$ rpki-client -vvf rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft File: CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft (raw, json) Hash identifier: g8HpYO8ZlTqfk6WL7LovaEA4ovO7z3T6Jy7MZww03Mo= Subject key identifier: 16:60:54:B0:19:2C:47:D0:3B:E1:94:18:9F:06:F4:A2:75:4A:E9:0D Authority key identifier: CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD Certificate issuer: /CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD Certificate serial: 5F3327678B35C25251B1CB7ABF208EC6104CA7B8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft Manifest number: 06 Signing time: Wed 13 May 2026 04:06:41 +0000 Manifest this update: Wed 13 May 2026 04:01:41 +0000 Manifest next update: Thu 14 May 2026 04:43:41 +0000 Files and hashes: 1: 3130332e3132332e3138382e302f32342d3234203d3e203138303432.roa (hash: VGG3iALCYmsIo1frTwJ57vcG6Z53Cw4xXzO8I+lKQrc=) 2: CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl (hash: KM5LHx62jR6n2GcvB+3dwri0aAp/+mDGsBhAH9WSH4U=) 3: 3130332e3132332e3139302e302f32342d3234203d3e2039393234.roa (hash: MkYfWxcvdtrJJbnLts1+66GKlU7GZ8ty9L0jiRzo53o=) 4: 3130332e3132332e3138392e302f32342d3234203d3e2039393234.roa (hash: ehfoOrBXE/RYfQPRqQV54VXyN1X6HRTFxmEyqkWRtOI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:43:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:33:27:67:8b:35:c2:52:51:b1:cb:7a:bf:20:8e:c6:10:4c:a7:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD Validity Not Before: May 13 04:01:41 2026 GMT Not After : May 14 04:43:41 2026 GMT Subject: CN=166054B0192C47D03BE194189F06F4A2754AE90D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:62:71:ef:3a:45:40:15:c6:1e:dc:c2:1f:e3: f9:14:a5:c3:06:f9:a1:ac:d8:e2:de:98:dc:fd:7e: 0f:08:8b:2f:56:07:0b:ea:39:e0:b7:5f:9b:30:4c: b2:2a:04:20:db:da:8a:e3:cd:51:4b:38:25:95:f5: 85:13:ef:94:53:91:f0:85:51:95:2f:20:0a:d7:ec: 09:99:41:84:2f:47:cb:ad:00:70:2a:a4:da:81:9f: 45:a2:a8:a7:35:a5:ee:b8:71:70:0e:4c:39:09:31: 75:98:da:0d:0c:f1:e6:3a:4d:29:b7:90:d3:d5:4d: ae:7e:93:fe:b6:95:c3:2e:bd:e2:50:e9:0f:13:01: b0:66:1f:5e:66:86:56:67:aa:40:c3:0c:ec:b0:0e: 3a:fc:ed:1a:f8:b9:7c:3b:cb:0a:d1:cd:94:a3:86: 0d:ab:97:ed:ea:63:f1:2f:a8:97:11:36:04:3c:d3: cd:15:95:07:80:31:08:3d:b0:66:14:39:2d:fb:75: b2:d4:2f:19:9f:9f:5b:07:ba:07:f4:17:bd:4b:d3: 27:cf:28:d8:e2:21:02:4b:04:d9:73:1d:86:50:ac: 3e:a4:ce:83:51:5c:22:c2:69:19:29:35:34:de:89: b3:9b:32:ec:6b:ed:38:ff:a8:59:76:e6:40:fe:75: 57:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:60:54:B0:19:2C:47:D0:3B:E1:94:18:9F:06:F4:A2:75:4A:E9:0D X509v3 Authority Key Identifier: