$ rpki-client -vvf rpkica.twnic.tw/rpki/ERAY/0/19C24D64A5637F1F6837D06BA77F1000FF9E54D3.mft File: 19C24D64A5637F1F6837D06BA77F1000FF9E54D3.mft (raw, json) Hash identifier: AieMdD0xo7T9HQb5DuMC3ylYBNol0EVaffbi5YnPkJ4= Subject key identifier: 1A:93:DD:DB:6D:A6:0E:92:47:81:C1:35:DB:33:51:14:BE:65:72:F1 Authority key identifier: 19:C2:4D:64:A5:63:7F:1F:68:37:D0:6B:A7:7F:10:00:FF:9E:54:D3 Certificate issuer: /CN=19C24D64A5637F1F6837D06BA77F1000FF9E54D3 Certificate serial: 41847982BE925A882B090C91A62A3CDC0D7C4B86 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/19C24D64A5637F1F6837D06BA77F1000FF9E54D3.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ERAY/0/19C24D64A5637F1F6837D06BA77F1000FF9E54D3.mft Manifest number: 43 Signing time: Tue 30 Jun 2026 03:08:00 +0000 Manifest this update: Tue 30 Jun 2026 03:03:00 +0000 Manifest next update: Wed 01 Jul 2026 05:17:00 +0000 Files and hashes: 1: 19C24D64A5637F1F6837D06BA77F1000FF9E54D3.crl (hash: l31KyY+fqh//PW7Z8iCAW4hJyt1SsZTzHEk7f4d9Dt8=) 2: 3130332e3235352e3230362e302f32332d3332203d3e20313331313439.roa (hash: Q23OYg/snKDMZT/GrhFuy0UWILnudHwqtr4/Nhp9Yqo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ERAY/0/19C24D64A5637F1F6837D06BA77F1000FF9E54D3.crl rsync://rpkica.twnic.tw/rpki/ERAY/0/19C24D64A5637F1F6837D06BA77F1000FF9E54D3.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/19C24D64A5637F1F6837D06BA77F1000FF9E54D3.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 05:17:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 41:84:79:82:be:92:5a:88:2b:09:0c:91:a6:2a:3c:dc:0d:7c:4b:86 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=19C24D64A5637F1F6837D06BA77F1000FF9E54D3 Validity Not Before: Jun 30 03:03:00 2026 GMT Not After : Jul 1 05:17:00 2026 GMT Subject: CN=1A93DDDB6DA60E924781C135DB335114BE6572F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:95:89:65:30:93:48:d9:3d:b3:8f:63:44:8b: 02:d7:eb:e4:b2:60:4a:44:1b:a6:42:fd:8b:88:fd: d8:44:27:73:e3:8f:f4:42:c9:57:76:99:c3:dc:a9: 3a:fa:03:49:6d:25:53:e8:c0:62:2c:3c:02:15:a8: 0c:3a:a8:8f:ad:22:08:06:8c:21:62:b6:08:4e:eb: dc:bc:a6:fa:5c:bf:b0:07:65:1c:62:6a:d9:b3:03: 6b:7f:c9:93:b9:ab:31:77:fc:90:4a:02:a7:74:08: 33:ee:0c:9f:e9:cf:2e:ba:f8:21:ea:19:bd:d0:0b: 6d:c9:5f:81:3f:f9:92:3b:22:df:fa:7b:f3:dc:36: 64:a0:bb:2c:06:f4:f0:ac:3a:95:cd:83:0c:49:53: 8b:e5:fb:7b:7d:fc:95:b8:b1:74:36:92:fd:20:04: 4a:e2:de:26:bb:ee:c8:0a:37:24:70:53:33:aa:aa: 2c:9e:96:53:87:cc:95:a1:89:5c:d8:9e:20:00:df: 47:68:87:1b:90:28:bc:96:2f:2b:ec:50:f8:00:40: 6b:73:02:ad:4b:ff:74:e6:bf:98:8f:c4:9c:1e:b0: ab:8b:88:20:d2:00:4f:6a:04:af:ac:30:88:b3:a1: 61:e8:b8:08:01:03:99:2b:f0:ff:6b:24:d0:93:0e: b9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:93:DD:DB:6D:A6:0E:92:47:81:C1:35:DB:33:51:14:BE:65:72:F1 X509v3 Authority Key Identifier: keyid:19:C2:4D:64:A5:63:7F:1F:68:37:D0:6B:A7:7F:10:00:FF:9E:54:D3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ERAY/0/19C24D64A5637F1F6837D06BA77F1000FF9E54D3.