$ rpki-client -vvf rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft File: 8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft (raw, json) Hash identifier: R2GwksmKs00UZ0721c0L2yw0FjPCwVRwQGP8QdhNHuw= Subject key identifier: DA:91:86:C6:3B:19:C6:2D:18:B6:E8:EC:61:08:C2:9D:86:D5:2B:AA Authority key identifier: 80:99:DF:C0:CF:C8:3C:5D:DF:D9:0C:A5:EA:31:4C:C9:A8:67:7F:2D Certificate issuer: /CN=8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D Certificate serial: 292F02B99A05CA3450722708FA86BA6C6F856F98 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft Manifest number: 06 Signing time: Wed 13 May 2026 03:31:33 +0000 Manifest this update: Wed 13 May 2026 03:26:33 +0000 Manifest next update: Thu 14 May 2026 03:43:33 +0000 Files and hashes: 1: 8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.crl (hash: rs/jABLUI6mph5ek/psTZRObigyC8w8i2QVux0J2k/4=) 2: 3137352e3138342e3234302e302f32312d3234203d3e20313331313433.roa (hash: 0QQUBFrsQpXXTYt4aIh8/MbRTgI4V9RhZAxoH9bVt18=) 3: 3130332e3132362e3136342e302f32322d3234203d3e20313331313433.roa (hash: GE6WCLDpaYk350arhm6T0hTObeMU3HA8Pi8MilsnVwk=) 4: 323430353a333330303a3a2f33322d3936203d3e20313331313433.roa (hash: ZKiaer8NjI3ngd1EbZw69ZFOR2ZlmwyGwjPK8gzDQck=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.crl rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 03:43:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:2f:02:b9:9a:05:ca:34:50:72:27:08:fa:86:ba:6c:6f:85:6f:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D Validity Not Before: May 13 03:26:33 2026 GMT Not After : May 14 03:43:33 2026 GMT Subject: CN=DA9186C63B19C62D18B6E8EC6108C29D86D52BAA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:54:59:2d:3a:67:7c:41:69:6d:cd:07:ec:ec: 54:d4:8e:65:b9:cb:7e:7f:b2:26:cd:b8:92:5d:20: f4:e3:52:eb:31:3b:9d:b3:9e:d5:79:f3:59:93:4d: 27:66:cf:77:76:50:3b:82:32:90:9b:47:e6:59:bb: cc:61:53:f8:fe:93:5b:6f:4a:a8:ef:05:91:1f:17: 6d:d3:3d:70:b5:71:58:76:48:f1:f6:c4:2e:47:53: e3:05:a2:23:19:cb:13:82:f3:c4:1b:25:ba:2f:8d: ed:ed:ad:ee:38:e8:d8:b3:89:96:99:e7:c5:8c:fa: 75:ab:ee:94:e6:83:2c:f7:7a:4e:ba:0c:ff:2b:de: 83:4b:2d:56:3f:02:a5:47:0e:95:18:1e:ea:c3:15: 37:59:59:8f:7f:08:f8:0c:c7:39:5e:ff:5a:3c:ad: 49:5b:c6:e8:7f:12:1d:f2:18:16:6f:a1:9f:70:4c: b0:fb:89:0f:e1:a1:0a:36:fa:c0:ef:10:fb:9e:a3: 28:c4:6a:93:f5:04:aa:37:65:8d:86:25:7b:5f:68: 92:b3:11:0a:bd:1e:26:04:99:1d:ab:8d:20:44:4e: 22:46:2a:29:58:c5:2c:4f:96:b6:17:45:8a:c9:bd: af:98:9e:56:c5:ff:e1:94:7a:09:14:3a:1a:fc:18: 38:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:91:86:C6:3B:19:C6:2D:18:B6:E8:EC:61:08:C2:9D:86:D5:2B:AA X509v3 Authority Key Identifier: