$ rpki-client -vvf rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft File: 35C866BE000DEAB870C97BED72D0A7807B829E4D.mft (raw, json) Hash identifier: QVlJi0LVeNfAITke2YoGRt/XcMAVvNiqAbs/yI8fruU= Subject key identifier: F3:F8:AA:B3:A7:E7:C0:61:61:97:08:D8:F9:05:2B:84:EA:AE:77:F5 Authority key identifier: 35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D Certificate issuer: /CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Certificate serial: 664F7ADCE791293F22EA17E4D3A3A3CE401A2030 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft Manifest number: 07 Signing time: Wed 13 May 2026 07:42:40 +0000 Manifest this update: Wed 13 May 2026 07:37:40 +0000 Manifest next update: Thu 14 May 2026 10:06:40 +0000 Files and hashes: 1: 3130332e3135322e3232302e302f32332d3234203d3e20313338393937.roa (hash: J/22PWUGVzLaEIWqIEkco35k7PiKuvioKGMBglelLtk=) 2: 35C866BE000DEAB870C97BED72D0A7807B829E4D.crl (hash: hGTvUk6ufttr8ZTjMxQtryo6b/nsZ/XD6J/j2IX9bhU=) 3: 323430363a326663303a3a2f33322d3332203d3e20313334383233.roa (hash: T6rxUJGmT1hptwoFyjautezkOkglfrNk05IrJlVztRE=) 4: 3232332e32362e342e302f32332d3234203d3e20313532313739.roa (hash: 1KuxfqT20KEMU13K1PoNgkxwUh6tXjO/u8vuBPBbPvM=) 5: 3230322e3134382e3231302e302f32332d3234203d3e20313532313739.roa (hash: w66ZmETlDQxyi38rji0gzk1176tFqIfyztFJ3VNSIbg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:06:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 66:4f:7a:dc:e7:91:29:3f:22:ea:17:e4:d3:a3:a3:ce:40:1a:20:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Validity Not Before: May 13 07:37:40 2026 GMT Not After : May 14 10:06:40 2026 GMT Subject: CN=F3F8AAB3A7E7C061619708D8F9052B84EAAE77F5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:5e:82:9f:02:86:d8:0a:6b:79:e7:27:f0:15: 1c:18:cd:a8:1b:10:0b:df:93:7e:46:b3:e5:cc:f4: e3:bd:b4:95:d3:3c:fb:9a:d7:f2:aa:5d:16:fc:c0: 36:ac:2d:40:5a:93:1b:32:f6:a1:99:1c:a9:45:f3: 4e:c6:75:0b:66:03:3a:55:57:4e:30:8e:dc:19:93: b2:22:64:e7:19:8f:6d:c2:9b:32:8d:1d:dd:ef:9b: 94:f0:8a:d0:a5:62:2f:74:67:40:04:81:79:43:89: 76:23:0c:98:3f:dd:2d:8c:61:c5:8d:ab:4f:5b:d6: 2a:47:d6:53:a5:a5:59:f0:f6:9e:66:c4:67:bc:82: 48:a6:30:26:54:10:05:29:b8:01:05:ff:98:5c:c9: 31:0c:f2:26:49:53:de:69:5a:81:4e:8c:66:95:5b: b3:a2:f6:2d:03:ba:da:bb:60:5f:6e:62:dd:c5:61: 1c:70:51:e4:b5:25:d1:cd:1c:7c:41:9e:7d:c9:7f: dd:3e:ed:62:18:fe:a4:4d:84:52:9a:cb:1d:29:75: 1f:8b:ef:fe:85:78:b7:3b:ad:03:a5:35:5d:26:35: d6:9f:6d:32:aa:83:9c:9c:4c:0c:c4:e3:47:49:3e: f3:2f:b3:f1:39:c4:6d:ac:f1:61:67:ed:67:3f:48: 