$ rpki-client -vvf rpkica.twnic.tw/rpki/DOWTEK/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.mft File: E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.mft (raw, json) Hash identifier: DXrLppR2PFqdyv774tQ9Jci5o1rpRDbiy+I7FDP022Y= Subject key identifier: C5:43:A1:10:0D:9E:DB:F2:B2:3B:1A:07:F7:94:2B:5A:0A:06:B4:87 Authority key identifier: E6:8C:4C:10:30:29:B8:41:42:A5:CA:B3:EF:B8:52:FD:C1:A3:9B:B0 Certificate issuer: /CN=E68C4C103029B84142A5CAB3EFB852FDC1A39BB0 Certificate serial: 445D5CC2752D5DD93CC7DE685F9EC495370EBA88 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DOWTEK/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.mft Manifest number: 0D Signing time: Tue 16 Jun 2026 07:23:52 +0000 Manifest this update: Tue 16 Jun 2026 07:18:52 +0000 Manifest next update: Wed 17 Jun 2026 09:42:52 +0000 Files and hashes: 1: 323430323a363432303a3a2f33322d3438203d3e20313331363330.roa (hash: oxQPGNBMj2CJJd3CtDlG2Tl/miuEDB0GkZlm0cd0pJk=) 2: E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.crl (hash: 0pmcY2Hfb9EtZ3161fcGh91rtsG5DD2HbYJdzGB3m3A=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DOWTEK/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.crl rsync://rpkica.twnic.tw/rpki/DOWTEK/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 01:07:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 44:5d:5c:c2:75:2d:5d:d9:3c:c7:de:68:5f:9e:c4:95:37:0e:ba:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E68C4C103029B84142A5CAB3EFB852FDC1A39BB0 Validity Not Before: Jun 16 07:18:52 2026 GMT Not After : Jun 17 09:42:52 2026 GMT Subject: CN=C543A1100D9EDBF2B23B1A07F7942B5A0A06B487 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:db:4a:1f:b7:5b:7e:16:44:7a:db:0c:c6:94: 6b:bb:a4:1e:64:f3:be:45:9a:32:89:61:be:96:b8: fc:83:22:90:2d:08:a8:b0:44:ce:54:20:dc:be:8d: 5f:40:c5:6d:6c:89:0f:4c:83:bb:3d:60:70:60:ff: 89:b1:84:9e:c1:d8:a3:60:2a:0a:63:f1:3d:5b:a3: dd:e5:d5:87:60:fd:7a:bf:ea:45:c6:cf:f4:0c:0d: e1:8d:00:2a:64:a1:65:a1:84:b7:55:69:f6:39:2f: 6c:f1:2b:4a:96:4d:58:61:d3:3f:d6:85:4c:b0:32: c1:c2:23:0f:e5:29:aa:aa:48:cf:c4:4c:14:34:8f: 96:31:3b:bd:94:3f:e8:55:b3:89:d2:26:e0:a1:37: f9:22:26:38:b6:8d:15:12:34:6a:e5:d8:a7:59:fc: 02:fa:a6:95:1b:02:4f:82:ba:44:40:b1:88:66:dc: 64:7e:89:c7:98:8a:e0:d1:ae:e7:5d:f5:ae:eb:8e: 5a:4b:ed:47:86:c9:c7:8e:8f:16:c2:3c:2c:58:e3: c2:d5:d5:6c:f3:48:09:23:0c:43:28:a3:f7:28:10: a4:bd:a4:ef:c5:9c:38:ae:36:fd:a9:6f:51:6d:63: 79:e1:87:d2:40:21:de:7b:2d:3d:87:14:ee:88:00: aa:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C5:43:A1:10:0D:9E:DB:F2:B2:3B:1A:07:F7:94:2B:5A:0A:06:B4:87 X509v3 Authority Key Identifier: