$ rpki-client -vvf rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft File: 5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft (raw, json) Hash identifier: AU4S35UJZ62NlCSL4lmL/qqvF3cwtQ0jyrwxCduvyZ0= Subject key identifier: 43:0E:47:E3:8B:18:6A:60:54:20:A0:C0:FE:81:13:AC:B7:DE:34:5B Authority key identifier: 5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E Certificate issuer: /CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Certificate serial: 1F548AD9EDA727D48EBA5C909C00F658B2F91A53 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft Manifest number: 07 Signing time: Wed 13 May 2026 06:47:26 +0000 Manifest this update: Wed 13 May 2026 06:42:26 +0000 Manifest next update: Thu 14 May 2026 07:34:26 +0000 Files and hashes: 1: 3130332e3133302e34382e302f32322d3234203d3e2037343832.roa (hash: 1XWO79v70d0DECH7Xj/kPutEjOsPSVEabfarX+KunFQ=) 2: 5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl (hash: ubalNnQUNXu1syfDQceImaAfrzBLF7NMM3OYiCkJJ/s=) 3: 3130332e3133302e34382e302f32322d3234203d3e2039393232.roa (hash: aCIxecjNLFEVzEOiCgmZ0K9yJGY1pe87ewnv5AFzkXs=) 4: 323430333a623334303a3a2f33322d3332203d3e2037343832.roa (hash: hiAMshIFeOvfI56eDRx+E/hRaz9fkWvi1Lc3t0AuAEM=) 5: 323430333a623334303a3a2f33322d3332203d3e2039393232.roa (hash: gstqBh9leADrly9mEk8JDvYH97tC5t4YGpfgybnlAak=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 07:34:26 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:54:8a:d9:ed:a7:27:d4:8e:ba:5c:90:9c:00:f6:58:b2:f9:1a:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5A2BEE24395B36F4FFA95753F6731515C588BA9E Validity Not Before: May 13 06:42:26 2026 GMT Not After : May 14 07:34:26 2026 GMT Subject: CN=430E47E38B186A605420A0C0FE8113ACB7DE345B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:21:7e:0a:22:63:b6:6d:fc:bb:e0:62:24:41: d6:4f:89:44:a0:84:f4:2e:48:53:1c:01:47:b7:a1: 02:29:c7:48:a7:c7:9f:18:1c:62:d2:53:50:6b:1e: 96:59:f4:ee:49:60:e7:33:41:cd:bd:6d:41:79:7e: 56:36:b0:3e:de:5e:e8:fc:1b:b0:a7:de:11:32:61: 1a:b2:08:c5:83:65:c0:e6:52:1a:20:af:88:b2:1c: a2:8e:a6:58:e0:d3:1f:28:20:f1:ff:37:ca:3e:47: c5:d3:39:3a:17:26:c0:2a:28:d7:13:7e:71:86:d3: 95:bf:91:f4:d0:7e:fa:97:95:95:3a:5c:84:28:86: 61:eb:43:f3:3b:f4:b6:13:ad:df:2f:c5:d5:39:8e: e1:c0:ab:30:8d:be:65:c7:4f:60:d2:43:93:db:c5: 7c:6f:7d:66:27:30:fd:04:8c:40:ed:35:f0:83:14: 13:9a:7a:b4:82:30:4e:70:0b:2b:f2:aa:4f:49:e1: 1e:f1:91:08:a3:e3:6d:b5:26:53:41:ee:1e:e6:47: 8b:e8:63:d8:c3:a1:ea:97:75:c0:37:85:39:40:69: b7:45:0f:2f:24:7b:75:9c:e8:14:36:60:a8:e5:24: ca:8f:c9:b4:a4:05:d4:93:6c:0e:03:95:3c:05:9f: 65:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:0E:47:E3:8B:18:6A:60:54:20:A0:C0:FE:81:13:AC:B7:DE:34:5B X509v3 Authority Key Identifier: keyid:5A:2B:EE:24:39:5B:36:F4:FF:A9:57:53:F6:73:15:15:C5:88:BA:9E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/5A2BEE24395B36F4FFA95753F6731515C588BA9E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NKBNET/0/5A2BEE24395B36F4FFA95753F6731515C588BA9E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4b:39:9d:92:03:4a:f0:8f:58:04:95:b6:76:f3:62:27:af:35: 57:06:59:26:8b:74:4b:b7:84:8f:a7:73:1f:f4:bc:15:3f:0c: a4:67:7d:16:5a:e7:95:ab:d9:39:a2:48:92:95:31:db:09:7e: 37:1a:44:63:04:b4:32:d1:f4:3c:c3:2f:f3:04:03:64:35:0a: 85:b9:7f:e0:0a:d9:0f:09:6b:5e:b7:a1:84:84:70:27:92:30: 6c:9c:14:ce:cc:a1:15:35:26:be:90:7a:67:d7:f2:cb:e3:4a: 52:cb:38:ae:c6:77:cd:35:0e:8b:bd:7d:3e:2e:b3:a4:ee:1d: 53:55:fa:24:b4:9e:84:41:ba:53:54:01:3d:a4:2f:95:41:50: ff:58:11:4a:1a:09:f3:b6:e7:8a:e1:64:17:87:0a:13:c0:80: 17:90:04:d7:bc:70:47:64:e5:ea:25:63:98:f0:8c:85:92:32: cc:ca:2a:39:8b:1c:f6:16:e7:3f:ff:a6:14:c5:99:92:80:31: bd:8d:04:42:5d:8f:87:61:89:f8:48:cd:21:4d:93:cd:12:ba: ef:8d:ca:f8:ab:ce:fa:70:a5:cf:50:a3:61:b5:86:7e:35:e6: e3:8e:ce:a6:b7:01:31:70:25:f6:03:fc:cb:30:6a:29:68:77: b3:76:ed:0d -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUH1SK2e2nJ9SOulyQnAD2WLL5GlMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVD NTg4QkE5RTAeFw0yNjA1MTMwNjQyMjZaFw0yNjA1MTQwNzM0MjZaMDMxMTAvBgNV BAMTKDQzMEU0N0UzOEIxODZBNjA1NDIwQTBDMEZFODExM0FDQjdERTM0NUIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDIX4KImO2bfy74GIkQdZPiUSg hPQuSFMcAUe3oQIpx0inx58YHGLSU1BrHpZZ9O5JYOczQc29bUF5flY2sD7eXuj8 G7Cn3hEyYRqyCMWDZcDmUhogr4iyHKKOpljg0x8oIPH/N8o+R8XTOToXJsAqKNcT fnGG05W/kfTQfvqXlZU6XIQohmHrQ/M79LYTrd8vxdU5juHAqzCNvmXHT2DSQ5Pb xXxvfWYnMP0EjEDtNfCDFBOaerSCME5wCyvyqk9J4R7xkQij4221JlNB7h7mR4vo Y9jDoeqXdcA3hTlAabdFDy8ke3Wc6BQ2YKjlJMqPybSkBdSTbA4DlTwFn2WpAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUQw5H44sYamBUIKDA/oETrLfeNFswHwYDVR0j BBgwFoAUWivuJDlbNvT/qVdT9nMVFcWIup4wDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVU LzAvNUEyQkVFMjQzOTVCMzZGNEZGQTk1NzUzRjY3MzE1MTVDNTg4QkE5RS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS81QTJCRUUyNDM5NUIzNkY0RkZBOTU3NTNGNjcz MTUxNUM1ODhCQTlFLmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTktCTkVULzAvNUEyQkVFMjQzOTVC MzZGNEZGQTk1NzUzRjY3MzE1MTVDNTg4QkE5RS5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAEs5nZIDSvCP WASVtnbzYievNVcGWSaLdEu3hI+ncx/0vBU/DKRnfRZa55Wr2TmiSJKVMdsJfjca RGMEtDLR9DzDL/MEA2Q1CoW5f+AK2Q8Ja163oYSEcCeSMGycFM7MoRU1Jr6QemfX 8svjSlLLOK7Gd801Dou9fT4us6TuHVNV+iS0noRBulNUAT2kL5VBUP9YEUoaCfO2 54rhZBeHChPAgBeQBNe8cEdk5eolY5jwjIWSMszKKjmLHPYW5z//phTFmZKAMb2N BEJdj4dhifhIzSFNk80Suu+Nyvirzvpwpc9Qo2G1hn415uOOzqa3ATFwJfYD/Msw ailod7N27Q0= -----END CERTIFICATE-----Generated at Wed May 13 20:35:45 2026 by rpki-client