$ rpki-client -vvf rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft File: CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft (raw, json) Hash identifier: gi3m+AiUnsu+t8QfgDJOCMy25/FfVgRruqb86RMDwak= Subject key identifier: 14:C0:F0:06:59:D6:3A:27:EE:1B:44:5C:77:9E:E9:07:1E:97:26:0C Authority key identifier: CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD Certificate issuer: /CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD Certificate serial: 2728155AD07BA0028760542435397C5DDB74D088 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft Manifest number: 47 Signing time: Tue 30 Jun 2026 08:38:25 +0000 Manifest this update: Tue 30 Jun 2026 08:33:25 +0000 Manifest next update: Wed 01 Jul 2026 11:22:25 +0000 Files and hashes: 1: CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl (hash: m9oTb4AkV2ZgSoLGDPGAY61u0lKefUyl2EAXqk6NFHo=) 2: 3130332e3132332e3138382e302f32342d3234203d3e203138303432.roa (hash: VGG3iALCYmsIo1frTwJ57vcG6Z53Cw4xXzO8I+lKQrc=) 3: 3130332e3132332e3139302e302f32342d3234203d3e2039393234.roa (hash: MkYfWxcvdtrJJbnLts1+66GKlU7GZ8ty9L0jiRzo53o=) 4: 3130332e3132332e3138392e302f32342d3234203d3e2039393234.roa (hash: ehfoOrBXE/RYfQPRqQV54VXyN1X6HRTFxmEyqkWRtOI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 11:22:25 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 27:28:15:5a:d0:7b:a0:02:87:60:54:24:35:39:7c:5d:db:74:d0:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD Validity Not Before: Jun 30 08:33:25 2026 GMT Not After : Jul 1 11:22:25 2026 GMT Subject: CN=14C0F00659D63A27EE1B445C779EE9071E97260C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:67:2f:20:5d:d8:b3:8c:43:de:68:28:17:c1: 07:84:1e:76:56:36:b6:a4:24:cd:02:19:0d:94:a6: 7b:d9:66:9d:d4:86:92:54:b2:bf:ad:71:be:f1:28: 24:1a:9a:d0:21:15:c9:61:cc:e1:e0:6a:f3:dd:18: 3d:a1:5b:12:f2:35:0d:d6:13:5f:1c:0d:80:44:3d: df:98:e5:7a:18:9d:7d:98:e5:81:10:d2:78:14:bf: 7b:90:ea:02:53:79:e0:42:f2:57:56:69:32:af:89: 9f:76:c2:c7:99:ce:ef:f9:34:11:7d:c8:7d:3b:cc: f5:db:34:f7:22:dc:c7:e2:97:90:2c:7b:89:d2:14: 3f:7d:ed:dd:53:80:23:d2:ab:46:59:d1:34:59:31: 28:27:9d:6b:42:00:24:37:04:69:d9:44:ce:ff:fb: 89:49:24:72:24:0f:a3:7e:bc:9b:bf:4a:18:eb:f1: 1c:0d:3b:80:2e:d9:c3:5d:f3:3b:2c:b2:ee:f2:47: 6e:48:12:4d:9d:eb:36:61:8e:0e:39:99:25:b5:be: ae:a2:eb:8b:41:5b:72:fd:5a:32:a1:db:62:35:00: b2:44:d4:c7:10:25:8a:ee:18:b8:ea:90:17:8e:d9: 5f:30:4d:0b:8c:33:d2:fc:82:33:86:58:98:ab:40: 6e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:C0:F0:06:59:D6:3A:27:EE:1B:44:5C:77:9E:E9:07:1E:97:26:0C X509v3 Authority Key Identifier: