$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.mft File: 385249635956536ABAE4461A37AC4824F9DC8FD6.mft (raw, json) Hash identifier: vyG0J0WV8hsfNpAylIMsXEQdYwOYB2lFHqQEYpsMSec= Subject key identifier: 80:7D:4D:69:B7:3E:44:89:0A:CF:44:5C:13:6A:BF:17:B1:84:AE:AE Authority key identifier: 38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6 Certificate issuer: /CN=385249635956536ABAE4461A37AC4824F9DC8FD6 Certificate serial: 3CB9FAC7E84F629320566CB8EE3FDB2ED1D8C8D8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.mft Manifest number: 4D Signing time: Tue 30 Jun 2026 11:13:44 +0000 Manifest this update: Tue 30 Jun 2026 11:08:44 +0000 Manifest next update: Wed 01 Jul 2026 12:16:44 +0000 Files and hashes: 1: 3136352e3130312e32382e302f32332d3234203d3e2037353336.roa (hash: MDQ0MQpqvOnP3tGAXbdXYndg5XorOFrBiv2BjsmWQz0=) 2: 3136352e3130312e32382e302f32332d3234203d3e20313532363236.roa (hash: btNO8YG7Xa0kAdLaiC/xjh2pArbM9BSYgMB1cmgXBcM=) 3: 3136352e3130312e32382e302f32332d3234203d3e20323133343330.roa (hash: 35okLdMHqqFwUJOW9E0osinYU4tPIsxaiWo2zlSSj84=) 4: 3136352e3130312e32392e302f32342d3234203d3e203136353039.roa (hash: yjG8MYF6nfrkwkNu+HFEW+1IrLrwkYkIiZ19QyWO3Dk=) 5: 3136352e3130312e32382e302f32332d3234203d3e203231383539.roa (hash: R74xcd60wZBSfoy4K8X12x3wQEVRWzhx68AMGErwhDI=) 6: 385249635956536ABAE4461A37AC4824F9DC8FD6.crl (hash: i8Bjw1RpAHsQl2s+ak2BUOeT9WKnRNtKmrmG60aXCZE=) 7: 3136352e3130312e32382e302f32332d3234203d3e203136353039.roa (hash: I9pglQOMH4ub5GmJQynwwln40ZQJu3vyeI2yVEXDiCY=) 8: 3136352e3130312e32382e302f32332d3234203d3e20313331363533.roa (hash: f8Wm++qXpNxVHGZKo201vAM9Z2Uy7/WdNvruK2l9Afw=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.crl rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 19:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3c:b9:fa:c7:e8:4f:62:93:20:56:6c:b8:ee:3f:db:2e:d1:d8:c8:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=385249635956536ABAE4461A37AC4824F9DC8FD6 Validity Not Before: Jun 30 11:08:44 2026 GMT Not After : Jul 1 12:16:44 2026 GMT Subject: CN=807D4D69B73E44890ACF445C136ABF17B184AEAE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1d:5c:ad:19:87:34:a4:db:d5:a6:27:61:bc: 5b:7a:a5:25:3f:74:e0:36:33:5d:82:9e:a0:e2:ec: d6:2b:50:d6:54:49:3d:2c:74:f8:83:87:19:de:eb: 95:03:1b:4f:1a:b5:91:63:31:2a:0a:a9:8b:af:97: 76:1e:d2:c8:4f:88:81:9e:cb:f4:81:92:d2:7d:10: 04:f9:7a:13:0a:e9:55:2e:24:62:73:08:5e:71:fa: 87:cc:fb:a9:12:38:c7:76:2b:a0:88:f4:e9:68:20: 8f:1f:61:d1:82:01:f6:d2:ae:0a:2f:df:d7:fc:fc: 89:b2:bf:9d:8c:2a:df:db:bb:60:c1:cb:9f:35:d7: 30:e7:21:0b:21:f9:11:b8:1c:f4:8b:c0:a2:f5:c9: be:2b:d5:59:18:08:f6:8a:9e:43:b4:b4:be:2c:b2: 7b:0c:d5:f3:a5:3e:c2:37:02:36:04:a9:8e:04:ff: bd:de:9a:33:e4:2f:19:4a:fb:d8:6c:4f:43:80:93: 82:3b:eb:61:3a:2b:90:c4:f4:e0:7c:33:2a:30:2f: 6a:07:4e:e6:f8:88:e0:dc:92:b9:f5:82:4b:35:2f: 5e:18:d1:11:a0:a5:73:51:e2:bc:7d:e4:98:03:50: e8:af:5a:6a:e7:86:39:62:2e:e1:91:35:f7:cc:92: c9:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:7D:4D:69:B7:3E:44:89:0A:CF:44:5C:13:6A:BF:17:B1:84:AE:AE X509v3 Authority Key Identifier: keyid:38:52:49:63:59:56:53:6A:BA:E4:46:1A:37:AC:48:24:F9:DC:8F:D6 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/385249635956536ABAE4461A37AC4824F9DC8FD6.