$ rpki-client -vvf rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft File: A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft (raw, json) Hash identifier: 97UkZspKgO4JUsE7B/iNGh9ifqDdKWVpszTbfCzvZoQ= Subject key identifier: C2:34:24:12:9D:BF:74:FE:15:15:E3:FE:66:01:E6:B9:2F:1A:19:56 Authority key identifier: A7:82:7E:4E:53:BA:51:7B:BC:5C:79:8C:F0:D3:AF:87:03:75:C0:B0 Certificate issuer: /CN=A7827E4E53BA517BBC5C798CF0D3AF870375C0B0 Certificate serial: 0E69FA87E0873D0EA3787F40AF0AFF72655DF84B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft Manifest number: 0A Signing time: Wed 13 May 2026 06:27:21 +0000 Manifest this update: Wed 13 May 2026 06:22:21 +0000 Manifest next update: Thu 14 May 2026 09:35:21 +0000 Files and hashes: 1: A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl (hash: s9uiL8qswkie5RJAETT2ecLO+p1Bq2dEwtm8LzQy39c=) 2: 3130332e3137372e33322e302f32342d3234203d3e20323133363037.roa (hash: cQkjcrDW6Cw958N6gtJjxyd/adphXQyJjpPcfgZ5xG4=) 3: 3130332e3137372e33322e302f32342d3234203d3e20323134343332.roa (hash: 2YaoD0V9MTmYaytjBdN3g/2JltFPIOscJRsxuw7e/EQ=) 4: 3130332e3232372e3232342e302f32332d3234203d3e20313334383233.roa (hash: GuzN1ophfvX5EgHLKpJRkwlqpD4JGNW35OZ+ZCoqD78=) 5: 3130332e3137372e33322e302f32332d3234203d3e203338303432.roa (hash: xPDyINdFmufQbNbHGWy0zvLscglHenPHYxlwfT+v00s=) 6: 3130332e3232372e3232342e302f32332d3234203d3e20313438393936.roa (hash: Pe+GfCAU9CJUhyX0GcmCiKMiXy/uVxymKcKinAclsuQ=) 7: 3130332e3232372e3232352e302f32342d3234203d3e20313438393936.roa (hash: 3Fs3YXCHVhPim686QjSLVypvleRfB5cNa4r0sVni22s=) 8: 3130332e3232372e3232342e302f32342d3234203d3e20313438393936.roa (hash: qkqrj9/N2V1M+ri4JRAjh2Xtl5l0eXftPC6OL0jPaCQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:35:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:69:fa:87:e0:87:3d:0e:a3:78:7f:40:af:0a:ff:72:65:5d:f8:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7827E4E53BA517BBC5C798CF0D3AF870375C0B0 Validity Not Before: May 13 06:22:21 2026 GMT Not After : May 14 09:35:21 2026 GMT Subject: CN=C23424129DBF74FE1515E3FE6601E6B92F1A1956 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dd:fd:c9:78:7e:27:d5:74:3a:92:c9:38:24:e2: 69:41:9a:79:47:37:03:6b:ef:5a:e9:95:cb:a9:29: 84:73:a8:3c:8c:76:12:23:25:e0:1e:5a:0b:af:04: 3d:79:52:6e:f7:57:b5:07:4e:98:88:fb:b6:86:da: 0b:d7:91:0c:8c:a5:1b:cd:57:40:af:8f:3f:6a:ea: b9:b8:9c:52:47:03:50:1f:cb:18:d9:ab:e4:c5:ba: 9e:2d:cb:36:43:10:6d:bb:fa:19:92:d7:0e:d5:2b: 8d:99:24:3d:76:a6:56:b6:a6:ea:15:9d:4c:00:40: b2:53:8e:0b:00:d2:87:99:f6:8a:9a:e2:09:f1:ea: 2e:f8:8b:9e:62:fe:a1:34:8e:cd:81:53:72:40:f7: 95:88:e9:34:dc:5e:27:c7:55:75:70:6b:fd:aa:0d: cf:06:51:62:3a:d5:73:56:f5:7c:ee:4d:9c:65:15: fb:22:1b:ac:85:7f:4a:1f:a6:f2:c2:82:12:bd:93: e4:3e:ce:00:26:60:bc:83:04:89:b6:37:70:2b:03: 26:95:c8:27:51:67:6d:c4:75:19:95:9e:95:de:ba: 