$ rpki-client -vvf rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft File: 5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft (raw, json) Hash identifier: ArRsNUhNMImTCIYY2NzqhulIcFJc9Wwx/2ome49c4RI= Subject key identifier: 4D:64:FD:E1:C1:CE:E8:FA:1C:38:ED:39:19:BB:49:51:B2:A1:9B:65 Authority key identifier: 5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E Certificate issuer: /CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Certificate serial: 20F00616F011C3BFDAC8414AED25EC30AF08E0C1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft Manifest number: 48 Signing time: Tue 30 Jun 2026 13:44:02 +0000 Manifest this update: Tue 30 Jun 2026 13:39:02 +0000 Manifest next update: Wed 01 Jul 2026 16:15:02 +0000 Files and hashes: 1: 323430333a623334303a3a2f33322d3332203d3e2037343832.roa (hash: hiAMshIFeOvfI56eDRx+E/hRaz9fkWvi1Lc3t0AuAEM=) 2: 323430333a623334303a3a2f33322d3332203d3e2039393232.roa (hash: gstqBh9leADrly9mEk8JDvYH97tC5t4YGpfgybnlAak=) 3: 3130332e3133302e34382e302f32322d3234203d3e2039393232.roa (hash: aCIxecjNLFEVzEOiCgmZ0K9yJGY1pe87ewnv5AFzkXs=) 4: 3130332e3133302e34382e302f32322d3234203d3e2037343832.roa (hash: 1XWO79v70d0DECH7Xj/kPutEjOsPSVEabfarX+KunFQ=) 5: 5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl (hash: OgxnMdYVp0Y8lqOb31dWAcRM5G93ijWj3HQYDHILVB0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 14:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 20:f0:06:16:f0:11:c3:bf:da:c8:41:4a:ed:25:ec:30:af:08:e0:c1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Validity Not Before: Jun 30 13:39:02 2026 GMT Not After : Jul 1 16:15:02 2026 GMT Subject: CN=4D64FDE1C1CEE8FA1C38ED3919BB4951B2A19B65 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:7b:45:b9:e4:19:86:48:6e:47:25:17:36:ad: 82:a6:80:89:4a:1f:43:6b:97:d3:30:03:03:25:39: 15:63:19:73:18:95:a4:2e:1e:5e:01:09:3e:d0:41: 71:ad:65:06:10:aa:92:7b:b9:5e:a7:21:45:21:a6: 7f:41:56:09:90:d4:25:36:40:7d:dc:e7:d1:8c:b3: 04:bc:3d:83:bc:93:40:bf:8c:ed:3a:c7:55:fb:ee: b1:21:da:e6:7c:d5:34:72:d6:32:9b:9f:79:6a:38: 3d:e2:b1:db:e3:8c:e0:7c:78:ca:3c:ca:9b:19:f2: a1:52:5d:19:07:67:e6:d2:42:85:db:b2:ca:fa:63: f1:c7:da:59:1b:54:c4:7a:32:30:31:aa:9e:1e:40: 34:80:7d:c6:2f:36:f3:93:3d:a9:1a:09:5e:04:3a: 87:17:b0:85:86:2f:c2:71:7f:e7:90:d2:f3:2a:e7: 44:e7:5c:53:7a:69:a2:7d:a9:b1:7b:86:5c:9b:97: 4d:1d:97:0c:c9:41:19:32:74:d5:60:b6:3a:72:e3: b0:82:0b:20:6f:c6:45:a1:4d:31:3e:d7:69:5a:14: ae:a1:50:03:46:19:ea:3f:a2:fe:16:27:0e:5c:79: 85:2a:ec:8c:45:9e:8c:98:f9:ac:74:42:5c:63:98: 00:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:64:FD:E1:C1:CE:E8:FA:1C:38:ED:39:19:BB:49:51:B2:A1:9B:65 X509v3 Authority Key Identifier: keyid:5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d9:6b:fb:4b:ce:ef:63:24:47:38:01:29:c3:bf:d0:fc:9e:12: 81:5c:35:ef:8d:a7:a9:7f:9d:69:76:16:cd:fe:eb:ed:51:42: 70:1f:50:f0:4b:2f:ba:24:4e:d4:aa:6d:b4:27:df:91:bb:4a: a3:62:ff:2f:8f:f9:04:7f:87:4a:92:78:06:4a:22:11:13:b4: 71:c6:96:1e:f8:59:0e:e9:c7:c1:e6:32:91:4a:97:5a:c8:1c: df:fc:4c:91:f1:f7:c9:98:67:36:85:37:8c:03:94:c9:c0:83: 38:36:ad:8a:5b:96:f0:65:78:61:26:bb:0e:84:82:4a:54:ad: 0e:ce:89:f3:18:0c:95:69:68:a5:67:8c:b3:84:e3:60:03:52: 9f:6a:57:68:01:b6:2f:8e:d8:01:30:f9:13:d5:d0:04:17:60: 66:bf:1f:b0:0e:f0:a4:2d:40:33:2b:bb:ee:1a:2e:bb:56:67: 6a:e1:d3:7d:ad:5c:73:a4:3f:ec:01:8c:5a:6c:c9:9e:00:af: 7a:57:9d:2f:65:64:63:8b:83:2b:c9:ec:f3:90:36:d4:be:f3: c0:b9:7e:94:42:a3:3c:ed:f4:6d:11:38:cc:71:24:d0:cb:3f: 4b:2c:e8:93:f4:cc:b7:82:fe:92:2d:1a:31:e6:27:74:3e:7e: 09:2a:7f:52 -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUIPAGFvARw7/ayEFK7SXsMK8I4MEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVD NTg4QkE5RTAeFw0yNjA2MzAxMzM5MDJaFw0yNjA3MDExNjE1MDJaMDMxMTAvBgNV BAMTKDRENjRGREUxQzFDRUU4RkExQzM4RUQzOTE5QkI0OTUxQjJBMTlCNjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwe0W55BmGSG5HJRc2rYKmgIlK H0Nrl9MwAwMlORVjGXMYlaQuHl4BCT7QQXGtZQYQqpJ7uV6nIUUhpn9BVgmQ1CU2 QH3c59GMswS8PYO8k0C/jO06x1X77rEh2uZ81TRy1jKbn3lqOD3isdvjjOB8eMo8 ypsZ8qFSXRkHZ+bSQoXbssr6Y/HH2lkbVMR6MjAxqp4eQDSAfcYvNvOTPakaCV4E OocXsIWGL8Jxf+eQ0vMq50TnXFN6aaJ9qbF7hlybl00dlwzJQRkydNVgtjpy47CC CyBvxkWhTTE+12laFK6hUANGGeo/ov4WJw5ceYUq7IxFnoyY+ax0QlxjmABTAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUTWT94cHO6PocOO05GbtJUbKhm2UwHwYDVR0j BBgwFoAUWivuJDlbNvT/qVdT9nMVFcWIup4wDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVU LzAvNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVDNTg4QkE5RS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS81QTJCRUUyNDM5NUIzNkY0RkZBOTU3NTNGNjcz MTUxNUM1ODhCQTlFLmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVULzAvNUEyQkVFMjQzOTVC MzZGNEZGQTk1NzUzRjY3MzE1MTVDNTg4QkE5RS5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBANlr+0vO72Mk RzgBKcO/0PyeEoFcNe+Np6l/nWl2Fs3+6+1RQnAfUPBLL7okTtSqbbQn35G7SqNi /y+P+QR/h0qSeAZKIhETtHHGlh74WQ7px8HmMpFKl1rIHN/8TJHx98mYZzaFN4wD lMnAgzg2rYpblvBleGEmuw6EgkpUrQ7OifMYDJVpaKVnjLOE42ADUp9qV2gBti+O 2AEw+RPV0AQXYGa/H7AO8KQtQDMru+4aLrtWZ2rh032tXHOkP+wBjFpsyZ4Ar3pX nS9lZGOLgyvJ7POQNtS+88C5fpRCozzt9G0ROMxxJNDLP0ss6JP0zLeC/pItGjHm J3Q+fgkqf1I= -----END CERTIFICATE-----Generated at Tue Jun 30 19:06:59 2026 by rpki-client