$ rpki-client -vvf rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.mft File: 41BEB65668E1649EDE9728E4FF48591FA0C582BA.mft (raw, json) Hash identifier: VaThfjeSdfHDkdHoc6NPWFtuuo+feIvvPHVQS5HAerM= Subject key identifier: 86:36:13:23:DC:7E:85:11:30:8C:4C:AD:0C:35:B1:B4:0D:9A:2C:89 Authority key identifier: 41:BE:B6:56:68:E1:64:9E:DE:97:28:E4:FF:48:59:1F:A0:C5:82:BA Certificate issuer: /CN=41BEB65668E1649EDE9728E4FF48591FA0C582BA Certificate serial: 65FD80C0ED0645B9F48EB28B19299612F1E2FB04 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/41BEB65668E1649EDE9728E4FF48591FA0C582BA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.mft Manifest number: 07 Signing time: Wed 13 May 2026 05:07:00 +0000 Manifest this update: Wed 13 May 2026 05:02:00 +0000 Manifest next update: Thu 14 May 2026 08:46:00 +0000 Files and hashes: 1: 3130332e3137332e39342e302f32342d3234203d3e2039393230.roa (hash: LLLHTnX1lDVfIT/USPcy8uRSK7AEjVy8r3OHlXaKRtA=) 2: 3130332e3137332e39352e302f32342d3234203d3e2039393230.roa (hash: GRWZ7hnM+/dWxb1R4FqblAJoXVc3WKwBr5Lvm8NY3Iw=) 3: 3130332e3137332e39342e302f32332d3234203d3e20313532363134.roa (hash: DFwmEzDSWwn1n/LKb3VnZN0eid9zGs6vXBGXUYxrvVE=) 4: 323430373a653463303a3a2f34382d3438203d3e20313532363134.roa (hash: vgzFcwGEYe/SuHzv/bradPPbtlCxt1g9+kfxNVcgqL0=) 5: 41BEB65668E1649EDE9728E4FF48591FA0C582BA.crl (hash: WsBXXCz/2ZLIUwmQWe8HayGj28vFxTIGf73XsFaNkEs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.crl rsync://rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/41BEB65668E1649EDE9728E4FF48591FA0C582BA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:46:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 65:fd:80:c0:ed:06:45:b9:f4:8e:b2:8b:19:29:96:12:f1:e2:fb:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=41BEB65668E1649EDE9728E4FF48591FA0C582BA Validity Not Before: May 13 05:02:00 2026 GMT Not After : May 14 08:46:00 2026 GMT Subject: CN=86361323DC7E8511308C4CAD0C35B1B40D9A2C89 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:b3:9d:6b:a4:e9:f1:a4:4e:17:f8:c1:d4:bf: 7e:35:35:7e:ee:4f:03:3e:0e:09:5e:a3:b3:6b:2b: f5:d7:50:2e:22:2a:63:0e:e5:cb:7b:4b:ef:c9:9b: 8d:3f:86:2b:b0:2b:4a:77:91:70:33:49:94:ef:ad: 69:68:d9:f4:60:b0:26:c0:a0:e1:ef:ce:5a:2a:ba: 38:9d:76:43:5f:65:7e:83:be:54:0b:78:3c:75:90: e2:02:e5:f2:df:86:45:12:f9:c8:86:d4:02:fa:8f: 20:c7:3c:7b:e3:de:7d:69:5a:05:e3:f3:5e:25:02: 19:3c:87:a8:ca:53:42:5a:e2:63:b0:53:c7:7e:43: 43:91:5a:89:de:bd:97:43:45:64:5f:80:b2:5e:60: fb:66:1f:77:a0:28:60:a6:34:6b:97:08:f4:d6:3d: af:93:ff:db:8a:57:86:19:47:e8:b9:fd:c7:29:cd: 39:d7:d6:d9:48:e5:39:8a:d8:d2:24:b1:f6:8a:e6: 7b:f2:e7:d7:3a:ef:6d:5c:4a:6e:31:c3:96:2c:19: c0:27:d0:d2:fc:a7:fa:f5:9c:78:f0:d3:3b:35:fb: bc:c1:53:77:d5:6c:9d:aa:43:d0:75:c8:22:ff:f3: 3e:f4:1d:08:3f:87:83:63:23:80:81:67:a0:a0:68: 17:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 86:36:13:23:DC:7E:85:11:30:8C:4C:AD:0C:35:B1:B4:0D:9A:2C:89 X509v3 Authority Key Identifier: keyid:41:BE:B6:56:68:E1:64:9E:DE:97:28:E4:FF:48:59:1F:A0:C5:82:BA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/41BEB65668E1649EDE9728E4FF48591FA0C582BA.