$ rpki-client -vvf rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft File: A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft (raw, json) Hash identifier: SXYMYwAQjgVH5t9r32b5KUUtYQsx6HS1JU/5fQqjJno= Subject key identifier: 91:03:F7:5C:E7:0D:45:1C:6F:01:13:54:D4:74:1D:38:12:DB:6C:BA Authority key identifier: A0:67:A9:5C:B7:88:29:38:BA:5E:E0:BF:9E:47:C2:E0:30:ED:F6:FB Certificate issuer: /CN=A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB Certificate serial: 11F63612CF4E0FFD7632FF75BCA4E4C9CDE68B10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft Manifest number: 43 Signing time: Mon 29 Jun 2026 22:42:31 +0000 Manifest this update: Mon 29 Jun 2026 22:37:31 +0000 Manifest next update: Wed 01 Jul 2026 02:41:31 +0000 Files and hashes: 1: A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl (hash: loBFLyqHQu63JgjM+Z8uqdffqkt4XetNzVJ9Zud65fM=) 2: 3130332e3131382e3134382e302f32332d3332203d3e20313331313439.roa (hash: 37E46pfPxEq9A4RxL1D37D3fAAtA0Gnx6vMhsNaTo4A=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 02:41:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 11:f6:36:12:cf:4e:0f:fd:76:32:ff:75:bc:a4:e4:c9:cd:e6:8b:10 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB Validity Not Before: Jun 29 22:37:31 2026 GMT Not After : Jul 1 02:41:31 2026 GMT Subject: CN=9103F75CE70D451C6F011354D4741D3812DB6CBA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d7:90:7c:7b:3f:f5:19:a1:68:af:e0:5c:70: f2:30:23:eb:fe:9b:81:14:3e:89:75:a2:90:35:ff: 21:2c:31:6d:da:c0:71:3a:be:f0:c5:f8:de:c1:0c: a4:1b:b6:9c:91:8d:6e:4b:47:79:4b:23:16:d2:87: 71:88:da:f4:ad:42:61:9d:91:54:72:8a:a8:5d:49: 1f:e5:db:64:f9:09:d9:8f:82:f3:30:9b:ce:93:85: 03:84:25:67:d2:bb:be:e1:61:c6:2c:65:e4:8d:af: 9b:8b:3f:a4:17:5c:71:f1:14:89:52:d3:36:12:e0: b6:7d:61:7a:b5:a6:8b:f5:22:90:85:a1:e5:13:8c: 65:62:f4:d1:dd:8c:21:4e:5f:8c:53:e4:59:ae:7c: ab:2a:d3:fc:6f:b0:7f:38:15:05:07:65:d9:41:d3: 9b:d4:e5:76:f7:5e:57:2d:38:49:31:4f:a0:3f:a9: b4:f8:b8:5a:de:64:84:df:80:97:54:55:73:46:dc: f5:30:8e:d0:41:c9:29:d7:80:2a:4a:c6:c8:c9:c8: 5b:5f:b1:d4:69:e3:74:6d:8a:7a:ba:9b:28:0c:63: 91:49:16:90:26:0e:48:e0:a2:1d:02:12:2b:6e:63: 86:f1:ac:07:81:d2:3d:fe:fb:91:d2:01:2c:34:38: 95:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:03:F7:5C:E7:0D:45:1C:6F:01:13:54:D4:74:1D:38:12:DB:6C:BA X509v3 Authority Key Identifier: keyid:A0:67:A9:5C:B7:88:29:38:BA:5E:E0:BF:9E:47:C2:E0:30:ED:F6:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6f:af:10:48:ba:b7:ce:37:d8:6e:8e:71:53:c5:03:76:0d:7a: aa:26:5b:ac:95:b8:a2:d2:e9:ac:da:74:8f:75:2f:35:6f:24: d6:9c:dd:9b:b0:9a:5f:19:de:16:8e:32:e4:d6:e2:87:e9:2f: fe:aa:14:8d:e2:7c:06:e0:fa:2c:9c:6c:ac:61:fc:37:8d:fa: 1c:c8:38:b2:30:5d:92:d3:bb:5e:28:b5:50:29:46:2b:36:c2: ff:76:e5:84:08:e9:1f:4a:40:0f:b9:2c:c7:24:3c:4f:2b:b9: 32:8c:ea:ff:15:35:7e:47:d4:e4:c5:9b:d5:c4:34:dd:95:6f: ef:a9:59:88:b9:0a:3e:ae:d6:cc:3d:ac:77:65:2b:9e:77:90: a1:ec:36:f4:a5:c3:d1:e3:02:f6:7c:d3:93:9e:07:17:cd:c5: 89:02:ab:f8:63:c9:86:00:cb:4c:39:84:db:3c:97:a9:b0:a4: a7:1b:59:7d:26:ca:d1:83:d6:f6:d3:2d:14:95:88:07:7a:4e: c1:4e:32:ed:72:2c:86:ce:d2:7d:ff:49:29:98:59:d0:80:e9: b8:48:97:fe:6b:15:41:5d:35:41:8a:c2:66:cb:89:72:2e:f6: 8f:b1:ae:b3:08:56:c3:97:83:47:5f:19:40:84:4f:ed:89:e2: e0:c4:66:0b -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUEfY2Es9OD/12Mv91vKTkyc3mixAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA2N0E5NUNCNzg4MjkzOEJBNUVFMEJGOUU0N0MyRTAz MEVERjZGQjAeFw0yNjA2MjkyMjM3MzFaFw0yNjA3MDEwMjQxMzFaMDMxMTAvBgNV BAMTKDkxMDNGNzVDRTcwRDQ1MUM2RjAxMTM1NEQ0NzQxRDM4MTJEQjZDQkEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCZ15B8ez/1GaFor+BccPIwI+v+ m4EUPol1opA1/yEsMW3awHE6vvDF+N7BDKQbtpyRjW5LR3lLIxbSh3GI2vStQmGd kVRyiqhdSR/l22T5CdmPgvMwm86ThQOEJWfSu77hYcYsZeSNr5uLP6QXXHHxFIlS 0zYS4LZ9YXq1pov1IpCFoeUTjGVi9NHdjCFOX4xT5FmufKsq0/xvsH84FQUHZdlB 05vU5Xb3XlctOEkxT6A/qbT4uFreZITfgJdUVXNG3PUwjtBBySnXgCpKxsjJyFtf sdRp43Rtinq6mygMY5FJFpAmDkjgoh0CEituY4bxrAeB0j3++5HSASw0OJWjAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUkQP3XOcNRRxvARNU1HQdOBLbbLowHwYDVR0j BBgwFoAUoGepXLeIKTi6XuC/nkfC4DDt9vswDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XTldJ Ti8wL0EwNjdBOTVDQjc4ODI5MzhCQTVFRTBCRjlFNDdDMkUwMzBFREY2RkIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQTA2N0E5NUNCNzg4MjkzOEJBNUVFMEJGOUU0 N0MyRTAzMEVERjZGQi5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RPV05XSU4vMC9BMDY3QTk1Q0I3 ODgyOTM4QkE1RUUwQkY5RTQ3QzJFMDMwRURGNkZCLm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAb68QSLq3 zjfYbo5xU8UDdg16qiZbrJW4otLprNp0j3UvNW8k1pzdm7CaXxneFo4y5Nbih+kv /qoUjeJ8BuD6LJxsrGH8N436HMg4sjBdktO7Xii1UClGKzbC/3blhAjpH0pAD7ks xyQ8Tyu5Mozq/xU1fkfU5MWb1cQ03ZVv76lZiLkKPq7WzD2sd2UrnneQoew29KXD 0eMC9nzTk54HF83FiQKr+GPJhgDLTDmE2zyXqbCkpxtZfSbK0YPW9tMtFJWIB3pO wU4y7XIshs7Sff9JKZhZ0IDpuEiX/msVQV01QYrCZsuJci72j7GuswhWw5eDR18Z QIRP7Yni4MRmCw== -----END CERTIFICATE-----Generated at Tue Jun 30 19:08:28 2026 by rpki-client