$ rpki-client -vvf rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.mft File: 4DC8A0E80696AD1A2419ACE881334BE812506228.mft (raw, json) Hash identifier: 5KEljnsUtXf928BLn6j7mr+J8Lf+1moPFE4QiP+B0S0= Subject key identifier: AD:F1:A9:46:C3:81:4C:E0:2D:AF:3E:0F:43:E3:D3:7C:09:D4:CA:73 Authority key identifier: 4D:C8:A0:E8:06:96:AD:1A:24:19:AC:E8:81:33:4B:E8:12:50:62:28 Certificate issuer: /CN=4DC8A0E80696AD1A2419ACE881334BE812506228 Certificate serial: 1B6FAFA81B32100B7D81943BD9B81C400427E26D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/4DC8A0E80696AD1A2419ACE881334BE812506228.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.mft Manifest number: 0D Signing time: Tue 16 Jun 2026 07:23:51 +0000 Manifest this update: Tue 16 Jun 2026 07:18:51 +0000 Manifest next update: Wed 17 Jun 2026 11:03:51 +0000 Files and hashes: 1: 3136322e342e3233372e302f32342d3234203d3e20313937353337.roa (hash: 1bHqJJ3DE9NMijQ59MuD8OFFyw3UfsZ36yCMVQaeUME=) 2: 3136322e342e3233362e302f32342d3234203d3e20323032373336.roa (hash: dfD2OtCiIrSPgIlzeqY7nYIoRL0d0Rm5WuZ+VoPuEIc=) 3: 4DC8A0E80696AD1A2419ACE881334BE812506228.crl (hash: vEO4CD1Nc4giLjZBrlf9Zua7dkPih7/gUyhVpurNeEk=) 4: 3136322e342e3233372e302f32342d3234203d3e20323032373336.roa (hash: w52thh8Ebtpos+XU7qjpIWopgPCDyo6UfDelxnyPqdM=) 5: 3136322e342e3233362e302f32342d3234203d3e20313937353337.roa (hash: +tTGktskMMOWc8Ety/WMBt1UkK/mDxd3gLrUS6bHiGw=) 6: 3136322e342e3233362e302f32332d3233203d3e20313331363330.roa (hash: W1CiJP1fcJGIBc6vJyxp+aVBKQhzLI93m00Pia4UGPk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.crl rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/4DC8A0E80696AD1A2419ACE881334BE812506228.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 11:03:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:6f:af:a8:1b:32:10:0b:7d:81:94:3b:d9:b8:1c:40:04:27:e2:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4DC8A0E80696AD1A2419ACE881334BE812506228 Validity Not Before: Jun 16 07:18:51 2026 GMT Not After : Jun 17 11:03:51 2026 GMT Subject: CN=ADF1A946C3814CE02DAF3E0F43E3D37C09D4CA73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:9f:85:9f:d9:09:d1:3e:3f:a8:9c:eb:7a:41: 2e:64:00:f0:fa:dc:fc:ba:ae:2a:b7:df:72:c6:96: 4a:a7:23:33:fd:ea:b7:fa:ee:47:02:2c:d4:e1:bb: f0:dd:38:44:42:f2:95:4b:3c:14:3b:49:af:f8:33: 7b:35:db:cc:bb:76:92:a8:29:95:ef:9b:d0:f7:2b: 57:14:58:58:c9:b0:a5:2f:c8:2f:d8:a2:eb:88:cc: 8f:22:fd:7f:e0:53:9e:ad:7e:f7:4f:ca:cd:5c:f0: 6f:90:14:6d:c9:6a:9d:32:94:2d:32:fb:48:86:52: b7:f4:a1:fc:60:21:88:b3:0f:b1:ff:ed:f8:41:7e: 27:f0:71:fd:02:43:3b:6f:45:6c:34:fb:13:2c:23: 77:d9:89:07:84:7b:0d:ba:13:92:b7:34:53:d9:86: 1c:8d:28:1f:d9:c7:c4:f6:09:2e:5f:60:f7:3e:0f: e9:60:ef:55:1c:3a:68:70:eb:3f:ed:5b:38:3f:c2: de:91:2e:ba:db:77:49:44:e4:cb:21:d6:6e:14:6b: ee:af:9c:4e:70:f5:d2:0e:5a:31:ae:48:bf:a6:7a: 67:f7:0d:e4:e4:35:b4:25:19:85:04:1c:5b:df:ab: 65:99:6f:f5:f8:2f:ba:1c:f7:90:a3:56:27:fb:ed: 16:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F1:A9:46:C3:81:4C:E0:2D:AF:3E:0F:43:E3:D3:7C:09:D4:CA:73 X509v3 Authority Key Identifier: keyid:4D:C8:A0:E8:06:96:AD:1A:24:19:AC:E8:81:33:4B:E8:12:50:62:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/4DC8A0E80696AD1A2419ACE881334BE812506228.