$ rpki-client -vvf rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft File: A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft (raw, json) Hash identifier: fL9ogrjsYuhMhXWuCAhGSdi5JQEPnWQYUtfXSluxtco= Subject key identifier: F4:E4:3A:5B:16:B3:BC:B7:2B:58:71:76:FA:C0:99:6A:0F:4B:05:5E Authority key identifier: A0:67:A9:5C:B7:88:29:38:BA:5E:E0:BF:9E:47:C2:E0:30:ED:F6:FB Certificate issuer: /CN=A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB Certificate serial: 2ABD45DC3073096918629EDBAFDE6EF3B93115CC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft Manifest number: 04 Signing time: Wed 13 May 2026 05:32:07 +0000 Manifest this update: Wed 13 May 2026 05:27:07 +0000 Manifest next update: Thu 14 May 2026 09:12:07 +0000 Files and hashes: 1: A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl (hash: +JKRDC6OmPOaggOJClGWgyMwPAIiRve3cuSMA62g6GY=) 2: 3130332e3131382e3134382e302f32332d3332203d3e20313331313439.roa (hash: 37E46pfPxEq9A4RxL1D37D3fAAtA0Gnx6vMhsNaTo4A=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:12:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:bd:45:dc:30:73:09:69:18:62:9e:db:af:de:6e:f3:b9:31:15:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB Validity Not Before: May 13 05:27:07 2026 GMT Not After : May 14 09:12:07 2026 GMT Subject: CN=F4E43A5B16B3BCB72B587176FAC0996A0F4B055E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:1a:37:9b:f9:1c:30:f4:09:18:19:22:c5:c6: a8:a5:b9:c9:51:85:bc:c7:ce:d7:2f:86:06:9f:8c: 2b:25:0a:a9:fe:7e:cc:94:80:04:c9:a1:97:3b:68: c2:93:57:1f:52:09:93:ac:dd:47:be:fe:4b:7d:94: d4:4c:69:c8:a7:a9:9a:44:89:75:e7:21:d3:71:28: 8a:b6:b1:8a:ef:5b:76:73:8e:e4:23:9a:5b:47:6a: f6:8b:52:72:35:5e:e4:9c:71:73:9d:b8:7d:d4:04: c4:45:8c:ec:f6:97:37:5d:1a:27:2b:1e:2e:06:dc: 75:67:17:11:42:57:b1:50:f7:6a:3c:ba:d5:02:ad: e7:23:7b:59:9d:a2:3a:6e:3f:d9:0d:c6:5f:8b:fc: be:50:dc:df:49:98:60:a2:f3:0e:61:9b:be:0f:de: 92:36:96:eb:7e:4d:4f:c3:e0:94:03:4b:b2:82:2d: c6:43:ef:c5:e5:d2:42:a5:10:aa:46:b8:a2:f2:34: 92:88:4a:c5:91:0b:68:6d:5d:e3:e7:9a:ea:a9:63: 54:c5:37:b4:be:da:44:74:e2:44:ab:97:44:5f:03: d7:42:15:a6:5b:71:67:aa:71:ec:73:d7:c2:7a:95: f0:ea:8e:9c:e5:9e:65:22:e3:55:64:b2:5a:5d:11: df:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:E4:3A:5B:16:B3:BC:B7:2B:58:71:76:FA:C0:99:6A:0F:4B:05:5E X509v3 Authority Key Identifier: keyid:A0:67:A9:5C:B7:88:29:38:BA:5E:E0:BF:9E:47:C2:E0:30:ED:F6:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:ac:6f:cb:16:03:0e:4f:90:e7:2a:1c:5c:62:ca:02:e0:d5: 