$ rpki-client -vvf rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft File: 0CA9C32F7806470F750EC53431D4F322F0851573.mft (raw, json) Hash identifier: Q3xk8czGl3683TCzj1Z8sxXnW0G08ypUXVw3V5k5ERg= Subject key identifier: B3:3D:A5:5B:25:C8:CF:4A:CC:4E:E3:B5:0E:18:17:92:A3:40:3A:06 Authority key identifier: 0C:A9:C3:2F:78:06:47:0F:75:0E:C5:34:31:D4:F3:22:F0:85:15:73 Certificate issuer: /CN=0CA9C32F7806470F750EC53431D4F322F0851573 Certificate serial: 692FAC34C08A8160371CBB3512C5752DC9723D01 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft Manifest number: 04 Signing time: Wed 13 May 2026 03:21:31 +0000 Manifest this update: Wed 13 May 2026 03:16:31 +0000 Manifest next update: Thu 14 May 2026 07:10:31 +0000 Files and hashes: 1: 0CA9C32F7806470F750EC53431D4F322F0851573.crl (hash: oSJV8ToskK89Xj2Ar80OcxfdUAamXY0uiF7BoSIWoVU=) 2: 3130332e3132352e3232382e302f32322d3234203d3e2039393139.roa (hash: 38TYeX+oJtOc/DoknBxIqH/fjs1oSmUXDDdootW8reI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.crl rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:10:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:2f:ac:34:c0:8a:81:60:37:1c:bb:35:12:c5:75:2d:c9:72:3d:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CA9C32F7806470F750EC53431D4F322F0851573 Validity Not Before: May 13 03:16:31 2026 GMT Not After : May 14 07:10:31 2026 GMT Subject: CN=B33DA55B25C8CF4ACC4EE3B50E181792A3403A06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:c9:98:39:92:71:c7:0f:b3:25:5c:b4:02:e0: c3:50:82:2f:0e:46:79:2d:4c:bb:b5:6b:49:36:0b: fd:2b:34:dd:5f:2c:a0:ad:07:9f:45:aa:38:4d:8c: e6:1b:d1:21:11:0f:3c:7e:46:78:64:83:30:d2:19: 32:7c:7d:1b:de:91:da:92:d1:b3:5f:46:1b:b9:0f: a9:b9:96:0e:34:f1:59:70:21:40:ec:25:d6:95:b1: 8b:80:12:e3:91:a1:ed:4d:12:a8:0c:50:3c:c0:0f: 0b:5d:8a:17:6d:c6:1f:59:6a:72:8b:c1:a5:bc:b7: 5b:f4:3d:d7:e8:0d:47:a2:60:4c:db:94:d5:dd:05: 19:0d:af:d1:27:22:9b:86:be:bc:e3:7b:6d:90:e8: 4e:28:54:1f:0f:f5:79:54:28:05:ec:70:39:81:a3: c7:7c:da:0b:40:88:e5:e9:87:01:ca:ff:ee:fa:7a: 64:f0:ad:b7:21:dd:cc:e5:7a:22:c9:b4:43:c1:ca: a4:fc:9f:f3:56:4f:96:14:d2:44:7f:58:bf:23:b7: af:cf:ce:f7:7e:50:61:3d:df:30:29:80:83:f6:7f: e4:17:1e:9a:1f:ad:37:b0:e8:99:ea:82:d9:3b:fc: 59:ae:37:59:c6:39:69:e5:9b:9c:3c:92:04:c8:8f: 15:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:3D:A5:5B:25:C8:CF:4A:CC:4E:E3:B5:0E:18:17:92:A3:40:3A:06 X509v3 Authority Key Identifier: keyid:0C:A9:C3:2F:78:06:47:0F:75:0E:C5:34:31:D4:F3:22:F0:85:15:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:a7:58:09:4e:25:87:92:01:cf:fe:e7:3f:9f:6e:09:aa:79: 