$ rpki-client -vvf rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft File: 3D576C4841082805B3CDBD7337F3963A8833174B.mft (raw, json) Hash identifier: I88fklOEqCcaPYm1zHe6w1eNpoGTCXdNYNo+nTMtqcc= Subject key identifier: 97:36:99:2A:CB:13:70:58:B8:1C:22:EE:DB:E8:A8:CE:A6:C5:95:27 Authority key identifier: 3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B Certificate issuer: /CN=3D576C4841082805B3CDBD7337F3963A8833174B Certificate serial: 3CE81681564ABBC7C6DBFC7903E41FD2ABA3580C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft Manifest number: 4B Signing time: Tue 30 Jun 2026 03:18:02 +0000 Manifest this update: Tue 30 Jun 2026 03:13:02 +0000 Manifest next update: Wed 01 Jul 2026 06:32:02 +0000 Files and hashes: 1: 3130332e3131392e3231342e302f32342d3234203d3e20313331363239.roa (hash: ATTGrI+LdxvHy7tZZvIf74Pi92V/OccZmHc6iAFqFXM=) 2: 3130332e3131392e3231352e302f32342d3234203d3e20313339363337.roa (hash: jPTm5d5SYsezMtn+BRkYU2/hKNSbQfuFpXU/01PcOeQ=) 3: 3130332e3131392e3231342e302f32342d3234203d3e20313333333735.roa (hash: /UvybhcLKT1KK1desdUWoCsOTWNrRkdvIjVquH9d4MA=) 4: 3D576C4841082805B3CDBD7337F3963A8833174B.crl (hash: 5kojIW6PlsM1meJGpPtXPMYKxPYKaLEOJ4E0AHKqrOk=) 5: 3130332e3131392e3231332e302f32342d3234203d3e203136353039.roa (hash: PL2cz2Hbk/JdNHMN06li8HzqoQzLhVGaxZWqRcHi6hM=) 6: 3130332e3131392e3231322e302f32322d3234203d3e20313333373437.roa (hash: zPQusnanznelCXG1KdOD21zkqA+VphGwDoshIYxRbJ0=) 7: 3130332e3131392e3231332e302f32342d3234203d3e203134363138.roa (hash: sldyxDcFqyW0yrBmnmv5iDOduZFppPbQvxaSJnOI1Vw=) 8: 3130332e3131392e3231332e302f32342d3234203d3e20313331363239.roa (hash: EJjmwH6YAXPBMwmijz6eL3wQvRP4K1M4tTn06rZJrIA=) 9: 3130332e3131392e3231342e302f32342d3234203d3e20313339363337.roa (hash: BkQPXEKbvmbpHuwtKiewh9JYhpq3BksNtpHsw33H1fI=) 10: 3130332e3131392e3231322e302f32322d3234203d3e20313331363239.roa (hash: eXsmebarUaems23bSj2ZcVD8dLS2085WCpxoaq88x4M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 06:32:02 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:e8:16:81:56:4a:bb:c7:c6:db:fc:79:03:e4:1f:d2:ab:a3:58:0c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3D576C4841082805B3CDBD7337F3963A8833174B Validity Not Before: Jun 30 03:13:02 2026 GMT Not After : Jul 1 06:32:02 2026 GMT Subject: CN=9736992ACB137058B81C22EEDBE8A8CEA6C59527 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:2d:22:64:c1:43:5a:2e:28:2d:f6:30:1c:b2: 33:cd:bd:78:f5:9d:6b:45:21:19:9a:36:3d:cb:18: cf:9b:ec:13:df:5d:89:94:d1:be:a2:21:9d:90:8a: 0f:8d:08:0a:2e:7b:b0:4b:fa:82:75:e2:21:fe:c2: d2:aa:89:a5:d5:e5:0d:58:4c:a3:3d:ca:5d:42:a3: 28:3c:c0:6c:fa:78:96:d6:db:37:92:05:bf:77:a7: 10:31:a1:03:5e:70:00:8b:7c:2f:6e:b0:9b:50:b0: 28:70:42:a9:b0:d5:0b:ae:f8:f4:5b:28:5f:94:3a: 45:ba:b5:bc:1f:58:4c:b9:f8:a4:be:d9:bc:39:f0: af:cf:63:31:7c:77:60:af:a4:15:8f:03:9c:f4:d1: 65:b6:c9:60:e3:5b:49:6a:59:28:29:18:44:be:ec: ea:32:4a:98:bb:6c:e5:aa:0f:45:47:52:d4:5c:28: f1:d5:1e:d2:f6:00:9d:44:57:fb:c2:c2:a4:6c:d8: 13:a6:d4:88:ab:18:1a:74:ae:b5:fd:54:7c:7e:6e: 93:9a:d9:2f:29:83:a5:eb:4b:79:a1:5b:79:c7:0d: dd:e2:2d:54:49:0d:03:c0:62:81:06:6b:10:0f:70: 2b:75:68:c6:69:dc:4c:85:ce:e0:1e:e9:d8:76:d2: d9:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 97:36:99:2A:CB:13:70:58:B8:1C:22:EE:DB:E8:A8:CE:A6:C5:95:27 X509v3 Authority Key Identifier: keyid:3D:57:6C:48:41:08:28:05:B3:CD:BD:73:37:F3:96:3A:88:33:17:4B X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3D576C4841082805B3CDBD7337F3963A8833174B.