keyid:CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 92:ba:a8:2d:42:bd:fa:46:3e:b8:d2:9e:d5:d4:89:f3:82:d3: 4d:f0:ad:80:cd:2b:03:07:da:11:63:fe:a0:c1:cf:42:e9:30: fb:f6:41:6d:06:f1:b4:d0:1d:05:5d:d7:6a:75:92:09:69:d2: 35:2e:84:6e:33:4e:08:89:5a:ff:b8:d5:80:18:09:21:7a:67: 98:ec:9d:8b:d8:d8:e2:28:13:a7:82:27:df:c6:77:f5:ef:00: 6f:ab:74:76:9d:15:17:ae:97:b8:04:78:9d:ab:94:01:97:2a: 23:03:bd:f4:d1:46:00:c2:b9:b9:44:0f:38:c9:e2:73:d7:1e: cd:c0:03:4a:82:ec:34:29:71:f1:5a:fc:97:b6:5a:55:a0:f6: 0f:39:84:1d:5d:e7:b7:cf:b4:81:25:b2:8b:23:42:1e:71:5d: 1d:24:d3:bb:db:de:b6:82:c8:57:23:b1:8f:22:d8:e0:9e:eb: 47:b6:ed:96:22:7b:94:80:b2:78:38:fe:e2:22:2c:fe:3d:90: 94:f3:ef:ec:90:f7:20:f3:37:00:08:96:37:ae:52:46:6e:53: e8:ce:ef:0d:e0:53:de:a0:4a:f4:eb:69:db:b5:e9:a9:66:e8: 39:19:3e:27:7a:b7:52:78:bb:66:a8:a9:10:e7:1e:be:3f:9f: 7c:92:3e:6f -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXzMnZ4s1wlJRsct6vyCOxhBMp7gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U1QTgxMDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4 RUVBQ0NERDAeFw0yNjA1MTMwNDAxNDFaFw0yNjA1MTQwNDQzNDFaMDMxMTAvBgNV BAMTKDE2NjA1NEIwMTkyQzQ3RDAzQkUxOTQxODlGMDZGNEEyNzU0QUU5MEQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCOYnHvOkVAFcYe3MIf4/kUpcMG +aGs2OLemNz9fg8Iiy9WBwvqOeC3X5swTLIqBCDb2orjzVFLOCWV9YUT75RTkfCF UZUvIArX7AmZQYQvR8utAHAqpNqBn0WiqKc1pe64cXAOTDkJMXWY2g0M8eY6TSm3 kNPVTa5+k/62lcMuveJQ6Q8TAbBmH15mhlZnqkDDDOywDjr87Rr4uXw7ywrRzZSj hg2rl+3qY/EvqJcRNgQ8080VlQeAMQg9sGYUOS37dbLULxmfn1sHugf0F71L0yfP KNjiIQJLBNlzHYZQrD6kzoNRXCLCaRkpNTTeibObMuxr7Tj/qFl25kD+dVfrAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFmBUsBksR9A74ZQYnwb0onVK6Q0wHwYDVR0j BBgwFoAUzlqBALoJlKK4B/X0+3QcUo7qzN0wDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFM SUZFLzAvQ0U1QTgxMDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4RUVBQ0NERC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9DRTVBODEwMEJBMDk5NEEyQjgwN0Y1RjRG Qjc0MUM1MjhFRUFDQ0RELmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFMSUZFLzAvQ0U1QTgx MDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4RUVBQ0NERC5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAJK6 qC1CvfpGPrjSntXUifOC003wrYDNKwMH2hFj/qDBz0LpMPv2QW0G8bTQHQVd12p1 kglp0jUuhG4zTgiJWv+41YAYCSF6Z5jsnYvY2OIoE6eCJ9/Gd/XvAG+rdHadFReu l7gEeJ2rlAGXKiMDvfTRRgDCublEDzjJ4nPXHs3AA0qC7DQpcfFa/Je2WlWg9g85 hB1d57fPtIElsosjQh5xXR0k07vb3raCyFcjsY8i2OCe60e27ZYie5SAsng4/uIi LP49kJTz7+yQ9yDzNwAIljeuUkZuU+jO7w3gU96gSvTradu16alm6DkZPid6t1J4 u2aoqRDnHr4/n3ySPm8= -----END CERTIFICATE-----Generated at Wed May 13 20:33:33 2026 by rpki-client