54:01:3e:ac:d5:f3:29:78:0a:52:fb:5f:43:60:b7:42:18:6f: df:6b:d4:86:cd:01:62:21:b4:10:a0:b7:16:02:70:91:dd:f9: 6e:98:24:ea:b8:69:e4:fc:25:3b:8f:b8:66:e8:a1:4c:b6:5b: 32:cc:17:bd:52:ad:c8:86:9c:02:42:12:1e:e7:50:03:15:cb: 39:c8:00:d7:ac:32:c0:06:ff:96:ca:ce:b9:96:a3:b6:b9:e3: b6:5e:c5:83:ec:2a:d2:8e:64:ea:4a:b8:c6:51:46:53:a7:6a: 40:b8:96:75:34:fc:31:4d:7c:ac:47:66:d5:c6:83:da:07:ea: 21:c6:19:b0:2b:6e:70:cb:20:24:e6:01:20:ef:2a:e8:07:ca: bf:ba:54:6a:c5:86:6d:43:fe:4c:eb:81:21:9f:b8:c5:51:6d: 04:03:c4:54:9e:6d:d9:bf:76:4c:1d:75:b8:2f:6e:ae:1c:40: 01:f1:fb:37:66:97:48:23:dc:15:33:6c:5b:21:d6:e8:14:f5: dd:f7:08:43:61:2d:04:c9:d0:53:38:51:ce:be:68:f1:c1:47: 9b:8d:76:7d:d2:c1:d5:9c:f1:8b:b9:9b:07:5b:6b:3b:7f:b9: c6:80:07:f0 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUaS+sNMCKgWA3HLs1EsV1LclyPQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENBOUMzMkY3ODA2NDcwRjc1MEVDNTM0MzFENEYzMjJG MDg1MTU3MzAeFw0yNjA1MTMwMzE2MzFaFw0yNjA1MTQwNzEwMzFaMDMxMTAvBgNV BAMTKEIzM0RBNTVCMjVDOENGNEFDQzRFRTNCNTBFMTgxNzkyQTM0MDNBMDYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC7yZg5knHHD7MlXLQC4MNQgi8O RnktTLu1a0k2C/0rNN1fLKCtB59FqjhNjOYb0SERDzx+RnhkgzDSGTJ8fRvekdqS 0bNfRhu5D6m5lg408VlwIUDsJdaVsYuAEuORoe1NEqgMUDzADwtdihdtxh9ZanKL waW8t1v0PdfoDUeiYEzblNXdBRkNr9EnIpuGvrzje22Q6E4oVB8P9XlUKAXscDmB o8d82gtAiOXphwHK/+76emTwrbch3czleiLJtEPByqT8n/NWT5YU0kR/WL8jt6/P zvd+UGE93zApgIP2f+QXHpofrTew6Jnqgtk7/FmuN1nGOWnlm5w8kgTIjxU5AgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUsz2lWyXIz0rMTuO1DhgXkqNAOgYwHwYDVR0j BBgwFoAUDKnDL3gGRw91DsU0MdTzIvCFFXMwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQk9PS1Mv MC8wQ0E5QzMyRjc4MDY0NzBGNzUwRUM1MzQzMUQ0RjMyMkYwODUxNTczLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzBDQTlDMzJGNzgwNjQ3MEY3NTBFQzUzNDMxRDRG MzIyRjA4NTE1NzMuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9CT09LUy8wLzBDQTlDMzJGNzgwNjQ3 MEY3NTBFQzUzNDMxRDRGMzIyRjA4NTE1NzMubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQC8p1gJTiWHkgHP /uc/n24JqnlUAT6s1fMpeApS+19DYLdCGG/fa9SGzQFiIbQQoLcWAnCR3flumCTq uGnk/CU7j7hm6KFMtlsyzBe9Uq3IhpwCQhIe51ADFcs5yADXrDLABv+Wys65lqO2 ueO2XsWD7CrSjmTqSrjGUUZTp2pAuJZ1NPwxTXysR2bVxoPaB+ohxhmwK25wyyAk 5gEg7yroB8q/ulRqxYZtQ/5M64Ehn7jFUW0EA8RUnm3Zv3ZMHXW4L26uHEAB8fs3 ZpdII9wVM2xbIdboFPXd9whDYS0EydBTOFHOvmjxwUebjXZ90sHVnPGLuZsHW2s7 f7nGgAfw -----END CERTIFICATE-----Generated at Wed May 13 20:33:45 2026 by rpki-client