$ rpki-client -vvf rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.mft File: A67F7A72FC031B1A33774C937883F79C7342B848.mft (raw, json) Hash identifier: +TAUx6HOm+BwFbVrVlEKwWYYSIYLxK87ekJUjwvt5o4= Subject key identifier: 39:8B:60:5C:41:BA:37:1F:6B:BF:BA:E3:A9:57:4D:64:FC:C1:1D:D4 Authority key identifier: A6:7F:7A:72:FC:03:1B:1A:33:77:4C:93:78:83:F7:9C:73:42:B8:48 Certificate issuer: /CN=A67F7A72FC031B1A33774C937883F79C7342B848 Certificate serial: 7DDC1092CF5FB6A6C1E781B615472687625D119C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A67F7A72FC031B1A33774C937883F79C7342B848.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.mft Manifest number: 44 Signing time: Tue 30 Jun 2026 04:13:04 +0000 Manifest this update: Tue 30 Jun 2026 04:08:04 +0000 Manifest next update: Wed 01 Jul 2026 04:36:04 +0000 Files and hashes: 1: A67F7A72FC031B1A33774C937883F79C7342B848.crl (hash: HniQVmKrVean2FZnz97mTWF3GBHygf6DdSYTgJ3vAqU=) 2: 3231312e37382e36342e302f32302d3234203d3e203338383337.roa (hash: BXuBK0LMjwx4Feg0mEC7/E23SnCajtY0CpedBH0UNLE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.crl rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A67F7A72FC031B1A33774C937883F79C7342B848.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 04:36:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7d:dc:10:92:cf:5f:b6:a6:c1:e7:81:b6:15:47:26:87:62:5d:11:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A67F7A72FC031B1A33774C937883F79C7342B848 Validity Not Before: Jun 30 04:08:04 2026 GMT Not After : Jul 1 04:36:04 2026 GMT Subject: CN=398B605C41BA371F6BBFBAE3A9574D64FCC11DD4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:4c:c0:1d:07:ba:e5:9e:c3:0a:e2:33:42:9c: c1:7a:1f:2f:26:85:d1:f9:a2:4e:f6:b4:23:c8:b5: 86:60:47:02:47:8c:81:2f:e0:b0:b1:f4:1f:42:95: 3d:1e:8b:ac:22:74:c7:e7:99:f6:14:b1:db:6d:80: 3c:e4:b8:fd:74:b6:1b:27:8a:a7:16:e8:13:4d:6e: 8b:b5:80:4b:05:5a:49:5c:65:56:72:ad:af:df:0c: d7:0e:93:d1:77:2d:a6:d9:30:39:37:9e:5a:c5:4e: c5:55:44:59:e5:98:59:ab:41:67:94:d0:a5:43:85: c5:59:da:81:56:07:0a:6c:72:6a:40:3e:7e:6d:13: 7a:ba:81:2c:83:c2:f8:f8:b2:c8:32:5c:fd:40:3e: f0:7e:a4:9e:a1:58:b7:40:83:ed:e0:17:d2:b1:01: 18:07:c7:9a:5c:c7:3e:d5:5a:6d:c7:e7:bf:87:f6: a7:85:29:4b:fe:c8:35:24:30:03:1d:9a:50:67:85: f7:61:b2:92:21:b4:cd:90:6d:cc:0b:ab:fa:f2:7f: 8d:19:06:da:1b:29:b0:06:ad:8d:d8:c3:9b:10:0e: 4d:75:3b:01:c8:97:18:f0:1d:73:a3:fd:7e:d2:78: b5:27:c5:e9:0a:4c:dd:ff:74:77:55:2f:71:d2:78: 62:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 39:8B:60:5C:41:BA:37:1F:6B:BF:BA:E3:A9:57:4D:64:FC:C1:1D:D4 X509v3 Authority Key Identifier: keyid:A6:7F:7A:72:FC:03:1B:1A:33:77:4C:93:78:83:F7:9C:73:42:B8:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A67F7A72FC031B1A33774C937883F79C7342B848.