$ rpki-client -vvf rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft File: A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft (raw, json) Hash identifier: DtUH0P95u7r1JOkBTLN/3+Mdslr612JGNGyhCwJFxYY= Subject key identifier: 1A:C2:B1:7B:C2:88:1E:7F:39:D7:13:93:0B:F0:23:A9:9D:58:7F:A4 Authority key identifier: A7:82:7E:4E:53:BA:51:7B:BC:5C:79:8C:F0:D3:AF:87:03:75:C0:B0 Certificate issuer: /CN=A7827E4E53BA517BBC5C798CF0D3AF870375C0B0 Certificate serial: 4B9B59E036B501683EC0DB579C0E0CBB7E9A9CF2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft Manifest number: 4A Signing time: Tue 30 Jun 2026 01:52:51 +0000 Manifest this update: Tue 30 Jun 2026 01:47:51 +0000 Manifest next update: Wed 01 Jul 2026 04:05:51 +0000 Files and hashes: 1: A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl (hash: MJXSNgtM21oQhDYAmqPpt+1QGs2tPz1gy6EySiXys1U=) 2: 3130332e3137372e33322e302f32332d3234203d3e203338303432.roa (hash: xPDyINdFmufQbNbHGWy0zvLscglHenPHYxlwfT+v00s=) 3: 3130332e3137372e33322e302f32342d3234203d3e20323133363037.roa (hash: cQkjcrDW6Cw958N6gtJjxyd/adphXQyJjpPcfgZ5xG4=) 4: 3130332e3232372e3232342e302f32332d3234203d3e20313334383233.roa (hash: GuzN1ophfvX5EgHLKpJRkwlqpD4JGNW35OZ+ZCoqD78=) 5: 3130332e3232372e3232342e302f32332d3234203d3e20313438393936.roa (hash: Pe+GfCAU9CJUhyX0GcmCiKMiXy/uVxymKcKinAclsuQ=) 6: 3130332e3232372e3232342e302f32342d3234203d3e20313438393936.roa (hash: qkqrj9/N2V1M+ri4JRAjh2Xtl5l0eXftPC6OL0jPaCQ=) 7: 3130332e3137372e33322e302f32342d3234203d3e20323134343332.roa (hash: 2YaoD0V9MTmYaytjBdN3g/2JltFPIOscJRsxuw7e/EQ=) 8: 3130332e3232372e3232352e302f32342d3234203d3e20313438393936.roa (hash: 3Fs3YXCHVhPim686QjSLVypvleRfB5cNa4r0sVni22s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 04:05:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4b:9b:59:e0:36:b5:01:68:3e:c0:db:57:9c:0e:0c:bb:7e:9a:9c:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7827E4E53BA517BBC5C798CF0D3AF870375C0B0 Validity Not Before: Jun 30 01:47:51 2026 GMT Not After : Jul 1 04:05:51 2026 GMT Subject: CN=1AC2B17BC2881E7F39D713930BF023A99D587FA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:2b:cd:59:df:ea:a9:7e:46:07:a8:b9:b5:92: 55:6b:54:91:5e:23:47:3d:20:53:22:8f:cb:a0:eb: 0b:b3:9e:1e:53:d8:30:c7:ac:dc:e0:45:4a:5e:56: 1a:5f:7a:c9:2f:54:0f:63:51:a0:01:2f:f7:52:27: 65:33:36:c4:f4:e4:81:19:00:96:2f:29:15:df:01: d7:06:25:fe:42:f2:01:80:9a:7a:1b:74:fb:3d:08: 29:fe:28:a1:9f:87:80:e6:3b:d9:96:85:ba:57:40: 7b:c8:66:1d:5d:0e:df:f1:37:99:d7:34:67:50:cd: ce:f0:52:b3:c8:2c:29:48:17:2c:66:3d:b5:55:03: fd:5c:b0:ac:17:8c:50:ef:95:90:08:3b:78:34:5f: 24:91:06:f8:4e:56:7c:ad:4d:8d:5a:a5:20:b1:56: cc:0a:bd:f1:8c:91:17:80:55:31:08:8b:dd:bc:0b: 97:44:a4:94:c7:07:ea:c6:47:24:45:01:15:80:4f: 32:f2:d1:57:bf:40:10:c4:e5:c1:6f:a0:c8:1c:48: 2b:cc:1c:20:b4:4f:8e:28:d0:7a:73:71:61:28:9e: