$ rpki-client -vvf rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft File: 3D576C4841082805B3CDBD7337F3963A8833174B.mft (raw, json) Hash identifier: /Qyz6aUd4X8FI1pIl7u/A3XlFAwXbLfVDXDpPyf75VI= Subject key identifier: C2:EF:59:94:52:92:BA:BE:50:1E:04:F3:B5:17:95:42:CB:12:EB:FB Authority key identifier: 3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B Certificate issuer: /CN=3D576C4841082805B3CDBD7337F3963A8833174B Certificate serial: 4576040C3E30D51BEAC080B866B39923707C7DD2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft Manifest number: 0B Signing time: Wed 13 May 2026 03:36:36 +0000 Manifest this update: Wed 13 May 2026 03:31:36 +0000 Manifest next update: Thu 14 May 2026 06:14:36 +0000 Files and hashes: 1: 3130332e3131392e3231342e302f32342d3234203d3e20313339363337.roa (hash: BkQPXEKbvmbpHuwtKiewh9JYhpq3BksNtpHsw33H1fI=) 2: 3130332e3131392e3231322e302f32322d3234203d3e20313331363239.roa (hash: eXsmebarUaems23bSj2ZcVD8dLS2085WCpxoaq88x4M=) 3: 3130332e3131392e3231322e302f32322d3234203d3e20313333373437.roa (hash: zPQusnanznelCXG1KdOD21zkqA+VphGwDoshIYxRbJ0=) 4: 3D576C4841082805B3CDBD7337F3963A8833174B.crl (hash: 7XiCiXcvWaJ0KAsZJ6R57CofnflazcRmjedEfpxPEC4=) 5: 3130332e3131392e3231332e302f32342d3234203d3e20313331363239.roa (hash: EJjmwH6YAXPBMwmijz6eL3wQvRP4K1M4tTn06rZJrIA=) 6: 3130332e3131392e3231352e302f32342d3234203d3e20313339363337.roa (hash: jPTm5d5SYsezMtn+BRkYU2/hKNSbQfuFpXU/01PcOeQ=) 7: 3130332e3131392e3231332e302f32342d3234203d3e203134363138.roa (hash: sldyxDcFqyW0yrBmnmv5iDOduZFppPbQvxaSJnOI1Vw=) 8: 3130332e3131392e3231332e302f32342d3234203d3e203136353039.roa (hash: PL2cz2Hbk/JdNHMN06li8HzqoQzLhVGaxZWqRcHi6hM=) 9: 3130332e3131392e3231342e302f32342d3234203d3e20313331363239.roa (hash: ATTGrI+LdxvHy7tZZvIf74Pi92V/OccZmHc6iAFqFXM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:14:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 45:76:04:0c:3e:30:d5:1b:ea:c0:80:b8:66:b3:99:23:70:7c:7d:d2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D576C4841082805B3CDBD7337F3963A8833174B Validity Not Before: May 13 03:31:36 2026 GMT Not After : May 14 06:14:36 2026 GMT Subject: CN=C2EF59945292BABE501E04F3B5179542CB12EBFB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:47:97:ad:16:7d:67:e4:2c:83:b2:97:58:d7: 38:d0:d8:bb:9e:81:e3:13:6e:05:fa:d1:43:fb:7e: 35:12:d3:7f:69:a7:46:91:39:e2:cc:ce:8b:a1:a0: b1:f3:69:ef:da:14:2e:8a:f6:e3:a6:98:05:ad:9a: 90:9c:6d:8a:2a:0e:b2:91:23:36:f9:0a:8c:c4:e8: 48:ce:e8:63:90:3b:68:78:4d:1a:94:e2:71:96:68: 0c:39:99:7e:a9:34:ac:29:53:30:e8:06:9e:0e:d1: 55:ed:f4:5b:81:1a:6d:8c:e3:63:e4:ae:f0:74:38: 29:e0:4b:95:25:11:fc:64:07:f1:1b:af:38:c9:81: 8e:62:0f:6b:86:b8:8f:47:c7:81:89:54:6c:5f:65: c8:af:07:42:75:32:9d:e2:24:fb:a2:71:b3:a9:fe: 36:8d:f8:5d:85:22:ac:af:78:2c:70:a5:19:18:6f: bb:6f:0a:36:ee:03:b0:ca:20:cb:86:d6:f2:52:f4: e4:89:1c:07:a4:5c:30:96:ab:c3:2d:24:28:82:af: ef:0f:62:f1:35:56:3e:0a:00:ee:6d:f6:e1:96:c7: 5b:c7:52:14:cc:10:28:c9:f8:56:e7:f3:86:40:df: e6:2d:89:1e:d0:5d:d0:57:e5:4f:04:d1:d5:10:73: 78:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:EF:59:94:52:92:BA:BE:50:1E:04:F3:B5:17:95:42:CB:12:EB:FB X509v3 Authority Key Identifier: keyid:3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6d:3c:9f:ee:b8:79:28:d9:ce:48:25:e0:bf:6d:13:3d:73:dd: ae:ed:c9:b2:20:74:2c:c5:c7:c9:04:7f:58:4b:d3:fb:b4:de: ce:0a:6f:12:af:c6:af:db:c6:7c:3a:a3:78:6c:ff:6f:43:73: 96:55:b5:53:a4:9e:e0:d3:80:2b:52:42:fb:f6:f1:23:72:37: 0f:02:c6:81:ba:f3:68:44:79:30:e3:b4:ce:c0:ce:b9:4c:ad: 8e:25:4f:77:8b:e0:b6:65:14:38:74:7b:9d:1e:46:95:a4:4c: 34:1b:c1:5f:00:86:e3:b2:66:ca:d7:cc:67:dc:53:29:79:d4: 52:77:1e:03:b2:a0:36:1c:37:58:13:ab:d8:f1:89:44:a4:f7: 47:42:d1:0f:4a:e3:df:0f:92:c3:e0:5d:d8:55:6f:5a:d3:ab: b6:53:ff:e5:b3:b0:e2:7b:30:e9:51:58:87:08:db:eb:6c:91: 91:17:c3:9b:b2:7c:66:35:4b:0f:00:e8:f1:22:af:17:4f:9f: df:eb:ec:45:c5:fe:13:b6:52:32:d4:46:f7:a0:fe:1b:ef:29: 2e:e1:56:34:c8:a2:14:2f:c7:72:a4:d7:66:1f:f9:ce:b0:aa: e7:77:1c:53:fa:cd:a2:0f:47:b1:8f:23:46:3e:93:e0:37:bd: b2:50:81:3b -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIURXYEDD4w1RvqwIC4ZrOZI3B8fdIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdGMzk2M0E4 ODMzMTc0QjAeFw0yNjA1MTMwMzMxMzZaFw0yNjA1MTQwNjE0MzZaMDMxMTAvBgNV BAMTKEMyRUY1OTk0NTI5MkJBQkU1MDFFMDRGM0I1MTc5NTQyQ0IxMkVCRkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDR5etFn1n5CyDspdY1zjQ2Lue geMTbgX60UP7fjUS039pp0aROeLMzouhoLHzae/aFC6K9uOmmAWtmpCcbYoqDrKR Izb5CozE6EjO6GOQO2h4TRqU4nGWaAw5mX6pNKwpUzDoBp4O0VXt9FuBGm2M42Pk rvB0OCngS5UlEfxkB/EbrzjJgY5iD2uGuI9Hx4GJVGxfZcivB0J1Mp3iJPuicbOp /jaN+F2FIqyveCxwpRkYb7tvCjbuA7DKIMuG1vJS9OSJHAekXDCWq8MtJCiCr+8P YvE1Vj4KAO5t9uGWx1vHUhTMECjJ+Fbn84ZA3+YtiR7QXdBX5U8E0dUQc3iJAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUwu9ZlFKSur5QHgTztReVQssS6/swHwYDVR0j BBgwFoAUPVdsSEEIKAWzzb1zN/OWOogzF0swDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0tNQVRF Uy8wLzNENTc2QzQ4NDEwODI4MDVCM0NEQkQ3MzM3RjM5NjNBODgzMzE3NEIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdG Mzk2M0E4ODMzMTc0Qi5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NLTUFURVMvMC8zRDU3NkM0ODQx MDgyODA1QjNDREJENzMzN0YzOTYzQTg4MzMxNzRCLm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAbTyf7rh5 KNnOSCXgv20TPXPdru3JsiB0LMXHyQR/WEvT+7TezgpvEq/Gr9vGfDqjeGz/b0Nz llW1U6Se4NOAK1JC+/bxI3I3DwLGgbrzaER5MOO0zsDOuUytjiVPd4vgtmUUOHR7 nR5GlaRMNBvBXwCG47JmytfMZ9xTKXnUUnceA7KgNhw3WBOr2PGJRKT3R0LRD0rj 3w+Sw+Bd2FVvWtOrtlP/5bOw4nsw6VFYhwjb62yRkRfDm7J8ZjVLDwDo8SKvF0+f 3+vsRcX+E7ZSMtRG96D+G+8pLuFWNMiiFC/HcqTXZh/5zrCq53ccU/rNog9HsY8j Rj6T4De9slCBOw== -----END CERTIFICATE-----Generated at Wed May 13 20:36:34 2026 by rpki-client