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ISTVC/0/41BEB65668E1649EDE9728E4FF48591FA0C582BA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1b:9f:32:06:5f:60:fb:cc:f4:e4:52:6e:8e:d8:33:79:ac:84: c2:7b:20:6a:09:ea:25:6c:df:36:32:4b:63:7e:6c:3b:e7:73: 01:66:a2:d8:df:0b:a7:34:e5:51:0f:4b:e8:88:82:a6:0f:be: c1:9d:14:5e:a1:7a:58:17:d4:f2:f1:54:ef:ec:de:82:34:b9: bc:78:c1:29:87:49:44:3e:45:ff:7a:35:af:21:5c:24:5a:91: c5:e9:56:ce:ec:1a:4e:68:a0:bb:55:c5:30:d0:a3:79:a1:fc: 6e:2a:3f:a7:88:0d:5c:0f:c0:ee:77:66:89:7f:ea:59:ad:61: da:f8:c7:45:b9:ca:e1:87:ae:37:cf:69:c1:ed:af:48:4b:06: 9d:aa:e9:13:fa:68:e3:0f:ad:2e:d1:77:68:e4:cc:95:6a:42: cb:66:83:ab:3f:98:15:1e:fa:de:bd:69:24:70:0a:24:e3:36: 9a:23:31:de:30:fe:02:7a:bb:1b:1f:78:13:21:e3:1e:c9:b4: a8:9d:34:26:31:b4:ef:e5:6e:37:4e:91:e5:e7:54:0c:1f:e9: 0c:b3:4e:9d:3c:21:a3:0d:33:d3:fd:ff:ca:67:de:1b:19:31: d5:16:55:a2:49:38:70:0f:62:21:c6:dc:0a:d2:85:82:df:27: bf:11:1f:29 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUZf2AwO0GRbn0jrKLGSmWEvHi+wQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDFCRUI2NTY2OEUxNjQ5RURFOTcyOEU0RkY0ODU5MUZB MEM1ODJCQTAeFw0yNjA1MTMwNTAyMDBaFw0yNjA1MTQwODQ2MDBaMDMxMTAvBgNV BAMTKDg2MzYxMzIzREM3RTg1MTEzMDhDNENBRDBDMzVCMUI0MEQ5QTJDODkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHs51rpOnxpE4X+MHUv341NX7u TwM+Dgleo7NrK/XXUC4iKmMO5ct7S+/Jm40/hiuwK0p3kXAzSZTvrWlo2fRgsCbA oOHvzloqujiddkNfZX6DvlQLeDx1kOIC5fLfhkUS+ciG1AL6jyDHPHvj3n1pWgXj 814lAhk8h6jKU0Ja4mOwU8d+Q0ORWonevZdDRWRfgLJeYPtmH3egKGCmNGuXCPTW Pa+T/9uKV4YZR+i5/ccpzTnX1tlI5TmK2NIksfaK5nvy59c6721cSm4xw5YsGcAn 0NL8p/r1nHjw0zs1+7zBU3fVbJ2qQ9B1yCL/8z70HQg/h4NjI4CBZ6CgaBcxAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUhjYTI9x+hREwjEytDDWxtA2aLIkwHwYDVR0j BBgwFoAUQb62VmjhZJ7elyjk/0hZH6DFgrowDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSVNUVkMv MC80MUJFQjY1NjY4RTE2NDlFREU5NzI4RTRGRjQ4NTkxRkEwQzU4MkJBLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzQxQkVCNjU2NjhFMTY0OUVERTk3MjhFNEZGNDg1 OTFGQTBDNTgyQkEuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9JU1RWQy8wLzQxQkVCNjU2NjhFMTY0 OUVERTk3MjhFNEZGNDg1OTFGQTBDNTgyQkEubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAbnzIGX2D7zPTk Um6O2DN5rITCeyBqCeolbN82Mktjfmw753MBZqLY3wunNOVRD0voiIKmD77BnRRe oXpYF9Ty8VTv7N6CNLm8eMEph0lEPkX/ejWvIVwkWpHF6VbO7BpOaKC7VcUw0KN5 ofxuKj+niA1cD8Dud2aJf+pZrWHa+MdFucrhh643z2nB7a9ISwadqukT+mjjD60u 0Xdo5MyVakLLZoOrP5gVHvrevWkkcAok4zaaIzHeMP4CersbH3gTIeMeybSonTQm MbTv5W43TpHl51QMH+kMs06dPCGjDTPT/f/KZ94bGTHVFlWiSThwD2IhxtwK0oWC 3ye/ER8p -----END CERTIFICATE-----Generated at Wed May 13 20:34:00 2026 by rpki-client