$ rpki-client -vvf rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.mft File: 589DA145B1A822538BB2E68D892E6742B34F0701.mft (raw, json) Hash identifier: 6xg598RBRJt+R5vzGDPvRxPWk89BbddlMxPDAWegswI= Subject key identifier: E8:F6:2C:78:D1:B6:E9:CD:69:51:94:48:40:53:82:18:26:BD:3D:88 Authority key identifier: 58:9D:A1:45:B1:A8:22:53:8B:B2:E6:8D:89:2E:67:42:B3:4F:07:01 Certificate issuer: /CN=589DA145B1A822538BB2E68D892E6742B34F0701 Certificate serial: 637928FAD44B3B6E20B3D1CBC5368ACE60DCC6D6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/589DA145B1A822538BB2E68D892E6742B34F0701.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.mft Manifest number: 44 Signing time: Tue 30 Jun 2026 02:47:58 +0000 Manifest this update: Tue 30 Jun 2026 02:42:58 +0000 Manifest next update: Wed 01 Jul 2026 04:17:58 +0000 Files and hashes: 1: 3136312e3234382e3132382e302f32332d3234203d3e20313331363435.roa (hash: A2tEu7HgD7mnKwNZUDnZPRv7DPPNtScV1zkEjUfoaE8=) 2: 589DA145B1A822538BB2E68D892E6742B34F0701.crl (hash: OG4/ROYwBtu8fP47gQsaS4f8NHKR3lfYN06HCNTz6fI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.crl rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/589DA145B1A822538BB2E68D892E6742B34F0701.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 30 Jun 2026 19:24:08 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 63:79:28:fa:d4:4b:3b:6e:20:b3:d1:cb:c5:36:8a:ce:60:dc:c6:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=589DA145B1A822538BB2E68D892E6742B34F0701 Validity Not Before: Jun 30 02:42:58 2026 GMT Not After : Jul 1 04:17:58 2026 GMT Subject: CN=E8F62C78D1B6E9CD695194484053821826BD3D88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:ba:3b:23:8a:74:8f:a7:84:d7:fa:d5:f3:37: 29:16:28:2e:cb:2d:11:11:48:b2:b6:e8:89:4f:de: 62:bd:7f:d4:a2:41:f6:4b:bc:62:8f:91:4e:da:36: 36:d2:14:8b:61:22:34:2f:fb:a2:27:52:ce:f0:88: ce:03:be:57:0a:b3:53:8e:70:cd:8c:d6:e7:42:d0: 7b:55:23:eb:8d:dd:47:0a:73:37:1f:7a:d3:ef:e8: 64:de:88:7f:1e:ad:1a:1e:ac:9e:21:d2:dc:46:10: 95:35:cc:36:b7:9c:cd:f3:e7:eb:06:46:f9:ba:52: 14:6f:2f:d9:1c:a4:68:12:50:71:ef:66:72:94:10: 5d:3c:2a:dc:e5:ab:d9:21:f0:9b:3a:65:27:8a:26: fd:c2:5d:5a:8c:34:15:bd:cd:0c:a1:15:cd:9c:1b: 1d:9f:1b:41:e5:86:77:0f:ed:ae:74:68:45:7a:e0: 7e:2a:e2:4e:02:bb:f4:aa:3e:1f:a1:af:fa:f6:76: 3a:82:41:3d:cd:8e:02:2a:be:ac:97:44:45:6b:86: f9:e6:a9:71:c5:f1:b1:cd:f7:dd:77:8d:b6:00:68: cf:7d:82:f0:93:6a:a5:b0:63:c4:1a:45:4d:07:74: e0:36:3f:9f:fc:b9:a2:77:07:a7:a1:98:dd:39:db: 6a:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E8:F6:2C:78:D1:B6:E9:CD:69:51:94:48:40:53:82:18:26:BD:3D:88 X509v3 Authority Key Identifier: keyid:58:9D:A1:45:B1:A8:22:53:8B:B2:E6:8D:89:2E:67:42:B3:4F:07:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/589DA145B1A822538BB2E68D892E6742B34F0701.