:5f:d5:be:da:1d:7c:98:f2:51:20:f0:56:ca:f4: b2:fe:fc:60:8f:7f:95:fb:5c:0f:63:f7:a6:e3:5e:21:53:8b: 5c:1c:c3:fb:c2:99:82:54:fa:6a:e4:04:56:58:67:d2:2f:f0: a4:ba:49:3b:f4:1a:dc:ae:61:e8:9e:2e:03:a3:d1:03:bb:a7: bc:79:10:1c -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgITIchoUVn6s9m/n5nSYjdR22YWVTANBgkqhkiG9w0BAQsF ADAzMTEwLwYDVQQDEyhCNzJDMTJBNTUxNUJGMzNFQTM1QUNENkM5OTExQzlBQzZE RTlFQTA1MB4XDTI2MDUxNTE0MTIyOVoXDTI2MDUxNjE4MDUyOVowMzExMC8GA1UE AxMoNEQ3RDI5N0VCRjAyMUFDQzhGNUNBRDg0RTFERkZFNjg2NEQ3NkNFRTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANNgU8JMqJVlUIRzUNl2gYDc35Bo 8FUJvH6ipHUS0WODkGv8/rEkPEub8KOzctbSrKzgoO6mPGzHmXpSEAmglXWavhcx RC6v5PQO3Z2wGyDD/vf9X2O3yjntjKhoG2K9xC2TSb/46vHwW550BnaRHgBRXGeG kaXgb9phMBRnbLpb/4eqDuIiQy/VXuwVff3OSObe7oEnitHY+fvFSnMBd+rBadt8 l7g71Vk+FnuEULsLHuRgQ7yTdiUjnXGEu3ZFOJMEu1OTyd7aSQFHCELDn2RA0n5z NMkccPtdd75Ti6e5PCPtkhK+ZQbacdZRzYF9NmrI2UNUXD/tYgeSkidsxksCAwEA AaOCAfQwggHwMB0GA1UdDgQWBBRNfSl+vwIazI9crYTh3/5oZNds7jAfBgNVHSME GDAWgBS3LBKlUVvzPqNazWyZEcmsbenqBTAOBgNVHQ8BAf8EBAMCB4AwZgYDVR0f BF8wXTBboFmgV4ZVcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9BU1BJUkFQ UFMvMS9CNzJDMTJBNTUxNUJGMzNFQTM1QUNENkM5OTExQzlBQzZERTlFQTA1LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8wL0I3MkMxMkE1NTE1QkYzM0VBMzVBQ0Q2Qzk5 MTFDOUFDNkRFOUVBMDUuY2VyMHEGCCsGAQUFBwELBGUwYzBhBggrBgEFBQcwC4ZV cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9BU1BJUkFQUFMvMS9CNzJDMTJB NTUxNUJGMzNFQTM1QUNENkM5OTExQzlBQzZERTlFQTA1Lm1mdDAYBgNVHSABAf8E DjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgAC BQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEATcr6 rO3KWloFF1EdAmooKeo7uhLuHqWNovnCrB/Ig8epi6ZZJhFW9jkVa6WXyvRu1GBk i2IO3tDSF5EXYyJs6ETAessEl2mRJi+KRKk3BSsf/vXPz4eTpc/Wqh+rY1x/B+hz 9+e+6L9g21C9BULQSrfTa13Q2mOFULRvFPhKDcFMBzwQbak2GgjLpFt+TRHWzDdI syjTY+FIt9hp7/6LHwk5JG2pLjZKyFV1XuvHsQP7710TlvWtY1/VvtodfJjyUSDw Vsr0sv78YI9/lftcD2P3puNeIVOLXBzD+8KZglT6auQEVlhn0i/wpLpJO/Qa3K5h 6J4uA6PRA7unvHkQHA== -----END CERTIFICATE-----Generated at Sat May 16 04:55:57 2026 by rpki-client