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/19C24D64A5637F1F6837D06BA77F1000FF9E54D3.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ERAY/0/19C24D64A5637F1F6837D06BA77F1000FF9E54D3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption ac:16:92:2c:08:2d:f7:00:50:8d:29:24:9d:c2:4e:72:69:ac: 4e:67:cb:a8:3a:81:f0:91:93:4d:a2:dd:81:0e:d1:ae:dd:b2: f6:f3:cf:41:45:bc:f2:07:47:5e:58:74:f6:d8:d8:a3:74:dc: 1a:3b:af:b4:15:a1:c0:d2:51:a4:2e:6d:81:2e:1f:c1:83:5a: 23:f3:7b:bc:a7:bd:01:ca:72:99:23:48:3d:ea:1a:70:16:63: 52:c5:5a:16:5e:f4:dc:3b:98:c1:da:31:6f:65:58:9f:55:f0: d4:1f:db:e2:0f:27:06:1a:d0:65:85:d7:ae:66:41:3e:02:32: e6:80:2e:23:e1:4a:71:46:99:d5:7d:cd:ae:f7:1d:0a:93:e9: e4:a2:fe:68:a6:a3:ae:2b:02:2e:de:1a:32:5d:cc:63:5d:36: ff:93:30:2a:c1:a2:79:f3:aa:3b:cf:a6:a2:ca:be:8b:5b:13: ab:38:ec:bf:47:e5:e7:dd:e6:61:43:12:f6:44:2d:14:68:5a: be:a8:6a:48:eb:13:21:01:93:9f:7b:a1:bd:d5:e0:55:3b:f1: 12:ff:27:5a:ca:ff:87:d1:8e:3a:d7:c2:8d:eb:49:a5:b0:04: ad:a9:51:ff:94:a9:97:4f:b4:9a:df:ec:d8:05:ff:e5:ad:c6: 7d:03:aa:d8 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUQYR5gr6SWogrCQyRpio83A18S4YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMTlDMjRENjRBNTYzN0YxRjY4MzdEMDZCQTc3RjEwMDBG RjlFNTREMzAeFw0yNjA2MzAwMzAzMDBaFw0yNjA3MDEwNTE3MDBaMDMxMTAvBgNV BAMTKDFBOTNERERCNkRBNjBFOTI0NzgxQzEzNURCMzM1MTE0QkU2NTcyRjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3lYllMJNI2T2zj2NEiwLX6+Sy YEpEG6ZC/YuI/dhEJ3Pjj/RCyVd2mcPcqTr6A0ltJVPowGIsPAIVqAw6qI+tIggG jCFitghO69y8pvpcv7AHZRxiatmzA2t/yZO5qzF3/JBKAqd0CDPuDJ/pzy66+CHq Gb3QC23JX4E/+ZI7It/6e/PcNmSguywG9PCsOpXNgwxJU4vl+3t9/JW4sXQ2kv0g BEri3ia77sgKNyRwUzOqqiyellOHzJWhiVzYniAA30dohxuQKLyWLyvsUPgAQGtz Aq1L/3Tmv5iPxJwesKuLiCDSAE9qBK+sMIizoWHouAgBA5kr8P9rJNCTDrlZAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUGpPd222mDpJHgcE12zNRFL5lcvEwHwYDVR0j BBgwFoAUGcJNZKVjfx9oN9Brp38QAP+eVNMwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRVJBWS8w LzE5QzI0RDY0QTU2MzdGMUY2ODM3RDA2QkE3N0YxMDAwRkY5RTU0RDMuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMTlDMjRENjRBNTYzN0YxRjY4MzdEMDZCQTc3RjEw MDBGRjlFNTREMy5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0VSQVkvMC8xOUMyNEQ2NEE1NjM3RjFG NjgzN0QwNkJBNzdGMTAwMEZGOUU1NEQzLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEArBaSLAgt9wBQjSkk ncJOcmmsTmfLqDqB8JGTTaLdgQ7Rrt2y9vPPQUW88gdHXlh09tjYo3TcGjuvtBWh wNJRpC5tgS4fwYNaI/N7vKe9AcpymSNIPeoacBZjUsVaFl703DuYwdoxb2VYn1Xw 1B/b4g8nBhrQZYXXrmZBPgIy5oAuI+FKcUaZ1X3NrvcdCpPp5KL+aKajrisCLt4a Ml3MY102/5MwKsGiefOqO8+mosq+i1sTqzjsv0fl593mYUMS9kQtFGhavqhqSOsT IQGTn3uhvdXgVTvxEv8nWsr/h9GOOtfCjetJpbAEralR/5Spl0+0mt/s2AX/5a3G fQOq2A== -----END CERTIFICATE-----Generated at Tue Jun 30 19:09:18 2026 by rpki-client