e2:6a:89:11:7f:98:af:e8:17:91:27:b7:a8:fb:00: d5:ae:3f:6e:08:ef:c2:89:14:08:af:a5:6a:c9:39: 1e:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1A:C2:B1:7B:C2:88:1E:7F:39:D7:13:93:0B:F0:23:A9:9D:58:7F:A4 X509v3 Authority Key Identifier: keyid:A7:82:7E:4E:53:BA:51:7B:BC:5C:79:8C:F0:D3:AF:87:03:75:C0:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 13:4c:03:95:3d:ff:95:fa:0a:d0:8c:b7:90:a3:fa:57:ed:63: 9b:55:47:e5:9c:76:97:10:f8:be:47:3c:2e:a5:b1:e6:4d:d3: da:1e:b4:4d:b6:7d:19:ef:c0:a2:6a:6e:ba:dd:92:05:00:1d: ce:64:0a:a3:a0:7c:af:01:19:6d:f3:a3:67:54:92:9c:26:e3: 10:ac:a7:4a:85:b8:46:13:0a:29:71:f4:ce:43:9f:7d:b5:e8: 9d:7a:5f:a7:ab:1a:08:a7:a4:e5:d6:79:e3:d5:c9:92:88:6c: 99:d6:92:d3:87:42:76:ff:ab:0a:68:64:f7:e3:96:6d:82:56: 28:00:96:0a:c0:37:c7:1f:5c:eb:cb:05:85:69:97:a2:8e:3f: f5:8a:45:77:08:a5:1d:10:f5:fd:76:36:c7:c0:a1:a3:88:1e: b1:dd:d4:fa:3f:32:5b:e6:6f:ec:ff:fb:09:ae:d9:15:3e:74: 7b:fb:2c:b6:49:96:13:71:6a:c8:11:21:20:eb:3c:84:5d:c5: 97:04:fe:85:a1:30:49:87:61:d9:ce:b5:78:fb:b6:1b:61:2e: 88:c6:42:0f:7d:b4:c0:32:ff:9c:d7:13:88:27:5e:c9:60:ab: 8f:e2:04:2c:b0:ce:22:f3:95:24:3e:53:60:fa:ed:c4:ab:d3: fb:4d:5c:3c -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUS5tZ4Da1AWg+wNtXnA4Mu36anPIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc4MjdFNEU1M0JBNTE3QkJDNUM3OThDRjBEM0FGODcw Mzc1QzBCMDAeFw0yNjA2MzAwMTQ3NTFaFw0yNjA3MDEwNDA1NTFaMDMxMTAvBgNV BAMTKDFBQzJCMTdCQzI4ODFFN0YzOUQ3MTM5MzBCRjAyM0E5OUQ1ODdGQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDYK81Z3+qpfkYHqLm1klVrVJFe I0c9IFMij8ug6wuznh5T2DDHrNzgRUpeVhpfeskvVA9jUaABL/dSJ2UzNsT05IEZ AJYvKRXfAdcGJf5C8gGAmnobdPs9CCn+KKGfh4DmO9mWhbpXQHvIZh1dDt/xN5nX NGdQzc7wUrPILClIFyxmPbVVA/1csKwXjFDvlZAIO3g0XySRBvhOVnytTY1apSCx VswKvfGMkReAVTEIi928C5dEpJTHB+rGRyRFARWATzLy0Ve/QBDE5cFvoMgcSCvM HCC0T44o0HpzcWEonuJqiRF/mK/oF5Ent6j7ANWuP24I78KJFAivpWrJOR5jAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUGsKxe8KIHn851xOTC/AjqZ1Yf6QwHwYDVR0j BBgwFoAUp4J+TlO6UXu8XHmM8NOvhwN1wLAwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSU1DUlMv MC9BNzgyN0U0RTUzQkE1MTdCQkM1Qzc5OENGMEQzQUY4NzAzNzVDMEIwLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0E3ODI3RTRFNTNCQTUxN0JCQzVDNzk4Q0YwRDNB Rjg3MDM3NUMwQjAuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9JTUNSUy8wL0E3ODI3RTRFNTNCQTUx N0JCQzVDNzk4Q0YwRDNBRjg3MDM3NUMwQjAubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQATTAOVPf+V+grQ jLeQo/pX7WObVUflnHaXEPi+RzwupbHmTdPaHrRNtn0Z78Ciam663ZIFAB3OZAqj oHyvARlt86NnVJKcJuMQrKdKhbhGEwopcfTOQ599teidel+nqxoIp6Tl1nnj1cmS iGyZ1pLTh0J2/6sKaGT345ZtglYoAJYKwDfHH1zrywWFaZeijj/1ikV3CKUdEPX9 djbHwKGjiB6x3dT6PzJb5m/s//sJrtkVPnR7+yy2SZYTcWrIESEg6zyEXcWXBP6F oTBJh2HZzrV4+7YbYS6IxkIPfbTAMv+c1xOIJ17JYKuP4gQssM4i85UkPlNg+u3E q9P7TVw8 -----END CERTIFICATE-----Generated at Tue Jun 30 19:10:08 2026 by rpki-client