$ rpki-client -vvf rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft File: 35C866BE000DEAB870C97BED72D0A7807B829E4D.mft (raw, json) Hash identifier: t1g8IKTW1ar4gUt9Txl7qeWEHbBrF8OhjSikLVGmI8k= Subject key identifier: B7:B5:F5:12:B3:39:9B:65:EB:72:A3:E8:D5:F4:06:ED:71:85:60:54 Authority key identifier: 35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D Certificate issuer: /CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Certificate serial: 3F992524788A6238DB85CFCE146FF26F1E8D52C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft Manifest number: 47 Signing time: Tue 30 Jun 2026 12:53:56 +0000 Manifest this update: Tue 30 Jun 2026 12:48:56 +0000 Manifest next update: Wed 01 Jul 2026 15:12:56 +0000 Files and hashes: 1: 3232332e32362e342e302f32332d3234203d3e20313532313739.roa (hash: 1KuxfqT20KEMU13K1PoNgkxwUh6tXjO/u8vuBPBbPvM=) 2: 323430363a326663303a3a2f33322d3332203d3e20313334383233.roa (hash: T6rxUJGmT1hptwoFyjautezkOkglfrNk05IrJlVztRE=) 3: 3230322e3134382e3231302e302f32332d3234203d3e20313532313739.roa (hash: w66ZmETlDQxyi38rji0gzk1176tFqIfyztFJ3VNSIbg=) 4: 35C866BE000DEAB870C97BED72D0A7807B829E4D.crl (hash: 8v72zQDWvqhpBGEp4BYJZjz0dT6zJYOaR1ThIupbdU8=) 5: 3130332e3135322e3232302e302f32332d3234203d3e20313338393937.roa (hash: J/22PWUGVzLaEIWqIEkco35k7PiKuvioKGMBglelLtk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 14:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3f:99:25:24:78:8a:62:38:db:85:cf:ce:14:6f:f2:6f:1e:8d:52:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Validity Not Before: Jun 30 12:48:56 2026 GMT Not After : Jul 1 15:12:56 2026 GMT Subject: CN=B7B5F512B3399B65EB72A3E8D5F406ED71856054 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:4f:68:54:7d:37:fb:26:ef:6e:02:17:8b:ed: f4:3e:93:44:66:7f:bd:b6:d3:7d:5d:90:09:18:da: 79:60:f6:8d:a2:f9:69:b4:8d:f0:7d:c9:ce:b1:2e: 4b:a4:03:ac:c5:17:3d:bf:23:d9:c1:29:86:34:9f: 2f:bd:3e:af:8a:8a:3f:00:8f:a5:a3:3b:55:71:18: 07:ee:13:98:9f:06:99:1b:c3:16:9f:58:9a:f5:2e: e0:3d:fc:55:6b:ce:1a:12:b9:f8:ba:0f:0a:8a:76: 71:2c:c9:c7:ce:70:88:e5:5a:ea:7b:73:d0:9a:a5: 7d:4a:a4:9a:2a:05:bb:34:b9:0c:f8:46:5a:03:11: 6e:c4:df:37:c3:c3:64:01:51:2b:51:ab:5d:11:46: 81:e3:98:49:e7:c8:5e:80:4b:bc:d7:6f:e8:32:0b: 7a:d0:2c:23:0f:47:91:f4:b7:2a:78:18:ba:01:69: 4e:d5:ea:6d:48:39:39:a0:98:dd:1a:33:fd:59:43: d9:66:60:6d:a1:e5:47:d4:a2:75:94:01:18:7c:26: 67:85:b3:c0:4b:d0:da:2c:06:fe:2e:73:d7:b8:8a: a8:28:5d:c3:8e:c3:7d:de:fe:ab:81:8d:f3:56:6c: 1d:23:de:b1:55:dc:37:c7:b8:68:9c:72:58:d1:b5: