$ rpki-client -vvf rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft File: 0CA9C32F7806470F750EC53431D4F322F0851573.mft (raw, json) Hash identifier: hduWgAklTWxomXZ9iK1Q60KnAoAVtE1DRN/juLoEmWI= Subject key identifier: 9D:92:58:A4:18:9D:A7:12:6B:6C:F5:4F:39:25:AC:40:77:E2:FE:34 Authority key identifier: 0C:A9:C3:2F:78:06:47:0F:75:0E:C5:34:31:D4:F3:22:F0:85:15:73 Certificate issuer: /CN=0CA9C32F7806470F750EC53431D4F322F0851573 Certificate serial: 7E10B874E8F946A0354BC97A4FD76E9EB16CE492 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft Manifest number: 44 Signing time: Tue 30 Jun 2026 01:27:48 +0000 Manifest this update: Tue 30 Jun 2026 01:22:48 +0000 Manifest next update: Wed 01 Jul 2026 01:30:48 +0000 Files and hashes: 1: 3130332e3132352e3232382e302f32322d3234203d3e2039393139.roa (hash: 38TYeX+oJtOc/DoknBxIqH/fjs1oSmUXDDdootW8reI=) 2: 0CA9C32F7806470F750EC53431D4F322F0851573.crl (hash: IBPe2eeLuyDP1g9+7mG0VmDBBSPzQattCIGugjGZGE8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.crl rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 01:30:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:10:b8:74:e8:f9:46:a0:35:4b:c9:7a:4f:d7:6e:9e:b1:6c:e4:92 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CA9C32F7806470F750EC53431D4F322F0851573 Validity Not Before: Jun 30 01:22:48 2026 GMT Not After : Jul 1 01:30:48 2026 GMT Subject: CN=9D9258A4189DA7126B6CF54F3925AC4077E2FE34 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:94:ff:71:0b:d2:be:2f:e2:e3:37:40:b2:0b:f1: d4:fc:6f:9e:a9:44:c8:de:bd:21:47:6a:28:cc:9a: 8c:a8:5c:2f:fb:c3:5e:50:e7:0a:f2:ec:ab:cb:5b: c8:41:37:07:85:63:dd:e3:93:81:e4:b5:5b:d7:7d: d3:29:5d:d4:9e:60:53:84:61:01:56:f7:bf:9e:69: 38:a2:e7:70:a9:10:d3:3e:f9:32:7a:91:ab:e2:8e: 2b:d3:78:61:34:2a:e2:11:5c:b0:da:c9:7f:9b:b7: 49:14:e1:c3:db:de:e6:43:33:f5:13:46:19:34:e2: e7:75:ef:f2:67:ee:63:da:1e:0a:ac:e7:97:7a:e4: 6e:68:59:90:a2:22:6a:ee:50:ee:14:2b:2b:d6:fc: 49:a3:65:67:bc:01:4d:21:91:ad:7a:4a:a8:8b:74: f9:05:6b:7b:c0:3f:f4:1c:59:cd:b1:99:8e:51:4e: 30:c4:e9:9c:8d:ac:55:0e:ab:0a:d8:de:42:c9:2a: 64:67:58:f7:58:2f:74:d0:ed:91:52:b2:0a:0e:d5: dc:35:5c:dc:68:e6:3f:56:68:51:34:3f:6f:96:f1: ca:fb:aa:0a:ce:92:0e:39:51:4f:e3:a2:e2:9c:ad: 7f:9f:88:c1:09:d8:a6:ec:3c:2e:b6:28:16:10:82: df:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:92:58:A4:18:9D:A7:12:6B:6C:F5:4F:39:25:AC:40:77:E2:FE:34 X509v3 Authority Key Identifier: keyid:0C:A9:C3:2F:78:06:47:0F:75:0E:C5:34:31:D4:F3:22:F0:85:15:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:0a:a1:1b:8e:b1:fe:89:44:cb:f4:69:79:0a:74:6d:23:28: 3c:cd:a2:fc:7c:a8:33:e8:ed:af:69:b2:81:21:2b:75:b5:39: ff:b4:81:4a:e8:f3:0c:93:66:ba:e0:3c:c5:36:2a:80:8d:02: 25:f6:0d:df:bf:6f:4c:9c:aa:5d:b3:b9:aa:51:b9:db:e7:85: 7b:e8:c3:59:f7:fa:ab:f8:8f:af:23:46:ba:0c:3a:b5:1d:56: d5:94:2c:7d:fc:df:19:7f:db:3f:71:2f:41:5c:0b:d9:ad:50: 66:f0:25:04:7d:f4:da:77:14:9d:87:0e:2f:cd:1f:34:9b:d0: d7:c1:3d:49:a9:d3:01:51:77:f8:40:64:d3:9c:02:03:16:c6: 0e:d5:05:10:ee:03:46:0f:60:69:59:f7:7c:87:60:fd:65:a0: c6:f1:48:4d:62:1d:e8:9a:98:dd:78:7f:83:97:c7:71:58:6e: 84:d9:dc:eb:db:ee:33:b5:cc:ec:59:42:e4:d5:e4:42:ff:36: d9:7b:9e:4c:b9:2b:c4:7f:de:13:08:a7:ec:d4:70:b8:aa:54: 00:4b:28:64:1f:a5:df:bd:70:2c:b9:12:5a:4a:1c:42:a8:48: 55:be:a8:b8:d9:ae:bd:cd:eb:c0:5b:83:35:f6:63:06:55:21: 78:b8:1e:64 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUfhC4dOj5RqA1S8l6T9dunrFs5JIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENBOUMzMkY3ODA2NDcwRjc1MEVDNTM0MzFENEYzMjJG MDg1MTU3MzAeFw0yNjA2MzAwMTIyNDhaFw0yNjA3MDEwMTMwNDhaMDMxMTAvBgNV BAMTKDlEOTI1OEE0MTg5REE3MTI2QjZDRjU0RjM5MjVBQzQwNzdFMkZFMzQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCU/3EL0r4v4uM3QLIL8dT8b56p RMjevSFHaijMmoyoXC/7w15Q5wry7KvLW8hBNweFY93jk4HktVvXfdMpXdSeYFOE YQFW97+eaTii53CpENM++TJ6kavijivTeGE0KuIRXLDayX+bt0kU4cPb3uZDM/UT Rhk04ud17/Jn7mPaHgqs55d65G5oWZCiImruUO4UKyvW/EmjZWe8AU0hka16SqiL dPkFa3vAP/QcWc2xmY5RTjDE6ZyNrFUOqwrY3kLJKmRnWPdYL3TQ7ZFSsgoO1dw1 XNxo5j9WaFE0P2+W8cr7qgrOkg45UU/jouKcrX+fiMEJ2KbsPC62KBYQgt93AgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUnZJYpBidpxJrbPVPOSWsQHfi/jQwHwYDVR0j BBgwFoAUDKnDL3gGRw91DsU0MdTzIvCFFXMwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQk9PS1Mv MC8wQ0E5QzMyRjc4MDY0NzBGNzUwRUM1MzQzMUQ0RjMyMkYwODUxNTczLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzBDQTlDMzJGNzgwNjQ3MEY3NTBFQzUzNDMxRDRG MzIyRjA4NTE1NzMuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9CT09LUy8wLzBDQTlDMzJGNzgwNjQ3 MEY3NTBFQzUzNDMxRDRGMzIyRjA4NTE1NzMubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCPCqEbjrH+iUTL 9Gl5CnRtIyg8zaL8fKgz6O2vabKBISt1tTn/tIFK6PMMk2a64DzFNiqAjQIl9g3f v29MnKpds7mqUbnb54V76MNZ9/qr+I+vI0a6DDq1HVbVlCx9/N8Zf9s/cS9BXAvZ rVBm8CUEffTadxSdhw4vzR80m9DXwT1JqdMBUXf4QGTTnAIDFsYO1QUQ7gNGD2Bp Wfd8h2D9ZaDG8UhNYh3ompjdeH+Dl8dxWG6E2dzr2+4ztczsWULk1eRC/zbZe55M uSvEf94TCKfs1HC4qlQASyhkH6XfvXAsuRJaShxCqEhVvqi42a69zevAW4M19mMG VSF4uB5k -----END CERTIFICATE-----Generated at Tue Jun 30 19:10:08 2026 by rpki-client