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 32:a3:49:fa:bb:76:05:3d:b5:9a:ce:a1:d1:41:cf:fe:f1:a7: af:31:a0:1d:a6:ff:45:52:92:4f:ff:1a:7c:8d:8e:0a:83:d9: 22:68:e3:1a:b6:c1:cc:d3:97:13:f7:35:5d:f3:01:ab:c1:5b: 7e:1d:8f:b0:2f:d1:06:95:59:83:ee:51:f8:93:55:01:7b:50: 6b:b8:74:c4:7e:57:95:35:d0:63:cd:60:ae:77:6c:c7:c0:38: 7e:0d:11:57:25:05:0b:66:1f:7c:80:97:02:b6:00:18:d4:ec: db:64:bf:d8:b2:91:70:37:a2:a4:d4:79:33:81:c4:d4:b1:78: 5a:db:80:8d:c5:7e:32:c5:80:15:5a:d1:4a:68:b5:ee:a7:f4: 5a:6e:00:df:6a:78:fa:90:af:3a:f0:07:ef:9f:db:a0:6b:f5: a2:b9:6c:41:2e:36:8c:04:ac:5e:95:ff:a9:1a:f7:5b:a5:92: 62:64:83:8c:68:79:d0:63:ac:6b:f5:0e:cc:5b:75:70:54:26: c1:90:ee:ce:a6:6d:17:20:ff:f1:f0:cb:6e:c8:1a:4d:c4:d2: 72:dd:40:b1:98:28:55:6e:65:23:86:5f:7d:d0:85:b1:ec:1a: a4:29:e6:9b:8b:b2:f9:0c:07:a2:d6:9d:bb:3f:f1:b2:eb:da: ba:b8:2f:97 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUfdwQks9ftqbB54G2FUcmh2JdEZwwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY3RjdBNzJGQzAzMUIxQTMzNzc0QzkzNzg4M0Y3OUM3 MzQyQjg0ODAeFw0yNjA2MzAwNDA4MDRaFw0yNjA3MDEwNDM2MDRaMDMxMTAvBgNV BAMTKDM5OEI2MDVDNDFCQTM3MUY2QkJGQkFFM0E5NTc0RDY0RkNDMTFERDQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqTMAdB7rlnsMK4jNCnMF6Hy8m hdH5ok72tCPItYZgRwJHjIEv4LCx9B9ClT0ei6widMfnmfYUsdttgDzkuP10thsn iqcW6BNNbou1gEsFWklcZVZyra/fDNcOk9F3LabZMDk3nlrFTsVVRFnlmFmrQWeU 0KVDhcVZ2oFWBwpscmpAPn5tE3q6gSyDwvj4ssgyXP1APvB+pJ6hWLdAg+3gF9Kx ARgHx5pcxz7VWm3H57+H9qeFKUv+yDUkMAMdmlBnhfdhspIhtM2QbcwLq/ryf40Z BtobKbAGrY3Yw5sQDk11OwHIlxjwHXOj/X7SeLUnxekKTN3/dHdVL3HSeGKBAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUOYtgXEG6Nx9rv7rjqVdNZPzBHdQwHwYDVR0j BBgwFoAUpn96cvwDGxozd0yTeIP3nHNCuEgwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NORVQv MC9BNjdGN0E3MkZDMDMxQjFBMzM3NzRDOTM3ODgzRjc5QzczNDJCODQ4LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0E2N0Y3QTcyRkMwMzFCMUEzMzc3NEM5Mzc4ODNG NzlDNzM0MkI4NDguY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HU05FVC8wL0E2N0Y3QTcyRkMwMzFC MUEzMzc3NEM5Mzc4ODNGNzlDNzM0MkI4NDgubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAyo0n6u3YFPbWa zqHRQc/+8aevMaAdpv9FUpJP/xp8jY4Kg9kiaOMatsHM05cT9zVd8wGrwVt+HY+w L9EGlVmD7lH4k1UBe1BruHTEfleVNdBjzWCud2zHwDh+DRFXJQULZh98gJcCtgAY 1OzbZL/YspFwN6Kk1HkzgcTUsXha24CNxX4yxYAVWtFKaLXup/RabgDfanj6kK86 8Afvn9uga/WiuWxBLjaMBKxelf+pGvdbpZJiZIOMaHnQY6xr9Q7MW3VwVCbBkO7O pm0XIP/x8MtuyBpNxNJy3UCxmChVbmUjhl990IWx7BqkKeabi7L5DAei1p27P/Gy 69q6uC+X -----END CERTIFICATE-----Generated at Tue Jun 30 19:06:59 2026 by rpki-client