$ rpki-client -vvf rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft File: 6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft (raw, json) Hash identifier: aweDX0WLcP5ntL7tb2XZ1X7G4HPuxw+ceu/f+v+eVpk= Subject key identifier: 82:4D:30:4F:8D:44:67:DB:B6:C4:71:B0:68:67:A4:F9:8F:C7:D1:30 Authority key identifier: 6A:8F:81:0E:B0:BF:68:3D:FC:A7:4C:40:3A:7B:03:D3:7E:16:F2:68 Certificate issuer: /CN=6A8F810EB0BF683DFCA74C403A7B03D37E16F268 Certificate serial: 0254DC225289130CADD75EDE582A55427392EFC5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft Manifest number: 45 Signing time: Tue 30 Jun 2026 06:03:14 +0000 Manifest this update: Tue 30 Jun 2026 05:58:14 +0000 Manifest next update: Wed 01 Jul 2026 09:00:14 +0000 Files and hashes: 1: 3130332e3136312e362e302f32332d3234203d3e203231383539.roa (hash: uWZD4+YbW51xLCVpXbXAANNn4P9xs+4KtJrLiouzkvQ=) 2: 3130332e3136312e362e302f32332d3234203d3e20313331363138.roa (hash: HW3fNW9yAqboou7jAhk1cKMCcOPZDWYktjmxy1gjfvo=) 3: 6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl (hash: 7/35TAo73/XgESnGEIBEgdTZZKOvhspX0C+qVXFXlj0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 09:00:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:54:dc:22:52:89:13:0c:ad:d7:5e:de:58:2a:55:42:73:92:ef:c5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A8F810EB0BF683DFCA74C403A7B03D37E16F268 Validity Not Before: Jun 30 05:58:14 2026 GMT Not After : Jul 1 09:00:14 2026 GMT Subject: CN=824D304F8D4467DBB6C471B06867A4F98FC7D130 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:ac:8d:f6:5e:b8:c7:09:2f:25:65:84:75:22: f0:c5:6d:72:a7:1d:3c:7b:96:f1:4b:c2:72:bd:06: 06:4f:4f:a1:ee:9c:91:a4:54:ec:4a:71:50:ef:81: 65:40:dc:6d:7d:1c:81:1c:de:f0:1d:69:8c:5e:0c: f9:76:f7:44:78:6c:13:7c:7f:86:81:b3:ee:06:1a: b8:58:7f:9c:46:65:66:b2:d9:d6:aa:a9:be:3f:f4: f6:ed:37:7e:d3:4d:a6:2c:15:1f:d0:1d:b4:78:db: ce:a7:47:51:28:2f:74:3b:2a:e4:ba:0e:ed:06:3e: f2:51:e6:84:80:ab:48:a7:be:1c:f6:0f:da:0f:d7: f1:1d:12:a4:01:f4:b7:0d:4a:99:d3:17:7f:44:67: 10:f2:49:4e:c7:ed:a6:69:9a:64:8a:96:96:67:08: 71:d7:ab:a7:01:69:21:34:4c:2c:2a:b9:1c:d1:c6: a0:64:73:34:a1:5c:2b:b0:a4:05:47:45:85:ad:37: c1:8e:26:d4:33:41:12:85:48:b5:76:29:ae:29:51: 2d:45:19:70:ca:79:27:a6:fb:61:39:7d:bd:c9:46: ec:fe:f9:02:50:92:dc:65:4e:29:2f:06:9d:5d:c6: 9f:bc:df:f5:3d:71:2c:b5:0b:b7:56:f9:cc:f5:04: bb:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:4D:30:4F:8D:44:67:DB:B6:C4:71:B0:68:67:A4:F9:8F:C7:D1:30 X509v3 Authority Key Identifier: keyid:6A:8F:81:0E:B0:BF:68:3D:FC:A7:4C:40:3A:7B:03:D3:7E:16:F2:68 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CARLWATCH/0/6A8F810EB0BF683DFCA74C403A7B03D37E16F268.