$ rpki-client -vvf rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.mft File: 59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.mft (raw, json) Hash identifier: Oh/Dg8GY/bFcfSAqTeBwgDC/hBNJUr5CgvuyVZJSGvY= Subject key identifier: BA:AF:CF:86:F2:C9:D3:F0:0E:1A:41:93:F4:41:83:B5:64:03:30:DD Authority key identifier: 59:D9:8E:8C:BB:AB:DC:DF:7B:22:2D:A5:00:F5:CD:E6:3F:F2:DA:0C Certificate issuer: /CN=59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C Certificate serial: 512A114D39F8854740D4874574C2A85CCBCEEF84 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.cer Subject info access: rsync://rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.mft Manifest number: 45 Signing time: Tue 30 Jun 2026 10:43:41 +0000 Manifest this update: Tue 30 Jun 2026 10:38:41 +0000 Manifest next update: Wed 01 Jul 2026 12:26:41 +0000 Files and hashes: 1: 3134342e37392e36362e302f32332d3234203d3e203138303433.roa (hash: I/nH3WfH4w3frC/mXwjMQ3leEpW2mw7DOz5WWS1+97M=) 2: 59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.crl (hash: 2ArN/MN9J21/mx6NrUkSgpEw5c5UtVNsKgJq+RLJTbo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.crl rsync://rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 12:26:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:2a:11:4d:39:f8:85:47:40:d4:87:45:74:c2:a8:5c:cb:ce:ef:84 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C Validity Not Before: Jun 30 10:38:41 2026 GMT Not After : Jul 1 12:26:41 2026 GMT Subject: CN=BAAFCF86F2C9D3F00E1A4193F44183B5640330DD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:58:3f:9d:8f:bd:55:14:3d:50:30:e4:fc:a0: df:af:a0:02:da:3f:31:37:f7:6e:01:97:a3:f6:e0: b0:97:96:9f:d8:2d:88:b2:3b:3b:8a:60:db:8f:a6: 89:e5:34:bd:a3:64:3f:04:bb:9d:31:3d:b5:51:f7: 8a:16:9d:36:96:d8:ab:64:cc:5d:24:b6:94:8f:3b: f6:c9:3b:61:7a:d0:7c:81:e8:cd:57:0d:7f:40:0d: e1:ce:ad:3d:11:f4:58:49:ac:8f:d6:74:00:68:f0: c6:c9:6f:99:8e:da:d4:ee:b3:bb:f5:de:37:32:04: b2:7d:e9:f7:ee:67:ec:e9:63:e3:6b:b5:8f:a2:b7: 02:88:68:bd:c1:13:6f:c6:db:15:2c:34:f8:c1:49: 27:e1:9f:a8:df:47:84:91:d9:9d:06:eb:af:11:cc: d3:f5:c2:f7:49:55:43:2f:6f:df:cc:dc:39:2e:1b: 3f:dd:dd:d8:bb:df:69:d8:d2:bf:72:67:c8:1f:74: 60:5c:0c:71:41:ca:23:b7:f3:86:73:af:ba:75:d1: 52:21:bf:bc:fb:02:48:d8:a9:3b:1c:71:2b:c0:1a: 10:fa:fa:a3:c9:7b:3d:c4:3a:d5:bd:c9:08:2d:04: 82:ca:ee:7e:62:31:d7:9e:ba:5d:b7:ed:3a:e2:19: 21:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:AF:CF:86:F2:C9:D3:F0:0E:1A:41:93:F4:41:83:B5:64:03:30:DD X509v3 Authority Key Identifier: