$ rpki-client -vvf rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft File: 4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft (raw, json) Hash identifier: K6OlSCyJDsjeImeY4AbfN1w7cME3f4aT10HlHQ1jR7Y= Subject key identifier: D4:DF:D0:37:AD:F9:C9:4B:74:3D:41:B3:99:9B:1A:C2:93:37:8B:6E Authority key identifier: 4F:B4:59:5D:86:97:FD:1A:B7:D2:16:DE:07:9E:BA:59:77:36:43:D5 Certificate issuer: /CN=4FB4595D8697FD1AB7D216DE079EBA59773643D5 Certificate serial: 32E151C8F367F22CB73C78F787631D3A71580872 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft Manifest number: 45 Signing time: Tue 30 Jun 2026 16:44:18 +0000 Manifest this update: Tue 30 Jun 2026 16:39:18 +0000 Manifest next update: Wed 01 Jul 2026 18:43:18 +0000 Files and hashes: 1: 4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl (hash: hzMNMX+9Wu8PuJO/eSMv+02ZwuqiPdhNWpNWD5Km/pg=) 2: 3130332e362e3132362e302f32332d3332203d3e20313331313439.roa (hash: lHrkC3JHZwSMosCVLrge69PjEFVk3qgvY9qe4jsf15s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 14:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:e1:51:c8:f3:67:f2:2c:b7:3c:78:f7:87:63:1d:3a:71:58:08:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB4595D8697FD1AB7D216DE079EBA59773643D5 Validity Not Before: Jun 30 16:39:18 2026 GMT Not After : Jul 1 18:43:18 2026 GMT Subject: CN=D4DFD037ADF9C94B743D41B3999B1AC293378B6E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:89:21:b6:46:b9:60:26:f8:cc:47:f1:6b:81: aa:7e:b6:dd:32:9e:8b:4a:03:e7:fc:55:52:aa:d6: 60:4a:e7:b3:e0:14:b7:6e:ec:2f:16:81:a3:cb:e2: 6c:05:15:3f:7d:6d:54:a3:6b:7d:1e:0d:df:c5:dc: f8:d5:ae:c5:01:ce:a6:38:5b:e6:cc:f2:cb:31:55: 0e:3e:7a:93:8d:ff:53:cf:2f:1e:e0:86:57:16:12: 24:c4:cd:e0:d3:d6:cc:00:04:89:8a:f6:5e:3e:70: 11:6f:a6:29:55:db:d9:f2:f6:65:dd:1d:be:5a:f1: d2:81:a7:22:ee:29:4c:e4:e3:f7:33:05:98:72:67: 6c:d3:ee:7e:23:9f:df:b0:39:07:29:44:4d:5a:fb: 74:7a:41:f9:1d:a8:66:29:6a:27:ef:0e:e4:9a:5f: d0:09:d8:9f:de:f6:64:3b:51:2b:93:22:88:8a:c3: 54:ec:fd:99:39:1f:19:59:07:ba:73:2c:54:c2:d4: 74:1d:76:f9:02:a9:04:ec:09:d7:68:f0:fb:47:2f: 64:0c:36:d4:07:0a:f8:e2:3d:fa:96:dd:e4:73:de: 40:7f:3e:e5:ec:9c:5a:5a:58:06:02:e0:8b:3d:06: 02:fb:ec:50:4b:c1:c9:41:b4:01:a7:72:ba:68:d7: 63:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:DF:D0:37:AD:F9:C9:4B:74:3D:41:B3:99:9B:1A:C2:93:37:8B:6E X509v3 Authority Key Identifier: keyid:4F:B4:59:5D:86:97:FD:1A:B7:D2:16:DE:07:9E:BA:59:77:36:43:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:29:7f:99:66:4d:ea:6b:42:2a:7f:ab:d4:1a:7f:c3:a2:bd: 