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption bc:3e:eb:3a:8c:5e:e8:37:ea:b9:b2:b7:1d:df:30:40:ec:21: 8f:c9:8d:9f:ee:4e:a9:4a:2f:f1:27:58:31:34:30:d2:54:e7: e4:ff:2a:7f:9b:9b:bc:73:4f:3f:83:d6:42:dd:f0:88:45:22: ad:16:d5:4b:eb:48:45:72:08:16:c0:40:ce:62:4b:29:8a:43: 96:16:fa:f8:03:7a:fb:76:44:94:16:a5:dc:c4:07:1d:6b:79: 51:b0:9b:61:0f:ac:21:c1:d3:76:d1:e7:75:35:c0:eb:82:7a: f4:b8:65:97:cc:ad:74:45:24:ad:2b:c3:ee:5c:e2:0c:0d:91: 03:b5:c4:d4:a2:c7:7f:6e:94:ca:55:e1:a0:ef:09:59:62:3d: fd:fd:9b:cc:78:d2:37:23:c9:cf:ef:d4:02:cc:36:c8:87:fb: 82:f4:c8:52:88:9d:5e:7e:0f:db:f5:5c:d8:ad:d5:1d:8a:93: 53:7b:fd:15:8b:13:c2:fc:a0:38:4a:b6:b4:75:5a:cf:f4:a0: b8:ad:d6:bd:17:6b:4d:34:2b:aa:f1:72:65:1c:0a:a5:11:ed: 70:5a:d7:ff:d3:08:bb:8c:1d:a2:5c:41:1c:3c:60:5e:20:d7: 50:cf:ae:bc:24:55:1c:d1:7a:8c:78:c1:fd:fc:88:41:23:92: 43:22:01:16 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUAlTcIlKJEwyt117eWCpVQnOS78UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNkE4RjgxMEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3 RTE2RjI2ODAeFw0yNjA2MzAwNTU4MTRaFw0yNjA3MDEwOTAwMTRaMDMxMTAvBgNV BAMTKDgyNEQzMDRGOEQ0NDY3REJCNkM0NzFCMDY4NjdBNEY5OEZDN0QxMzAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCXrI32XrjHCS8lZYR1IvDFbXKn HTx7lvFLwnK9BgZPT6HunJGkVOxKcVDvgWVA3G19HIEc3vAdaYxeDPl290R4bBN8 f4aBs+4GGrhYf5xGZWay2daqqb4/9PbtN37TTaYsFR/QHbR4286nR1EoL3Q7KuS6 Du0GPvJR5oSAq0invhz2D9oP1/EdEqQB9LcNSpnTF39EZxDySU7H7aZpmmSKlpZn CHHXq6cBaSE0TCwquRzRxqBkczShXCuwpAVHRYWtN8GOJtQzQRKFSLV2Ka4pUS1F GXDKeSem+2E5fb3JRuz++QJQktxlTikvBp1dxp+83/U9cSy1C7dW+cz1BLs5AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUgk0wT41EZ9u2xHGwaGek+Y/H0TAwHwYDVR0j BBgwFoAUao+BDrC/aD38p0xAOnsD034W8mgwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FSTFdB VENILzAvNkE4RjgxMEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3RTE2RjI2OC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS82QThGODEwRUIwQkY2ODNERkNBNzRDNDAz QTdCMDNEMzdFMTZGMjY4LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FSTFdBVENILzAvNkE4Rjgx MEVCMEJGNjgzREZDQTc0QzQwM0E3QjAzRDM3RTE2RjI2OC5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBALw+ 6zqMXug36rmytx3fMEDsIY/JjZ/uTqlKL/EnWDE0MNJU5+T/Kn+bm7xzTz+D1kLd 8IhFIq0W1UvrSEVyCBbAQM5iSymKQ5YW+vgDevt2RJQWpdzEBx1reVGwm2EPrCHB 03bR53U1wOuCevS4ZZfMrXRFJK0rw+5c4gwNkQO1xNSix39ulMpV4aDvCVliPf39 m8x40jcjyc/v1ALMNsiH+4L0yFKInV5+D9v1XNit1R2Kk1N7/RWLE8L8oDhKtrR1 Ws/0oLit1r0Xa000K6rxcmUcCqUR7XBa1//TCLuMHaJcQRw8YF4g11DPrrwkVRzR eox4wf38iEEjkkMiARY= -----END CERTIFICATE-----Generated at Tue Jun 30 19:08:30 2026 by rpki-client