$ rpki-client -vvf rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft File: 6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft (raw, json) Hash identifier: Rwj/ZTyKEDvSZSn2i1AZCaArPEE2SPlAcauCtCuwz0I= Subject key identifier: 5C:58:79:BB:05:7C:23:CD:A2:6F:6C:AE:54:00:C1:E6:EC:28:E0:CD Authority key identifier: 6A:8F:81:0E:B0:BF:68:3D:FC:A7:4C:40:3A:7B:03:D3:7E:16:F2:68 Certificate issuer: /CN=6A8F810EB0BF683DFCA74C403A7B03D37E16F268 Certificate serial: 309776B774605C776AFC8EC507ED486C581A764A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft Manifest number: 05 Signing time: Wed 13 May 2026 05:06:59 +0000 Manifest this update: Wed 13 May 2026 05:01:59 +0000 Manifest next update: Thu 14 May 2026 09:02:59 +0000 Files and hashes: 1: 3130332e3136312e362e302f32332d3234203d3e203231383539.roa (hash: uWZD4+YbW51xLCVpXbXAANNn4P9xs+4KtJrLiouzkvQ=) 2: 6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl (hash: fQYG3YGm9WXr75lMasl3uf1YzECBkKbM24SUcRwxQVw=) 3: 3130332e3136312e362e302f32332d3234203d3e20313331363138.roa (hash: HW3fNW9yAqboou7jAhk1cKMCcOPZDWYktjmxy1gjfvo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:02:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:97:76:b7:74:60:5c:77:6a:fc:8e:c5:07:ed:48:6c:58:1a:76:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A8F810EB0BF683DFCA74C403A7B03D37E16F268 Validity Not Before: May 13 05:01:59 2026 GMT Not After : May 14 09:02:59 2026 GMT Subject: CN=5C5879BB057C23CDA26F6CAE5400C1E6EC28E0CD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:ee:ce:7d:37:8c:84:ce:e6:8b:e3:9b:40:23: 03:1d:1e:18:55:a1:6d:98:47:e5:c6:f3:38:85:df: d2:c4:49:21:1b:8c:39:1e:fc:c6:6c:9f:34:03:ca: 18:2e:5d:8c:bf:63:32:31:16:43:69:3c:67:d3:48: e8:d4:4f:62:6a:dd:a2:ea:66:da:93:eb:ab:c6:bc: 61:5c:d0:c4:cf:ce:5c:5c:43:06:02:86:d8:dd:4a: 75:9b:1a:ee:95:71:37:1c:40:f1:cd:98:f8:7b:76: e2:aa:41:a2:f7:45:dd:70:49:d9:70:bb:1e:80:4c: be:be:20:44:1c:03:8c:a8:b3:7d:a8:9a:c4:44:e3: 83:99:75:5c:c2:3c:83:85:9f:bd:65:60:71:71:99: 9f:70:a1:92:fd:13:f3:4a:1c:cf:b9:63:ad:a8:0c: f0:e6:4d:74:51:61:c4:65:a8:64:eb:66:82:e2:29: b9:e4:c7:b6:9e:3e:40:cc:43:6d:74:b5:dc:aa:b6: e1:e0:7c:0c:7d:a4:3c:6e:49:ac:a1:11:02:5f:97: 77:16:60:49:50:45:89:29:c4:c6:88:bd:25:55:26: b6:43:ea:67:75:4e:02:0d:74:40:6a:73:7c:8c:ca: ad:52:17:2b:80:d0:59:69:b1:28:12:c3:ee:f9:a2: 09:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5C:58:79:BB:05:7C:23:CD:A2:6F:6C:AE:54:00:C1:E6:EC:28:E0:CD X509v3 Authority Key Identifier: keyid:6A:8F:81:0E:B0:BF:68:3D:FC:A7:4C:40:3A:7B:03:D3:7E:16:F2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 