$ rpki-client -vvf rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft File: 671DA95F67D703A8EBC3330E782717679AE5E9FD.mft (raw, json) Hash identifier: kiT7EqMekfBHZcoFPyoh9F0kIgDj8IMRGXh/KU34+GA= Subject key identifier: F3:54:23:E8:79:E7:E2:F2:A9:95:0D:D2:98:88:BE:24:A3:59:E5:37 Authority key identifier: 67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD Certificate issuer: /CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Certificate serial: 683EB72BD2C2377B5EE9803D038848CDE7B81BEB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft Manifest number: 07 Signing time: Wed 13 May 2026 08:37:49 +0000 Manifest this update: Wed 13 May 2026 08:32:49 +0000 Manifest next update: Thu 14 May 2026 11:39:49 +0000 Files and hashes: 1: 323430323a343736303a3a2f33322d3438203d3e20323132393639.roa (hash: C3SLp2cLKJEoSfOCrv1QENdxIJcJ56ZPXagR0nS+hok=) 2: 671DA95F67D703A8EBC3330E782717679AE5E9FD.crl (hash: +1393Pw/GdKkhwbupNKmzZ8IcLBXusYPOUt3cnn1j+w=) 3: 323430323a343736303a3a2f33322d3438203d3e20313532363136.roa (hash: lKmthCTTisqjHpuoP2bikfzfGXpUjgsnHNJya4mfXq4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:39:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:3e:b7:2b:d2:c2:37:7b:5e:e9:80:3d:03:88:48:cd:e7:b8:1b:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=671DA95F67D703A8EBC3330E782717679AE5E9FD Validity Not Before: May 13 08:32:49 2026 GMT Not After : May 14 11:39:49 2026 GMT Subject: CN=F35423E879E7E2F2A9950DD29888BE24A359E537 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:68:90:30:56:34:06:a6:b9:65:19:a6:5c:4a: c5:59:00:18:fc:2c:f3:82:b3:7d:01:a8:0d:b2:9a: 2f:60:a7:70:e2:37:45:22:8f:4e:5d:cc:a5:b3:75: 44:6d:69:cf:90:23:96:a9:0b:ff:c4:26:39:e1:28: 2d:08:a0:6c:39:52:b7:2a:ed:7a:4b:27:13:e0:1b: a5:79:98:20:b0:00:90:4f:7d:31:2a:e3:0a:a1:a9: bf:e5:57:c2:03:2d:66:b3:ee:58:79:50:00:67:46: 68:25:68:b2:95:d1:1a:51:87:43:be:af:7c:c3:38: 77:0a:b9:30:a7:31:5c:c4:73:e6:15:ec:8b:39:b5: 5a:02:34:47:7b:c3:c7:3d:6f:45:0a:88:b6:b8:18: be:14:31:67:af:a0:41:94:e3:2f:db:f5:7e:20:2e: 9e:dc:5c:40:8c:65:fd:25:70:d7:ca:c8:ec:11:03: bd:c7:e6:82:1b:0f:5f:7c:3b:5a:76:ec:ab:78:8e: e3:2a:47:eb:5f:f4:82:cd:61:c7:98:06:f9:41:dd: 53:62:9d:ae:c6:47:d8:74:a4:5b:0f:d1:aa:ac:a1: 16:f9:ba:6e:69:f0:74:9d:29:cd:f6:61:cd:51:e9: ae:cf:a2:0a:8d:80:7b:73:87:6f:69:ad:d4:a5:9a: 78:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:54:23:E8:79:E7:E2:F2:A9:95:0D:D2:98:88:BE:24:A3:59:E5:37 X509v3 Authority Key Identifier: keyid:67:1D:A9:5F:67:D7:03:A8:EB:C3:33:0E:78:27:17:67:9A:E5:E9:FD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/671DA95F67D703A8EBC3330E782717679AE5E9FD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BHIS/0/671DA95F67D703A8EBC3330E782717679AE5E9FD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 21:6b:ca:50:50:76:e3:1c:9d:7d:b8:82:1a:eb:84:3b:ab:53: 5a:fa:06:83:1d:b8:e8:ec:ca:3f:5f:e1:ba:09:e9:82:3e:4a: e4:7d:94:52:55:b1:61:75:fc:c6:db:af:25:0d:54:18:e0:5d: 55:4a:98:5f:6a:cc:65:ba:1e:f2:2f:88:1e:e0:31:c1:db:ec: ec:a8:48:71:87:89:e9:75:56:4b:a3:fa:c6:2a:f3:ad:99:a8: 43:d3:61:85:80:83:64:9f:0a:06:04:41:ec:cd:c0:19:b8:4a: da:50:08:c0:b5:40:c7:d0:dc:fd:da:90:43:64:46:6c:95:6b: ba:53:71:ec:22:5d:2f:c6:ec:b9:06:db:75:c2:9a:ca:dc:f6: 58:df:e8:46:7c:2c:e5:75:48:b3:8b:3b:21:51:b2:ed:a5:9a: a8:bf:dc:27:dc:18:70:97:02:af:6e:84:56:16:85:2a:d0:b6: 0c:25:87:49:55:b3:58:50:51:8f:95:5a:26:2e:16:40:d9:76: 80:c2:e3:5c:9b:dc:da:31:7c:32:61:0b:5c:cf:2a:7d:a2:9d: e1:fc:ec:d7:87:2f:ea:5e:26:a8:81:25:69:a1:c0:ab:70:c1: 54:24:02:ea:96:d0:19:20:db:61:68:9a:3b:7d:27:4e:16:de: 22:57:83:86 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUaD63K9LCN3te6YA9A4hIzee4G+swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3Njc5 QUU1RTlGRDAeFw0yNjA1MTMwODMyNDlaFw0yNjA1MTQxMTM5NDlaMDMxMTAvBgNV BAMTKEYzNTQyM0U4NzlFN0UyRjJBOTk1MEREMjk4ODhCRTI0QTM1OUU1MzcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDBaJAwVjQGprllGaZcSsVZABj8 LPOCs30BqA2ymi9gp3DiN0Uij05dzKWzdURtac+QI5apC//EJjnhKC0IoGw5Urcq 7XpLJxPgG6V5mCCwAJBPfTEq4wqhqb/lV8IDLWaz7lh5UABnRmglaLKV0RpRh0O+ r3zDOHcKuTCnMVzEc+YV7Is5tVoCNEd7w8c9b0UKiLa4GL4UMWevoEGU4y/b9X4g Lp7cXECMZf0lcNfKyOwRA73H5oIbD198O1p27Kt4juMqR+tf9ILNYceYBvlB3VNi na7GR9h0pFsP0aqsoRb5um5p8HSdKc32Yc1R6a7PogqNgHtzh29prdSlmngVAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQU81Qj6Hnn4vKplQ3SmIi+JKNZ5TcwHwYDVR0j BBgwFoAUZx2pX2fXA6jrwzMOeCcXZ5rl6f0wDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkhJUy8w LzY3MURBOTVGNjdENzAzQThFQkMzMzMwRTc4MjcxNzY3OUFFNUU5RkQuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvNjcxREE5NUY2N0Q3MDNBOEVCQzMzMzBFNzgyNzE3 Njc5QUU1RTlGRC5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0JISVMvMC82NzFEQTk1RjY3RDcwM0E4 RUJDMzMzMEU3ODI3MTc2NzlBRTVFOUZELm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAIWvKUFB24xydfbiC GuuEO6tTWvoGgx246OzKP1/hugnpgj5K5H2UUlWxYXX8xtuvJQ1UGOBdVUqYX2rM Zboe8i+IHuAxwdvs7KhIcYeJ6XVWS6P6xirzrZmoQ9NhhYCDZJ8KBgRB7M3AGbhK 2lAIwLVAx9Dc/dqQQ2RGbJVrulNx7CJdL8bsuQbbdcKaytz2WN/oRnws5XVIs4s7 IVGy7aWaqL/cJ9wYcJcCr26EVhaFKtC2DCWHSVWzWFBRj5VaJi4WQNl2gMLjXJvc 2jF8MmELXM8qfaKd4fzs14cv6l4mqIElaaHAq3DBVCQC6pbQGSDbYWiaO30nThbe IleDhg== -----END CERTIFICATE-----Generated at Wed May 13 20:33:39 2026 by rpki-client