$ rpki-client -vvf rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.mft File: 9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.mft (raw, json) Hash identifier: lGUEl8XBQb7ngVWlOcn6ZRWiQ3vcs/bB30UA/cOiVu8= Subject key identifier: 6D:6D:CC:DF:0E:05:AD:5D:54:17:45:9C:9F:DA:2D:24:A3:38:A9:48 Authority key identifier: 9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 Certificate issuer: /CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Certificate serial: 2A58468DA3217B78AC5E72655B728A1C706B6C29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.mft Manifest number: 09 Signing time: Wed 13 May 2026 04:56:57 +0000 Manifest this update: Wed 13 May 2026 04:51:57 +0000 Manifest next update: Thu 14 May 2026 05:43:57 +0000 Files and hashes: 1: 3230332e3134352e3139322e302f32312d3234203d3e203138343236.roa (hash: gNPPk70chubQg8rvqCFhjNMJr/GwTZPy8GKS/JxLGtk=) 2: 323030313a343530303a313030303a3a2f34302d3634203d3e2037353339.roa (hash: aCon7ihkrSQu1jOrSasXY8xC7tkNYvzzB6OK08dUqns=) 3: 3230332e3134352e3230382e302f32302d3234203d3e2037353339.roa (hash: TkgRJDcSEgq7NjOc3j8nZRABpENJrXFx+4WnsRFtzh4=) 4: 3230332e3134352e3230302e302f32312d3234203d3e2037353339.roa (hash: jxkAJdAcKZ8RSCBcISH4Y4rq8GCUJiutzooENkFUhIc=) 5: 9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl (hash: csgrofVotwI7tpeDo3sCMbgJDh4r+DhSmkvRbviSMG8=) 6: 3130332e3132342e37322e302f32322d3234203d3e2037353339.roa (hash: /oWUtrivyYYR3xINxuZfk4J46KekrLAODBaoBbnjf6g=) 7: 323030313a343530303a3a2f33322d3634203d3e203138313833.roa (hash: PMzGY0PfcdsGzBMtdtqJG5vua06dScgAEtiVBZ8oJwQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 05:43:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:58:46:8d:a3:21:7b:78:ac:5e:72:65:5b:72:8a:1c:70:6b:6c:29 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1 Validity Not Before: May 13 04:51:57 2026 GMT Not After : May 14 05:43:57 2026 GMT Subject: CN=6D6DCCDF0E05AD5D5417459C9FDA2D24A338A948 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:17:0c:7d:9a:9b:b6:09:e2:6c:cf:e0:1f:2b: 96:ff:fc:7e:a9:02:02:6e:4a:6b:d6:5d:97:cd:6e: 6d:65:45:c6:9c:25:96:29:91:05:7a:9c:9f:8d:e8: d4:7a:0d:4e:fe:23:5e:9e:e5:db:db:91:22:a0:a1: cd:aa:07:7d:ab:0b:b1:f8:26:2a:5f:e5:a0:f2:1f: f1:8b:3a:c6:97:0b:df:bd:8b:47:09:1f:c3:55:62: fe:57:f0:09:4c:09:84:53:fe:af:e8:7e:77:57:97: 72:86:72:80:27:16:23:e3:ff:72:42:03:75:f4:74: d4:16:51:5e:f4:b6:ab:a3:16:dc:5d:11:f8:14:6c: 21:15:dd:42:16:1a:11:c0:01:73:c6:a0:91:5e:bf: c2:36:ac:8c:23:b6:ef:35:01:88:45:58:de:b0:2f: 04:30:38:2e:ba:10:30:2d:37:99:ca:51:20:87:da: 21:4e:50:4c:37:cf:28:15:eb:c8:05:df:9d:ec:5c: 32:aa:c6:f3:10:73:f0:6f:85:fe:41:e4:9d:6c:bb: 73:bb:d1:79:15:c9:57:9a:69:f5:38:50:e1:6d:ac: e1:61:9d:40:8a:25:1d:ca:dd:33:92:82:75:db:1a: 2b:3d:07:10:85:13:ec:74:16:43:fc:e2:3a:2a:23: bf:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:6D:CC:DF:0E:05:AD:5D:54:17:45:9C:9F:DA:2D:24:A3:38:A9:48 X509v3 Authority Key Identifier: keyid:9D:85:BB:8D:93:00:6D:35:86:E2:8D:0D:66:12:CA:FA:CC:8E:A6:C1 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NARL/0/9D85BB8D93006D3586E28D0D6612CAFACC8EA6C1.