$ rpki-client -vvf rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.mft File: 3E0842CB09173FD62797099AF95D837AFF05C8C1.mft (raw, json) Hash identifier: TAiayYtUhYaiYiZhM2XVWXnDBVmaIVDR92qYreg8qo0= Subject key identifier: 3D:07:0D:5F:1D:AC:64:BB:1A:A1:1B:91:15:70:16:AD:10:5F:94:92 Authority key identifier: 3E:08:42:CB:09:17:3F:D6:27:97:09:9A:F9:5D:83:7A:FF:05:C8:C1 Certificate issuer: /CN=3E0842CB09173FD62797099AF95D837AFF05C8C1 Certificate serial: 3006DB8B4D33D89A0BE50E4736380F7939E8897B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0842CB09173FD62797099AF95D837AFF05C8C1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.mft Manifest number: 47 Signing time: Tue 30 Jun 2026 11:53:49 +0000 Manifest this update: Tue 30 Jun 2026 11:48:49 +0000 Manifest next update: Wed 01 Jul 2026 14:30:49 +0000 Files and hashes: 1: 323430313a353565303a3a2f33322d3332203d3e203138303431.roa (hash: qBti13dNoJJvS8VN2rEdP5+tGcjEGWujArPyCZdW53g=) 2: 3E0842CB09173FD62797099AF95D837AFF05C8C1.crl (hash: e4ERnoNyVxOPXthpX5a3FobRAnBHM2ogoMlbg5ijeK8=) 3: 3231302e37392e3135342e302f32332d3234203d3e203338313336.roa (hash: dBOQT7bQagPeeSG1nSOxtcaQ3wS6JFXvLy9ydXd5jHY=) 4: 3231302e37392e3135342e302f32332d3234203d3e203138303431.roa (hash: 6gHJfiK63fKOqTCfE1ImEP6HSow+veqBLLBJ8NhAMVM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.crl rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0842CB09173FD62797099AF95D837AFF05C8C1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 14:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 30:06:db:8b:4d:33:d8:9a:0b:e5:0e:47:36:38:0f:79:39:e8:89:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0842CB09173FD62797099AF95D837AFF05C8C1 Validity Not Before: Jun 30 11:48:49 2026 GMT Not After : Jul 1 14:30:49 2026 GMT Subject: CN=3D070D5F1DAC64BB1AA11B91157016AD105F9492 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:3d:37:23:f1:9b:db:68:c4:24:64:fe:3f:77: 88:21:3c:f7:3c:30:59:84:c9:ec:01:82:cf:ce:5b: ec:35:69:f6:99:82:5f:5a:67:04:88:f3:5d:8f:1c: 7f:6e:a4:4e:56:80:20:91:4c:fe:86:2d:8c:2e:10: 48:d4:bc:cc:3e:c2:c6:68:a0:4c:14:29:b0:b6:dc: 5e:5d:51:5c:4a:32:16:fd:5e:3a:c4:4c:57:69:14: f1:52:d3:78:ed:d6:6f:36:49:28:a6:6c:03:3a:55: 4a:f6:09:09:e8:05:17:9c:0e:b6:fe:fe:c0:21:d9: da:b3:d5:c2:e3:5b:72:e4:5c:3d:c8:7b:dc:e4:a0: 7e:21:63:9c:c6:5e:6d:09:46:8f:e9:ac:7c:fb:fe: 6d:15:90:58:f1:33:58:36:98:e1:bf:ed:80:c8:19: 4a:d1:ea:c3:20:50:b3:52:d2:f5:d5:1e:72:de:17: c7:aa:71:4e:ad:e2:8e:8c:7b:4b:c4:a0:28:2d:82: 0d:a6:35:96:32:4e:dc:5a:a0:f2:3c:76:57:be:b6: 3c:59:a9:7a:10:b3:50:0e:de:4e:40:b6:8e:9e:9f: 5b:d1:6a:b7:d0:0a:6d:22:20:d5:96:c7:fa:e8:0e: fb:1a:15:64:5f:24:a2:33:b3:94:d4:bc:26:cf:f6: b7:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:07:0D:5F:1D:AC:64:BB:1A:A1:1B:91:15:70:16:AD:10:5F:94:92 