$ rpki-client -vvf rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.mft File: 2C4838ED872E38E97456B74C33E4178C4E1253A2.mft (raw, json) Hash identifier: vCec8sC60U160pcoYcgqoGTo7fawd+HlE6gfqlpOq00= Subject key identifier: AD:F2:1D:23:ED:0F:84:AB:33:0B:5E:D6:9D:D5:61:C1:8A:A3:AA:6D Authority key identifier: 2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2 Certificate issuer: /CN=2C4838ED872E38E97456B74C33E4178C4E1253A2 Certificate serial: 29A05EEC38B3EF9BA1914D77F5E58B8B7ED56A42 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.mft Manifest number: 07 Signing time: Wed 13 May 2026 08:27:48 +0000 Manifest this update: Wed 13 May 2026 08:22:48 +0000 Manifest next update: Thu 14 May 2026 09:06:48 +0000 Files and hashes: 1: 323030313a6531303a3a2f33322d3634203d3e2037353339.roa (hash: rxuyl6k2OoUV5iBtmSctIGPqbqwV5R2ky+GQxjpTB7Y=) 2: 323030313a6335383a3a2f33322d3634203d3e2037353339.roa (hash: tZHG0Au5Q1nz1VhZ3LSf/Lf7/6+XPnsXCo+GlAyJark=) 3: 3231312e37392e34382e302f32302d3234203d3e2037353339.roa (hash: zGnJyZ0D1nHAUduWv/k7+HUZrGVfV62GWYW/VYZP4Xo=) 4: 2C4838ED872E38E97456B74C33E4178C4E1253A2.crl (hash: 74FTwsHPcoPPFsR3tqlhJtQGxePbJgH5fBHVyNPj5RI=) 5: 3130332e3136302e3232302e302f32332d3234203d3e2037353339.roa (hash: ZL47425VwNlrMCD6iFWAxMHP6JFKdNOnp/o9FUV0D0w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.crl rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:06:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 29:a0:5e:ec:38:b3:ef:9b:a1:91:4d:77:f5:e5:8b:8b:7e:d5:6a:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2C4838ED872E38E97456B74C33E4178C4E1253A2 Validity Not Before: May 13 08:22:48 2026 GMT Not After : May 14 09:06:48 2026 GMT Subject: CN=ADF21D23ED0F84AB330B5ED69DD561C18AA3AA6D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:45:f7:4c:14:e9:12:d0:c4:46:f2:b7:ac:e5: ee:7a:fd:e5:ab:f6:7e:e4:f5:97:1d:3b:ab:0a:3b: 13:0d:4c:d8:4f:b0:fc:a4:df:1d:b0:6f:50:61:73: 98:fe:b5:f8:60:d7:1b:26:af:23:66:06:1e:14:6c: d9:9e:2e:52:a0:71:7c:db:f0:f9:b2:12:6b:d4:df: ac:bb:21:62:98:2d:a3:fa:02:59:d7:f6:10:d1:1a: d6:b8:d1:1b:41:5c:35:d0:b3:ef:06:a7:04:dd:75: 0c:d7:44:6e:33:e3:04:97:2b:27:d3:90:6b:5d:b8: fb:2c:c5:1e:b8:e4:12:26:4c:50:83:72:07:41:57: 55:27:bb:b7:b4:3b:cb:92:ac:91:5c:02:3c:7c:e2: a0:50:5f:18:f8:a8:e0:bd:1b:99:e0:f5:8c:98:79: 23:fe:d1:82:ef:1a:a6:9e:fd:bb:12:24:ec:c1:db: 5e:4c:54:ca:4a:3d:24:fd:1d:77:db:fb:0e:3f:1f: 30:7a:4b:2f:75:0e:64:5e:c1:3e:ed:66:57:7c:63: 90:91:26:be:fd:10:76:49:41:49:72:1f:c1:ef:e4: c0:b7:88:57:ba:60:09:06:8d:1e:a9:c8:32:62:b5: e4:a6:ba:3d:a1:08:81:21:36:6d:00:0d:c1:bc:2a: 59:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AD:F2:1D:23:ED:0F:84:AB:33:0B:5E:D6:9D:D5:61:C1:8A:A3:AA:6D X509v3 Authority Key Identifier: keyid:2C:48:38:ED:87:2E:38:E9:74:56:B7:4C:33:E4:17:8C:4E:12:53:A2 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2C4838ED872E38E97456B74C33E4178C4E1253A2.