$ rpki-client -vvf rpkica.twnic.tw/rpki/COMPAL/0/8E6678972CBE31F9E346E4E77FD8792F4B10690A.mft File: 8E6678972CBE31F9E346E4E77FD8792F4B10690A.mft (raw, json) Hash identifier: aEM1VdKgCjQGPcdzdDH6Lz76veJwWbpd2YHN3aqEQeg= Subject key identifier: 96:69:4D:18:5C:3A:62:2A:61:FB:FD:8A:63:7B:94:AF:57:F0:9F:08 Authority key identifier: 8E:66:78:97:2C:BE:31:F9:E3:46:E4:E7:7F:D8:79:2F:4B:10:69:0A Certificate issuer: /CN=8E6678972CBE31F9E346E4E77FD8792F4B10690A Certificate serial: 313052B2820919E3066C44998849041AC4DA5C88 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8E6678972CBE31F9E346E4E77FD8792F4B10690A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/COMPAL/0/8E6678972CBE31F9E346E4E77FD8792F4B10690A.mft Manifest number: 45 Signing time: Tue 30 Jun 2026 12:48:56 +0000 Manifest this update: Tue 30 Jun 2026 12:43:56 +0000 Manifest next update: Wed 01 Jul 2026 13:26:56 +0000 Files and hashes: 1: 8E6678972CBE31F9E346E4E77FD8792F4B10690A.crl (hash: tZMQDKAUicl4mxDNGEWoIORw7HF9qIiJxykUZ9shhtE=) 2: 3130332e3132322e3231362e302f32322d3234203d3e20313331363830.roa (hash: 0fKiDXGR8En4Q6FWillviZZnizkWot5ASqnc3fP81UM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/COMPAL/0/8E6678972CBE31F9E346E4E77FD8792F4B10690A.crl rsync://rpkica.twnic.tw/rpki/COMPAL/0/8E6678972CBE31F9E346E4E77FD8792F4B10690A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8E6678972CBE31F9E346E4E77FD8792F4B10690A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 13:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:30:52:b2:82:09:19:e3:06:6c:44:99:88:49:04:1a:c4:da:5c:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8E6678972CBE31F9E346E4E77FD8792F4B10690A Validity Not Before: Jun 30 12:43:56 2026 GMT Not After : Jul 1 13:26:56 2026 GMT Subject: CN=96694D185C3A622A61FBFD8A637B94AF57F09F08 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:1a:b4:40:90:a9:fd:9c:a2:cf:f7:f2:20:18: 07:d4:d5:87:0f:bc:ec:7a:59:92:88:0d:96:d2:47: 6c:6b:a3:01:5a:b3:95:d1:5b:20:2e:ae:d0:b5:6f: d5:8b:ca:cf:e0:bc:54:21:95:fb:07:c7:f5:4f:5f: 9b:6d:31:f7:8a:89:ae:be:0b:2d:35:f0:8d:6b:e8: 92:9b:09:7f:5c:cb:cc:c1:bc:d3:46:f4:ed:67:28: 06:6d:b1:f7:de:4f:54:d6:5f:f1:e8:ce:7f:76:28: e9:d3:1c:df:a5:0c:53:33:ce:53:80:23:f8:f7:ac: 98:33:b8:63:d7:15:e3:bb:5a:7b:a7:6f:fd:25:49: 7d:90:fd:5c:bf:1b:f6:ca:cd:7f:9e:0e:d8:14:bb: 6c:5e:1f:cb:1c:33:2d:5d:a4:a2:c7:9d:f3:b3:ed: 44:34:70:db:7a:6d:af:9e:93:3b:6b:19:ff:bd:0b: 9a:8e:da:d4:6b:2d:e2:6c:17:cd:ce:92:44:86:e8: c6:98:2a:04:14:cf:fa:82:26:74:03:b3:12:8b:af: 5e:8d:d9:d5:9c:09:75:8b:5c:34:62:d3:fb:77:32: 43:42:64:4b:4b:ae:38:d1:fd:8f:7a:a7:f0:de:29: 42:e4:1d:9d:fe:02:c4:33:77:08:6d:6a:28:a5:57: 3a:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:69:4D:18:5C:3A:62:2A:61:FB:FD:8A:63:7B:94:AF:57:F0:9F:08 X509v3 Authority Key Identifier: keyid:8E:66:78:97:2C:BE:31:F9:E3:46:E4:E7:7F:D8:79:2F:4B:10:69:0A X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/COMPAL/0/8E6678972CBE31F9E346E4E77FD8792F4B10690A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8E6678972CBE31F9E346E4E77FD8792F4B10690A.