$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft File: BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft (raw, json) Hash identifier: KLTFkB0M9S31gTOCKjF3Sp08RPSxNKUrYEURg5j4Tv0= Subject key identifier: C8:D1:88:6B:A1:BA:3D:74:F7:E3:36:41:6D:4B:D9:D7:91:B9:4A:3D Authority key identifier: BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA Certificate issuer: /CN=BED725C413C7A436F5A200F207F3CB3A7A9E05DA Certificate serial: 7D573575907911E2064D00F821824592CE198DDB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft Manifest number: 4E Signing time: Tue 30 Jun 2026 12:33:53 +0000 Manifest this update: Tue 30 Jun 2026 12:28:53 +0000 Manifest next update: Wed 01 Jul 2026 12:57:53 +0000 Files and hashes: 1: 323430323a346432303a3a2f34382d3438203d3e20323133343330.roa (hash: yXLG5aJYFzJQAOcQmz7saI6BueUDkIVJ2tp9ey7Y/oo=) 2: 323430323a346432303a313a3a2f34382d3438203d3e20313331363533.roa (hash: X9wIzhuw1c0lYPQ7mtcEb2gQt9tzHi6f24KHdsIqRUI=) 3: BED725C413C7A436F5A200F207F3CB3A7A9E05DA.crl (hash: v1iDLLTPF8nSx53rfcwudFEY30QeWspjAnfk/jSBX5Y=) 4: 323430323a346432303a3a2f34382d3438203d3e20313532363236.roa (hash: gWGrH7k/E1wfVhOhIGsZWVZwwwOvXG8dp1buitprMVE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.crl rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 12:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:57:35:75:90:79:11:e2:06:4d:00:f8:21:82:45:92:ce:19:8d:db Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BED725C413C7A436F5A200F207F3CB3A7A9E05DA Validity Not Before: Jun 30 12:28:53 2026 GMT Not After : Jul 1 12:57:53 2026 GMT Subject: CN=C8D1886BA1BA3D74F7E336416D4BD9D791B94A3D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:83:0d:f9:96:ad:90:47:b5:17:8c:8a:61:b2:07: 4d:1a:af:ae:3a:07:da:d9:2e:40:2c:10:37:c0:aa: 3d:39:df:33:de:0d:bd:2b:0e:5d:e9:9e:c1:3b:ba: 8a:76:a0:83:57:6d:bd:97:f4:1e:32:c2:f4:e9:80: ab:52:a5:d2:d8:55:d5:43:81:d5:0b:19:b5:6c:91: 7c:a0:9f:98:b9:f6:f7:69:a7:d4:9b:34:81:29:f8: d8:0a:35:79:b1:65:d5:08:3f:af:22:c5:d0:09:73: 4d:3d:89:1b:9f:13:7a:56:2c:01:e6:92:9d:4b:87: ab:d1:e4:b8:a5:ed:9f:01:24:27:d8:d1:03:a5:a0: e9:6e:81:5e:63:ed:d0:37:8e:c5:d6:fa:22:df:1a: 4b:0a:2a:6f:22:9f:2d:80:90:05:a6:e2:10:d7:86: 01:db:60:b4:fc:90:df:70:51:e7:3e:d2:26:e3:d6: b2:5c:67:8e:5b:aa:88:e0:4a:ba:55:ae:d1:0e:21: 23:1c:0b:b2:bf:70:ff:e6:62:0b:2a:d8:67:30:51: 33:45:7b:0e:94:59:d5:10:28:b8:09:70:5d:e2:8f: 06:73:84:bf:19:bb:05:4a:ec:12:f7:b5:56:8e:47: 8f:e2:19:0a:2f:f7:94:be:fb:27:ee:79:b1:68:10: 8a:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D1:88:6B:A1:BA:3D:74:F7:E3:36:41:6D:4B:D9:D7:91:B9:4A:3D