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2e:11:48:3e:1b:b6:06:8a:a6:b9:9c:50:a9:a4:c8:39:47:39: 7b:81:fd:a7:f8:1c:81:c0:ae:93:fd:60:13:fb:ec:a6:23:45: cf:86:55:f4:c4:6f:fb:d5:07:57:8a:53:70:cf:b9:97:9e:f9: f5:c1:8f:a1:57:6e:44:3b:c0:1d:58:a5:b5:cb:17:7a:f7:5b: 02:fc:b9:74:4f:ee:ac:12:7c:2b:95:61:a8:02:d0:cf:12:f5: 0c:99:6b:65:2c:9a:38:af:ce:ff:81:7f:d1:62:bd:fd:85:b1: 95:db:a7:b1:24:61:23:8e:91:93:6d:9c:3a:c9:3d:14:63:2d: 4a:75:fe:77:33:57:0b:9f:aa:b1:9a:2e:4b:95:41:65:45:76: 64:8c:e1:e0:15:af:4b:25:0d:15:ad:d2:19:78:85:8b:f8:9e: d1:5e:3d:f4:8e:00:06:5a:9a:98:3c:0a:7f:38:47:6a:7b:07: 61:dc:55:ce:09:52:f8:75:e1:cf:11:98:ef:7a:cb:55:c9:e5: 8d:63:e2:ee:37:85:24:10:33:ae:8b:c2:06:a2:fc:12:b8:15: e0:a9:d0:ce:ee:54:63:c7:79:d2:bb:29:ed:28:3b:e6:b9:b0: 08:99:b8:8f:7b:17:de:02:de:e9:2f:3a:33:1a:80:de:e0:b1: a1:3f:35:f6 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUKlhGjaMhe3isXnJlW3KKHHBrbCkwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUQ4NUJCOEQ5MzAwNkQzNTg2RTI4RDBENjYxMkNBRkFD QzhFQTZDMTAeFw0yNjA1MTMwNDUxNTdaFw0yNjA1MTQwNTQzNTdaMDMxMTAvBgNV BAMTKDZENkRDQ0RGMEUwNUFENUQ1NDE3NDU5QzlGREEyRDI0QTMzOEE5NDgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDFFwx9mpu2CeJsz+AfK5b//H6p AgJuSmvWXZfNbm1lRcacJZYpkQV6nJ+N6NR6DU7+I16e5dvbkSKgoc2qB32rC7H4 Jipf5aDyH/GLOsaXC9+9i0cJH8NVYv5X8AlMCYRT/q/ofndXl3KGcoAnFiPj/3JC A3X0dNQWUV70tqujFtxdEfgUbCEV3UIWGhHAAXPGoJFev8I2rIwjtu81AYhFWN6w LwQwOC66EDAtN5nKUSCH2iFOUEw3zygV68gF353sXDKqxvMQc/Bvhf5B5J1su3O7 0XkVyVeaafU4UOFtrOFhnUCKJR3K3TOSgnXbGis9BxCFE+x0FkP84joqI7+vAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUbW3M3w4FrV1UF0Wcn9otJKM4qUgwHwYDVR0j BBgwFoAUnYW7jZMAbTWG4o0NZhLK+syOpsEwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkFSTC8w LzlEODVCQjhEOTMwMDZEMzU4NkUyOEQwRDY2MTJDQUZBQ0M4RUE2QzEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvOUQ4NUJCOEQ5MzAwNkQzNTg2RTI4RDBENjYxMkNB RkFDQzhFQTZDMS5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05BUkwvMC85RDg1QkI4RDkzMDA2RDM1 ODZFMjhEMEQ2NjEyQ0FGQUNDOEVBNkMxLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEALhFIPhu2BoqmuZxQ qaTIOUc5e4H9p/gcgcCuk/1gE/vspiNFz4ZV9MRv+9UHV4pTcM+5l5759cGPoVdu RDvAHViltcsXevdbAvy5dE/urBJ8K5VhqALQzxL1DJlrZSyaOK/O/4F/0WK9/YWx ldunsSRhI46Rk22cOsk9FGMtSnX+dzNXC5+qsZouS5VBZUV2ZIzh4BWvSyUNFa3S GXiFi/ie0V499I4ABlqamDwKfzhHansHYdxVzglS+HXhzxGY73rLVcnljWPi7jeF JBAzrovCBqL8ErgV4KnQzu5UY8d50rsp7Sg75rmwCJm4j3sX3gLe6S86MxqA3uCx oT819g== -----END CERTIFICATE-----Generated at Wed May 13 20:34:01 2026 by rpki-client