$ rpki-client -vvf rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft File: 21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft (raw, json) Hash identifier: zC0doRua3pUakUIyDnP2QIsm2+f953LlU7xz9VY6vek= Subject key identifier: F9:98:CC:9F:F8:56:C8:CA:F6:8E:E2:72:7C:FD:71:69:D8:EC:09:C1 Authority key identifier: 21:DB:FD:19:21:12:1F:73:0C:61:4C:0D:E6:21:2C:D6:94:9C:D5:AF Certificate issuer: /CN=21DBFD1921121F730C614C0DE6212CD6949CD5AF Certificate serial: 2013F1A346EDC9A9FB78381B60BE83BE1046ED6C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21DBFD1921121F730C614C0DE6212CD6949CD5AF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft Manifest number: 09 Signing time: Wed 13 May 2026 03:51:38 +0000 Manifest this update: Wed 13 May 2026 03:46:38 +0000 Manifest next update: Thu 14 May 2026 07:38:38 +0000 Files and hashes: 1: 21DBFD1921121F730C614C0DE6212CD6949CD5AF.crl (hash: b2536qiyOM1PnsBcUahTZGoQxtzStRYril3dfBwnU0k=) 2: 323430313a636436303a3a2f34302d3430203d3e20323134303330.roa (hash: 780V3DLt+Fe7Fs8V4ULwUWJozzo56xPXySO9+JGJ2W8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.crl rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21DBFD1921121F730C614C0DE6212CD6949CD5AF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:13:f1:a3:46:ed:c9:a9:fb:78:38:1b:60:be:83:be:10:46:ed:6c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21DBFD1921121F730C614C0DE6212CD6949CD5AF Validity Not Before: May 13 03:46:38 2026 GMT Not After : May 14 07:38:38 2026 GMT Subject: CN=F998CC9FF856C8CAF68EE2727CFD7169D8EC09C1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:f7:90:bf:68:33:9b:ff:4a:33:4a:b1:42:52: 9c:9a:b3:95:4b:bb:26:e3:91:50:8d:32:a2:dc:f4: 33:b9:70:b7:f0:f3:5c:d6:1a:0b:8b:c1:b3:5a:a3: 3d:6d:07:de:74:9a:a7:a7:3e:65:81:16:6a:7e:08: 6b:75:6e:c8:ba:be:0b:0d:c4:93:d4:1b:ed:a1:e8: 3c:2b:12:f3:29:85:43:d3:b6:f2:ef:7a:68:24:57: a2:27:6b:be:da:84:fa:51:a5:f0:fb:47:26:2e:8e: 31:67:8f:de:98:30:14:62:ee:75:ae:06:4f:cf:43: 55:93:67:a6:f5:7b:b7:6d:6a:1c:c0:4d:d8:25:b0: b7:52:c9:cf:76:ea:23:69:1d:31:61:89:91:30:06: b4:08:e2:bd:fd:a0:65:43:96:b0:65:d5:2a:d0:d4: e5:d5:1c:de:59:e6:dc:6e:58:ab:c0:ea:46:ee:a0: 73:00:d7:0a:25:5e:b4:01:49:84:0f:4a:c5:c4:77: 41:96:37:77:51:73:90:71:bf:de:fb:aa:66:c4:76: bc:7e:ad:3d:78:0e:7f:4d:2d:b0:1f:b5:bd:1d:62: 43:fc:5b:79:b8:7f:e8:d6:48:3f:bb:8b:99:89:14: b6:18:19:ae:02:bb:4c:09:cd:fe:75:5d:97:30:e0: 4f:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:98:CC:9F:F8:56:C8:CA:F6:8E:E2:72:7C:FD:71:69:D8:EC:09:C1 X509v3 Authority Key Identifier: