$ rpki-client -vvf rpkica.twnic.tw/rpki/DONGFONG/1/65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.mft File: 65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.mft (raw, json) Hash identifier: rMuONutL3UaCNtANIk5ATgKfBZFstnYo6nyeN0dWmaM= Subject key identifier: 94:86:9E:15:A9:D5:AA:26:CF:79:DC:4E:68:9E:B9:3B:B9:0E:6B:6D Authority key identifier: 65:E9:4C:77:89:AD:A7:E5:F5:40:FD:BE:95:82:D8:EA:7A:A4:6A:94 Certificate issuer: /CN=65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94 Certificate serial: 2DD7F488308DECCC1124E156848A7E87BFF72219 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DONGFONG/1/65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.mft Manifest number: 50 Signing time: Mon 29 Jun 2026 21:57:26 +0000 Manifest this update: Mon 29 Jun 2026 21:52:26 +0000 Manifest next update: Wed 01 Jul 2026 00:44:26 +0000 Files and hashes: 1: 3135392e3131372e36342e302f31392d3234203d3e203138303436.roa (hash: BnOw5LV6cVAcgowH1P0wBRFgURzOj7EomMXHxAWHT28=) 2: 3135392e3131372e38342e302f32342d3234203d3e203138303436.roa (hash: k6/jJKCg7k9igf9mXdOBVLZ2L1gd68NXx+o3im+bxhY=) 3: 65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.crl (hash: feGx8r/Zuv9+KOw0gI3RJOZq8GpoiHH/w6Jy6UZRUJc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DONGFONG/1/65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.crl rsync://rpkica.twnic.tw/rpki/DONGFONG/1/65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 00:44:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2d:d7:f4:88:30:8d:ec:cc:11:24:e1:56:84:8a:7e:87:bf:f7:22:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94 Validity Not Before: Jun 29 21:52:26 2026 GMT Not After : Jul 1 00:44:26 2026 GMT Subject: CN=94869E15A9D5AA26CF79DC4E689EB93BB90E6B6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:fa:15:15:67:69:6e:e7:c4:e1:cb:d3:01:e8: 6d:18:b5:c6:ce:c3:0f:0f:4f:ab:f5:c8:fc:28:d6: 2a:79:8a:93:79:7f:73:ab:63:a3:9a:7d:ff:12:f7: a0:8b:04:7a:86:38:ff:19:c9:d4:fa:b3:e2:2d:a7: 55:81:e1:c8:b1:3b:09:53:01:0b:96:3b:51:bb:f8: 98:77:ec:44:ab:89:a7:58:25:b1:fd:c5:f5:6e:40: ad:67:ea:c6:c9:6e:a0:e7:af:4d:00:16:0e:ca:e5: 20:7f:d6:07:a2:44:8d:a0:5f:b3:73:18:ed:7e:c7: 4d:c3:70:de:e9:c9:da:61:4a:ce:f1:d0:77:87:eb: 09:fe:e5:55:68:c7:f3:2c:5c:35:fd:fe:81:19:76: 4a:f1:77:c8:36:5f:58:a9:c5:0d:30:3c:6c:d2:80: f5:cd:71:d6:61:cb:3c:a0:c1:40:4e:8f:28:b9:17: 56:73:b7:f4:b7:0f:5e:03:cb:c6:f2:0f:ba:d0:8b: 5d:74:f1:1c:46:6b:6d:41:9f:a4:90:a1:3f:9b:c1: 04:82:ef:f9:65:c3:86:d7:f1:e8:06:c5:10:7a:c8: 98:53:7a:f0:41:8d:12:cc:32:2d:c5:e8:99:1d:4c: 94:ef:c2:0b:b1:65:68:01:13:7d:19:85:dd:53:2e: 21:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:86:9E:15:A9:D5:AA:26:CF:79:DC:4E:68:9E:B9:3B:B9:0E:6B:6D X509v3 Authority Key Identifier: keyid:65:E9:4C:77:89:AD:A7:E5:F5:40:FD:BE:95:82:D8:EA:7A:A4:6A:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/1/65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DONGFONG/1/65E94C7789ADA7E5F540FDBE9582D8EA7AA46A94.