$ rpki-client -vvf rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft File: 28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft (raw, json) Hash identifier: 04yJv4MmDxuzhgoPuCp6G9hX35Wqbv1cobmzYFEjwHI= Subject key identifier: 8F:7F:CE:D1:49:B5:68:2D:E0:45:C9:CE:E8:30:44:9C:6B:9B:1B:69 Authority key identifier: 28:E1:FD:03:C8:B0:40:A9:87:4A:90:D4:65:43:22:AC:DF:CA:34:07 Certificate issuer: /CN=28E1FD03C8B040A9874A90D4654322ACDFCA3407 Certificate serial: 491C7967408B6910AAAD08624FF801378F1F9B70 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/28E1FD03C8B040A9874A90D4654322ACDFCA3407.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft Manifest number: 45 Signing time: Tue 30 Jun 2026 00:47:41 +0000 Manifest this update: Tue 30 Jun 2026 00:42:41 +0000 Manifest next update: Wed 01 Jul 2026 01:55:41 +0000 Files and hashes: 1: 28E1FD03C8B040A9874A90D4654322ACDFCA3407.crl (hash: FMjSMy49TO3lzkIFPq19RxcOpSWESD32ffautPNlOuc=) 2: 3136302e3138372e3139382e302f32332d3234203d3e20313532363135.roa (hash: I6RgBeSwuI+mSenPcIlVAxSTnNAaaE4/xzzLMyb2FH0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.crl rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/28E1FD03C8B040A9874A90D4654322ACDFCA3407.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 01:55:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 49:1c:79:67:40:8b:69:10:aa:ad:08:62:4f:f8:01:37:8f:1f:9b:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28E1FD03C8B040A9874A90D4654322ACDFCA3407 Validity Not Before: Jun 30 00:42:41 2026 GMT Not After : Jul 1 01:55:41 2026 GMT Subject: CN=8F7FCED149B5682DE045C9CEE830449C6B9B1B69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:48:82:04:c8:59:3a:26:c9:b6:3e:31:04:72: 4a:00:1b:8f:20:43:89:89:c2:5b:45:8b:21:3f:c8: a2:3b:9f:e4:1e:5d:ba:c8:d7:bf:f1:04:ab:2d:8e: e4:e0:3c:b6:c1:91:96:48:f3:6c:9e:e3:c1:87:57: 78:29:a3:28:57:f6:ae:c6:b5:a5:85:17:ce:37:72: 8e:c4:ea:47:a6:fc:f6:ba:88:62:91:d0:37:ac:1b: 33:66:09:c4:b4:69:e8:21:48:c7:d4:1b:f7:38:87: 1c:42:af:76:69:58:30:e9:2f:80:04:15:4c:19:96: 8c:a1:97:63:1e:31:ba:34:19:f4:4e:eb:7c:03:3a: bc:05:3a:aa:31:a6:c3:f4:92:bf:fc:64:7c:83:12: 69:a4:60:f4:6f:de:26:3e:c8:1f:30:f5:db:28:18: 75:a4:02:9e:f6:ff:16:c4:d9:20:a3:9a:f2:14:52: 80:5b:5f:b0:9f:c5:f4:e6:1d:33:de:c7:3c:3f:a7: a6:8e:2e:e8:de:88:b8:99:b6:03:5a:18:8e:db:7f: 05:ca:75:91:5e:40:d6:59:10:2e:50:93:b9:1a:4d: ff:29:6c:d9:46:14:c4:6c:22:c1:92:bd:0b:45:37: 1a:d6:e2:fc:96:04:e6:12:a8:7c:2e:cb:53:cf:e3: cb:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:7F:CE:D1:49:B5:68:2D:E0:45:C9:CE:E8:30:44:9C:6B:9B:1B:69 X509v3 Authority Key Identifier: keyid:28:E1:FD:03:C8:B0:40:A9:87:4A:90:D4:65:43:22:AC:DF:CA:34:07 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/28E1FD03C8B040A9874A90D4654322ACDFCA3407.