$ rpki-client -vvf rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft File: BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft (raw, json) Hash identifier: 1KB6x715E6RvU15EnxKgz8ZNMFGNVYnC/VmP8jnWgAU= Subject key identifier: DF:46:AA:D0:41:6B:64:34:83:74:9D:9F:8A:77:32:D2:77:79:BD:4C Authority key identifier: BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0 Certificate issuer: /CN=BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0 Certificate serial: 4C77E8024B38391C63D0EEE2D2989240B73A5501 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft Manifest number: 09 Signing time: Wed 13 May 2026 07:52:42 +0000 Manifest this update: Wed 13 May 2026 07:47:42 +0000 Manifest next update: Thu 14 May 2026 11:08:42 +0000 Files and hashes: 1: BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl (hash: GehpwFCkTgVuZbIrxFprlVUpLBSOlGHKwONsAHquqBE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:08:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4c:77:e8:02:4b:38:39:1c:63:d0:ee:e2:d2:98:92:40:b7:3a:55:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0 Validity Not Before: May 13 07:47:42 2026 GMT Not After : May 14 11:08:42 2026 GMT Subject: CN=DF46AAD0416B643483749D9F8A7732D27779BD4C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:3f:00:52:fe:cb:05:37:f4:76:28:fd:29:84: 73:22:d2:31:ae:da:f7:b2:86:0e:df:9f:7b:28:84: 8c:b4:32:56:da:a3:31:3a:1b:af:89:72:fc:78:8b: 11:70:a7:95:78:e3:4e:a7:aa:81:b7:5a:01:85:8c: 9b:07:a9:cc:c9:12:35:92:68:3b:10:00:25:4f:0c: 30:1d:a5:a2:df:2d:8d:6e:37:cd:d7:c3:33:f9:eb: 49:20:6c:21:45:ac:61:54:17:39:0b:84:e2:d3:1a: a2:59:8d:08:3d:5b:58:ab:18:2f:be:d7:9b:1b:10: 37:43:41:74:59:90:a8:74:7f:32:45:c8:dc:d8:ef: 00:90:ed:dd:0e:0a:36:ac:9c:7c:4f:bf:2f:fd:f2: ae:e4:86:84:30:7b:69:8a:03:d1:df:a1:41:0c:f8: d7:5e:95:bf:83:b5:e7:74:ab:20:52:9c:dd:ce:43: 38:1d:62:e2:47:58:67:22:4e:bf:2c:84:17:b5:d0: 57:e6:8d:86:52:37:5e:d7:66:40:50:5b:d3:80:f4: f0:df:11:a6:9a:e8:f5:85:08:c7:f0:1d:54:06:7d: 70:4a:15:0b:2a:e5:72:8a:c3:b7:d9:95:4a:a8:a3: 3c:65:b5:96:72:be:34:f3:d6:cc:d3:3e:c0:31:e5: 80:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:46:AA:D0:41:6B:64:34:83:74:9D:9F:8A:77:32:D2:77:79:BD:4C X509v3 Authority Key Identifier: keyid:BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 25:84:97:bc:28:65:5e:61:a6:0b:d4:a0:77:48:b4:d9:4d:f7: 14:4d:39:46:e4:29:19:a2:c9:58:95:6a:a6:e8:91:c4:ab:2f: e2:fb:03:13:53:1b:14:d1:64:4d:1c:ab:b7:dd:26:14:cc:d1: 5e:3a:92:4e:1f:34:6e:1c:f4:cf:79:e9:ef:30:30:ad:b4:9c: 2f:ea:bb:33:b5:a4:d9:27:22:70:02:b9:8b:1b:6a:47:d3:cb: 5e:9a:b3:be:30:ba:89:45:88:4a:89:06:42:89:de:f0:b2:36: d7:ae:6e:29:ef:6b:cb:93:04:9e:7e:89:13:b4:3c:32:51:67: 05:3c:6c:66:d3:a7:6e:8b:c0:5e:e7:44:68:55:37:55:2e:8a: b7:07:f5:db:82:86:19:6b:d1:6c:eb:5a:72:25:15:76:d4:9c: d9:ae:a0:06:6f:6b:21:c8:35:1f:51:5f:a3:84:6c:4b:13:18: 05:98:f8:ab:ad:8c:62:b5:1d:23:8d:e3:80:25:c3:7a:a2:78: 88:1f:89:bd:c6:02:98:f3:a4:8d:ad:34:b4:82:36:a1:c5:d8: b5:7a:f0:6b:1a:39:3b:16:38:d3:fb:15:c7:56:f4:78:09:56: ef:43:cc:81:51:07:bd:55:2c:16:0b:e7:58:42:7c:73:13:4c: 12:ec:12:bd -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUTHfoAks4ORxj0O7i0piSQLc6VQEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFBOUUxQjVDNTZBRTJBQjE1NzNGNEREMzRFRTY3OTQz QUU1RDREMDAeFw0yNjA1MTMwNzQ3NDJaFw0yNjA1MTQxMTA4NDJaMDMxMTAvBgNV BAMTKERGNDZBQUQwNDE2QjY0MzQ4Mzc0OUQ5RjhBNzczMkQyNzc3OUJENEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjPwBS/ssFN/R2KP0phHMi0jGu 2veyhg7fn3sohIy0MlbaozE6G6+Jcvx4ixFwp5V4406nqoG3WgGFjJsHqczJEjWS aDsQACVPDDAdpaLfLY1uN83XwzP560kgbCFFrGFUFzkLhOLTGqJZjQg9W1irGC++ 15sbEDdDQXRZkKh0fzJFyNzY7wCQ7d0OCjasnHxPvy/98q7khoQwe2mKA9HfoUEM +Ndelb+Dted0qyBSnN3OQzgdYuJHWGciTr8shBe10FfmjYZSN17XZkBQW9OA9PDf Eaaa6PWFCMfwHVQGfXBKFQsq5XKKw7fZlUqoozxltZZyvjTz1szTPsAx5YAbAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQU30aq0EFrZDSDdJ2fincy0nd5vUwwHwYDVR0j BBgwFoAUuqnhtcVq4qsVc/TdNO5nlDrl1NAwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR0FNQkVT T04vMC9CQUE5RTFCNUM1NkFFMkFCMTU3M0Y0REQzNEVFNjc5NDNBRTVENEQwLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xL0JBQTlFMUI1QzU2QUUyQUIxNTczRjRERDM0 RUU2Nzk0M0FFNUQ0RDAuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZU cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HQU1CRVNPTi8wL0JBQTlFMUI1 QzU2QUUyQUIxNTczRjRERDM0RUU2Nzk0M0FFNUQ0RDAubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAlhJe8 KGVeYaYL1KB3SLTZTfcUTTlG5CkZoslYlWqm6JHEqy/i+wMTUxsU0WRNHKu33SYU zNFeOpJOHzRuHPTPeenvMDCttJwv6rsztaTZJyJwArmLG2pH08temrO+MLqJRYhK iQZCid7wsjbXrm4p72vLkwSefokTtDwyUWcFPGxm06dui8Be50RoVTdVLoq3B/Xb goYZa9Fs61pyJRV21JzZrqAGb2shyDUfUV+jhGxLExgFmPirrYxitR0jjeOAJcN6 oniIH4m9xgKY86SNrTS0gjahxdi1evBrGjk7FjjT+xXHVvR4CVbvQ8yBUQe9VSwW C+dYQnxzE0wS7BK9 -----END CERTIFICATE-----Generated at Wed May 13 20:33:31 2026 by rpki-client