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 85:c4:cd:8b:3e:0a:9c:c2:1e:4f:cf:0e:56:c3:ed:49:e3:56: 00:d9:69:cd:fd:36:e9:a0:1e:46:ff:3c:05:02:9c:fa:a3:64: 35:a3:c8:2b:22:58:a2:0d:e1:79:58:f6:85:ba:3e:26:9b:03: ea:f8:9c:b8:ad:69:cb:7c:a9:7a:d9:95:a8:31:87:26:d2:36: e3:04:cc:7e:f6:75:4d:43:d4:88:2e:09:f1:33:e1:f7:4e:fd: 09:5d:86:4c:80:3a:31:f3:2c:58:01:be:d4:79:6c:e0:ef:c9: a4:d2:9e:71:a5:11:96:f4:43:20:79:4f:ef:14:be:d0:14:80: 31:f7:34:33:45:03:c5:cb:02:78:41:2b:14:dc:b5:1d:b1:5c: d8:8e:2b:dd:cb:85:db:1d:0a:90:41:54:1d:11:90:cc:c5:bf: b5:54:72:80:68:d5:e2:d5:7c:60:e6:79:e8:3c:04:a5:8c:fd: a3:55:5b:4e:a3:5b:c5:16:d7:b6:d4:05:03:bb:af:1e:38:c0: 4a:40:18:4d:11:4b:7f:92:d0:9b:2b:13:5e:c0:1f:15:0b:60: 26:6a:80:bf:68:f6:6a:ef:14:4b:e1:f7:64:24:3b:4d:a4:83: fb:61:19:6f:05:9a:45:7f:68:57:54:a4:d6:53:c4:84:b2:01: ce:f3:85:bc -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIULdf0iDCN7MwRJOFWhIp+h7/3IhkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjVFOTRDNzc4OUFEQTdFNUY1NDBGREJFOTU4MkQ4RUE3 QUE0NkE5NDAeFw0yNjA2MjkyMTUyMjZaFw0yNjA3MDEwMDQ0MjZaMDMxMTAvBgNV BAMTKDk0ODY5RTE1QTlENUFBMjZDRjc5REM0RTY4OUVCOTNCQjkwRTZCNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCz+hUVZ2lu58Thy9MB6G0YtcbO ww8PT6v1yPwo1ip5ipN5f3OrY6Oaff8S96CLBHqGOP8ZydT6s+Itp1WB4cixOwlT AQuWO1G7+Jh37ESriadYJbH9xfVuQK1n6sbJbqDnr00AFg7K5SB/1geiRI2gX7Nz GO1+x03DcN7pydphSs7x0HeH6wn+5VVox/MsXDX9/oEZdkrxd8g2X1ipxQ0wPGzS gPXNcdZhyzygwUBOjyi5F1Zzt/S3D14Dy8byD7rQi1108RxGa21Bn6SQoT+bwQSC 7/llw4bX8egGxRB6yJhTevBBjRLMMi3F6JkdTJTvwguxZWgBE30Zhd1TLiFBAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUlIaeFanVqibPedxOaJ65O7kOa20wHwYDVR0j BBgwFoAUZelMd4mtp+X1QP2+lYLY6nqkapQwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9OR0ZP TkcvMS82NUU5NEM3Nzg5QURBN0U1RjU0MEZEQkU5NTgyRDhFQTdBQTQ2QTk0LmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8wLzY1RTk0Qzc3ODlBREE3RTVGNTQwRkRCRTk1 ODJEOEVBN0FBNDZBOTQuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZU cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9ET05HRk9ORy8xLzY1RTk0Qzc3 ODlBREE3RTVGNTQwRkRCRTk1ODJEOEVBN0FBNDZBOTQubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCFxM2L Pgqcwh5Pzw5Ww+1J41YA2WnN/TbpoB5G/zwFApz6o2Q1o8grIliiDeF5WPaFuj4m mwPq+Jy4rWnLfKl62ZWoMYcm0jbjBMx+9nVNQ9SILgnxM+H3Tv0JXYZMgDox8yxY Ab7UeWzg78mk0p5xpRGW9EMgeU/vFL7QFIAx9zQzRQPFywJ4QSsU3LUdsVzYjivd y4XbHQqQQVQdEZDMxb+1VHKAaNXi1Xxg5nnoPASljP2jVVtOo1vFFte21AUDu68e OMBKQBhNEUt/ktCbKxNewB8VC2AmaoC/aPZq7xRL4fdkJDtNpIP7YRlvBZpFf2hX VKTWU8SEsgHO84W8 -----END CERTIFICATE-----Generated at Tue Jun 30 13:09:56 2026 by rpki-client