$ rpki-client -vvf rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft File: 671DA95F67D703A8EBC3330E782717679AE5E9FD.mft (raw, json) Hash identifier: SoAPg6/KdAUmKxZNrBPZ4mA+1uFw2LR43Eso7Ds72PU= Subject key identifier: 67:ED:16:DD:2E:87:0E:EF:97:24:42:A5:DC:45:2E:D7:27:5F:4F:B7 Authority key identifier: 67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD Certificate issuer: /CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Certificate serial: 7B34D52E949652F4C097D133797FAAA4A53F7007 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft Manifest number: 4A Signing time: Tue 30 Jun 2026 10:03:38 +0000 Manifest this update: Tue 30 Jun 2026 09:58:38 +0000 Manifest next update: Wed 01 Jul 2026 12:44:38 +0000 Files and hashes: 1: 323430323a343736303a3a2f33322d3438203d3e20323132393639.roa (hash: C3SLp2cLKJEoSfOCrv1QENdxIJcJ56ZPXagR0nS+hok=) 2: 323430323a343736303a3a2f34382d3438203d3e20333936393832.roa (hash: xNniVHF2D5n4PRBYJLC1H1m4ixoVY/+fUm+4DZvFSao=) 3: 323430323a343736303a39633a3a2f34382d3438203d3e20333936393832.roa (hash: W+cJcGEBHA5nMvetfbU/MxRKQJYX8lMgJjfV6ST7azg=) 4: 671DA95F67D703A8EBC3330E782717679AE5E9FD.crl (hash: ma8kJDh9C5uThJhzBECYdIZ6Q4RYE34m2JkFVX1jUeg=) 5: 323430323a343736303a3a2f33322d3438203d3e20313532363136.roa (hash: lKmthCTTisqjHpuoP2bikfzfGXpUjgsnHNJya4mfXq4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 12:44:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7b:34:d5:2e:94:96:52:f4:c0:97:d1:33:79:7f:aa:a4:a5:3f:70:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Validity Not Before: Jun 30 09:58:38 2026 GMT Not After : Jul 1 12:44:38 2026 GMT Subject: CN=67ED16DD2E870EEF972442A5DC452ED7275F4FB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:6b:9b:19:e4:9b:7f:5f:d1:1f:86:a7:44:01: f3:90:97:ca:86:97:92:5f:de:84:60:f2:63:c8:98: 9d:8e:cc:5a:40:ef:b3:49:e8:d4:c3:e2:c5:09:13: c6:3a:93:9b:44:92:9c:69:5c:4d:3c:89:53:81:6f: 0f:14:c6:dd:dd:d6:5f:f1:50:2b:4b:9b:7b:73:da: 17:3d:fd:ce:a5:45:e7:c9:b8:46:1c:be:f1:f3:91: 66:dc:c4:14:ac:56:d0:d7:81:b6:93:fe:ba:fe:38: 67:2c:ab:cc:08:bb:3b:3b:68:f1:c4:b8:ab:60:04: ff:5a:cf:4d:11:e1:c3:62:c6:9c:ca:b2:93:28:7e: 9e:24:ad:a3:97:02:48:22:b3:70:ad:75:e3:b8:28: 3b:2a:68:40:4b:12:da:c7:e6:20:1f:a6:a6:bb:77: 0f:c4:a1:7d:8a:1b:97:71:76:c9:97:88:bf:a8:c7: 21:3e:87:ac:53:df:c6:91:d6:f3:62:0b:18:7f:c8: e4:d3:fa:c0:31:67:04:eb:cd:3c:63:e5:85:86:83: fa:f0:09:06:66:31:92:5c:31:b1:9a:95:45:16:e1: 06:7b:91:e8:66:08:4f:32:d6:16:53:3c:8e:93:fb: 01:67:01:2c:78:76:2b:49:a0:4d:ff:22:b7:57:c2: