$ rpki-client -vvf rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft File: 4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft (raw, json) Hash identifier: eZYxykvnh6ovWPdPb6UqtyT/pf4o9iUBrMoBnWLt4u4= Subject key identifier: 22:13:CC:5F:62:08:97:EF:7A:2E:90:6A:30:36:1E:78:27:AC:56:64 Authority key identifier: 4F:B4:59:5D:86:97:FD:1A:B7:D2:16:DE:07:9E:BA:59:77:36:43:D5 Certificate issuer: /CN=4FB4595D8697FD1AB7D216DE079EBA59773643D5 Certificate serial: 66DF80D77C7BA93589E46B6F0EDFF82456D4A26D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft Manifest number: 04 Signing time: Wed 13 May 2026 05:01:59 +0000 Manifest this update: Wed 13 May 2026 04:56:59 +0000 Manifest next update: Thu 14 May 2026 07:52:59 +0000 Files and hashes: 1: 4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl (hash: yzgVSOjCvT+Hfu8gP/4eqCtZW0f6moCtRirtQAjzdUI=) 2: 3130332e362e3132362e302f32332d3332203d3e20313331313439.roa (hash: lHrkC3JHZwSMosCVLrge69PjEFVk3qgvY9qe4jsf15s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:52:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:df:80:d7:7c:7b:a9:35:89:e4:6b:6f:0e:df:f8:24:56:d4:a2:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB4595D8697FD1AB7D216DE079EBA59773643D5 Validity Not Before: May 13 04:56:59 2026 GMT Not After : May 14 07:52:59 2026 GMT Subject: CN=2213CC5F620897EF7A2E906A30361E7827AC5664 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:77:49:2d:3a:66:d8:4f:d6:26:7a:4f:03:54: 8b:a7:fa:c1:63:eb:7b:96:e5:d6:8c:46:c9:9e:96: 15:ae:e6:e0:51:83:a2:10:37:75:36:09:8c:c6:47: 7f:e5:ca:ae:87:1f:66:91:5e:c3:86:70:48:00:40: 56:73:e9:0f:69:7a:95:d0:d5:2b:71:68:06:6e:cb: 59:dc:4d:98:41:4d:dd:72:6f:1e:76:c3:3b:fd:bc: d1:83:49:71:14:a8:48:6d:32:41:0c:18:90:78:5c: 24:44:22:12:fe:98:14:5a:26:7c:62:2e:0a:58:47: 19:a3:29:ac:c5:e8:ce:82:87:1b:76:70:b7:77:b3: 0f:f8:f7:fe:ea:9c:eb:9d:46:99:5b:35:e8:b2:bd: 61:f7:8e:db:ed:8b:f6:bc:cf:c6:23:d8:3e:e2:0e: 84:01:b4:30:88:18:dc:ed:36:6b:a8:44:8d:2b:83: c3:7a:31:5f:b0:9d:68:71:f2:a1:5b:c1:9b:d9:16: 68:a1:46:e7:fa:22:65:fd:42:e7:f2:84:06:e1:03: 98:b1:15:ef:94:6b:e2:44:0e:64:f6:31:a0:fe:16: da:57:3d:bb:81:12:39:0c:9b:9b:a0:b7:74:cf:53: a0:bf:e4:20:b2:fe:1d:16:7e:c1:8f:4d:87:e7:e9: 5d:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:13:CC:5F:62:08:97:EF:7A:2E:90:6A:30:36:1E:78:27:AC:56:64 X509v3 Authority Key Identifier: keyid:4F:B4:59:5D:86:97:FD:1A:B7:D2:16:DE:07:9E:BA:59:77:36:43:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption