$ rpki-client -vvf rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft File: 432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft (raw, json) Hash identifier: uX7ohfDjSKHmm6TwNkOT/vzOyxTqNufWs+IZy7KvfbE= Subject key identifier: DC:52:F6:10:8D:24:02:74:B9:D5:31:79:57:7B:28:3F:BF:72:1A:32 Authority key identifier: 43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8 Certificate issuer: /CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8 Certificate serial: 04A9EA727BBB66C0D9E0BF683ED30185DEFDA19F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft Manifest number: 07 Signing time: Wed 13 May 2026 07:57:43 +0000 Manifest this update: Wed 13 May 2026 07:52:43 +0000 Manifest next update: Thu 14 May 2026 11:07:43 +0000 Files and hashes: 1: 432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl (hash: NhXyANcc+A865Y27WyPCApJRGy1flhDtegVtBo587dg=) 2: 3231312e37392e39382e302f32332d3234203d3e2037343833.roa (hash: CV931fhtw0I4Ug+ZdjJ2kNYqIh93pZBX4rG+jxT2d9s=) 3: 3231312e37392e39382e302f32332d3234203d3e203231383539.roa (hash: I1jX/SnnFc+gmcZStVqiSrnNdoqyaCZ0ExujTfgAaX0=) 4: 3130332e3133382e3139342e302f32332d3234203d3e2037343833.roa (hash: zbX9ASNL5w9sJWWX7Nf2PDDJj816BJvv/iDAe1HP1Zg=) 5: 3231312e37392e39382e302f32332d3234203d3e20313530323838.roa (hash: hyBqf6CtEwkG2N35ylu9mRRCVoEzfqPS3BAfelnzHEQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 11:07:43 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:a9:ea:72:7b:bb:66:c0:d9:e0:bf:68:3e:d3:01:85:de:fd:a1:9f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8 Validity Not Before: May 13 07:52:43 2026 GMT Not After : May 14 11:07:43 2026 GMT Subject: CN=DC52F6108D240274B9D53179577B283FBF721A32 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:1a:91:a6:01:b9:e6:eb:09:ef:ed:25:0a:89: c1:6e:e3:47:ed:00:2e:f0:2d:71:98:13:65:71:20: 32:3a:f1:e6:23:97:48:27:88:ae:bd:ca:f9:92:a2: 53:97:f7:39:67:d0:a8:9f:b2:8a:a4:89:f3:90:d9: 30:ab:87:2c:46:df:b1:15:7f:7f:36:57:37:f2:0a: 8d:ed:25:54:4f:e7:23:3e:a6:1b:89:b7:2e:55:57: a3:45:cb:11:b7:3c:fc:59:c4:d0:33:ce:b4:b7:16: 12:ab:9e:b3:c1:61:fd:ce:97:ce:3f:5e:08:30:70: bb:84:8d:f8:e6:22:60:ec:54:a6:a8:1a:f9:2d:b9: 12:e1:c1:87:ed:33:ab:d5:c5:b2:b9:86:6f:a3:6c: 28:22:44:dc:f4:56:e8:05:81:8b:5f:8f:7c:cc:09: 80:0e:51:6d:3c:c6:7c:9f:22:d0:f1:32:5d:77:90: 3d:25:63:6b:1d:f9:2e:0b:a3:99:20:8f:f8:38:6c: ee:10:d5:db:4e:10:5f:73:7e:81:f3:65:88:de:4a: 32:da:6a:ef:46:bb:50:fb:b0:c0:26:2c:ab:35:58: b2:56:0d:4e:41:72:b7:05:a5:94:d5:7b:1f:1b:53: d5:5b:7a:1f:b8:77:ee:b5:db:cc:02:ce:1b:f4:54: 23:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:52:F6:10:8D:24:02:74:B9:D5:31:79:57:7B:28:3F:BF:72:1A:32 X509v3 Authority Key Identifier: keyid:43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9f:4a:43:5d:63:9f:f4:c3:b9:ca:4f:c8:eb:cc:90:2f:52:40: b8:d6:d7:05:07:5f:b3:9d:ef:81:33:ef:f6:dc:fe:2a:f4:a7: 6d:70:f3:5d:0b:8e:a7:8d:1c:98:05:09:9f:eb:2f:2e:29:62: 15:6e:84:d6:7d:4d:07:03:d2:2a:02:3e:f2:00:a0:40:a1:58: 8a:eb:33:b1:51:47:b0:ce:3c:54:ac:43:f5:42:9e:c2:7c:e0: 21:02:90:ae:9a:c1:10:87:1c:07:80:ee:c2:08:0f:a0:53:4e: 06:f3:46:53:7d:fa:c8:30:2e:0d:f5:70:d1:a3:b4:8c:1a:a4: 4b:42:d3:3c:b6:19:51:9a:65:5f:0c:78:b9:4e:44:a3:32:7a: 6a:0c:74:c3:2d:5d:41:32:ea:47:36:00:65:c0:27:54:c4:9f: ef:90:99:1e:b6:38:8e:16:ff:64:e8:6d:2a:c5:00:6d:6a:65: 6e:cd:48:d7:f8:2e:6f:b4:a6:65:4b:58:22:35:fc:96:d1:7d: d0:0d:50:4f:78:9b:54:f4:34:34:da:e7:73:41:be:00:12:4a: 2a:2b:38:5a:6e:31:78:1b:03:1d:b2:9c:d9:61:d0:38:c9:31: 3f:f6:6c:8f:33:8f:4c:0b:77:5d:46:9f:a8:2e:4b:f1:4a:d5: a8:ff:bd:ab -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUBKnqcnu7ZsDZ4L9oPtMBhd79oZ8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThDNjJBRkM1 MzMzQTJBODAeFw0yNjA1MTMwNzUyNDNaFw0yNjA1MTQxMTA3NDNaMDMxMTAvBgNV BAMTKERDNTJGNjEwOEQyNDAyNzRCOUQ1MzE3OTU3N0IyODNGQkY3MjFBMzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5GpGmAbnm6wnv7SUKicFu40ft AC7wLXGYE2VxIDI68eYjl0gniK69yvmSolOX9zln0KifsoqkifOQ2TCrhyxG37EV f382VzfyCo3tJVRP5yM+phuJty5VV6NFyxG3PPxZxNAzzrS3FhKrnrPBYf3Ol84/ XggwcLuEjfjmImDsVKaoGvktuRLhwYftM6vVxbK5hm+jbCgiRNz0VugFgYtfj3zM CYAOUW08xnyfItDxMl13kD0lY2sd+S4Lo5kgj/g4bO4Q1dtOEF9zfoHzZYjeSjLa au9Gu1D7sMAmLKs1WLJWDU5BcrcFpZTVex8bU9Vbeh+4d+6128wCzhv0VCMpAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQU3FL2EI0kAnS51TF5V3soP79yGjIwHwYDVR0j BBgwFoAUQycW7gVM69xi/ALd6MYq/FMzoqgwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTk9SREFU Vy8wLzQzMjcxNkVFMDU0Q0VCREM2MkZDMDJEREU4QzYyQUZDNTMzM0EyQTguY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThD NjJBRkM1MzMzQTJBOC5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05PUkRBVFcvMC80MzI3MTZFRTA1 NENFQkRDNjJGQzAyRERFOEM2MkFGQzUzMzNBMkE4Lm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAn0pDXWOf 9MO5yk/I68yQL1JAuNbXBQdfs53vgTPv9tz+KvSnbXDzXQuOp40cmAUJn+svLili FW6E1n1NBwPSKgI+8gCgQKFYiuszsVFHsM48VKxD9UKewnzgIQKQrprBEIccB4Du wggPoFNOBvNGU336yDAuDfVw0aO0jBqkS0LTPLYZUZplXwx4uU5EozJ6agx0wy1d QTLqRzYAZcAnVMSf75CZHrY4jhb/ZOhtKsUAbWplbs1I1/gub7SmZUtYIjX8ltF9 0A1QT3ibVPQ0NNrnc0G+ABJKKis4Wm4xeBsDHbKc2WHQOMkxP/ZsjzOPTAt3XUaf qC5L8UrVqP+9qw== -----END CERTIFICATE-----Generated at Wed May 13 20:34:02 2026 by rpki-client