keyid:59:D9:8E:8C:BB:AB:DC:DF:7B:22:2D:A5:00:F5:CD:E6:3F:F2:DA:0C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/HCCG_HCEB/1/59D98E8CBBABDCDF7B222DA500F5CDE63FF2DA0C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8f:fb:63:53:6c:b2:12:ce:0b:20:cb:af:1b:66:bd:85:51:ac: a1:33:1f:58:10:4a:08:71:55:7c:3e:a4:09:35:3c:a5:82:23: 81:3b:7b:37:1c:b1:b2:15:2a:45:38:fa:30:4b:23:10:21:97: 3b:c5:ae:19:82:a2:87:f1:06:b7:f1:bf:d3:d8:9d:70:cd:e1: 12:be:97:91:8a:13:c3:0f:22:79:e6:37:cf:81:c2:33:18:ad: 97:b0:af:1d:c8:9c:20:d6:07:db:64:80:20:d1:e6:c9:cb:03: fb:b8:1b:60:57:18:1f:46:4d:8b:19:e6:bb:cd:af:6f:7c:83: 0c:05:48:ce:10:25:4f:c0:d4:5d:af:a3:94:9c:9b:ab:45:63: 16:23:93:0b:e3:29:60:e3:34:19:90:4a:24:1b:85:3a:ab:7d: 4a:ba:f7:5a:d0:3f:d9:b0:e5:73:78:93:e4:2e:76:d4:33:b8: dd:e4:d4:38:b1:6f:7d:83:b6:39:76:9c:c4:85:5a:35:b8:8e: 53:64:97:7b:66:6c:ec:47:3e:d0:88:c7:c2:66:8c:81:72:cb: 88:a9:19:59:b2:e8:05:5c:ad:ed:6d:48:0c:fc:a6:c2:f5:3a: 9f:75:0e:b9:87:b2:24:4c:a5:85:1c:3c:6f:43:a5:8c:fe:8a: 50:62:0c:15 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUSoRTTn4hUdA1IdFdMKoXMvO74QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTlEOThFOENCQkFCRENERjdCMjIyREE1MDBGNUNERTYz RkYyREEwQzAeFw0yNjA2MzAxMDM4NDFaFw0yNjA3MDExMjI2NDFaMDMxMTAvBgNV BAMTKEJBQUZDRjg2RjJDOUQzRjAwRTFBNDE5M0Y0NDE4M0I1NjQwMzMwREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCgWD+dj71VFD1QMOT8oN+voALa PzE3924Bl6P24LCXlp/YLYiyOzuKYNuPponlNL2jZD8Eu50xPbVR94oWnTaW2Ktk zF0ktpSPO/bJO2F60HyB6M1XDX9ADeHOrT0R9FhJrI/WdABo8MbJb5mO2tTus7v1 3jcyBLJ96ffuZ+zpY+NrtY+itwKIaL3BE2/G2xUsNPjBSSfhn6jfR4SR2Z0G668R zNP1wvdJVUMvb9/M3DkuGz/d3di732nY0r9yZ8gfdGBcDHFByiO384Zzr7p10VIh v7z7AkjYqTsccSvAGhD6+qPJez3EOtW9yQgtBILK7n5iMdeeul237TriGSElAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUuq/PhvLJ0/AOGkGT9EGDtWQDMN0wHwYDVR0j BBgwFoAUWdmOjLur3N97Ii2lAPXN5j/y2gwwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSENDR19I Q0VCLzEvNTlEOThFOENCQkFCRENERjdCMjIyREE1MDBGNUNERTYzRkYyREEwQy5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMC81OUQ5OEU4Q0JCQUJEQ0RGN0IyMjJEQTUw MEY1Q0RFNjNGRjJEQTBDLmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSENDR19IQ0VCLzEvNTlEOThF OENCQkFCRENERjdCMjIyREE1MDBGNUNERTYzRkYyREEwQy5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAI/7 Y1NsshLOCyDLrxtmvYVRrKEzH1gQSghxVXw+pAk1PKWCI4E7ezccsbIVKkU4+jBL IxAhlzvFrhmCoofxBrfxv9PYnXDN4RK+l5GKE8MPInnmN8+BwjMYrZewrx3InCDW B9tkgCDR5snLA/u4G2BXGB9GTYsZ5rvNr298gwwFSM4QJU/A1F2vo5Scm6tFYxYj kwvjKWDjNBmQSiQbhTqrfUq691rQP9mw5XN4k+QudtQzuN3k1Dixb32Dtjl2nMSF WjW4jlNkl3tmbOxHPtCIx8JmjIFyy4ipGVmy6AVcre1tSAz8psL1Op91DrmHsiRM pYUcPG9DpYz+ilBiDBU= -----END CERTIFICATE-----Generated at Tue Jun 30 13:09:06 2026 by rpki-client