01:d3:b0:a4:93:66:e1:fa:99:30:8c:18:25:02:6d:57:2f:6f: 7e:b7:5f:bd:58:8e:5f:5e:22:b1:80:91:01:d2:aa:34:21:a9: 76:d8:dd:d2:96:5f:00:a1:6c:16:43:04:d7:23:4e:a4:b9:87: 71:7d:03:ff:e2:fe:7d:95:5d:1d:a9:56:c0:eb:5c:0b:85:f7: 8d:a9:95:1d:e7:97:92:05:45:0d:8e:58:7e:9a:ad:14:c9:8a: cd:d2:ce:96:85:4f:2f:5e:b4:69:fe:3e:43:5d:04:30:91:74: ad:13:54:c7:f0:ae:a4:4c:ab:d1:24:43:ad:05:04:79:a0:c9: 5e:03:07:6d:5d:b2:ea:ce:d4:1f:db:b4:64:03:92:b1:05:6a: 60:e7:5a:71:62:ae:a2:ff:b1:08:5e:e2:4b:38:bb:e2:97:1d: 7e:be:9a:e0:a1:4a:36:eb:46:9d:9f:be:98:d8:5b:bd:d1:1f: f8:23:0a:a7:90:8b:ce:b9:d5:5c:10:9d:93:48:9c:5f:8d:42: 59:e2:2b:a3:00:8d:6b:41:ab:9a:b1:36:37:41:df:38:77:46: 61:ab:c6:46:0f:6e:bc:d7:4e:73:94:3e:71:0c:81:38:ad:7d: f4:00:34:9f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMuFRyPNn8iy3PHj3h2MdOnFYCHIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZCNDU5NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3 NzM2NDNENTAeFw0yNjA2MzAxNjM5MThaFw0yNjA3MDExODQzMThaMDMxMTAvBgNV BAMTKEQ0REZEMDM3QURGOUM5NEI3NDNENDFCMzk5OUIxQUMyOTMzNzhCNkUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCpiSG2RrlgJvjMR/Frgap+tt0y notKA+f8VVKq1mBK57PgFLdu7C8WgaPL4mwFFT99bVSja30eDd/F3PjVrsUBzqY4 W+bM8ssxVQ4+epON/1PPLx7ghlcWEiTEzeDT1swABImK9l4+cBFvpilV29ny9mXd Hb5a8dKBpyLuKUzk4/czBZhyZ2zT7n4jn9+wOQcpRE1a+3R6QfkdqGYpaifvDuSa X9AJ2J/e9mQ7USuTIoiKw1Ts/Zk5HxlZB7pzLFTC1HQddvkCqQTsCddo8PtHL2QM NtQHCvjiPfqW3eRz3kB/PuXsnFpaWAYC4Is9BgL77FBLwclBtAGncrpo12MXAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU1N/QN635yUt0PUGzmZsawpM3i24wHwYDVR0j BBgwFoAUT7RZXYaX/Rq30hbeB566WXc2Q9UwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkVTVEJB U0lTLzAvNEZCNDU5NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3NzM2NDNENS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS80RkI0NTk1RDg2OTdGRDFBQjdEMjE2REUw NzlFQkE1OTc3MzY0M0Q1LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkVTVEJBU0lTLzAvNEZCNDU5 NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3NzM2NDNENS5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAHAp f5lmTeprQip/q9Qaf8OivQHTsKSTZuH6mTCMGCUCbVcvb363X71Yjl9eIrGAkQHS qjQhqXbY3dKWXwChbBZDBNcjTqS5h3F9A//i/n2VXR2pVsDrXAuF942plR3nl5IF RQ2OWH6arRTJis3SzpaFTy9etGn+PkNdBDCRdK0TVMfwrqRMq9EkQ60FBHmgyV4D B21dsurO1B/btGQDkrEFamDnWnFirqL/sQhe4ks4u+KXHX6+muChSjbrRp2fvpjY W73RH/gjCqeQi8651VwQnZNInF+NQlniK6MAjWtBq5qxNjdB3zh3RmGrxkYPbrzX TnOUPnEMgTitffQANJ8= -----END CERTIFICATE-----Generated at Tue Jun 30 19:08:13 2026 by rpki-client