aa:44:e0:e6:cc:f5:67:4b:ea:6f:ba:a4:01:28:88:86:d0:34: 6a:25:ed:53:e3:d6:6e:26:99:4a:0b:82:16:57:c5:27:c2:56: 2b:e7:42:6d:d8:d4:86:b7:56:de:27:0a:12:e1:3b:73:ca:01: 0d:b9:c0:f7:3c:37:30:dc:5d:45:22:67:10:1e:d6:30:93:72: d3:68:d4:ac:54:d1:9b:7a:95:4b:d3:82:e6:1c:78:8a:3b:8d: 68:48:1e:06:15:05:94:b8:1b:55:25:ab:d1:85:de:05:d6:26: b9:73:6c:8e:83:b1:98:64:99:74:7b:bd:ab:b0:66:96:60:0c: c3:15:8c:bc:b7:96:cd:9c:36:bc:2e:17:a2:b1:9a:d0:65:a9: 12:c0:26:31:7b:46:0d:d8:17:fd:d0:0c:18:ad:73:a3:a8:78: 92:a1:d5:95:18:96:bb:f6:21:4a:d9:61:1f:f8:91:c7:af:ee: b7:71:f9:90:4b:66:5d:f1:90:e6:b0:3b:e4:ea:cc:bf:15:1d: 1c:2d:15:5a:bc:2a:01:3a:f9:69:3a:ef:cb:2b:ad:66:7b:c1: 97:42:a3:31:ed:8a:1e:7d:7d:3e:f8:e1:7f:45:c7:01:c4:d7: fd:71:2f:17:f7:fe:5e:78:1f:66:f6:31:e4:eb:f9:b3:3f:e3: 49:0c:a3:86 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUZt+A13x7qTWJ5GtvDt/4JFbUom0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZCNDU5NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3 NzM2NDNENTAeFw0yNjA1MTMwNDU2NTlaFw0yNjA1MTQwNzUyNTlaMDMxMTAvBgNV BAMTKDIyMTNDQzVGNjIwODk3RUY3QTJFOTA2QTMwMzYxRTc4MjdBQzU2NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDad0ktOmbYT9Ymek8DVIun+sFj 63uW5daMRsmelhWu5uBRg6IQN3U2CYzGR3/lyq6HH2aRXsOGcEgAQFZz6Q9pepXQ 1StxaAZuy1ncTZhBTd1ybx52wzv9vNGDSXEUqEhtMkEMGJB4XCREIhL+mBRaJnxi LgpYRxmjKazF6M6Chxt2cLd3sw/49/7qnOudRplbNeiyvWH3jtvti/a8z8Yj2D7i DoQBtDCIGNztNmuoRI0rg8N6MV+wnWhx8qFbwZvZFmihRuf6ImX9QufyhAbhA5ix Fe+Ua+JEDmT2MaD+FtpXPbuBEjkMm5ugt3TPU6C/5CCy/h0WfsGPTYfn6V3jAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIhPMX2IIl+96LpBqMDYeeCesVmQwHwYDVR0j BBgwFoAUT7RZXYaX/Rq30hbeB566WXc2Q9UwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkVTVEJB U0lTLzAvNEZCNDU5NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3NzM2NDNENS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS80RkI0NTk1RDg2OTdGRDFBQjdEMjE2REUw NzlFQkE1OTc3MzY0M0Q1LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkVTVEJBU0lTLzAvNEZCNDU5 NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3NzM2NDNENS5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAKpE 4ObM9WdL6m+6pAEoiIbQNGol7VPj1m4mmUoLghZXxSfCVivnQm3Y1Ia3Vt4nChLh O3PKAQ25wPc8NzDcXUUiZxAe1jCTctNo1KxU0Zt6lUvTguYceIo7jWhIHgYVBZS4 G1Ulq9GF3gXWJrlzbI6DsZhkmXR7vauwZpZgDMMVjLy3ls2cNrwuF6KxmtBlqRLA JjF7Rg3YF/3QDBitc6OoeJKh1ZUYlrv2IUrZYR/4kcev7rdx+ZBLZl3xkOawO+Tq zL8VHRwtFVq8KgE6+Wk678srrWZ7wZdCozHtih59fT744X9FxwHE1/1xLxf3/l54 H2b2MeTr+bM/40kMo4Y= -----END CERTIFICATE-----Generated at Wed May 13 20:33:30 2026 by rpki-client