keyid:21:DB:FD:19:21:12:1F:73:0C:61:4C:0D:E6:21:2C:D6:94:9C:D5:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21DBFD1921121F730C614C0DE6212CD6949CD5AF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a1:b8:7a:7f:b6:97:43:1f:97:5c:58:0c:46:14:a9:55:96:6c: d2:61:02:86:12:a7:21:8b:41:76:9a:23:60:5f:7f:11:87:68: dc:23:2d:2f:bc:89:9e:f6:ee:3c:f6:45:45:97:76:f3:08:e2: f0:3c:21:72:9d:d3:75:45:9b:b9:84:d4:a9:cf:84:bf:26:65: 73:80:e8:52:e1:60:f0:c9:7d:cf:cf:8e:73:df:9f:bb:de:dc: 13:25:bc:10:e9:1b:e5:26:7e:d5:b7:9f:c3:99:83:0f:fe:ec: 67:0e:94:cd:38:eb:d9:64:2e:f6:a4:86:4e:4a:64:d7:ff:bd: 58:74:01:36:3f:23:5c:1e:8b:17:0d:1c:b1:37:cb:b9:14:d6: df:05:97:f2:83:37:30:d4:be:f5:30:7c:ba:d6:bc:86:b6:93: 36:e8:1e:bb:5b:02:61:01:71:bc:c7:9c:fa:30:d2:ef:29:b8: f6:02:ad:c3:50:7b:f0:4d:8f:f1:09:36:09:db:fc:6e:6d:c6: 63:24:d5:ab:e1:9e:0a:c8:06:48:bd:eb:e0:1a:dc:9a:50:04: 8a:03:f1:fa:30:54:92:ca:cf:3e:6f:3e:18:8f:b9:fc:5e:02: 73:6a:71:fa:01:e5:80:fb:7c:56:4a:c3:03:c0:32:0f:e6:51: 03:56:28:85 -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUIBPxo0btyan7eDgbYL6DvhBG7WwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFEQkZEMTkyMTEyMUY3MzBDNjE0QzBERTYyMTJDRDY5 NDlDRDVBRjAeFw0yNjA1MTMwMzQ2MzhaFw0yNjA1MTQwNzM4MzhaMDMxMTAvBgNV BAMTKEY5OThDQzlGRjg1NkM4Q0FGNjhFRTI3MjdDRkQ3MTY5RDhFQzA5QzEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC195C/aDOb/0ozSrFCUpyas5VL uybjkVCNMqLc9DO5cLfw81zWGguLwbNaoz1tB950mqenPmWBFmp+CGt1bsi6vgsN xJPUG+2h6DwrEvMphUPTtvLvemgkV6Ina77ahPpRpfD7RyYujjFnj96YMBRi7nWu Bk/PQ1WTZ6b1e7dtahzATdglsLdSyc926iNpHTFhiZEwBrQI4r39oGVDlrBl1SrQ 1OXVHN5Z5txuWKvA6kbuoHMA1wolXrQBSYQPSsXEd0GWN3dRc5Bxv977qmbEdrx+ rT14Dn9NLbAftb0dYkP8W3m4f+jWSD+7i5mJFLYYGa4Cu0wJzf51XZcw4E+3AgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQU+ZjMn/hWyMr2juJyfP1xadjsCcEwHwYDVR0j BBgwFoAUIdv9GSESH3MMYUwN5iEs1pSc1a8wDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FUSERE LzAvMjFEQkZEMTkyMTEyMUY3MzBDNjE0QzBERTYyMTJDRDY5NDlDRDVBRi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8yMURCRkQxOTIxMTIxRjczMEM2MTRDMERFNjIx MkNENjk0OUNENUFGLmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FUSERELzAvMjFEQkZEMTkyMTEy MUY3MzBDNjE0QzBERTYyMTJDRDY5NDlDRDVBRi5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAKG4en+2l0Mf l1xYDEYUqVWWbNJhAoYSpyGLQXaaI2BffxGHaNwjLS+8iZ727jz2RUWXdvMI4vA8 IXKd03VFm7mE1KnPhL8mZXOA6FLhYPDJfc/PjnPfn7ve3BMlvBDpG+UmftW3n8OZ gw/+7GcOlM0469lkLvakhk5KZNf/vVh0ATY/I1weixcNHLE3y7kU1t8Fl/KDNzDU vvUwfLrWvIa2kzboHrtbAmEBcbzHnPow0u8puPYCrcNQe/BNj/EJNgnb/G5txmMk 1avhngrIBki96+Aa3JpQBIoD8fowVJLKzz5vPhiPufxeAnNqcfoB5YD7fFZKwwPA Mg/mUQNWKIU= -----END CERTIFICATE-----Generated at Wed May 13 20:33:34 2026 by rpki-client