$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.mft File: 385249635956536ABAE4461A37AC4824F9DC8FD6.mft (raw, json) Hash identifier: K3bXA5rfPbn1t3XDyLrLw0z0A5a12ksCgPxbbEZ31Sc= Subject key identifier: EC:29:5C:28:4B:3F:34:12:A5:B2:C2:0C:0B:C2:49:52:5D:FE:31:0A Authority key identifier: 38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6 Certificate issuer: /CN=385249635956536ABAE4461A37AC4824F9DC8FD6 Certificate serial: 1AB88792415CA657B085EE366550432AC7382AA7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.mft Manifest number: 0E Signing time: Sat 16 May 2026 01:47:53 +0000 Manifest this update: Sat 16 May 2026 01:42:53 +0000 Manifest next update: Sun 17 May 2026 04:19:53 +0000 Files and hashes: 1: 3136352e3130312e32382e302f32332d3234203d3e20313331363533.roa (hash: f8Wm++qXpNxVHGZKo201vAM9Z2Uy7/WdNvruK2l9Afw=) 2: 3136352e3130312e32382e302f32332d3234203d3e20323133343330.roa (hash: 35okLdMHqqFwUJOW9E0osinYU4tPIsxaiWo2zlSSj84=) 3: 3136352e3130312e32382e302f32332d3234203d3e20313532363236.roa (hash: btNO8YG7Xa0kAdLaiC/xjh2pArbM9BSYgMB1cmgXBcM=) 4: 385249635956536ABAE4461A37AC4824F9DC8FD6.crl (hash: ZUrvYRqp0NSKG49NML6MpHuldv4CYWKBvlh5199q1Wg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.crl rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 16 May 2026 21:11:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1a:b8:87:92:41:5c:a6:57:b0:85:ee:36:65:50:43:2a:c7:38:2a:a7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=385249635956536ABAE4461A37AC4824F9DC8FD6 Validity Not Before: May 16 01:42:53 2026 GMT Not After : May 17 04:19:53 2026 GMT Subject: CN=EC295C284B3F3412A5B2C20C0BC249525DFE310A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:b3:22:ba:ce:2c:00:8a:c0:54:d9:da:88:19: 08:e0:32:33:2e:39:64:3a:1f:8c:8e:f2:ac:65:49: 0a:1f:06:95:fa:79:93:ab:8f:07:55:54:cc:23:2a: 65:86:1a:e5:29:7d:cc:6c:15:7e:e8:88:9f:70:c2: 07:cf:f8:a0:12:96:72:5a:69:9f:a3:c8:e5:7a:15: d5:c0:b7:6a:5f:9f:5f:c5:91:c3:af:2d:14:be:c1: 18:ef:77:b7:5c:4e:3c:27:46:c0:d0:bc:88:88:30: 29:a3:ca:bb:d1:db:5c:6a:24:77:8c:ff:19:d9:e8: 2f:c0:1d:06:a9:7d:36:97:d7:21:d0:0d:33:da:05: 05:e3:ca:c9:1f:03:f3:78:2c:eb:83:04:38:7f:8c: 89:92:54:35:61:05:1d:71:34:c8:f6:1f:4b:25:1b: 3e:7c:7b:81:c8:b1:93:88:23:2d:cb:93:2d:cd:52: ba:70:d2:fb:f6:4c:5d:67:8a:1b:e9:77:cf:b8:a3: 80:c7:ad:05:98:df:4f:9f:66:d7:9b:87:e5:45:0b: 64:11:67:d0:72:f9:fc:17:e9:f9:b7:9f:59:4d:d6: 3a:b3:cd:da:c1:6b:86:1d:7d:ef:7e:70:6b:40:8a: 20:ba:64:cc:ed:38:71:89:03:54:c9:45:c5:14:57: 16:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:29:5C:28:4B:3F:34:12:A5:B2:C2:0C:0B:C2:49:52:5D:FE:31:0A