$ rpki-client -vvf rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.mft File: A67F7A72FC031B1A33774C937883F79C7342B848.mft (raw, json) Hash identifier: i5CzJ5V6JhcU6HjD0gDMLp2Mm50lgJcNp0SdNam0BJU= Subject key identifier: 44:55:04:B0:85:17:D1:05:21:28:EC:E0:61:10:F3:9F:61:4A:35:79 Authority key identifier: A6:7F:7A:72:FC:03:1B:1A:33:77:4C:93:78:83:F7:9C:73:42:B8:48 Certificate issuer: /CN=A67F7A72FC031B1A33774C937883F79C7342B848 Certificate serial: 5B582632641A9A5C92BBF80856EA014D5F3BBFBD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A67F7A72FC031B1A33774C937883F79C7342B848.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.mft Manifest number: 04 Signing time: Wed 13 May 2026 06:52:28 +0000 Manifest this update: Wed 13 May 2026 06:47:28 +0000 Manifest next update: Thu 14 May 2026 08:22:28 +0000 Files and hashes: 1: 3231312e37382e36342e302f32302d3234203d3e203338383337.roa (hash: BXuBK0LMjwx4Feg0mEC7/E23SnCajtY0CpedBH0UNLE=) 2: A67F7A72FC031B1A33774C937883F79C7342B848.crl (hash: brjU7sghP4iXljGa3AY4YGwVqaSAmu1XCHbFcC28QkI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.crl rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A67F7A72FC031B1A33774C937883F79C7342B848.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:22:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5b:58:26:32:64:1a:9a:5c:92:bb:f8:08:56:ea:01:4d:5f:3b:bf:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A67F7A72FC031B1A33774C937883F79C7342B848 Validity Not Before: May 13 06:47:28 2026 GMT Not After : May 14 08:22:28 2026 GMT Subject: CN=445504B08517D1052128ECE06110F39F614A3579 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:cd:94:01:05:59:6c:f9:fb:fe:a3:fb:8d:ab: 64:38:cc:aa:62:a5:3a:f0:7c:dd:5c:8e:87:d2:7d: 3e:85:86:39:fe:d0:04:75:be:d3:f1:7e:f4:51:d9: 75:9f:af:90:ec:c1:d4:fa:da:e6:d8:fb:eb:54:2e: e9:e5:8b:b2:f4:f5:39:47:0c:f2:24:38:0a:02:5a: 8b:00:b5:0b:3a:24:2e:80:6b:e7:1a:06:65:e3:ec: a1:20:5d:e4:26:3c:1a:9b:d3:dc:ee:f3:b3:13:d2: c8:d2:04:0b:f0:a8:14:c5:f7:69:bf:3a:ec:85:69: 4e:73:92:75:57:05:0a:e8:74:51:91:b7:72:01:2e: f9:8a:7b:55:e4:02:bb:17:ce:39:d7:ab:73:3f:d0: 7d:4d:b3:c7:4a:fc:6d:4b:cb:2f:d4:48:ef:31:3d: 78:a4:6c:99:20:3c:16:50:a3:40:1d:9c:7b:5b:75: a3:80:99:6c:6c:12:41:f4:14:50:e1:09:7b:7e:99: 15:4d:e5:43:ec:fa:82:d4:e7:af:ce:bf:d2:75:4d: 48:b9:58:f2:54:dd:84:e5:22:a4:d7:11:fd:e2:d0: e6:26:fb:31:34:01:36:48:a3:19:cb:6b:0b:f9:96: fb:82:91:06:77:d2:93:34:4a:c2:80:42:e2:19:8b: 5e:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 44:55:04:B0:85:17:D1:05:21:28:EC:E0:61:10:F3:9F:61:4A:35:79 X509v3 Authority Key Identifier: keyid:A6:7F:7A:72:FC:03:1B:1A:33:77:4C:93:78:83:F7:9C:73:42:B8:48 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A67F7A72FC031B1A33774C937883F79C7342B848.