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHUMMYTECH/1/28E1FD03C8B040A9874A90D4654322ACDFCA3407.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 31:ba:0f:d6:98:52:8b:b6:c4:a9:a8:4b:f9:9f:83:19:db:db: f3:bb:31:ce:71:78:a9:1c:4f:07:56:a9:ed:80:73:4e:6e:7b: 2f:86:bc:02:f4:e5:b0:37:85:a0:5a:52:c0:5e:80:a4:68:b8: 01:5b:f9:58:a0:2b:bb:17:48:5d:55:72:0c:95:94:a0:a9:b0: 8b:88:4b:4e:33:d0:81:22:31:77:61:8a:04:94:36:8a:8e:c7: f8:4c:90:3b:a6:7a:b3:30:e0:d2:46:48:5f:fc:13:e9:8a:89: b3:50:02:aa:4b:91:48:6b:4d:ff:91:a2:59:67:e3:96:4a:0c: 34:5d:e6:b2:8c:2f:a8:95:c7:bb:50:48:75:f0:15:59:35:73: f2:f8:20:30:54:53:cc:3c:a6:90:48:a8:12:1e:a7:f1:6c:f1: b1:64:ac:32:67:94:1b:a8:7a:ff:8c:ea:47:5b:ed:8f:a3:03: ea:26:b0:64:22:de:37:d4:0d:8f:2b:d2:4c:9a:4d:90:80:e0: c4:29:61:e4:92:28:0d:ec:86:f9:14:b8:75:31:92:c3:e5:74: f5:b1:50:0f:ca:ee:e7:92:03:13:16:7c:ed:fd:0b:00:17:93: ec:e8:b2:9d:7a:08:28:eb:24:76:35:71:42:a6:24:4f:56:05: 89:54:93:5c -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIUSRx5Z0CLaRCqrQhiT/gBN48fm3AwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjhFMUZEMDNDOEIwNDBBOTg3NEE5MEQ0NjU0MzIyQUNE RkNBMzQwNzAeFw0yNjA2MzAwMDQyNDFaFw0yNjA3MDEwMTU1NDFaMDMxMTAvBgNV BAMTKDhGN0ZDRUQxNDlCNTY4MkRFMDQ1QzlDRUU4MzA0NDlDNkI5QjFCNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC+SIIEyFk6Jsm2PjEEckoAG48g Q4mJwltFiyE/yKI7n+QeXbrI17/xBKstjuTgPLbBkZZI82ye48GHV3gpoyhX9q7G taWFF843co7E6kem/Pa6iGKR0DesGzNmCcS0aeghSMfUG/c4hxxCr3ZpWDDpL4AE FUwZloyhl2MeMbo0GfRO63wDOrwFOqoxpsP0kr/8ZHyDEmmkYPRv3iY+yB8w9dso GHWkAp72/xbE2SCjmvIUUoBbX7CfxfTmHTPexzw/p6aOLujeiLiZtgNaGI7bfwXK dZFeQNZZEC5Qk7kaTf8pbNlGFMRsIsGSvQtFNxrW4vyWBOYSqHwuy1PP48vTAgMB AAGjggH2MIIB8jAdBgNVHQ4EFgQUj3/O0Um1aC3gRcnO6DBEnGubG2kwHwYDVR0j BBgwFoAUKOH9A8iwQKmHSpDUZUMirN/KNAcwDgYDVR0PAQH/BAQDAgeAMGcGA1Ud HwRgMF4wXKBaoFiGVnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hVTU1Z VEVDSC8xLzI4RTFGRDAzQzhCMDQwQTk4NzRBOTBENDY1NDMyMkFDREZDQTM0MDcu Y3JsMG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBLzAvMjhFMUZEMDNDOEIwNDBBOTg3NEE5MEQ0 NjU0MzIyQUNERkNBMzQwNy5jZXIwcgYIKwYBBQUHAQsEZjBkMGIGCCsGAQUFBzAL hlZyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NIVU1NWVRFQ0gvMS8yOEUx RkQwM0M4QjA0MEE5ODc0QTkwRDQ2NTQzMjJBQ0RGQ0EzNDA3Lm1mdDAYBgNVHSAB Af8EDjAMMAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYE AgACBQAwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEA MboP1phSi7bEqahL+Z+DGdvb87sxznF4qRxPB1ap7YBzTm57L4a8AvTlsDeFoFpS wF6ApGi4AVv5WKAruxdIXVVyDJWUoKmwi4hLTjPQgSIxd2GKBJQ2io7H+EyQO6Z6 szDg0kZIX/wT6YqJs1ACqkuRSGtN/5GiWWfjlkoMNF3msowvqJXHu1BIdfAVWTVz 8vggMFRTzDymkEioEh6n8WzxsWSsMmeUG6h6/4zqR1vtj6MD6iawZCLeN9QNjyvS TJpNkIDgxClh5JIoDeyG+RS4dTGSw+V09bFQD8ru55IDExZ87f0LABeT7OiynXoI KOskdjVxQqYkT1YFiVSTXA== -----END CERTIFICATE-----Generated at Tue Jun 30 13:10:02 2026 by rpki-client