9a:fd:d6:8d:0e:fd:89:44:78:63:74:d4:3b:9d:43: c4:b5:61:16:61:0a:ff:2f:28:e5:9a:e5:a6:33:18: 9c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C2:34:24:12:9D:BF:74:FE:15:15:E3:FE:66:01:E6:B9:2F:1A:19:56 X509v3 Authority Key Identifier: keyid:A7:82:7E:4E:53:BA:51:7B:BC:5C:79:8C:F0:D3:AF:87:03:75:C0:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 08:b9:57:69:b5:2b:7e:e3:45:02:79:86:07:c4:fc:90:7e:03: 0b:53:eb:8b:9a:bb:af:60:93:c4:cb:8a:a6:15:59:17:37:aa: b2:91:56:8c:ff:e6:72:4e:82:35:47:fa:9c:70:13:6d:f6:f0: 00:11:6b:5e:67:24:63:96:c2:9f:43:f6:0f:e7:5f:f8:b3:25: da:9b:aa:3b:4f:c1:9f:cb:32:c6:ea:d6:86:fa:82:63:9f:df: f9:cb:83:93:6e:6a:03:d8:bd:37:9e:f1:65:45:10:0b:58:bf: 5a:b4:9c:82:97:57:e9:21:39:6d:41:0a:53:4e:31:3e:cc:3b: bd:e2:0f:37:06:e3:cb:06:97:cd:b9:9d:01:4d:1d:05:c1:a9: 9d:65:7f:53:7e:89:5d:11:14:0f:4b:47:59:9f:8a:ea:7d:b4: 1f:de:fa:0c:40:eb:36:66:57:a9:75:fc:af:6d:12:59:4e:c3: db:fc:d8:a7:2d:fe:80:6b:91:2b:dc:5b:ab:15:b3:e8:79:4a: 6d:65:09:cd:66:6d:c0:62:1d:25:cf:10:1a:02:ba:9f:f2:55: b9:94:33:39:5d:14:00:a8:28:4e:96:b2:fa:77:b6:a4:9c:f9: 33:b0:3f:67:4e:89:de:dc:81:05:de:ec:c7:ef:db:3f:5f:bc: 53:50:f1:bf -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUDmn6h+CHPQ6jeH9Arwr/cmVd+EswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc4MjdFNEU1M0JBNTE3QkJDNUM3OThDRjBEM0FGODcw Mzc1QzBCMDAeFw0yNjA1MTMwNjIyMjFaFw0yNjA1MTQwOTM1MjFaMDMxMTAvBgNV BAMTKEMyMzQyNDEyOURCRjc0RkUxNTE1RTNGRTY2MDFFNkI5MkYxQTE5NTYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDd/cl4fifVdDqSyTgk4mlBmnlH NwNr71rplcupKYRzqDyMdhIjJeAeWguvBD15Um73V7UHTpiI+7aG2gvXkQyMpRvN V0Cvjz9q6rm4nFJHA1AfyxjZq+TFup4tyzZDEG27+hmS1w7VK42ZJD12pla2puoV nUwAQLJTjgsA0oeZ9oqa4gnx6i74i55i/qE0js2BU3JA95WI6TTcXifHVXVwa/2q Dc8GUWI61XNW9XzuTZxlFfsiG6yFf0ofpvLCghK9k+Q+zgAmYLyDBIm2N3ArAyaV yCdRZ23EdRmVnpXeupr91o0O/YlEeGN01DudQ8S1YRZhCv8vKOWa5aYzGJyxAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUwjQkEp2/dP4VFeP+ZgHmuS8aGVYwHwYDVR0j BBgwFoAUp4J+TlO6UXu8XHmM8NOvhwN1wLAwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSU1DUlMv MC9BNzgyN0U0RTUzQkE1MTdCQkM1Qzc5OENGMEQzQUY4NzAzNzVDMEIwLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0E3ODI3RTRFNTNCQTUxN0JCQzVDNzk4Q0YwRDNB Rjg3MDM3NUMwQjAuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9JTUNSUy8wL0E3ODI3RTRFNTNCQTUx N0JCQzVDNzk4Q0YwRDNBRjg3MDM3NUMwQjAubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAIuVdptSt+40UC eYYHxPyQfgMLU+uLmruvYJPEy4qmFVkXN6qykVaM/+ZyToI1R/qccBNt9vAAEWte ZyRjlsKfQ/YP51/4syXam6o7T8GfyzLG6taG+oJjn9/5y4OTbmoD2L03nvFlRRAL WL9atJyCl1fpITltQQpTTjE+zDu94g83BuPLBpfNuZ0BTR0FwamdZX9TfoldERQP S0dZn4rqfbQf3voMQOs2ZlepdfyvbRJZTsPb/NinLf6Aa5Er3FurFbPoeUptZQnN Zm3AYh0lzxAaArqf8lW5lDM5XRQAqChOlrL6d7aknPkzsD9nTone3IEF3uzH79s/ X7xTUPG/ -----END CERTIFICATE-----Generated at Wed May 13 20:36:11 2026 by rpki-client