45:c5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:F8:AA:B3:A7:E7:C0:61:61:97:08:D8:F9:05:2B:84:EA:AE:77:F5 X509v3 Authority Key Identifier: keyid:35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7c:4c:61:5f:f0:88:c9:47:40:ec:cc:b8:a9:c2:2c:3d:11:3b: 10:d5:23:7b:f5:a5:20:dc:b6:19:ec:17:97:2f:a2:61:3a:64: 63:4e:9a:0e:f6:ab:4c:25:c8:7d:6f:ef:9f:cf:ec:32:cf:ab: 2c:b3:54:4e:38:4b:15:fd:0f:8f:14:38:2a:df:db:21:90:b4: 0d:ac:cb:84:df:d2:c5:0b:fa:c3:41:82:51:64:b0:c7:ce:6f: e4:0b:3d:47:e0:ce:79:3d:fa:28:c9:de:28:3e:3d:62:fa:15: 16:07:2f:9c:b9:9c:5e:77:33:ad:a1:9f:98:53:67:e8:d3:92: 0e:ce:d2:0c:83:53:d4:85:c5:65:2d:ee:dd:2c:8d:40:f1:72: fd:b3:1e:01:dd:1b:0c:72:aa:f8:8e:91:d8:2e:89:02:aa:b9: 93:b9:30:ad:11:1d:28:1c:bf:08:d2:28:3e:a4:ba:bd:2d:2a: 13:41:09:03:ff:17:a9:a6:6b:a5:f5:a0:32:e7:a1:cb:c5:63: 57:7a:a7:88:10:86:6f:cb:40:3f:c7:73:8b:91:9b:fe:d7:a1: 5e:92:30:75:40:09:d4:5d:66:8a:f9:12:6b:96:23:6e:19:84: 3d:36:8c:51:9f:d0:29:df:7d:02:36:3f:b1:b8:e4:d6:3d:c5: 01:e7:37:05 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUZk963OeRKT8i6hfk06OjzkAaIDAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3 QjgyOUU0RDAeFw0yNjA1MTMwNzM3NDBaFw0yNjA1MTQxMDA2NDBaMDMxMTAvBgNV BAMTKEYzRjhBQUIzQTdFN0MwNjE2MTk3MDhEOEY5MDUyQjg0RUFBRTc3RjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjXoKfAobYCmt55yfwFRwYzagb EAvfk35Gs+XM9OO9tJXTPPua1/KqXRb8wDasLUBakxsy9qGZHKlF807GdQtmAzpV V04wjtwZk7IiZOcZj23CmzKNHd3vm5TwitClYi90Z0AEgXlDiXYjDJg/3S2MYcWN q09b1ipH1lOlpVnw9p5mxGe8gkimMCZUEAUpuAEF/5hcyTEM8iZJU95pWoFOjGaV W7Oi9i0Dutq7YF9uYt3FYRxwUeS1JdHNHHxBnn3Jf90+7WIY/qRNhFKayx0pdR+L 7/6FeLc7rQOlNV0mNdafbTKqg5ycTAzE40dJPvMvs/E5xG2s8WFn7Wc/SEXFAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQU8/iqs6fnwGFhlwjY+QUrhOqud/UwHwYDVR0j BBgwFoAUNchmvgAN6rhwyXvtctCngHuCnk0wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAv MzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3QjgyOUU0RC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8zNUM4NjZCRTAwMERFQUI4NzBDOTdCRUQ3MkQwQTc4 MDdCODI5RTRELmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAvMzVDODY2QkUwMDBERUFCODcw Qzk3QkVENzJEMEE3ODA3QjgyOUU0RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAHxMYV/wiMlHQOzMuKnC LD0ROxDVI3v1pSDcthnsF5cvomE6ZGNOmg72q0wlyH1v75/P7DLPqyyzVE44SxX9 D48UOCrf2yGQtA2sy4Tf0sUL+sNBglFksMfOb+QLPUfgznk9+ijJ3ig+PWL6FRYH L5y5nF53M62hn5hTZ+jTkg7O0gyDU9SFxWUt7t0sjUDxcv2zHgHdGwxyqviOkdgu iQKquZO5MK0RHSgcvwjSKD6kur0tKhNBCQP/F6mma6X1oDLnocvFY1d6p4gQhm/L QD/Hc4uRm/7XoV6SMHVACdRdZor5EmuWI24ZhD02jFGf0CnffQI2P7G45NY9xQHn NwU= -----END CERTIFICATE-----Generated at Wed May 13 20:36:34 2026 by rpki-client