$ rpki-client -vvf rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft File: 8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft (raw, json) Hash identifier: s82B9ZHUE25IRImREJ14IHbqbkhEVwWgJjJ9Z8XMgRc= Subject key identifier: 08:D5:A6:6F:F3:59:DB:90:9D:67:1D:A5:F1:4D:7A:4F:CD:30:09:64 Authority key identifier: 80:99:DF:C0:CF:C8:3C:5D:DF:D9:0C:A5:EA:31:4C:C9:A8:67:7F:2D Certificate issuer: /CN=8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D Certificate serial: 3FB957321129C94F0C14D9945374763771EA8105 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft Manifest number: 46 Signing time: Tue 30 Jun 2026 04:03:04 +0000 Manifest this update: Tue 30 Jun 2026 03:58:04 +0000 Manifest next update: Wed 01 Jul 2026 07:21:04 +0000 Files and hashes: 1: 323430353a333330303a3a2f33322d3936203d3e20313331313433.roa (hash: ZKiaer8NjI3ngd1EbZw69ZFOR2ZlmwyGwjPK8gzDQck=) 2: 3137352e3138342e3234302e302f32312d3234203d3e20313331313433.roa (hash: 0QQUBFrsQpXXTYt4aIh8/MbRTgI4V9RhZAxoH9bVt18=) 3: 8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.crl (hash: GaXXt7pX8AojLUoB+c+6ITYMJgngke8uOaGiXBzZ/nM=) 4: 3130332e3132362e3136342e302f32322d3234203d3e20313331313433.roa (hash: GE6WCLDpaYk350arhm6T0hTObeMU3HA8Pi8MilsnVwk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.crl rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 07:21:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:b9:57:32:11:29:c9:4f:0c:14:d9:94:53:74:76:37:71:ea:81:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D Validity Not Before: Jun 30 03:58:04 2026 GMT Not After : Jul 1 07:21:04 2026 GMT Subject: CN=08D5A66FF359DB909D671DA5F14D7A4FCD300964 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:dc:ed:55:4a:69:28:e2:98:ad:64:cc:2b:96: 8d:92:75:ec:f7:10:28:3e:2d:cf:93:d3:a1:bf:28: ea:3a:5a:98:e2:4f:18:13:ad:2c:43:1f:c7:b3:4f: 5a:8f:81:e1:50:d6:a9:03:e3:55:cd:66:b6:7b:99: 94:c4:a3:fb:91:fd:7c:eb:4a:ae:db:fb:6e:27:27: 29:12:95:11:68:48:97:04:d1:9a:fa:f9:02:f8:cd: a6:f5:f2:d6:c0:3a:de:03:c9:26:e5:64:5f:77:f1: 80:2b:50:36:7d:ff:ee:45:26:61:cb:8a:19:ff:69: 43:ab:1c:7b:8a:dd:ce:14:b9:a1:85:61:bc:de:57: 9d:35:c1:e2:83:7b:45:69:d8:30:7b:59:4f:bc:83: 56:6c:e4:71:0c:79:45:fe:ca:5d:bb:bb:f4:fe:ff: 5b:6a:d1:0a:dc:be:27:c9:71:7f:11:e9:8b:db:62: bb:0a:1e:f6:44:c9:10:56:b3:fc:4d:4b:06:2f:f3: 7b:1e:8a:b4:5d:2b:88:8e:f3:ae:40:2f:1b:44:81: 57:08:c1:b4:f3:92:b3:51:a1:6c:62:28:65:0c:21: ef:13:91:d1:c0:7b:fd:93:1f:fa:9b:3a:fe:fd:82: 6a:1e:61:16:6c:9f:fa:a1:79:ca:a5:c2:93:fa:3e: 4f:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:D5:A6:6F:F3:59:DB:90:9D:67:1D:A5:F1:4D:7A:4F:CD:30:09:64 X509v3 Authority Key Identifier: keyid:80:99:DF:C0:CF:C8:3C:5D:DF:D9:0C:A5:EA:31:4C:C9:A8:67:7F:2D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHINATRUST/0/8099DFC0CFC83C5DDFD90CA5EA314CC9A8677F2D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:2d:7b:10:b9:0e:7a:6c:a7:8f:b7:e5:13:2b:18:44:f3:29: 76:a0:b8:32:dd:36:08:50:a3:58:98:97:99:2a:6f:32:53:2f: 2d:58:c1:0b:02:65:30:e8:1d:f6:f9:42:69:23:fe:37:76:63: a1:c5:08:44:9d:8c:d1:10:ea:e5:57:66:65:91:05:f8:e6:59: e1:66:d4:d2:09:03:d1:cf:9f:c5:38:9c:10:40:4c:69:91:57: 9b:da:e7:39:64:9a:f7:29:b4:c5:08:c7:3e:5a:c8:07:a4:94: 46:8f:b1:f3:2d:d5:43:3a:45:05:a8:ff:2c:f1:8f:6c:5e:7b: 6f:d4:39:69:a5:05:46:aa:d9:62:be:58:f5:0a:07:3a:6d:73: c9:03:15:68:d8:4a:9d:76:de:5e:a6:cf:d5:82:08:d6:70:dc: 37:55:a9:44:32:7e:c1:d4:87:f3:d3:57:7d:c5:99:0a:15:6b: 15:48:35:38:01:64:ff:21:95:44:3c:f3:f8:72:b9:b3:3b:20: 72:19:5a:ff:d3:04:67:43:16:e0:f5:d0:84:e4:e2:60:27:71: 79:35:7d:d9:97:c0:9c:b3:28:e2:f2:29:b3:3d:4b:0a:2b:31: c8:bc:7b:8d:db:a9:e3:43:35:ba:d4:3b:1d:49:3c:1a:f8:32: d3:39:75:78 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUP7lXMhEpyU8MFNmUU3R2N3HqgQUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODA5OURGQzBDRkM4M0M1RERGRDkwQ0E1RUEzMTRDQzlB ODY3N0YyRDAeFw0yNjA2MzAwMzU4MDRaFw0yNjA3MDEwNzIxMDRaMDMxMTAvBgNV BAMTKDA4RDVBNjZGRjM1OURCOTA5RDY3MURBNUYxNEQ3QTRGQ0QzMDA5NjQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCr3O1VSmko4pitZMwrlo2Sdez3 ECg+Lc+T06G/KOo6WpjiTxgTrSxDH8ezT1qPgeFQ1qkD41XNZrZ7mZTEo/uR/Xzr Sq7b+24nJykSlRFoSJcE0Zr6+QL4zab18tbAOt4DySblZF938YArUDZ9/+5FJmHL ihn/aUOrHHuK3c4UuaGFYbzeV501weKDe0Vp2DB7WU+8g1Zs5HEMeUX+yl27u/T+ /1tq0QrcvifJcX8R6YvbYrsKHvZEyRBWs/xNSwYv83seirRdK4iO865ALxtEgVcI wbTzkrNRoWxiKGUMIe8TkdHAe/2TH/qbOv79gmoeYRZsn/qhecqlwpP6Pk9DAgMB AAGjggH2MIIB8jAdBgNVHQ4EFgQUCNWmb/NZ25CdZx2l8U16T80wCWQwHwYDVR0j BBgwFoAUgJnfwM/IPF3f2Qyl6jFMyahnfy0wDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFU UlVTVC8wLzgwOTlERkMwQ0ZDODNDNURERkQ5MENBNUVBMzE0Q0M5QTg2NzdGMkQu Y3JsMG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBLzEvODA5OURGQzBDRkM4M0M1RERGRDkwQ0E1 RUEzMTRDQzlBODY3N0YyRC5jZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzAL hlZyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NISU5BVFJVU1QvMC84MDk5 REZDMENGQzgzQzVEREZEOTBDQTVFQTMxNENDOUE4Njc3RjJELm1mdDAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYE AgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA EC17ELkOemynj7flEysYRPMpdqC4Mt02CFCjWJiXmSpvMlMvLVjBCwJlMOgd9vlC aSP+N3ZjocUIRJ2M0RDq5VdmZZEF+OZZ4WbU0gkD0c+fxTicEEBMaZFXm9rnOWSa 9ym0xQjHPlrIB6SURo+x8y3VQzpFBaj/LPGPbF57b9Q5aaUFRqrZYr5Y9QoHOm1z yQMVaNhKnXbeXqbP1YII1nDcN1WpRDJ+wdSH89NXfcWZChVrFUg1OAFk/yGVRDzz +HK5szsgchla/9MEZ0MW4PXQhOTiYCdxeTV92ZfAnLMo4vIpsz1LCisxyLx7jdup 40M1utQ7HUk8Gvgy0zl1eA== -----END CERTIFICATE-----Generated at Tue Jun 30 19:07:34 2026 by rpki-client