$ rpki-client -vvf rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft File: 28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft (raw, json) Hash identifier: QScZEFkgR1QuvggpIYb4OE5Y0l5ukWPu/7tO6n20mqU= Subject key identifier: 22:89:FB:98:E4:79:CC:36:EA:B1:F4:D2:FC:80:B7:17:E7:9E:23:C6 Authority key identifier: 28:E1:FD:03:C8:B0:40:A9:87:4A:90:D4:65:43:22:AC:DF:CA:34:07 Certificate issuer: /CN=28E1FD03C8B040A9874A90D4654322ACDFCA3407 Certificate serial: 5EADE2EE50DB699A0D1CED8EEEB152AED8E985F9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/28E1FD03C8B040A9874A90D4654322ACDFCA3407.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft Manifest number: 08 Signing time: Fri 15 May 2026 11:11:50 +0000 Manifest this update: Fri 15 May 2026 11:06:50 +0000 Manifest next update: Sat 16 May 2026 12:59:50 +0000 Files and hashes: 1: 3136302e3138372e3139382e302f32332d3234203d3e20313532363135.roa (hash: I6RgBeSwuI+mSenPcIlVAxSTnNAaaE4/xzzLMyb2FH0=) 2: 28E1FD03C8B040A9874A90D4654322ACDFCA3407.crl (hash: 7WR9vgdEcD5AqafAGldv2VfNsQJdisUwy39fulF4IZo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.crl rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/28E1FD03C8B040A9874A90D4654322ACDFCA3407.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 12:59:50 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5e:ad:e2:ee:50:db:69:9a:0d:1c:ed:8e:ee:b1:52:ae:d8:e9:85:f9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28E1FD03C8B040A9874A90D4654322ACDFCA3407 Validity Not Before: May 15 11:06:50 2026 GMT Not After : May 16 12:59:50 2026 GMT Subject: CN=2289FB98E479CC36EAB1F4D2FC80B717E79E23C6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:34:92:07:1a:88:42:f4:2c:6b:81:25:ac:dc: 1c:c8:7b:7d:95:f6:04:57:a1:ec:8d:71:a6:cc:74: 6a:f8:23:8c:af:f7:ef:ce:ec:38:32:a0:dc:1c:fc: f7:4b:92:f2:07:5a:ab:56:d1:1c:f4:64:8e:0c:8a: ce:3f:95:68:96:db:36:8b:78:bc:6e:67:39:db:65: 06:c1:b9:c9:82:ef:53:31:5c:45:bc:14:01:bc:d0: 66:b4:5b:14:41:4f:62:2a:06:4e:7f:1c:d3:03:6b: 0e:2e:d8:4e:e5:29:3c:22:24:86:65:30:13:eb:92: bf:e4:98:66:e7:fa:13:cd:f0:18:b9:ab:74:98:75: e2:9f:26:af:6a:65:02:40:fc:96:65:03:16:64:7a: 5f:86:16:56:8a:23:78:a0:3b:f9:96:28:0d:bd:69: 8d:ab:1f:da:b1:47:4a:60:d8:66:98:80:88:64:fb: b7:c1:31:63:d5:df:af:ab:41:19:17:83:f8:2a:b9: 13:e5:af:b6:03:ad:8f:8b:4b:75:91:42:c2:21:ff: 2c:7b:ea:75:a8:8c:0e:b6:cc:4a:28:da:ee:78:ef: ae:6a:fc:ad:7e:7c:61:5a:be:e6:e9:6c:b0:36:80: b9:7e:3c:ad:b6:47:e2:b3:9a:f8:a1:80:6b:3f:b8: 13:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:89:FB:98:E4:79:CC:36:EA:B1:F4:D2:FC:80:B7:17:E7:9E:23:C6 X509v3 Authority Key Identifier: keyid:28:E1:FD:03:C8:B0:40:A9:87:4A:90:D4:65:43:22:AC:DF:CA:34:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/28E1FD03C8B040A9874A90D4654322ACDFCA3407.