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NCHC/0/2C4838ED872E38E97456B74C33E4178C4E1253A2.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 82:df:18:2f:8e:b6:3d:a6:ea:08:b4:30:f8:93:ad:1d:da:f0: ab:76:c0:1f:97:ff:f3:73:b7:d1:56:34:fd:9d:ea:a5:0e:c4: 99:f3:ff:72:c0:f4:c2:99:17:d7:59:ba:96:8b:29:8d:1b:d4: 47:33:2d:bf:2b:f4:6e:db:95:10:9c:71:e1:d8:be:45:10:bc: 6e:db:fa:11:4b:6f:f8:3e:36:9a:1d:81:c7:73:0a:34:c4:13: 87:46:fd:0f:85:bd:1d:f7:f7:84:25:0a:db:ba:44:42:3c:d7: c2:3a:4d:fb:8a:de:1a:4f:da:58:b9:8e:55:92:b5:af:4f:53: 42:13:5e:21:0b:64:d1:cb:69:1a:f5:64:b5:da:a8:d4:19:1d: 1d:dd:28:f2:aa:9b:b7:9e:d9:e9:32:1f:a9:df:16:20:9e:31: d6:42:f8:6b:02:54:f8:6c:55:2b:1a:90:e7:5d:00:53:97:26: 27:04:d5:00:1c:b9:bd:a6:06:aa:ee:a7:69:0a:05:ad:17:4d: 6b:58:41:f1:05:b5:c9:e4:70:47:27:e7:bb:18:73:21:2e:ca: 79:16:68:74:86:36:7b:7a:be:94:0d:39:ad:cf:65:5e:40:5c: f2:f4:2c:fa:76:22:a9:c2:85:e1:d7:db:cf:0c:82:23:65:df: bd:ec:bb:f4 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUKaBe7Diz75uhkU139eWLi37VakIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkM0ODM4RUQ4NzJFMzhFOTc0NTZCNzRDMzNFNDE3OEM0 RTEyNTNBMjAeFw0yNjA1MTMwODIyNDhaFw0yNjA1MTQwOTA2NDhaMDMxMTAvBgNV BAMTKEFERjIxRDIzRUQwRjg0QUIzMzBCNUVENjlERDU2MUMxOEFBM0FBNkQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDHRfdMFOkS0MRG8res5e56/eWr 9n7k9ZcdO6sKOxMNTNhPsPyk3x2wb1Bhc5j+tfhg1xsmryNmBh4UbNmeLlKgcXzb 8PmyEmvU36y7IWKYLaP6AlnX9hDRGta40RtBXDXQs+8GpwTddQzXRG4z4wSXKyfT kGtduPssxR645BImTFCDcgdBV1Unu7e0O8uSrJFcAjx84qBQXxj4qOC9G5ng9YyY eSP+0YLvGqae/bsSJOzB215MVMpKPST9HXfb+w4/HzB6Sy91DmRewT7tZld8Y5CR Jr79EHZJQUlyH8Hv5MC3iFe6YAkGjR6pyDJiteSmuj2hCIEhNm0ADcG8Kln/AgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUrfIdI+0PhKszC17WndVhwYqjqm0wHwYDVR0j BBgwFoAULEg47YcuOOl0VrdMM+QXjE4SU6IwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTkNIQy8w LzJDNDgzOEVEODcyRTM4RTk3NDU2Qjc0QzMzRTQxNzhDNEUxMjUzQTIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMkM0ODM4RUQ4NzJFMzhFOTc0NTZCNzRDMzNFNDE3 OEM0RTEyNTNBMi5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05DSEMvMC8yQzQ4MzhFRDg3MkUzOEU5 NzQ1NkI3NEMzM0U0MTc4QzRFMTI1M0EyLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgt8YL462PabqCLQw +JOtHdrwq3bAH5f/83O30VY0/Z3qpQ7EmfP/csD0wpkX11m6lospjRvURzMtvyv0 btuVEJxx4di+RRC8btv6EUtv+D42mh2Bx3MKNMQTh0b9D4W9Hff3hCUK27pEQjzX wjpN+4reGk/aWLmOVZK1r09TQhNeIQtk0ctpGvVktdqo1BkdHd0o8qqbt57Z6TIf qd8WIJ4x1kL4awJU+GxVKxqQ510AU5cmJwTVABy5vaYGqu6naQoFrRdNa1hB8QW1 yeRwRyfnuxhzIS7KeRZodIY2e3q+lA05rc9lXkBc8vQs+nYiqcKF4dfbzwyCI2Xf vey79A== -----END CERTIFICATE-----Generated at Wed May 13 20:36:36 2026 by rpki-client