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CKMATES/0/3D576C4841082805B3CDBD7337F3963A8833174B.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:59:ac:b6:df:d7:0b:0a:66:ea:16:04:a4:42:ad:63:c6:52: 12:d5:23:5b:71:b1:c5:d1:c8:c5:27:7f:e3:69:ea:90:cd:81: 95:59:09:e0:57:b6:dd:a7:e9:10:c5:69:18:38:52:cc:c9:bb: f6:0a:b7:fe:af:62:24:88:bf:6e:5c:75:bf:e5:6e:79:fb:e0: 34:fd:fd:d5:9e:37:bc:bd:44:da:b8:ee:70:0d:bd:10:3c:de: 73:43:2b:1f:e0:f8:d1:6b:13:68:3b:5e:50:2a:6d:8d:23:89: fb:28:98:bd:f5:5e:af:4f:c1:d1:e8:0b:be:13:31:72:be:9e: 8f:4d:54:83:4e:af:70:42:c9:0a:6d:34:74:26:67:50:9d:b0: c0:76:01:77:39:1d:eb:38:75:cd:0c:e6:22:33:ae:ae:54:f6: 49:ba:51:61:71:3b:61:0b:02:6f:5f:50:ef:09:9b:1e:60:26: 5b:1b:b9:66:68:9e:73:96:29:9a:cd:e1:e5:60:49:0c:3c:91: dc:8c:e4:52:3c:fa:fc:ee:94:e7:b8:a2:84:67:56:df:71:2d: 58:35:ae:e6:db:a8:d7:98:61:b9:9a:39:e4:bc:b6:7e:a3:fa: 81:8a:9b:1d:98:76:f2:9e:4d:9f:10:08:b9:f3:f3:61:91:a5: 0d:f6:87:30 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUPOgWgVZKu8fG2/x5A+Qf0qujWAwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdGMzk2M0E4 ODMzMTc0QjAeFw0yNjA2MzAwMzEzMDJaFw0yNjA3MDEwNjMyMDJaMDMxMTAvBgNV BAMTKDk3MzY5OTJBQ0IxMzcwNThCODFDMjJFRURCRThBOENFQTZDNTk1MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDuLSJkwUNaLigt9jAcsjPNvXj1 nWtFIRmaNj3LGM+b7BPfXYmU0b6iIZ2Qig+NCAoue7BL+oJ14iH+wtKqiaXV5Q1Y TKM9yl1Coyg8wGz6eJbW2zeSBb93pxAxoQNecACLfC9usJtQsChwQqmw1Quu+PRb KF+UOkW6tbwfWEy5+KS+2bw58K/PYzF8d2CvpBWPA5z00WW2yWDjW0lqWSgpGES+ 7OoySpi7bOWqD0VHUtRcKPHVHtL2AJ1EV/vCwqRs2BOm1IirGBp0rrX9VHx+bpOa 2S8pg6XrS3mhW3nHDd3iLVRJDQPAYoEGaxAPcCt1aMZp3EyFzuAe6dh20tmvAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUlzaZKssTcFi4HCLu2+iozqbFlScwHwYDVR0j BBgwFoAUPVdsSEEIKAWzzb1zN/OWOogzF0swDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0tNQVRF Uy8wLzNENTc2QzQ4NDEwODI4MDVCM0NEQkQ3MzM3RjM5NjNBODgzMzE3NEIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvM0Q1NzZDNDg0MTA4MjgwNUIzQ0RCRDczMzdG Mzk2M0E4ODMzMTc0Qi5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0NLTUFURVMvMC8zRDU3NkM0ODQx MDgyODA1QjNDREJENzMzN0YzOTYzQTg4MzMxNzRCLm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAelmstt/X Cwpm6hYEpEKtY8ZSEtUjW3GxxdHIxSd/42nqkM2BlVkJ4Fe23afpEMVpGDhSzMm7 9gq3/q9iJIi/blx1v+VuefvgNP391Z43vL1E2rjucA29EDzec0MrH+D40WsTaDte UCptjSOJ+yiYvfVer0/B0egLvhMxcr6ej01Ug06vcELJCm00dCZnUJ2wwHYBdzkd 6zh1zQzmIjOurlT2SbpRYXE7YQsCb19Q7wmbHmAmWxu5Zmiec5Ypms3h5WBJDDyR 3IzkUjz6/O6U57iihGdW33EtWDWu5tuo15hhuZo55Ly2fqP6gYqbHZh28p5NnxAI ufPzYZGlDfaHMA== -----END CERTIFICATE-----Generated at Tue Jun 30 19:10:35 2026 by rpki-client