keyid:CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:35:0c:72:0f:bf:20:63:5a:5a:ca:ad:ef:bb:fc:71:81:b5: 7e:11:36:e4:a3:1c:51:78:5b:f9:82:a8:fc:73:9c:1e:62:79: 7a:90:9f:59:94:21:bf:b6:88:5c:d5:1b:24:8a:ee:b7:28:53: 25:b0:35:35:24:05:33:43:bf:d3:39:ea:20:8a:4b:7f:0d:78: 16:17:07:22:d5:f8:72:ae:f5:00:1a:35:de:27:f9:12:61:c8: f6:c4:6f:e1:c7:c6:12:a0:83:26:3d:8a:25:93:0c:f3:3d:33: b9:4d:6d:75:8f:39:cf:31:f0:c4:ec:8c:1a:b9:cd:1f:d6:71: 89:9f:d1:f8:52:8c:a0:db:d3:c3:bf:d6:b5:6d:98:15:d7:0f: 82:f2:1d:71:3b:18:a4:6b:c1:09:06:dd:4a:40:d9:c0:d1:cf: 0f:5f:40:a1:c3:39:76:a8:e1:4c:87:7c:14:c9:3a:70:83:cb: e8:c2:0d:49:29:82:a5:49:00:0f:a9:12:4a:0d:c8:fa:88:41: 83:d2:74:19:95:23:b5:39:b4:d9:9b:a1:46:dc:db:53:d7:a2: 7c:7d:fd:39:50:9c:b5:b2:fc:2b:d3:30:78:40:5c:96:ba:95: 0e:25:ce:0b:70:1e:85:34:7a:8c:b2:1b:5d:55:db:67:1e:63: 69:56:9f:65 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUJygVWtB7oAKHYFQkNTl8Xdt00IgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U1QTgxMDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4 RUVBQ0NERDAeFw0yNjA2MzAwODMzMjVaFw0yNjA3MDExMTIyMjVaMDMxMTAvBgNV BAMTKDE0QzBGMDA2NTlENjNBMjdFRTFCNDQ1Qzc3OUVFOTA3MUU5NzI2MEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+Zy8gXdizjEPeaCgXwQeEHnZW NrakJM0CGQ2UpnvZZp3UhpJUsr+tcb7xKCQamtAhFclhzOHgavPdGD2hWxLyNQ3W E18cDYBEPd+Y5XoYnX2Y5YEQ0ngUv3uQ6gJTeeBC8ldWaTKviZ92wseZzu/5NBF9 yH07zPXbNPci3Mfil5Ase4nSFD997d1TgCPSq0ZZ0TRZMSgnnWtCACQ3BGnZRM7/ +4lJJHIkD6N+vJu/Shjr8RwNO4Au2cNd8zsssu7yR25IEk2d6zZhjg45mSW1vq6i 64tBW3L9WjKh22I1ALJE1McQJYruGLjqkBeO2V8wTQuMM9L8gjOGWJirQG45AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUFMDwBlnWOifuG0Rcd57pBx6XJgwwHwYDVR0j BBgwFoAUzlqBALoJlKK4B/X0+3QcUo7qzN0wDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFM SUZFLzAvQ0U1QTgxMDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4RUVBQ0NERC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9DRTVBODEwMEJBMDk5NEEyQjgwN0Y1RjRG Qjc0MUM1MjhFRUFDQ0RELmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFMSUZFLzAvQ0U1QTgx MDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4RUVBQ0NERC5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAHo1 DHIPvyBjWlrKre+7/HGBtX4RNuSjHFF4W/mCqPxznB5ieXqQn1mUIb+2iFzVGySK 7rcoUyWwNTUkBTNDv9M56iCKS38NeBYXByLV+HKu9QAaNd4n+RJhyPbEb+HHxhKg gyY9iiWTDPM9M7lNbXWPOc8x8MTsjBq5zR/WcYmf0fhSjKDb08O/1rVtmBXXD4Ly HXE7GKRrwQkG3UpA2cDRzw9fQKHDOXao4UyHfBTJOnCDy+jCDUkpgqVJAA+pEkoN yPqIQYPSdBmVI7U5tNmboUbc21PXonx9/TlQnLWy/CvTMHhAXJa6lQ4lzgtwHoU0 eoyyG11V22ceY2lWn2U= -----END CERTIFICATE-----Generated at Tue Jun 30 19:07:28 2026 by rpki-client