50:58:1a:da:fa:28:80:c3:d5:31:65:45:e5:f9:d5:93:21:bf: 6f:b3:d7:8e:6b:5f:a5:55:18:11:6a:7f:d7:ec:29:00:07:a3: 1d:ce:93:dd:1e:ff:2b:16:34:4f:34:d0:af:ab:a6:69:a0:0a: 60:8e:c4:15:f0:c0:5d:59:4e:6f:51:1f:86:d1:d9:bb:40:08: 9e:da:96:27:c8:27:99:15:1e:ee:62:67:3a:f4:bf:eb:f2:ae: f4:a4:12:07:b1:17:18:73:44:0f:0f:ab:9e:16:4d:44:3f:b8: c1:75:c4:d8:e6:b0:19:8b:62:d9:3c:ca:1f:fb:ff:6d:ca:ea: 22:9e:8d:54:bd:3c:a1:34:e1:e0:2a:ba:4b:72:71:a9:be:69: 24:8a:82:ed:1f:5e:0e:49:22:da:cf:5b:59:0d:18:d8:2c:a5: a5:73:3e:79:07:f0:a3:8d:ae:31:e6:b0:ad:6e:cc:75:92:16: 39:5a:0c:52:f2:40:bd:25:4b:bf:3e:31:b0:68:4a:cb:85:f4: f6:b8:1c:b9:60:dd:09:a5:8a:18:27:20:a8:9d:f7:12:ca:cf: f6:f7:bd:d2:dc:69:d7:7d:47:e7:be:3e:25:6b:9c:03:73:81: a3:34:51:da:21:15:e9:f4:1c:58:17:36:5c:92:64:50:66:53: 91:da:ff:52 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUMJd2t3RgXHdq/I7FB+1IbFgadkowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE4RjgxMEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3 RTE2RjI2ODAeFw0yNjA1MTMwNTAxNTlaFw0yNjA1MTQwOTAyNTlaMDMxMTAvBgNV BAMTKDVDNTg3OUJCMDU3QzIzQ0RBMjZGNkNBRTU0MDBDMUU2RUMyOEUwQ0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC97s59N4yEzuaL45tAIwMdHhhV oW2YR+XG8ziF39LESSEbjDke/MZsnzQDyhguXYy/YzIxFkNpPGfTSOjUT2Jq3aLq ZtqT66vGvGFc0MTPzlxcQwYChtjdSnWbGu6VcTccQPHNmPh7duKqQaL3Rd1wSdlw ux6ATL6+IEQcA4yos32omsRE44OZdVzCPIOFn71lYHFxmZ9woZL9E/NKHM+5Y62o DPDmTXRRYcRlqGTrZoLiKbnkx7aePkDMQ210tdyqtuHgfAx9pDxuSayhEQJfl3cW YElQRYkpxMaIvSVVJrZD6md1TgINdEBqc3yMyq1SFyuA0FlpsSgSw+75ogkHAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXFh5uwV8I82ib2yuVADB5uwo4M0wHwYDVR0j BBgwFoAUao+BDrC/aD38p0xAOnsD034W8mgwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FSTFdB VENILzAvNkE4RjgxMEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3RTE2RjI2OC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS82QThGODEwRUIwQkY2ODNERkNBNzRDNDAz QTdCMDNEMzdFMTZGMjY4LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FSTFdBVENILzAvNkE4Rjgx MEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3RTE2RjI2OC5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAFBY Gtr6KIDD1TFlReX51ZMhv2+z145rX6VVGBFqf9fsKQAHox3Ok90e/ysWNE800K+r pmmgCmCOxBXwwF1ZTm9RH4bR2btACJ7alifIJ5kVHu5iZzr0v+vyrvSkEgexFxhz RA8Pq54WTUQ/uMF1xNjmsBmLYtk8yh/7/23K6iKejVS9PKE04eAquktycam+aSSK gu0fXg5JItrPW1kNGNgspaVzPnkH8KONrjHmsK1uzHWSFjlaDFLyQL0lS78+MbBo SsuF9Pa4HLlg3QmlihgnIKid9xLKz/b3vdLcadd9R+e+PiVrnANzgaM0UdohFen0 HFgXNlySZFBmU5Ha/1I= -----END CERTIFICATE-----Generated at Wed May 13 20:33:41 2026 by rpki-client