$ rpki-client -vvf rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft File: 3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft (raw, json) Hash identifier: TZqUEQCt7aUIpD+lxzR+bhM+cSv25vDPjDIiYX/Qg3s= Subject key identifier: 75:F8:A2:CC:5B:C0:FE:B2:3C:03:33:39:DD:6D:0D:7E:80:2F:F6:A2 Authority key identifier: 3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE Certificate issuer: /CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Certificate serial: 248F4BF2899DBA77768B511A91BF2D65D28DF772 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft Manifest number: 4D Signing time: Tue 30 Jun 2026 01:57:52 +0000 Manifest this update: Tue 30 Jun 2026 01:52:52 +0000 Manifest next update: Wed 01 Jul 2026 02:42:52 +0000 Files and hashes: 1: 323430323a346632303a3a2f33322d3332203d3e20313331363330.roa (hash: 1HkzZ8xzmy/OZUVsiQY7oTz8Rgw5reF3WYzze2HTWVI=) 2: 323430323a346632303a3a2f34382d3438203d3e20313331363330.roa (hash: KzekJ1FxCbwk5Zs9JehhAtPibWkOWnoBzdyUiRP/X0w=) 3: 323430323a346632303a343a3a2f34382d3438203d3e20313331363330.roa (hash: K1744UKAf+z71qZv3nHhgAju8M4LXcw6dU0movyAPhI=) 4: 323430323a346632303a353a3a2f34382d3438203d3e20313331363330.roa (hash: bU1HQDuT0IRVu34E/RZMoTgSImGbDCROI5x6EQPDfzA=) 5: 323430323a346632303a333a3a2f34382d3438203d3e20313331363330.roa (hash: ozfaF6UNRXIJr4rje21YQkFsoy4ZzNiP2wPtA0erUeY=) 6: 3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl (hash: A5Llxg+51SnDbH+TWvx2ZCXZI8ozvd6YwxQnqJTe7aw=) 7: 323430323a346632303a323a3a2f34382d3438203d3e20323133343238.roa (hash: s9oKXRbmyMlcGoDwcLYZ0mRlXD27VylhFpYrWppG6Cs=) 8: 323430323a346632303a313a3a2f34382d3438203d3e20313331363330.roa (hash: Oh96VvwrLrCqa8vzhQmqU/GuluZDVdXi8dtZT8NxrMk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 02:42:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 24:8f:4b:f2:89:9d:ba:77:76:8b:51:1a:91:bf:2d:65:d2:8d:f7:72 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE Validity Not Before: Jun 30 01:52:52 2026 GMT Not After : Jul 1 02:42:52 2026 GMT Subject: CN=75F8A2CC5BC0FEB23C033339DD6D0D7E802FF6A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:87:f6:90:9e:e5:03:16:4a:3b:b4:b6:8d:9b: 0f:e1:9f:5c:7d:89:17:31:5c:f8:0f:66:79:64:68: 25:aa:04:6f:65:0b:4b:26:4c:80:f0:66:10:21:2a: e9:af:78:64:a1:00:0e:7c:06:88:54:26:18:60:af: 98:d5:04:0b:ff:49:63:c1:01:62:b3:ab:d9:03:a5: 29:46:c7:e0:fc:c4:88:d3:ff:d7:7b:1a:12:9e:66: 6e:cd:3c:b6:a7:94:35:40:f4:0e:a4:dd:a9:6e:32: 7d:fd:73:92:59:bf:ae:c0:9d:d2:55:87:75:29:f2: 53:de:93:0f:b8:d4:5a:2e:72:38:d5:29:be:4c:31: ae:3f:f5:89:bb:52:fc:b7:6f:17:64:b6:76:f2:65: c1:89:f3:8a:94:66:eb:ae:31:83:eb:ae:05:0c:84: 73:a3:9f:5b:9a:64:b4:29:b7:88:8b:d2:41:c8:2f: a5:09:34:ca:ed:94:65:9a:82:9c:ac:03:a2:52:52: 59:fa:50:1a:c6:26:56:51:b3:4c:8f:66:d9:ec:b8: 91:a8:74:f7:45:b5:80:6d:04:8d:05:f5:e1:4d:e6: 09:e4:ba:95:57:a8:c0:51:08:79:4c:31:4e:df:bb: 6c:76:7f:ec:27:09:6a:9c:1e:2d:22:d0:eb:1e:c2: 99:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:F8:A2:CC:5B:C0:FE:B2:3C:03:33:39:DD:6D:0D:7E:80:2F:F6:A2 X509v3 Authority Key Identifier: keyid:3F:2F:A0:E9:A9:B7:A3:64:D4:9A:2E:A6:1E:F3:89:67:09:C4:AD:AE X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/0/3F2FA0E9A9B7A364D49A2EA61EF3896709C4ADAE.