X509v3 Authority Key Identifier: keyid:3E:08:42:CB:09:17:3F:D6:27:97:09:9A:F9:5D:83:7A:FF:05:C8:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0842CB09173FD62797099AF95D837AFF05C8C1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/JDA/0/3E0842CB09173FD62797099AF95D837AFF05C8C1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:27:fc:30:4d:07:e7:03:ce:ec:37:de:a8:cf:5a:fe:26:16: fc:3e:8d:64:1b:b9:92:cc:c4:6e:41:e2:3a:a9:70:89:9e:00: df:98:86:08:4d:02:ce:85:af:b4:fb:49:b7:e3:55:46:1e:ed: 9a:05:04:94:d2:a7:58:b4:ad:d2:1c:7f:5f:0a:a8:b3:d0:75: dd:74:6a:32:36:f7:35:cc:d9:0e:34:92:34:82:b5:50:58:97: 1d:29:14:54:47:3f:b6:03:7f:4e:a6:42:32:82:7b:e3:dc:d3: 87:72:58:1e:1d:aa:a1:02:1b:e9:f6:b9:0c:5e:5a:51:81:1f: 97:72:67:18:7e:45:09:1f:c1:e3:61:1c:d9:8c:80:48:d7:d6: 71:c3:7a:18:8c:cf:24:a0:1b:55:e2:c7:d3:f0:68:64:cb:f1: a6:06:eb:d7:79:fd:aa:51:39:55:c3:8b:34:7b:13:34:09:d9: 61:6f:10:0b:e9:2f:83:4a:39:aa:81:2c:19:92:15:17:31:36: cc:17:15:f6:c5:84:fb:e2:ab:96:e6:4b:eb:b9:eb:85:f7:50: 43:c6:93:7e:c7:6f:c6:9c:60:f6:40:e5:ed:7d:2a:52:78:08: 43:9d:fa:b7:68:f3:0b:d4:ff:3b:9a:76:29:b2:7f:82:81:29: e0:9f:f2:71 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUMAbbi00z2JoL5Q5HNjgPeTnoiXswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwODQyQ0IwOTE3M0ZENjI3OTcwOTlBRjk1RDgzN0FG RjA1QzhDMTAeFw0yNjA2MzAxMTQ4NDlaFw0yNjA3MDExNDMwNDlaMDMxMTAvBgNV BAMTKDNEMDcwRDVGMURBQzY0QkIxQUExMUI5MTE1NzAxNkFEMTA1Rjk0OTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCuPTcj8ZvbaMQkZP4/d4ghPPc8 MFmEyewBgs/OW+w1afaZgl9aZwSI812PHH9upE5WgCCRTP6GLYwuEEjUvMw+wsZo oEwUKbC23F5dUVxKMhb9XjrETFdpFPFS03jt1m82SSimbAM6VUr2CQnoBRecDrb+ /sAh2dqz1cLjW3LkXD3Ie9zkoH4hY5zGXm0JRo/prHz7/m0VkFjxM1g2mOG/7YDI GUrR6sMgULNS0vXVHnLeF8eqcU6t4o6Me0vEoCgtgg2mNZYyTtxaoPI8dle+tjxZ qXoQs1AO3k5Ato6en1vRarfQCm0iINWWx/roDvsaFWRfJKIzs5TUvCbP9rf9AgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUPQcNXx2sZLsaoRuRFXAWrRBflJIwHwYDVR0j BBgwFoAUPghCywkXP9Ynlwma+V2Dev8FyMEwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSkRBLzAv M0UwODQyQ0IwOTE3M0ZENjI3OTcwOTlBRjk1RDgzN0FGRjA1QzhDMS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8zRTA4NDJDQjA5MTczRkQ2Mjc5NzA5OUFGOTVEODM3 QUZGMDVDOEMxLmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSkRBLzAvM0UwODQyQ0IwOTE3M0ZENjI3 OTcwOTlBRjk1RDgzN0FGRjA1QzhDMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAAAn/DBNB+cDzuw33qjP Wv4mFvw+jWQbuZLMxG5B4jqpcImeAN+YhghNAs6Fr7T7SbfjVUYe7ZoFBJTSp1i0 rdIcf18KqLPQdd10ajI29zXM2Q40kjSCtVBYlx0pFFRHP7YDf06mQjKCe+Pc04dy WB4dqqECG+n2uQxeWlGBH5dyZxh+RQkfweNhHNmMgEjX1nHDehiMzySgG1Xix9Pw aGTL8aYG69d5/apROVXDizR7EzQJ2WFvEAvpL4NKOaqBLBmSFRcxNswXFfbFhPvi q5bmS+u564X3UEPGk37Hb8acYPZA5e19KlJ4CEOd+rdo8wvU/zuadimyf4KBKeCf 8nE= -----END CERTIFICATE-----Generated at Tue Jun 30 19:09:06 2026 by rpki-client