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:38:50:17:6f:31:e2:97:95:67:83:75:d0:aa:84:8d:f8:4d: 9d:28:65:a8:4c:ac:43:e9:e5:4e:c8:0c:fb:25:f3:3d:6d:d0: 59:ac:fc:fb:25:e1:af:74:c0:9d:0d:ba:47:36:ec:89:a7:5d: b8:df:c9:95:f1:16:33:37:dd:50:31:78:ff:b3:f2:38:87:46: 5b:84:98:a6:f7:31:ef:c7:f4:88:03:e2:13:1c:f5:7c:60:a8: ce:46:11:b0:ad:87:10:18:7a:d6:c1:70:f8:0e:2e:5c:b0:b4: e9:89:fd:e6:1a:4e:8a:32:e5:7f:b6:6f:3e:f5:7f:f2:21:fe: 1a:c6:00:5e:ec:52:f3:80:92:0a:85:ec:d1:dd:02:18:79:ac: 1b:a1:f9:37:c2:dd:3f:18:12:73:d5:20:83:24:1b:0a:6a:cf: 9c:01:08:6f:4e:fc:80:1b:aa:c3:ae:42:13:65:a3:56:e3:a8: 5e:1c:e6:73:88:25:cd:8c:a7:7e:ae:ef:62:4e:7a:5f:b5:96: 2c:f5:ac:1d:d0:59:65:a9:a6:ec:39:f2:74:00:27:5f:ac:55: 45:6c:b1:40:36:7c:4b:f5:7e:83:a1:fd:23:fe:32:7a:f1:31: eb:9d:0f:3b:a4:a6:dd:cd:bb:03:43:0f:2e:e5:36:85:05:32: 85:ff:d0:36 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUY3ko+tRLO24gs9HLxTaKzmDcxtYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg5REExNDVCMUE4MjI1MzhCQjJFNjhEODkyRTY3NDJC MzRGMDcwMTAeFw0yNjA2MzAwMjQyNThaFw0yNjA3MDEwNDE3NThaMDMxMTAvBgNV BAMTKEU4RjYyQzc4RDFCNkU5Q0Q2OTUxOTQ0ODQwNTM4MjE4MjZCRDNEODgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDjujsjinSPp4TX+tXzNykWKC7L LRERSLK26IlP3mK9f9SiQfZLvGKPkU7aNjbSFIthIjQv+6InUs7wiM4DvlcKs1OO cM2M1udC0HtVI+uN3UcKczcfetPv6GTeiH8erRoerJ4h0txGEJU1zDa3nM3z5+sG Rvm6UhRvL9kcpGgSUHHvZnKUEF08Ktzlq9kh8Js6ZSeKJv3CXVqMNBW9zQyhFc2c Gx2fG0HlhncP7a50aEV64H4q4k4Cu/SqPh+hr/r2djqCQT3NjgIqvqyXREVrhvnm qXHF8bHN9913jbYAaM99gvCTaqWwY8QaRU0HdOA2P5/8uaJ3B6ehmN0522qnAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQU6PYseNG26c1pUZRIQFOCGCa9PYgwHwYDVR0j BBgwFoAUWJ2hRbGoIlOLsuaNiS5nQrNPBwEwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0tILzEv NTg5REExNDVCMUE4MjI1MzhCQjJFNjhEODkyRTY3NDJCMzRGMDcwMS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMC81ODlEQTE0NUIxQTgyMjUzOEJCMkU2OEQ4OTJFNjc0 MkIzNEYwNzAxLmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0tILzEvNTg5REExNDVCMUE4MjI1MzhC QjJFNjhEODkyRTY3NDJCMzRGMDcwMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAHo4UBdvMeKXlWeDddCq hI34TZ0oZahMrEPp5U7IDPsl8z1t0Fms/Psl4a90wJ0Nukc27ImnXbjfyZXxFjM3 3VAxeP+z8jiHRluEmKb3Me/H9IgD4hMc9XxgqM5GEbCthxAYetbBcPgOLlywtOmJ /eYaTooy5X+2bz71f/Ih/hrGAF7sUvOAkgqF7NHdAhh5rBuh+TfC3T8YEnPVIIMk Gwpqz5wBCG9O/IAbqsOuQhNlo1bjqF4c5nOIJc2Mp36u72JOel+1liz1rB3QWWWp puw58nQAJ1+sVUVssUA2fEv1foOh/SP+MnrxMeudDzukpt3NuwNDDy7lNoUFMoX/ 0DY= -----END CERTIFICATE-----Generated at Tue Jun 30 13:12:12 2026 by rpki-client