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/1/385249635956536ABAE4461A37AC4824F9DC8FD6.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 81:be:d2:2b:60:11:5c:99:e0:ec:fb:98:b1:39:a7:01:14:ff: d6:d4:64:c9:55:7c:31:0a:7e:e8:3e:52:1f:7b:32:4d:99:ee: 97:ee:35:bc:8d:41:ff:f8:0b:91:9d:2f:c5:e1:97:bc:69:0e: d5:26:10:16:16:f3:a8:68:90:bb:d7:fc:b5:92:db:53:ef:5c: 3b:dd:bd:3f:5d:80:bc:54:12:36:09:f7:7b:20:76:70:43:aa: 6c:a2:93:3b:32:01:33:fa:0d:6b:dc:39:bf:76:de:35:71:b9: e3:78:85:20:ac:2f:12:14:b4:82:62:a4:e3:e9:a2:36:34:b5: 66:2f:a2:cb:92:86:33:77:61:24:be:a7:76:35:76:01:02:8d: 9f:33:7a:f8:99:2c:35:94:d3:da:07:66:50:92:02:61:92:95: 7b:48:bc:e2:87:88:8d:49:9c:c3:89:57:a2:7f:05:2e:45:0e: 1a:c2:67:7a:82:8c:bd:17:7e:a0:7c:54:9a:c1:4b:d4:58:9b: 15:6f:6d:59:29:57:12:cd:ba:1a:83:55:b2:c8:4f:26:82:c5: 03:8d:68:03:44:32:d0:ad:a5:93:02:08:92:95:fe:38:e3:1c: 3b:4f:cf:d2:b8:89:65:23:45:24:d4:d6:6a:e1:5e:81:53:02: 7c:df:46:03 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUPLn6x+hPYpMgVmy47j/bLtHYyNgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzg1MjQ5NjM1OTU2NTM2QUJBRTQ0NjFBMzdBQzQ4MjRG OURDOEZENjAeFw0yNjA2MzAxMTA4NDRaFw0yNjA3MDExMjE2NDRaMDMxMTAvBgNV BAMTKDgwN0Q0RDY5QjczRTQ0ODkwQUNGNDQ1QzEzNkFCRjE3QjE4NEFFQUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSHVytGYc0pNvVpidhvFt6pSU/ dOA2M12CnqDi7NYrUNZUST0sdPiDhxne65UDG08atZFjMSoKqYuvl3Ye0shPiIGe y/SBktJ9EAT5ehMK6VUuJGJzCF5x+ofM+6kSOMd2K6CI9OloII8fYdGCAfbSrgov 39f8/Imyv52MKt/bu2DBy5811zDnIQsh+RG4HPSLwKL1yb4r1VkYCPaKnkO0tL4s snsM1fOlPsI3AjYEqY4E/73emjPkLxlK+9hsT0OAk4I762E6K5DE9OB8MyowL2oH Tub4iODckrn1gks1L14Y0RGgpXNR4rx95JgDUOivWmrnhjliLuGRNffMksmlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUgH1Nabc+RIkKz0RcE2q/F7GErq4wHwYDVR0j BBgwFoAUOFJJY1lWU2q65EYaN6xIJPncj9YwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURC QVNFLzEvMzg1MjQ5NjM1OTU2NTM2QUJBRTQ0NjFBMzdBQzQ4MjRGOURDOEZENi5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMC8zODUyNDk2MzU5NTY1MzZBQkFFNDQ2MUEz N0FDNDgyNEY5REM4RkQ2LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURCQVNFLzEvMzg1MjQ5 NjM1OTU2NTM2QUJBRTQ0NjFBMzdBQzQ4MjRGOURDOEZENi5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAIG+ 0itgEVyZ4Oz7mLE5pwEU/9bUZMlVfDEKfug+Uh97Mk2Z7pfuNbyNQf/4C5GdL8Xh l7xpDtUmEBYW86hokLvX/LWS21PvXDvdvT9dgLxUEjYJ93sgdnBDqmyikzsyATP6 DWvcOb923jVxueN4hSCsLxIUtIJipOPpojY0tWYvosuShjN3YSS+p3Y1dgECjZ8z eviZLDWU09oHZlCSAmGSlXtIvOKHiI1JnMOJV6J/BS5FDhrCZ3qCjL0XfqB8VJrB S9RYmxVvbVkpVxLNuhqDVbLITyaCxQONaANEMtCtpZMCCJKV/jjjHDtPz9K4iWUj RSTU1mrhXoFTAnzfRgM= -----END CERTIFICATE-----Generated at Tue Jun 30 13:08:38 2026 by rpki-client