X509v3 Authority Key Identifier: keyid:BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4a:bd:5f:4c:33:11:10:dd:52:5e:f6:fb:77:df:fa:3d:c4:d3: 79:e1:59:3c:71:d0:82:ff:c2:de:9e:3f:7e:19:f6:51:02:19: 61:14:c8:a6:5f:b8:dc:8e:ba:9b:e4:9a:7a:2a:6d:34:d5:ed: 19:7b:0c:67:e6:d6:dd:93:12:00:64:b2:37:b9:3c:05:ed:0e: b0:d3:20:b1:cb:ff:1a:c1:0f:f7:47:e5:8c:a6:34:ea:28:89: 62:ef:6b:d6:f9:0b:50:5d:7d:40:e4:1d:7d:ed:4c:e2:a7:69: c5:1b:da:01:f7:08:2a:25:dd:15:7e:48:0d:6e:fd:19:b9:c4: d0:a2:81:ca:54:87:bf:6d:44:34:c4:cf:f1:1d:24:d0:d0:40: ea:d1:b4:7a:1b:c2:73:b4:72:f1:45:23:99:ef:1d:1f:69:e3: af:fd:ba:d5:06:21:e8:cc:ea:40:be:a5:ba:05:6c:8b:b8:16: 3b:43:0c:93:ec:6c:51:57:34:79:38:af:8f:1c:09:bd:d0:4d: 14:19:37:9e:c0:93:dd:f9:cb:78:54:32:fa:c9:4f:bf:fd:ad: 07:1b:28:c7:56:eb:42:77:68:c0:a6:68:2a:2c:54:dd:79:59: 39:ec:ea:a1:1e:1d:5a:06:a5:45:cd:f4:2e:97:ee:5c:44:d0: a0:6e:92:c4 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUfVc1dZB5EeIGTQD4IYJFks4ZjdswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVENzI1QzQxM0M3QTQzNkY1QTIwMEYyMDdGM0NCM0E3 QTlFMDVEQTAeFw0yNjA2MzAxMjI4NTNaFw0yNjA3MDExMjU3NTNaMDMxMTAvBgNV BAMTKEM4RDE4ODZCQTFCQTNENzRGN0UzMzY0MTZENEJEOUQ3OTFCOTRBM0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCDDfmWrZBHtReMimGyB00ar646 B9rZLkAsEDfAqj053zPeDb0rDl3pnsE7uop2oINXbb2X9B4ywvTpgKtSpdLYVdVD gdULGbVskXygn5i59vdpp9SbNIEp+NgKNXmxZdUIP68ixdAJc009iRufE3pWLAHm kp1Lh6vR5Lil7Z8BJCfY0QOloOlugV5j7dA3jsXW+iLfGksKKm8iny2AkAWm4hDX hgHbYLT8kN9wUec+0ibj1rJcZ45bqojgSrpVrtEOISMcC7K/cP/mYgsq2GcwUTNF ew6UWdUQKLgJcF3ijwZzhL8ZuwVK7BL3tVaOR4/iGQov95S++yfuebFoEIpvAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUyNGIa6G6PXT34zZBbUvZ15G5Sj0wHwYDVR0j BBgwFoAUvtclxBPHpDb1ogDyB/PLOnqeBdowDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURC QVNFLzAvQkVENzI1QzQxM0M3QTQzNkY1QTIwMEYyMDdGM0NCM0E3QTlFMDVEQS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9CRUQ3MjVDNDEzQzdBNDM2RjVBMjAwRjIw N0YzQ0IzQTdBOUUwNURBLmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURCQVNFLzAvQkVENzI1 QzQxM0M3QTQzNkY1QTIwMEYyMDdGM0NCM0E3QTlFMDVEQS5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAEq9 X0wzERDdUl72+3ff+j3E03nhWTxx0IL/wt6eP34Z9lECGWEUyKZfuNyOupvkmnoq bTTV7Rl7DGfm1t2TEgBksje5PAXtDrDTILHL/xrBD/dH5YymNOooiWLva9b5C1Bd fUDkHX3tTOKnacUb2gH3CCol3RV+SA1u/Rm5xNCigcpUh79tRDTEz/EdJNDQQOrR tHobwnO0cvFFI5nvHR9p46/9utUGIejM6kC+pboFbIu4FjtDDJPsbFFXNHk4r48c Cb3QTRQZN57Ak935y3hUMvrJT7/9rQcbKMdW60J3aMCmaCosVN15WTns6qEeHVoG pUXN9C6X7lxE0KBuksQ= -----END CERTIFICATE-----Generated at Tue Jun 30 19:07:18 2026 by rpki-client