f8:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:ED:16:DD:2E:87:0E:EF:97:24:42:A5:DC:45:2E:D7:27:5F:4F:B7 X509v3 Authority Key Identifier: keyid:67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:de:5d:9f:5a:e2:63:22:cc:14:19:49:64:fc:af:52:5e:64: aa:e0:3b:18:0f:71:f6:8e:d3:8b:62:19:96:9c:a3:3a:64:29: 13:ac:77:cb:07:1e:00:73:25:e3:d6:cd:b9:85:ee:4f:e9:fc: c6:a2:7c:8e:55:48:e6:51:a3:3c:7f:63:0b:bc:49:d2:95:f4: e0:e6:af:58:93:89:f7:e5:44:60:55:a7:8f:9a:5b:03:9d:7b: a0:5a:f2:38:65:ba:1c:f9:51:1e:d7:71:21:90:cf:db:1d:b6: cd:e7:2a:ec:53:e7:28:3d:b1:5d:43:dd:3c:e0:a6:9b:00:7e: d3:09:29:1d:4b:ce:a2:e8:12:91:a2:23:6c:d4:bf:07:d7:4d: 82:0a:a2:36:cc:60:b4:94:d2:f0:60:f8:ad:08:08:5a:3e:3a: 21:be:f1:de:75:26:43:a4:f7:57:ed:8a:88:b2:7c:8a:99:23: 31:ef:a2:5b:b8:ef:dd:3d:c9:fd:f7:f7:2b:99:95:1a:e6:91: 9d:40:5d:6b:3f:3b:57:2b:35:5f:4f:b6:05:a6:06:ed:b1:d7: df:fd:34:89:45:de:7c:4a:74:db:90:94:4d:86:88:8c:d7:f4: d7:a8:7d:d5:b3:aa:79:a8:3f:6a:3c:e6:4d:0c:be:51:cb:34: c9:b2:65:35 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUezTVLpSWUvTAl9EzeX+qpKU/cAcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3Njc5 QUU1RTlGRDAeFw0yNjA2MzAwOTU4MzhaFw0yNjA3MDExMjQ0MzhaMDMxMTAvBgNV BAMTKDY3RUQxNkREMkU4NzBFRUY5NzI0NDJBNURDNDUyRUQ3Mjc1RjRGQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDRa5sZ5Jt/X9EfhqdEAfOQl8qG l5Jf3oRg8mPImJ2OzFpA77NJ6NTD4sUJE8Y6k5tEkpxpXE08iVOBbw8Uxt3d1l/x UCtLm3tz2hc9/c6lRefJuEYcvvHzkWbcxBSsVtDXgbaT/rr+OGcsq8wIuzs7aPHE uKtgBP9az00R4cNixpzKspMofp4kraOXAkgis3CtdeO4KDsqaEBLEtrH5iAfpqa7 dw/EoX2KG5dxdsmXiL+oxyE+h6xT38aR1vNiCxh/yOTT+sAxZwTrzTxj5YWGg/rw CQZmMZJcMbGalUUW4QZ7kehmCE8y1hZTPI6T+wFnASx4ditJoE3/IrdXwvj/AgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUZ+0W3S6HDu+XJEKl3EUu1ydfT7cwHwYDVR0j BBgwFoAUZx2pX2fXA6jrwzMOeCcXZ5rl6f0wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkhJUy8w LzY3MURBOTVGNjdENzAzQThFQkMzMzMwRTc4MjcxNzY3OUFFNUU5RkQuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3 Njc5QUU1RTlGRC5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0JISVMvMC82NzFEQTk1RjY3RDcwM0E4 RUJDMzMzMEU3ODI3MTc2NzlBRTVFOUZELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAId5dn1riYyLMFBlJ ZPyvUl5kquA7GA9x9o7Ti2IZlpyjOmQpE6x3ywceAHMl49bNuYXuT+n8xqJ8jlVI 5lGjPH9jC7xJ0pX04OavWJOJ9+VEYFWnj5pbA517oFryOGW6HPlRHtdxIZDP2x22 zecq7FPnKD2xXUPdPOCmmwB+0wkpHUvOougSkaIjbNS/B9dNggqiNsxgtJTS8GD4 rQgIWj46Ib7x3nUmQ6T3V+2KiLJ8ipkjMe+iW7jv3T3J/ff3K5mVGuaRnUBdaz87 Vys1X0+2BaYG7bHX3/00iUXefEp025CUTYaIjNf016h91bOqeag/ajzmTQy+Ucs0 ybJlNQ== -----END CERTIFICATE-----Generated at Tue Jun 30 19:08:56 2026 by rpki-client