keyid:80:99:DF:C0:CF:C8:3C:5D:DF:D9:0C:A5:EA:31:4C:C9:A8:67:7F:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c9:4f:0e:55:82:3f:32:cd:ec:29:9a:c5:62:3a:d6:b8:40: b6:58:07:8b:98:fa:3d:9f:8c:1e:07:2a:e9:e2:9f:69:e0:e1: 25:c3:e8:a5:cc:88:6e:0f:bf:e2:83:90:29:1a:fc:af:a9:7e: 5f:eb:af:4d:8e:a1:14:ae:df:36:51:a7:19:8f:63:32:76:af: 06:d9:45:9b:9f:2a:43:ee:0d:a2:94:22:42:d6:ea:39:68:ba: b1:41:70:6a:7b:99:39:ff:27:e4:fb:1c:f0:fd:ba:d6:2a:81: 03:ee:05:3e:a0:3d:cf:50:9b:c9:97:12:23:1e:35:02:f6:da: 7d:64:fb:9a:ae:88:10:f7:e5:81:3f:59:7f:ae:2a:4c:bd:cf: aa:6c:4b:60:cc:f3:38:46:47:84:dc:f3:65:78:26:73:c1:0c: b3:89:5e:ba:13:fe:36:f6:77:8a:40:27:be:5b:1f:b2:30:ee: d2:93:80:bb:ea:ae:21:74:14:f1:8c:59:bd:39:e1:94:40:81: 04:bc:a7:e2:08:16:f3:b7:74:d2:9a:06:20:ed:f5:e4:58:af: f2:f2:cf:91:42:08:28:31:68:ea:7b:64:31:55:f3:ea:65:09: 76:8d:04:e7:e1:88:8e:f0:4c:46:2a:91:c0:4b:16:e4:4e:89: e2:0d:68:ca -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUKS8CuZoFyjRQcicI+oa6bG+Fb5gwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODA5OURGQzBDRkM4M0M1RERGRDkwQ0E1RUEzMTRDQzlB ODY3N0YyRDAeFw0yNjA1MTMwMzI2MzNaFw0yNjA1MTQwMzQzMzNaMDMxMTAvBgNV BAMTKERBOTE4NkM2M0IxOUM2MkQxOEI2RThFQzYxMDhDMjlEODZENTJCQUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCoVFktOmd8QWltzQfs7FTUjmW5 y35/sibNuJJdIPTjUusxO52zntV581mTTSdmz3d2UDuCMpCbR+ZZu8xhU/j+k1tv SqjvBZEfF23TPXC1cVh2SPH2xC5HU+MFoiMZyxOC88QbJbovje3tre446NiziZaZ 58WM+nWr7pTmgyz3ek66DP8r3oNLLVY/AqVHDpUYHurDFTdZWY9/CPgMxzle/1o8 rUlbxuh/Eh3yGBZvoZ9wTLD7iQ/hoQo2+sDvEPueoyjEapP1BKo3ZY2GJXtfaJKz EQq9HiYEmR2rjSBETiJGKilYxSxPlrYXRYrJva+YnlbF/+GUegkUOhr8GDj1AgMB AAGjggH2MIIB8jAdBgNVHQ4EFgQU2pGGxjsZxi0YtujsYQjCnYbVK6owHwYDVR0j BBgwFoAUgJnfwM/IPF3f2Qyl6jFMyahnfy0wDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFU UlVTVC8wLzgwOTlERkMwQ0ZDODNDNURERkQ5MENBNUVBMzE0Q0M5QTg2NzdGMkQu Y3JsMG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBLzEvODA5OURGQzBDRkM4M0M1RERGRDkwQ0E1 RUEzMTRDQzlBODY3N0YyRC5jZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzAL hlZyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NISU5BVFJVU1QvMC84MDk5 REZDMENGQzgzQzVEREZEOTBDQTVFQTMxNENDOUE4Njc3RjJELm1mdDAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYE AgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA e8lPDlWCPzLN7CmaxWI61rhAtlgHi5j6PZ+MHgcq6eKfaeDhJcPopcyIbg+/4oOQ KRr8r6l+X+uvTY6hFK7fNlGnGY9jMnavBtlFm58qQ+4NopQiQtbqOWi6sUFwanuZ Of8n5Psc8P261iqBA+4FPqA9z1CbyZcSIx41AvbafWT7mq6IEPflgT9Zf64qTL3P qmxLYMzzOEZHhNzzZXgmc8EMs4leuhP+NvZ3ikAnvlsfsjDu0pOAu+quIXQU8YxZ vTnhlECBBLyn4ggW87d00poGIO315Fiv8vLPkUIIKDFo6ntkMVXz6mUJdo0E5+GI jvBMRiqRwEsW5E6J4g1oyg== -----END CERTIFICATE-----Generated at Wed May 13 20:33:31 2026 by rpki-client