X509v3 Authority Key Identifier: keyid:38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:c7:c7:99:75:a6:65:e9:5d:0b:ba:b5:63:76:23:ab:24:4d: 99:8d:72:e9:fb:35:25:c4:13:67:b0:6f:b8:fb:47:07:40:49: 4b:5e:94:8c:8b:08:b2:84:1c:82:76:a2:af:b4:99:c6:4b:f9: 9c:b4:1f:d9:76:e1:17:8f:75:2c:d1:88:25:a8:70:d3:32:bf: ee:df:24:83:ee:4c:85:ad:a0:a2:4b:50:f0:60:a2:57:05:21: 7d:93:13:65:23:6f:50:e4:fb:07:8b:f9:8a:b0:22:d7:c9:85: 84:6c:90:e6:29:63:ac:1a:86:ae:4c:66:d3:4f:e6:3a:80:9c: b1:62:8b:15:3f:f1:43:9a:e1:d3:cb:02:11:6e:47:a0:73:39: ab:b8:36:3b:5e:e9:92:67:76:ec:8b:36:e1:b6:e4:50:96:97: 2b:91:06:5e:e7:c6:8e:e2:e7:2d:d5:84:23:e9:ee:5a:d1:73: 94:11:a9:27:78:43:fc:e6:2f:f3:e5:c5:fc:6b:15:f8:35:3b: 63:27:84:25:a9:82:6e:3c:b5:bd:3e:16:b5:c1:42:c4:49:c5: 0e:9c:2c:f2:f3:9c:01:3a:8c:a4:fc:10:b1:a1:27:72:79:1d: ff:01:ad:9c:b9:61:3b:7e:6c:13:be:64:27:e0:53:91:a6:d9: e9:39:ce:84 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUGriHkkFcplewhe42ZVBDKsc4KqcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg1MjQ5NjM1OTU2NTM2QUJBRTQ0NjFBMzdBQzQ4MjRG OURDOEZENjAeFw0yNjA1MTYwMTQyNTNaFw0yNjA1MTcwNDE5NTNaMDMxMTAvBgNV BAMTKEVDMjk1QzI4NEIzRjM0MTJBNUIyQzIwQzBCQzI0OTUyNURGRTMxMEEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCYsyK6ziwAisBU2dqIGQjgMjMu OWQ6H4yO8qxlSQofBpX6eZOrjwdVVMwjKmWGGuUpfcxsFX7oiJ9wwgfP+KASlnJa aZ+jyOV6FdXAt2pfn1/FkcOvLRS+wRjvd7dcTjwnRsDQvIiIMCmjyrvR21xqJHeM /xnZ6C/AHQapfTaX1yHQDTPaBQXjyskfA/N4LOuDBDh/jImSVDVhBR1xNMj2H0sl Gz58e4HIsZOIIy3Lky3NUrpw0vv2TF1nihvpd8+4o4DHrQWY30+fZtebh+VFC2QR Z9By+fwX6fm3n1lN1jqzzdrBa4Ydfe9+cGtAiiC6ZMztOHGJA1TJRcUUVxZfAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU7ClcKEs/NBKlssIMC8JJUl3+MQowHwYDVR0j BBgwFoAUOFJJY1lWU2q65EYaN6xIJPncj9YwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURC QVNFLzEvMzg1MjQ5NjM1OTU2NTM2QUJBRTQ0NjFBMzdBQzQ4MjRGOURDOEZENi5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMC8zODUyNDk2MzU5NTY1MzZBQkFFNDQ2MUEz N0FDNDgyNEY5REM4RkQ2LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURCQVNFLzEvMzg1MjQ5 NjM1OTU2NTM2QUJBRTQ0NjFBMzdBQzQ4MjRGOURDOEZENi5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBADDH x5l1pmXpXQu6tWN2I6skTZmNcun7NSXEE2ewb7j7RwdASUtelIyLCLKEHIJ2oq+0 mcZL+Zy0H9l24RePdSzRiCWocNMyv+7fJIPuTIWtoKJLUPBgolcFIX2TE2Ujb1Dk +weL+YqwItfJhYRskOYpY6wahq5MZtNP5jqAnLFiixU/8UOa4dPLAhFuR6BzOau4 Njte6ZJnduyLNuG25FCWlyuRBl7nxo7i5y3VhCPp7lrRc5QRqSd4Q/zmL/Plxfxr Ffg1O2MnhCWpgm48tb0+FrXBQsRJxQ6cLPLznAE6jKT8ELGhJ3J5Hf8BrZy5YTt+ bBO+ZCfgU5Gm2ek5zoQ= -----END CERTIFICATE-----Generated at Sat May 16 04:47:27 2026 by rpki-client