keyid:E6:8C:4C:10:30:29:B8:41:42:A5:CA:B3:EF:B8:52:FD:C1:A3:9B:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DOWTEK/1/E68C4C103029B84142A5CAB3EFB852FDC1A39BB0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 24:0b:12:91:1f:cc:76:6a:6b:cb:72:e6:54:dd:8c:dc:34:12: 00:b5:c6:eb:bd:69:7c:c1:3e:e1:65:ea:1b:d1:b2:ee:b7:c9: d7:54:5d:65:45:08:03:f1:94:fe:09:55:a7:cc:a5:84:2a:ee: 28:e2:3a:69:f8:3e:57:7c:37:1a:30:a0:f7:60:aa:fd:99:4f: c2:24:2b:dc:f1:a2:68:23:22:ec:06:f2:69:35:41:24:e3:24: 8b:11:9c:11:79:e2:b1:b6:c2:f2:8e:26:ec:63:e1:7c:82:3d: df:55:4c:04:1a:cb:aa:3e:b1:67:0f:36:79:f4:5c:be:a2:ed: 53:17:51:57:55:86:1f:52:6b:3b:dc:d4:cd:ac:0e:12:1d:f2: ab:06:af:dc:49:62:06:d0:61:c0:b6:b5:b0:7b:1e:f7:8c:52: 11:63:eb:7e:62:2b:d7:a7:8b:b6:39:b8:7d:75:f4:0d:3c:e4: 48:84:78:36:28:75:21:ac:f4:ad:9a:18:60:09:d2:a0:b4:c7: 31:a9:80:28:3e:69:01:3f:af:89:dd:aa:c1:dd:8a:f0:e4:95: b7:4d:b4:13:40:39:a9:bb:82:7f:7e:34:fe:34:a9:eb:27:76: a0:31:ff:e4:04:c5:26:e8:1e:1e:94:ad:f9:87:9f:9d:e6:33: 15:fa:0a:35 -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIURF1cwnUtXdk8x95oX57ElTcOuogwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTY4QzRDMTAzMDI5Qjg0MTQyQTVDQUIzRUZCODUyRkRD MUEzOUJCMDAeFw0yNjA2MTYwNzE4NTJaFw0yNjA2MTcwOTQyNTJaMDMxMTAvBgNV BAMTKEM1NDNBMTEwMEQ5RURCRjJCMjNCMUEwN0Y3OTQyQjVBMEEwNkI0ODcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCi20oft1t+FkR62wzGlGu7pB5k 875FmjKJYb6WuPyDIpAtCKiwRM5UINy+jV9AxW1siQ9Mg7s9YHBg/4mxhJ7B2KNg Kgpj8T1bo93l1Ydg/Xq/6kXGz/QMDeGNACpkoWWhhLdVafY5L2zxK0qWTVhh0z/W hUywMsHCIw/lKaqqSM/ETBQ0j5YxO72UP+hVs4nSJuChN/kiJji2jRUSNGrl2KdZ /AL6ppUbAk+CukRAsYhm3GR+iceYiuDRrudd9a7rjlpL7UeGyceOjxbCPCxY48LV 1WzzSAkjDEMoo/coEKS9pO/FnDiuNv2pb1FtY3nhh9JAId57LT2HFO6IAKqPAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUxUOhEA2e2/KyOxoH95QrWgoGtIcwHwYDVR0j BBgwFoAU5oxMEDApuEFCpcqz77hS/cGjm7AwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XVEVL LzEvRTY4QzRDMTAzMDI5Qjg0MTQyQTVDQUIzRUZCODUyRkRDMUEzOUJCMC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS9FNjhDNEMxMDMwMjlCODQxNDJBNUNBQjNFRkI4 NTJGREMxQTM5QkIwLmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XVEVLLzEvRTY4QzRDMTAzMDI5 Qjg0MTQyQTVDQUIzRUZCODUyRkRDMUEzOUJCMC5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBACQLEpEfzHZq a8ty5lTdjNw0EgC1xuu9aXzBPuFl6hvRsu63yddUXWVFCAPxlP4JVafMpYQq7iji Omn4Pld8NxowoPdgqv2ZT8IkK9zxomgjIuwG8mk1QSTjJIsRnBF54rG2wvKOJuxj 4XyCPd9VTAQay6o+sWcPNnn0XL6i7VMXUVdVhh9Sazvc1M2sDhId8qsGr9xJYgbQ YcC2tbB7HveMUhFj635iK9eni7Y5uH119A085EiEeDYodSGs9K2aGGAJ0qC0xzGp gCg+aQE/r4ndqsHdivDklbdNtBNAOam7gn9+NP40qesndqAx/+QExSboHh6UrfmH n53mMxX6CjU= -----END CERTIFICATE-----Generated at Tue Jun 16 18:44:49 2026 by rpki-client