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GSNET/0/A67F7A72FC031B1A33774C937883F79C7342B848.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d4:15:71:43:e1:17:f0:7e:0f:cc:1e:24:4d:9a:53:e4:e8:72: 8e:ab:c3:d2:ab:a0:10:55:e8:ac:f7:ac:ba:22:be:b7:37:fc: ea:29:9f:09:72:dd:9c:a9:40:29:b4:2b:23:38:5e:60:6a:d0: 96:31:ed:86:4b:7d:71:7c:00:5d:04:c1:df:9e:fc:da:1c:78: d2:fc:36:4f:97:ef:32:23:19:30:fb:4e:5e:3d:ed:df:4b:23: 74:e5:1f:52:83:54:f1:b4:a5:34:0d:6f:da:bf:e2:b7:2f:e3: fa:6d:ed:74:66:8d:6b:12:a6:80:5a:d8:3b:89:36:33:33:30: 83:e4:0d:bf:c1:f3:6e:bb:96:10:87:7e:15:3b:a4:ea:f4:2b: f6:eb:8e:cd:1e:3b:59:6a:d4:39:43:11:97:f9:8b:79:ba:41: e7:55:b4:e3:7d:08:c0:f7:52:78:78:52:1d:f0:01:84:e1:96: 04:3c:25:4f:80:b9:00:46:3b:bd:7d:82:43:2b:fb:55:cc:08: fa:c8:e5:90:e6:ca:f2:4e:40:f2:c4:a3:79:36:d7:d6:49:c0: 2f:0b:c5:c0:83:58:f2:65:b5:78:5c:e1:fc:20:81:61:06:50: cb:a0:a0:02:e3:4c:9a:50:bc:d7:6b:03:33:d4:6f:06:4c:b2: 1d:75:48:c9 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUW1gmMmQamlySu/gIVuoBTV87v70wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTY3RjdBNzJGQzAzMUIxQTMzNzc0QzkzNzg4M0Y3OUM3 MzQyQjg0ODAeFw0yNjA1MTMwNjQ3MjhaFw0yNjA1MTQwODIyMjhaMDMxMTAvBgNV BAMTKDQ0NTUwNEIwODUxN0QxMDUyMTI4RUNFMDYxMTBGMzlGNjE0QTM1NzkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCxzZQBBVls+fv+o/uNq2Q4zKpi pTrwfN1cjofSfT6Fhjn+0AR1vtPxfvRR2XWfr5DswdT62ubY++tULunli7L09TlH DPIkOAoCWosAtQs6JC6Aa+caBmXj7KEgXeQmPBqb09zu87MT0sjSBAvwqBTF92m/ OuyFaU5zknVXBQrodFGRt3IBLvmKe1XkArsXzjnXq3M/0H1Ns8dK/G1Lyy/USO8x PXikbJkgPBZQo0AdnHtbdaOAmWxsEkH0FFDhCXt+mRVN5UPs+oLU56/Ov9J1TUi5 WPJU3YTlIqTXEf3i0OYm+zE0ATZIoxnLawv5lvuCkQZ30pM0SsKAQuIZi17xAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQURFUEsIUX0QUhKOzgYRDzn2FKNXkwHwYDVR0j BBgwFoAUpn96cvwDGxozd0yTeIP3nHNCuEgwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1NORVQv MC9BNjdGN0E3MkZDMDMxQjFBMzM3NzRDOTM3ODgzRjc5QzczNDJCODQ4LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0E2N0Y3QTcyRkMwMzFCMUEzMzc3NEM5Mzc4ODNG NzlDNzM0MkI4NDguY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HU05FVC8wL0E2N0Y3QTcyRkMwMzFC MUEzMzc3NEM5Mzc4ODNGNzlDNzM0MkI4NDgubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDUFXFD4Rfwfg/M HiRNmlPk6HKOq8PSq6AQVeis96y6Ir63N/zqKZ8Jct2cqUAptCsjOF5gatCWMe2G S31xfABdBMHfnvzaHHjS/DZPl+8yIxkw+05ePe3fSyN05R9Sg1TxtKU0DW/av+K3 L+P6be10Zo1rEqaAWtg7iTYzMzCD5A2/wfNuu5YQh34VO6Tq9Cv2647NHjtZatQ5 QxGX+Yt5ukHnVbTjfQjA91J4eFId8AGE4ZYEPCVPgLkARju9fYJDK/tVzAj6yOWQ 5sryTkDyxKN5NtfWScAvC8XAg1jyZbV4XOH8IIFhBlDLoKAC40yaULzXawMz1G8G TLIddUjJ -----END CERTIFICATE-----Generated at Wed May 13 20:33:04 2026 by rpki-client