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ab:0b:98:32:b8:9c:bb:ce:68:ff:73:5b:4d:9e:e0:52:65:9c: df:61:69:f9:c3:84:95:2f:4c:ef:7e:68:fa:30:66:fe:16:dc: 03:15:d2:89:9b:92:20:e7:42:91:7c:b1:7a:03:f6:5e:be:6f: 80:d7:10:9e:f1:a5:43:52:7b:f6:dc:61:53:87:88:07:56:9e: 45:4e:ca:33:73:ee:68:d4:f9:e7:8e:40:38:e0:95:5d:f7:12: 48:c9:b7:52:76:71:ef:f2:74:42:8f:1d:32:0b:1d:67:5c:07: 8f:58:be:a4:52:08:62:e9:44:e4:94:e4:0e:b9:38:23:d2:b7: 38:53:09:71:8f:5d:ee:3d:49:38:5b:a4:a5:97:5a:23:33:2e: dc:5e:92:d0:8d:7a:06:a3:b7:16:23:e5:ee:b4:05:c8:ff:96: f8:1a:ba:69:93:5b:b6:c6:af:bc:71:c0:3c:bc:79:55:03:bb: 52:85:92:81:22:69:fc:c9:4c:36:4d:41:64:3a:2b:88:2a:86: 14:a0:c1:b2:ac:c3:93:33:d2:59:eb:a8:38:53:30:60:a3:a4: 60:8a:0c:83:75:d6:93:f2:17:c3:8c:a2:38:27:ff:83:6a:7f: 8e:6c:d2:00:4c:a4:46:16:38:c8:a0:e4:50:6c:bb:13:b1:73: 4c:fd:c4:d1 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUXq3i7lDbaZoNHO2O7rFSrtjphfkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhFMUZEMDNDOEIwNDBBOTg3NEE5MEQ0NjU0MzIyQUNE RkNBMzQwNzAeFw0yNjA1MTUxMTA2NTBaFw0yNjA1MTYxMjU5NTBaMDMxMTAvBgNV BAMTKDIyODlGQjk4RTQ3OUNDMzZFQUIxRjREMkZDODBCNzE3RTc5RTIzQzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3NJIHGohC9CxrgSWs3BzIe32V 9gRXoeyNcabMdGr4I4yv9+/O7DgyoNwc/PdLkvIHWqtW0Rz0ZI4Mis4/lWiW2zaL eLxuZznbZQbBucmC71MxXEW8FAG80Ga0WxRBT2IqBk5/HNMDaw4u2E7lKTwiJIZl MBPrkr/kmGbn+hPN8Bi5q3SYdeKfJq9qZQJA/JZlAxZkel+GFlaKI3igO/mWKA29 aY2rH9qxR0pg2GaYgIhk+7fBMWPV36+rQRkXg/gquRPlr7YDrY+LS3WRQsIh/yx7 6nWojA62zEoo2u54765q/K1+fGFavubpbLA2gLl+PK22R+KzmvihgGs/uBOzAgMB AAGjggH2MIIB8jAdBgNVHQ4EFgQUIon7mOR5zDbqsfTS/IC3F+eeI8YwHwYDVR0j BBgwFoAUKOH9A8iwQKmHSpDUZUMirN/KNAcwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hVTU1Z VEVDSC8xLzI4RTFGRDAzQzhCMDQwQTk4NzRBOTBENDY1NDMyMkFDREZDQTM0MDcu Y3JsMG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBLzAvMjhFMUZEMDNDOEIwNDBBOTg3NEE5MEQ0 NjU0MzIyQUNERkNBMzQwNy5jZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzAL hlZyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NIVU1NWVRFQ0gvMS8yOEUx RkQwM0M4QjA0MEE5ODc0QTkwRDQ2NTQzMjJBQ0RGQ0EzNDA3Lm1mdDAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYE AgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA qwuYMricu85o/3NbTZ7gUmWc32Fp+cOElS9M735o+jBm/hbcAxXSiZuSIOdCkXyx egP2Xr5vgNcQnvGlQ1J79txhU4eIB1aeRU7KM3PuaNT5545AOOCVXfcSSMm3UnZx 7/J0Qo8dMgsdZ1wHj1i+pFIIYulE5JTkDrk4I9K3OFMJcY9d7j1JOFukpZdaIzMu 3F6S0I16BqO3FiPl7rQFyP+W+Bq6aZNbtsavvHHAPLx5VQO7UoWSgSJp/MlMNk1B ZDoriCqGFKDBsqzDkzPSWeuoOFMwYKOkYIoMg3XWk/IXw4yiOCf/g2p/jmzSAEyk RhY4yKDkUGy7E7FzTP3E0Q== -----END CERTIFICATE-----Generated at Sat May 16 04:50:18 2026 by rpki-client