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/COMPAL/0/8E6678972CBE31F9E346E4E77FD8792F4B10690A.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 38:ee:bc:b1:bb:2c:1d:2b:0c:ab:2c:ff:6e:b1:4f:f5:f0:2f: 79:8d:fc:2f:55:59:7c:99:fa:80:12:9c:4e:c5:17:25:bb:c0: e5:2f:04:78:7c:32:0c:ab:db:44:fe:3c:4c:47:38:b5:33:ff: c6:0d:ef:1a:e3:83:b1:d2:8e:f6:30:10:72:ec:84:6f:3b:3d: 51:8f:54:d2:b7:ca:5b:56:5f:ad:b7:21:39:38:33:c8:e3:c4: 4a:64:83:01:d3:ec:6a:81:22:c1:d1:78:f2:d6:17:a5:e5:d6: c4:12:99:52:ba:a2:3d:1f:5f:02:5f:1d:11:e2:29:a0:0f:2a: c3:11:0b:9d:35:79:17:9b:6b:02:67:c4:d3:e8:84:2f:5d:4f: a6:26:ca:5f:96:9a:98:5c:4c:97:69:46:24:bf:f6:54:ff:b0: 30:24:5b:5a:ec:2f:a7:8a:0a:93:cf:b6:44:f2:2f:59:94:60: fe:c9:2c:9d:c9:6f:85:58:74:57:c3:1a:7b:9e:28:2e:b5:97: d7:d5:56:8a:59:d9:5e:b8:ce:29:20:19:aa:49:8f:f4:1a:b1: 64:45:97:56:c3:02:a1:c1:78:81:72:e3:2f:ef:90:06:e1:09: 32:f5:b2:df:f4:51:49:84:f1:44:4b:6d:39:cc:c0:8f:b8:5a: 99:27:21:e3 -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUMTBSsoIJGeMGbESZiEkEGsTaXIgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEU2Njc4OTcyQ0JFMzFGOUUzNDZFNEU3N0ZEODc5MkY0 QjEwNjkwQTAeFw0yNjA2MzAxMjQzNTZaFw0yNjA3MDExMzI2NTZaMDMxMTAvBgNV BAMTKDk2Njk0RDE4NUMzQTYyMkE2MUZCRkQ4QTYzN0I5NEFGNTdGMDlGMDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcGrRAkKn9nKLP9/IgGAfU1YcP vOx6WZKIDZbSR2xrowFas5XRWyAurtC1b9WLys/gvFQhlfsHx/VPX5ttMfeKia6+ Cy018I1r6JKbCX9cy8zBvNNG9O1nKAZtsffeT1TWX/Hozn92KOnTHN+lDFMzzlOA I/j3rJgzuGPXFeO7Wnunb/0lSX2Q/Vy/G/bKzX+eDtgUu2xeH8scMy1dpKLHnfOz 7UQ0cNt6ba+ekztrGf+9C5qO2tRrLeJsF83OkkSG6MaYKgQUz/qCJnQDsxKLr16N 2dWcCXWLXDRi0/t3MkNCZEtLrjjR/Y96p/DeKULkHZ3+AsQzdwhtaiilVzr1AgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUlmlNGFw6Yiph+/2KY3uUr1fwnwgwHwYDVR0j BBgwFoAUjmZ4lyy+MfnjRuTnf9h5L0sQaQowDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ09NUEFM LzAvOEU2Njc4OTcyQ0JFMzFGOUUzNDZFNEU3N0ZEODc5MkY0QjEwNjkwQS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS84RTY2Nzg5NzJDQkUzMUY5RTM0NkU0RTc3RkQ4 NzkyRjRCMTA2OTBBLmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ09NUEFMLzAvOEU2Njc4OTcyQ0JF MzFGOUUzNDZFNEU3N0ZEODc5MkY0QjEwNjkwQS5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBADjuvLG7LB0r DKss/26xT/XwL3mN/C9VWXyZ+oASnE7FFyW7wOUvBHh8Mgyr20T+PExHOLUz/8YN 7xrjg7HSjvYwEHLshG87PVGPVNK3yltWX623ITk4M8jjxEpkgwHT7GqBIsHRePLW F6Xl1sQSmVK6oj0fXwJfHRHiKaAPKsMRC501eRebawJnxNPohC9dT6Ymyl+Wmphc TJdpRiS/9lT/sDAkW1rsL6eKCpPPtkTyL1mUYP7JLJ3Jb4VYdFfDGnueKC61l9fV VopZ2V64zikgGapJj/QasWRFl1bDAqHBeIFy4y/vkAbhCTL1st/0UUmE8URLbTnM wI+4WpknIeM= -----END CERTIFICATE-----Generated at Tue Jun 30 19:08:13 2026 by rpki-client