$ rpki-client -vvf rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.mft File: BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.mft (raw, json) Hash identifier: zGs6LR1ybpzlT0LVs3KYcZ+SLMMszEuDEQPmzDaTXbw= Subject key identifier: D5:93:51:13:FA:A9:D7:89:32:D6:67:67:DC:F2:97:2C:99:C8:A9:2B Authority key identifier: BF:DB:40:49:6A:2E:2F:D9:B4:E4:F9:6B:35:89:41:3B:1F:67:B1:05 Certificate issuer: /CN=BFDB40496A2E2FD9B4E4F96B3589413B1F67B105 Certificate serial: 235B6D484DB3D402B60EF2A93704EA430BB7EE7F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.cer Subject info access: rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.mft Manifest number: 21 Signing time: Wed 27 May 2026 23:28:38 +0000 Manifest this update: Wed 27 May 2026 23:23:38 +0000 Manifest next update: Fri 29 May 2026 01:23:38 +0000 Files and hashes: 1: 3135312e3135382e3232352e302f32342d3234203d3e20323032373336.roa (hash: BP3tLCNXYvf+Gp0VBeaUsi8XNu18vBFJrKuz4D6/0xk=) 2: BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.crl (hash: I3VnlXWwKZhzJAWFowTNjHENdHooV6qJT7V3aJlqVnY=) 3: 3135312e3135382e3232342e302f32332d3233203d3e20313331363330.roa (hash: UGeKbObtquowJEySOq447BwTw1IrQgKYmkBRzzCAemk=) 4: 3135312e3135382e3232352e302f32342d3234203d3e20313937353337.roa (hash: OONjtGbImgqa0kIYiLjUQ1P3dRaZmeZTmlX9Ya86T08=) 5: 3135312e3135382e3232342e302f32342d3234203d3e20313331363330.roa (hash: fymSuw1iXX46oyRWIBNdhz3f/dOlk8VWLwtxbZEtRW8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.crl rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/3/C49BAE2430BEEC354C1B14F226E761FC9BDCF005.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/3/C49BAE2430BEEC354C1B14F226E761FC9BDCF005.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/xJuuJDC-7DVMGxTyJudh_Jvc8AU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 28 May 2026 12:21:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:5b:6d:48:4d:b3:d4:02:b6:0e:f2:a9:37:04:ea:43:0b:b7:ee:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BFDB40496A2E2FD9B4E4F96B3589413B1F67B105 Validity Not Before: May 27 23:23:38 2026 GMT Not After : May 29 01:23:38 2026 GMT Subject: CN=D5935113FAA9D78932D66767DCF2972C99C8A92B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:cb:34:1d:fc:1a:fd:60:bf:6b:4a:81:4a:c7: 39:71:19:2c:80:e3:9a:04:2e:85:21:47:de:00:58: 58:ef:3a:51:71:5f:a4:cd:a0:7a:5c:b5:ab:61:8d: 93:81:1c:16:29:83:32:53:f9:82:51:38:1b:f4:0f: 5e:e0:f8:5c:7d:cb:da:f8:65:f0:5b:bb:46:f2:ec: ec:d2:00:f0:0d:35:15:21:8e:43:df:29:20:0a:08: b1:4e:fc:3b:d1:c2:64:02:c5:f0:93:89:0b:fc:6d: 6e:b7:23:6e:a1:da:8c:95:ad:4d:d3:d0:31:ca:67: 63:da:79:fa:91:82:7b:72:99:8c:5c:0c:f9:1e:ec: de:96:d2:b6:ca:30:a3:c3:92:34:1b:a8:2c:7d:b0: c9:de:48:c9:0d:f7:3f:09:50:9a:a8:61:27:72:4b: 7c:08:fa:d0:26:ab:64:b1:c7:e2:98:7f:b6:84:98: e1:b8:9d:55:9e:51:16:4c:73:d9:ac:5c:84:4b:d1: f4:81:ee:07:60:08:1b:7f:c7:0e:91:41:82:1b:db: 5a:5d:b3:a7:41:9a:8f:52:0a:2b:0a:ff:4e:17:a0: 5d:90:5a:8b:5a:fb:74:75:ea:96:24:34:1d:54:bc: b7:4c:02:03:25:7d:f2:98:7f:d7:90:d9:1c:d7:20: b5:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:93:51:13:FA:A9:D7:89:32:D6:67:67:DC:F2:97:2C:99:C8:A9:2B X509v3 Authority Key Identifier: keyid:BF:DB:40:49:6A:2E:2F:D9:B4:E4:F9:6B:35:89:41:3B:1F:67:B1:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/LAZCO/1/BFDB40496A2E2FD9B4E4F96B3589413B1F67B105.