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/0/4DC8A0E80696AD1A2419ACE881334BE812506228.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:07:ad:c8:5c:6b:a6:5b:37:b3:d4:13:e3:de:d9:ad:36:2a: 1f:a8:7a:c8:23:e2:ff:67:1d:90:f1:e5:d6:48:be:b7:58:16: b7:3a:82:03:b1:27:0e:d1:a4:41:94:05:31:28:89:b3:14:80: 9c:27:00:97:d9:e3:eb:31:31:69:df:e1:5a:6d:f6:56:86:a4: cb:d9:26:de:94:0a:33:28:c7:8e:1a:47:3f:2a:a5:c8:71:ed: 0f:3e:e5:0d:08:be:e9:04:27:6c:c9:05:96:9a:5e:60:63:83: 4c:53:5d:3a:f2:0b:91:5d:ab:ea:8d:7b:fc:e4:67:ab:ca:dc: 36:20:b5:21:9f:08:ac:0c:d9:08:86:7b:54:a9:8c:36:62:74: 45:a4:c1:2e:be:31:55:82:09:97:44:7c:b6:71:9e:68:15:14: 11:8c:ee:43:b8:74:b8:ae:31:02:ac:f3:03:03:4c:90:67:02: b2:54:c4:a0:d0:3a:d9:d3:bf:4b:8a:16:e5:62:6d:2f:70:76: 2a:ec:b1:8c:64:df:e1:da:74:66:0c:a1:50:98:c5:dd:e2:23: 29:45:cd:22:1c:83:81:2f:1d:3b:30:93:a7:19:7f:de:59:e2: 6c:2e:b5:23:9c:80:d3:93:04:05:29:39:82:1e:61:85:3c:f1: 34:68:a4:bf -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUG2+vqBsyEAt9gZQ72bgcQAQn4m0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNERDOEEwRTgwNjk2QUQxQTI0MTlBQ0U4ODEzMzRCRTgx MjUwNjIyODAeFw0yNjA2MTYwNzE4NTFaFw0yNjA2MTcxMTAzNTFaMDMxMTAvBgNV BAMTKEFERjFBOTQ2QzM4MTRDRTAyREFGM0UwRjQzRTNEMzdDMDlENENBNzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6n4Wf2QnRPj+onOt6QS5kAPD6 3Py6riq333LGlkqnIzP96rf67kcCLNThu/DdOERC8pVLPBQ7Sa/4M3s128y7dpKo KZXvm9D3K1cUWFjJsKUvyC/YouuIzI8i/X/gU56tfvdPys1c8G+QFG3Jap0ylC0y +0iGUrf0ofxgIYizD7H/7fhBfifwcf0CQztvRWw0+xMsI3fZiQeEew26E5K3NFPZ hhyNKB/Zx8T2CS5fYPc+D+lg71UcOmhw6z/tWzg/wt6RLrrbd0lE5Msh1m4Ua+6v nE5w9dIOWjGuSL+memf3DeTkNbQlGYUEHFvfq2WZb/X4L7oc95CjVif77RZLAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUrfGpRsOBTOAtrz4PQ+PTfAnUynMwHwYDVR0j BBgwFoAUTcig6AaWrRokGazogTNL6BJQYigwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XVEVL LzAvNERDOEEwRTgwNjk2QUQxQTI0MTlBQ0U4ODEzMzRCRTgxMjUwNjIyOC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMC80REM4QTBFODA2OTZBRDFBMjQxOUFDRTg4MTMz NEJFODEyNTA2MjI4LmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XVEVLLzAvNERDOEEwRTgwNjk2 QUQxQTI0MTlBQ0U4ODEzMzRCRTgxMjUwNjIyOC5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBACQHrchca6Zb N7PUE+Pe2a02Kh+oesgj4v9nHZDx5dZIvrdYFrc6ggOxJw7RpEGUBTEoibMUgJwn AJfZ4+sxMWnf4Vpt9laGpMvZJt6UCjMox44aRz8qpchx7Q8+5Q0IvukEJ2zJBZaa XmBjg0xTXTryC5Fdq+qNe/zkZ6vK3DYgtSGfCKwM2QiGe1SpjDZidEWkwS6+MVWC CZdEfLZxnmgVFBGM7kO4dLiuMQKs8wMDTJBnArJUxKDQOtnTv0uKFuVibS9wdirs sYxk3+HadGYMoVCYxd3iIylFzSIcg4EvHTswk6cZf95Z4mwutSOcgNOTBAUpOYIe YYU88TRopL8= -----END CERTIFICATE-----Generated at Tue Jun 16 18:45:05 2026 by rpki-client