ef:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:B5:F5:12:B3:39:9B:65:EB:72:A3:E8:D5:F4:06:ED:71:85:60:54 X509v3 Authority Key Identifier: keyid:35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:ca:b7:68:42:78:d2:2a:44:d3:db:52:02:6e:57:65:63:20: ef:a1:93:92:8a:6b:6c:65:db:db:e1:62:1c:24:88:f5:69:99: 8b:08:2b:47:3c:53:40:c1:fb:70:a2:c4:47:28:52:73:e0:83: cd:51:08:b3:47:e3:9d:eb:13:3c:9e:81:16:0b:d0:78:4e:55: 62:8c:4f:7c:75:95:5f:8c:4c:ed:85:6c:97:b2:d6:57:54:73: 97:da:74:91:63:c0:4e:cc:b3:c3:bf:60:ce:8d:89:07:b3:a6: af:ae:05:c1:7a:2a:01:26:e0:24:a8:2c:fc:90:a2:d4:b6:11: 02:aa:fa:d7:db:59:b4:dc:24:7d:8a:ee:30:10:b8:b6:aa:29: 66:db:d9:d3:55:77:1c:7a:c8:5e:c7:c1:29:19:06:a4:6a:7f: 0d:08:1f:e4:91:bd:7b:5f:e8:1a:7a:cc:16:71:ba:22:63:0d: c5:a5:fe:27:a2:a6:77:6e:23:af:d6:05:e7:2b:d4:e9:45:3c: 6e:60:66:5d:fa:56:d1:06:e8:79:f8:ef:88:02:c3:9f:94:de: 06:6b:dc:4d:41:3c:a3:f2:c3:b5:da:ee:36:a4:2d:09:66:a3: 01:3a:5e:f5:b9:42:a1:12:6d:2e:1c:c7:85:bf:a2:1c:27:83: 39:37:d6:e6 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUP5klJHiKYjjbhc/OFG/ybx6NUsMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3 QjgyOUU0RDAeFw0yNjA2MzAxMjQ4NTZaFw0yNjA3MDExNTEyNTZaMDMxMTAvBgNV BAMTKEI3QjVGNTEyQjMzOTlCNjVFQjcyQTNFOEQ1RjQwNkVENzE4NTYwNTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC4T2hUfTf7Ju9uAheL7fQ+k0Rm f722031dkAkY2nlg9o2i+Wm0jfB9yc6xLkukA6zFFz2/I9nBKYY0ny+9Pq+Kij8A j6WjO1VxGAfuE5ifBpkbwxafWJr1LuA9/FVrzhoSufi6DwqKdnEsycfOcIjlWup7 c9CapX1KpJoqBbs0uQz4RloDEW7E3zfDw2QBUStRq10RRoHjmEnnyF6AS7zXb+gy C3rQLCMPR5H0typ4GLoBaU7V6m1IOTmgmN0aM/1ZQ9lmYG2h5UfUonWUARh8JmeF s8BL0NosBv4uc9e4iqgoXcOOw33e/quBjfNWbB0j3rFV3DfHuGiccljRte8hAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUt7X1ErM5m2XrcqPo1fQG7XGFYFQwHwYDVR0j BBgwFoAUNchmvgAN6rhwyXvtctCngHuCnk0wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAv MzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3QjgyOUU0RC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8zNUM4NjZCRTAwMERFQUI4NzBDOTdCRUQ3MkQwQTc4 MDdCODI5RTRELmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAvMzVDODY2QkUwMDBERUFCODcw Qzk3QkVENzJEMEE3ODA3QjgyOUU0RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAC/Kt2hCeNIqRNPbUgJu V2VjIO+hk5KKa2xl29vhYhwkiPVpmYsIK0c8U0DB+3CixEcoUnPgg81RCLNH453r EzyegRYL0HhOVWKMT3x1lV+MTO2FbJey1ldUc5fadJFjwE7Ms8O/YM6NiQezpq+u BcF6KgEm4CSoLPyQotS2EQKq+tfbWbTcJH2K7jAQuLaqKWbb2dNVdxx6yF7HwSkZ BqRqfw0IH+SRvXtf6Bp6zBZxuiJjDcWl/ieipnduI6/WBecr1OlFPG5gZl36VtEG 6Hn474gCw5+U3gZr3E1BPKPyw7Xa7jakLQlmowE6XvW5QqESbS4cx4W/ohwngzk3 1uY= -----END CERTIFICATE-----Generated at Tue Jun 30 19:10:35 2026 by rpki-client