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:e4:f2:e7:e5:62:08:d3:f0:01:c1:51:9f:b5:d3:8a:54:42: 53:2d:53:87:43:81:0e:43:d3:f4:7c:7b:fc:81:1a:4f:ec:2e: 1c:fd:54:8b:4f:42:a5:6e:62:f4:b9:cc:d5:42:ad:ff:d2:00: 77:c3:06:05:83:16:ed:b2:6e:9e:d7:68:a2:97:33:4b:51:0b: 0d:5e:36:d8:9c:df:c7:7b:bc:af:fa:4b:c8:03:d3:d3:58:52: 14:f9:02:83:d4:18:3c:bb:9d:f1:a4:36:56:c3:45:54:9f:bb: 85:3f:19:7d:25:78:60:48:fb:dd:97:18:61:23:bd:03:b8:17: c0:99:3d:62:28:14:41:fa:4b:09:91:82:fa:33:8d:5b:be:a0: 96:b9:a4:7b:93:5c:e5:9c:6e:43:61:dc:f7:ec:82:32:7f:1e: 54:ec:29:5a:fd:a3:f6:8d:4d:13:53:4c:ae:17:87:d9:a9:08: 36:24:df:d1:1a:d4:15:d4:63:a2:59:dd:9f:20:b2:af:58:a7: 2b:d9:ca:31:9e:7a:55:56:e9:be:6e:2d:80:34:32:39:b7:cf: bc:fa:b8:fb:7a:be:db:4d:c3:3a:d5:3f:f9:77:b4:1b:ed:63: b2:7c:88:9f:31:a1:80:43:13:b0:28:ec:a7:c7:d6:82:04:20: 79:82:5b:ea -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUI1ttSE2z1AK2DvKpNwTqQwu37n8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkZEQjQwNDk2QTJFMkZEOUI0RTRGOTZCMzU4OTQxM0Ix RjY3QjEwNTAeFw0yNjA1MjcyMzIzMzhaFw0yNjA1MjkwMTIzMzhaMDMxMTAvBgNV BAMTKEQ1OTM1MTEzRkFBOUQ3ODkzMkQ2Njc2N0RDRjI5NzJDOTlDOEE5MkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDQyzQd/Br9YL9rSoFKxzlxGSyA 45oELoUhR94AWFjvOlFxX6TNoHpctathjZOBHBYpgzJT+YJROBv0D17g+Fx9y9r4 ZfBbu0by7OzSAPANNRUhjkPfKSAKCLFO/DvRwmQCxfCTiQv8bW63I26h2oyVrU3T 0DHKZ2PaefqRgntymYxcDPke7N6W0rbKMKPDkjQbqCx9sMneSMkN9z8JUJqoYSdy S3wI+tAmq2Sxx+KYf7aEmOG4nVWeURZMc9msXIRL0fSB7gdgCBt/xw6RQYIb21pd s6dBmo9SCisK/04XoF2QWota+3R16pYkNB1UvLdMAgMlffKYf9eQ2RzXILUBAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQU1ZNRE/qp14ky1mdn3PKXLJnIqSswHwYDVR0j BBgwFoAUv9tASWouL9m05PlrNYlBOx9nsQUwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTEFaQ08v MS9CRkRCNDA0OTZBMkUyRkQ5QjRFNEY5NkIzNTg5NDEzQjFGNjdCMTA1LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8zL0JGREI0MDQ5NkEyRTJGRDlCNEU0Rjk2QjM1ODk0 MTNCMUY2N0IxMDUuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9MQVpDTy8xL0JGREI0MDQ5NkEyRTJG RDlCNEU0Rjk2QjM1ODk0MTNCMUY2N0IxMDUubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB15PLn5WII0/AB wVGftdOKVEJTLVOHQ4EOQ9P0fHv8gRpP7C4c/VSLT0KlbmL0uczVQq3/0gB3wwYF gxbtsm6e12iilzNLUQsNXjbYnN/He7yv+kvIA9PTWFIU+QKD1Bg8u53xpDZWw0VU n7uFPxl9JXhgSPvdlxhhI70DuBfAmT1iKBRB+ksJkYL6M41bvqCWuaR7k1zlnG5D Ydz37IIyfx5U7Cla/aP2jU0TU0yuF4fZqQg2JN/RGtQV1GOiWd2fILKvWKcr2cox nnpVVum+bi2ANDI5t8+8+rj7er7bTcM61T/5d7Qb7WOyfIifMaGAQxOwKOynx9aC BCB5glvq -----END CERTIFICATE-----Generated at Thu May 28 05:49:42 2026 by rpki-client