1c:82:be:88:8b:6e:a2:cb:cc:ec:91:0a:88:37:58:30:ac:1a: 0b:0d:f4:65:0b:b6:f7:cb:41:e2:19:7a:5f:a6:35:ae:0e:56: 7c:50:32:35:a6:f7:46:c9:4e:3d:cd:36:28:22:cb:9f:08:9e: dc:19:62:4e:0a:9a:a0:66:99:3f:ef:2e:e9:b8:4a:fe:4d:cf: 11:87:d7:a9:06:07:e8:f3:51:03:1b:5c:22:e7:96:31:88:5c: 55:7f:7a:8e:99:ba:8a:58:12:15:d1:b9:be:92:cc:db:5c:d7: 07:b2:6e:ea:aa:83:da:6a:88:b8:06:25:96:07:f2:93:03:db: d5:88:37:1e:be:f7:86:3f:84:16:7f:af:dc:52:07:51:85:0e: a0:38:98:a5:38:a3:c5:9d:86:d8:b4:50:0e:ef:f7:3a:b2:96: 8d:d3:b7:e2:de:21:ac:51:65:21:23:f0:50:51:1c:95:26:ea: e7:6c:43:ba:82:5c:5e:4d:3c:e7:5b:a3:f9:1a:e2:5c:b2:26: c0:f3:e3:e7:b3:29:62:65:a9:51:5e:a8:0e:8b:fc:6b:bd:0f: 4f:f6:40:29:3e:7f:e4:21:05:35:ab:cc:05:d8:78:25:55:7d: 9c:1f:ac:e6 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUKr1F3DBzCWkYYp7br95u87kxFcwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA2N0E5NUNCNzg4MjkzOEJBNUVFMEJGOUU0N0MyRTAz MEVERjZGQjAeFw0yNjA1MTMwNTI3MDdaFw0yNjA1MTQwOTEyMDdaMDMxMTAvBgNV BAMTKEY0RTQzQTVCMTZCM0JDQjcyQjU4NzE3NkZBQzA5OTZBMEY0QjA1NUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDSGjeb+Rww9AkYGSLFxqiluclR hbzHztcvhgafjCslCqn+fsyUgATJoZc7aMKTVx9SCZOs3Ue+/kt9lNRMacinqZpE iXXnIdNxKIq2sYrvW3ZzjuQjmltHavaLUnI1XuSccXOduH3UBMRFjOz2lzddGicr Hi4G3HVnFxFCV7FQ92o8utUCrecje1mdojpuP9kNxl+L/L5Q3N9JmGCi8w5hm74P 3pI2lut+TU/D4JQDS7KCLcZD78Xl0kKlEKpGuKLyNJKISsWRC2htXePnmuqpY1TF N7S+2kR04kSrl0RfA9dCFaZbcWeqcexz18J6lfDqjpzlnmUi41VkslpdEd8XAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQU9OQ6WxazvLcrWHF2+sCZag9LBV4wHwYDVR0j BBgwFoAUoGepXLeIKTi6XuC/nkfC4DDt9vswDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XTldJ Ti8wL0EwNjdBOTVDQjc4ODI5MzhCQTVFRTBCRjlFNDdDMkUwMzBFREY2RkIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQTA2N0E5NUNCNzg4MjkzOEJBNUVFMEJGOUU0 N0MyRTAzMEVERjZGQi5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RPV05XSU4vMC9BMDY3QTk1Q0I3 ODgyOTM4QkE1RUUwQkY5RTQ3QzJFMDMwRURGNkZCLm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEASKxvyxYD Dk+Q5yocXGLKAuDVHIK+iItuosvM7JEKiDdYMKwaCw30ZQu298tB4hl6X6Y1rg5W fFAyNab3RslOPc02KCLLnwie3BliTgqaoGaZP+8u6bhK/k3PEYfXqQYH6PNRAxtc IueWMYhcVX96jpm6ilgSFdG5vpLM21zXB7Ju6qqD2mqIuAYllgfykwPb1Yg3Hr73 hj+EFn+v3FIHUYUOoDiYpTijxZ2G2LRQDu/3OrKWjdO34t4hrFFlISPwUFEclSbq 52xDuoJcXk0851uj+RriXLImwPPj57MpYmWpUV6oDov8a70PT/ZAKT5/5CEFNavM Bdh4JVV9nB+s5g== -----END CERTIFICATE-----Generated at Wed May 13 20:33:40 2026 by rpki-client