$ rpki-client -vvf rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft File: BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft (raw, json) Hash identifier: fIbtQDXkM2EFdcK92IsTHELsgwzffX7S7RebrcBUI30= Subject key identifier: 3E:98:C9:5F:A4:7E:26:2E:4B:44:E1:78:81:07:5B:F3:60:0E:B6:72 Authority key identifier: BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0 Certificate issuer: /CN=BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0 Certificate serial: 7E78A9283CFD60068B2A2B4EB25002C760434D7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft Manifest number: 49 Signing time: Tue 30 Jun 2026 10:28:40 +0000 Manifest this update: Tue 30 Jun 2026 10:23:40 +0000 Manifest next update: Wed 01 Jul 2026 12:47:40 +0000 Files and hashes: 1: BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl (hash: +/Q1y4KQsQoIzzKxY3MwoSg7Ut6WvVxi4mtlrQDKwZg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 12:47:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7e:78:a9:28:3c:fd:60:06:8b:2a:2b:4e:b2:50:02:c7:60:43:4d:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0 Validity Not Before: Jun 30 10:23:40 2026 GMT Not After : Jul 1 12:47:40 2026 GMT Subject: CN=3E98C95FA47E262E4B44E17881075BF3600EB672 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5b:6c:1c:25:ec:c4:eb:09:ad:14:f2:2b:12: 4a:ef:72:80:14:06:a1:61:48:c2:57:e1:44:f5:bb: b9:b6:6f:2e:92:86:73:43:ff:49:a2:df:88:7d:d4: 3c:76:1d:e6:8d:71:ed:bf:28:54:68:6a:59:44:72: cb:27:fd:7c:dc:5a:d8:9b:0d:d7:d2:02:bf:45:97: 6b:6d:01:30:5d:a5:4b:55:b8:36:b6:28:28:8c:7a: 9c:95:9f:a6:d1:89:00:6d:94:b4:b4:a1:c3:f9:43: f0:35:7e:92:5f:f0:84:63:6c:68:3d:17:a6:9f:93: 8b:bd:4d:69:a0:e5:14:e6:1f:18:e1:86:e2:d2:67: 3b:43:9b:55:4e:57:7a:62:71:b4:0c:e0:90:22:01: e8:b7:30:ed:52:9d:f7:3d:f6:f9:9f:e4:4e:19:27: 80:b8:da:c0:06:0a:16:7b:b4:f9:5b:2b:91:7a:c4: 4b:e4:fd:2e:21:bc:47:ac:a4:01:a0:86:f6:75:58: e8:00:43:e6:48:bd:ae:11:06:02:31:f1:33:d3:dc: 07:5f:4a:13:3d:a4:91:38:2b:5a:91:e4:e0:cf:02: 5b:e9:db:3d:02:4e:35:47:9d:22:69:ab:47:89:bd: 5a:0c:d3:81:f6:46:90:1b:3e:c2:79:8c:90:b4:ce: eb:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:98:C9:5F:A4:7E:26:2E:4B:44:E1:78:81:07:5B:F3:60:0E:B6:72 X509v3 Authority Key Identifier: keyid:BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2c:04:6d:38:83:70:ab:f1:d4:68:67:ff:8c:fb:4a:35:f7:78: 34:6e:7e:e1:df:69:af:9a:ad:43:47:9e:98:20:49:af:81:ae: 12:75:25:68:87:bd:fc:00:1a:55:a4:1b:8b:72:da:78:e2:b9: ad:ab:36:79:27:f9:21:bc:da:fc:17:e5:a9:4d:08:90:a7:0a: 37:35:94:9a:32:f4:8f:45:d1:6c:8e:48:d5:08:fb:7d:fc:57: 9b:b0:cf:a6:21:3e:ba:bf:fb:17:1a:b8:0c:80:18:27:7c:03: f5:a5:9c:fd:33:4e:34:2d:d9:9a:38:39:f8:a1:0e:3f:a0:bc: 2b:e2:1d:cd:5a:22:4c:c6:fd:af:21:8c:ee:4e:a9:bc:8f:c0: 30:27:01:70:42:26:1d:be:f1:93:f8:66:0d:df:b7:c6:21:15: 5a:d7:d0:c6:00:cb:31:07:eb:e3:7b:11:a9:35:28:89:e7:8c: 3b:1f:da:6a:de:f2:2e:80:ce:dc:15:f1:2b:3a:dd:a8:ce:01: 33:60:7c:33:59:63:55:47:fa:40:d4:18:f1:11:71:1f:a9:18: 37:b4:4a:ba:96:ba:e4:0d:c3:87:c4:a8:67:b0:8a:68:b6:34: e8:6e:85:f1:19:17:6d:c0:8b:7b:03:9c:a3:16:6b:e1:05:7f: 20:b0:18:2c -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUfnipKDz9YAaLKitOslACx2BDTX8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFBOUUxQjVDNTZBRTJBQjE1NzNGNEREMzRFRTY3OTQz QUU1RDREMDAeFw0yNjA2MzAxMDIzNDBaFw0yNjA3MDExMjQ3NDBaMDMxMTAvBgNV BAMTKDNFOThDOTVGQTQ3RTI2MkU0QjQ0RTE3ODgxMDc1QkYzNjAwRUI2NzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1W2wcJezE6wmtFPIrEkrvcoAU BqFhSMJX4UT1u7m2by6ShnND/0mi34h91Dx2HeaNce2/KFRoallEcssn/XzcWtib DdfSAr9Fl2ttATBdpUtVuDa2KCiMepyVn6bRiQBtlLS0ocP5Q/A1fpJf8IRjbGg9 F6afk4u9TWmg5RTmHxjhhuLSZztDm1VOV3picbQM4JAiAei3MO1Snfc99vmf5E4Z J4C42sAGChZ7tPlbK5F6xEvk/S4hvEespAGghvZ1WOgAQ+ZIva4RBgIx8TPT3Adf ShM9pJE4K1qR5ODPAlvp2z0CTjVHnSJpq0eJvVoM04H2RpAbPsJ5jJC0zuurAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUPpjJX6R+Ji5LROF4gQdb82AOtnIwHwYDVR0j BBgwFoAUuqnhtcVq4qsVc/TdNO5nlDrl1NAwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR0FNQkVT T04vMC9CQUE5RTFCNUM1NkFFMkFCMTU3M0Y0REQzNEVFNjc5NDNBRTVENEQwLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xL0JBQTlFMUI1QzU2QUUyQUIxNTczRjRERDM0 RUU2Nzk0M0FFNUQ0RDAuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZU cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HQU1CRVNPTi8wL0JBQTlFMUI1 QzU2QUUyQUIxNTczRjRERDM0RUU2Nzk0M0FFNUQ0RDAubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAsBG04 g3Cr8dRoZ/+M+0o193g0bn7h32mvmq1DR56YIEmvga4SdSVoh738ABpVpBuLctp4 4rmtqzZ5J/khvNr8F+WpTQiQpwo3NZSaMvSPRdFsjkjVCPt9/FebsM+mIT66v/sX GrgMgBgnfAP1pZz9M040LdmaODn4oQ4/oLwr4h3NWiJMxv2vIYzuTqm8j8AwJwFw QiYdvvGT+GYN37fGIRVa19DGAMsxB+vjexGpNSiJ54w7H9pq3vIugM7cFfErOt2o zgEzYHwzWWNVR/pA1BjxEXEfqRg3tEq6lrrkDcOHxKhnsIpotjToboXxGRdtwIt7 A5yjFmvhBX8gsBgs -----END CERTIFICATE-----Generated at Tue Jun 30 19:07:33 2026 by rpki-client