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 10:cd:e0:e7:5e:cc:17:88:0f:fd:89:61:0e:de:42:e7:a5:7d: f9:c4:8f:97:13:ba:23:b8:50:f5:60:22:3b:ea:92:2b:ac:a4: 2d:26:9b:a3:65:da:96:90:9d:07:de:f1:da:5e:2d:46:f4:2a: 1d:9a:e6:df:a4:38:4b:bf:95:1c:7d:26:83:50:b1:42:c2:10: 94:89:4d:86:82:b8:5a:65:c3:1b:07:99:4c:2d:f9:cb:cd:54: 95:6a:f7:64:fd:df:8c:21:59:66:9b:44:44:ec:30:96:b0:70: 6a:5c:07:4e:4c:72:85:52:9d:7a:0a:f2:4d:af:2b:3e:35:73: c3:3c:40:67:03:20:ba:82:b3:05:46:84:b1:37:a5:5b:4b:89: 83:d2:cf:e1:b0:e7:5e:f1:d4:37:c2:50:23:73:25:97:67:33: c0:44:4b:19:28:6e:1e:2e:4d:f1:c2:9f:de:d2:2a:3a:5f:db: 5b:c2:b1:84:60:7e:f2:28:37:8e:c7:b4:fc:ee:6d:78:42:39: 34:a8:f6:6d:c3:5a:70:89:df:56:9c:f9:9c:e2:48:40:9b:0b: 00:50:bf:cf:e7:16:5c:7b:a6:d5:bf:1b:0b:38:16:b7:74:d6: ec:61:9b:e3:1f:5f:7b:40:06:1e:79:f9:6a:2b:f3:43:5f:4a: 02:30:76:79 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUJI9L8omdund2i1Eakb8tZdKN93IwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0YyRkEwRTlBOUI3QTM2NEQ0OUEyRUE2MUVGMzg5Njcw OUM0QURBRTAeFw0yNjA2MzAwMTUyNTJaFw0yNjA3MDEwMjQyNTJaMDMxMTAvBgNV BAMTKDc1RjhBMkNDNUJDMEZFQjIzQzAzMzMzOURENkQwRDdFODAyRkY2QTIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCh/aQnuUDFko7tLaNmw/hn1x9 iRcxXPgPZnlkaCWqBG9lC0smTIDwZhAhKumveGShAA58BohUJhhgr5jVBAv/SWPB AWKzq9kDpSlGx+D8xIjT/9d7GhKeZm7NPLanlDVA9A6k3aluMn39c5JZv67AndJV h3Up8lPekw+41FoucjjVKb5MMa4/9Ym7Uvy3bxdktnbyZcGJ84qUZuuuMYPrrgUM hHOjn1uaZLQpt4iL0kHIL6UJNMrtlGWagpysA6JSUln6UBrGJlZRs0yPZtnsuJGo dPdFtYBtBI0F9eFN5gnkupVXqMBRCHlMMU7fu2x2f+wnCWqcHi0i0Osewpm/AgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUdfiizFvA/rI8AzM53W0NfoAv9qIwHwYDVR0j BBgwFoAUPy+g6am3o2TUmi6mHvOJZwnEra4wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTEFaQ08v MC8zRjJGQTBFOUE5QjdBMzY0RDQ5QTJFQTYxRUYzODk2NzA5QzRBREFFLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGMkZBMEU5QTlCN0EzNjRENDlBMkVBNjFFRjM4 OTY3MDlDNEFEQUUuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8wLzNGMkZBMEU5QTlCN0Ez NjRENDlBMkVBNjFFRjM4OTY3MDlDNEFEQUUubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAQzeDnXswXiA/9 iWEO3kLnpX35xI+XE7ojuFD1YCI76pIrrKQtJpujZdqWkJ0H3vHaXi1G9Codmubf pDhLv5UcfSaDULFCwhCUiU2GgrhaZcMbB5lMLfnLzVSVavdk/d+MIVlmm0RE7DCW sHBqXAdOTHKFUp16CvJNrys+NXPDPEBnAyC6grMFRoSxN6VbS4mD0s/hsOde8dQ3 wlAjcyWXZzPAREsZKG4eLk3xwp/e0io6X9tbwrGEYH7yKDeOx7T87m14Qjk0qPZt w1pwid9WnPmc4khAmwsAUL/P5xZce6bVvxsLOBa3dNbsYZvjH197QAYeeflqK/ND X0oCMHZ5 -----END CERTIFICATE-----Generated at Tue Jun 30 19:11:52 2026 by rpki-client