$ rpki-client -vvf rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft File: 432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft (raw, json) Hash identifier: Y/Mmp2Z5SDkWOzjtZ0QELTnQSLWFg6NijSK4XJ2DrUs= Subject key identifier: 92:82:F9:D2:94:A0:14:A4:F5:88:F6:BC:95:62:EF:EE:63:7D:38:C2 Authority key identifier: 43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8 Certificate issuer: /CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8 Certificate serial: 1FAD17A0E39667BC519FC70F75823ADC95EE5AE6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft Manifest number: 46 Signing time: Tue 30 Jun 2026 04:28:05 +0000 Manifest this update: Tue 30 Jun 2026 04:23:05 +0000 Manifest next update: Wed 01 Jul 2026 04:38:05 +0000 Files and hashes: 1: 3130332e3133382e3139342e302f32332d3234203d3e2037343833.roa (hash: zbX9ASNL5w9sJWWX7Nf2PDDJj816BJvv/iDAe1HP1Zg=) 2: 3231312e37392e39382e302f32332d3234203d3e20313530323838.roa (hash: hyBqf6CtEwkG2N35ylu9mRRCVoEzfqPS3BAfelnzHEQ=) 3: 432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl (hash: 4LggbOZrjIPMZKWtO8WSE6o7k+ukJUdXBZz8kAaqMfs=) 4: 3231312e37392e39382e302f32332d3234203d3e203231383539.roa (hash: I1jX/SnnFc+gmcZStVqiSrnNdoqyaCZ0ExujTfgAaX0=) 5: 3231312e37392e39382e302f32332d3234203d3e2037343833.roa (hash: CV931fhtw0I4Ug+ZdjJ2kNYqIh93pZBX4rG+jxT2d9s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 04:38:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:ad:17:a0:e3:96:67:bc:51:9f:c7:0f:75:82:3a:dc:95:ee:5a:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8 Validity Not Before: Jun 30 04:23:05 2026 GMT Not After : Jul 1 04:38:05 2026 GMT Subject: CN=9282F9D294A014A4F588F6BC9562EFEE637D38C2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:b9:8a:8a:61:e4:2f:c4:32:d6:4e:28:2d:62: 27:c6:5f:d6:e5:cb:ff:e6:d0:0a:28:ad:9f:b8:79: 27:39:d7:be:85:42:c4:04:db:40:51:c5:c0:bc:a1: 68:f6:b3:9a:ea:79:3e:32:d2:37:1f:2d:84:1b:d9: 0b:97:9f:fd:25:b3:54:4e:89:a4:0c:97:d6:1c:75: 02:ed:ad:ea:9c:4a:25:4c:d8:c3:0d:87:6f:6f:8c: 4e:57:d8:18:79:48:c2:22:ce:35:1e:9e:62:18:d7: 4e:15:38:b9:a9:87:a3:c3:a5:42:02:8d:8e:4a:34: 8f:37:23:aa:fb:66:4a:f4:04:4b:54:c1:4a:68:2e: 42:38:8d:1c:c1:06:34:1a:1a:e6:c4:5e:c9:61:e3: 81:aa:1e:84:7a:4e:26:d7:98:5b:5d:0c:af:3c:2f: 34:de:35:e3:77:33:62:71:ff:71:55:e8:b3:cf:3c: 7d:d1:1a:68:aa:4c:c2:10:5a:e4:0d:36:26:8d:20: e5:22:95:de:e0:14:26:48:84:8e:c5:b6:70:5d:61: ef:bb:ef:e6:88:55:8e:33:c3:64:28:3d:0f:db:03: 31:10:a3:df:ab:c3:58:68:01:e0:e8:1c:57:d3:5e: 40:aa:8a:17:d8:93:63:d9:c6:4f:42:2f:87:2f:09: 2d:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 92:82:F9:D2:94:A0:14:A4:F5:88:F6:BC:95:62:EF:EE:63:7D:38:C2 X509v3 Authority Key Identifier: keyid:43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3d:22:26:64:57:d9:02:1d:a8:f9:9d:e1:45:d7:d1:8d:c4:41: 2b:30:00:9e:a8:25:cc:3b:0b:22:90:7e:62:6c:58:54:17:24: e2:9d:ea:bc:ad:2e:4b:5f:fe:e1:48:2a:3a:64:98:04:a6:c2: 78:37:d8:a9:8d:70:c9:17:9c:cf:82:a7:12:7b:c0:b7:78:f1: 56:bb:88:31:66:f7:93:59:db:91:07:e5:42:52:3f:14:7f:4e: 90:37:f6:01:8f:a7:ca:56:7f:9a:9d:89:77:6b:ac:5e:42:ad: 0a:2e:0a:30:93:ae:b1:5e:d5:1e:00:30:54:78:1c:4e:8b:6a: 7d:aa:84:0d:7b:78:b7:3a:8b:35:42:8b:d4:97:65:f2:7b:27: e4:06:20:b3:98:b5:06:fe:bc:4a:0f:30:38:24:35:f8:30:df: e1:03:30:e4:fc:10:5b:b7:50:ed:19:48:ce:af:0a:84:71:36: 76:94:92:ac:1a:ed:74:8b:b3:ff:47:34:68:f3:97:b9:3f:a1: ee:c3:79:26:b1:b6:93:5f:c5:c2:1f:ec:28:f3:32:b6:db:70: c5:8d:27:a5:b4:52:01:fc:88:10:a6:39:5b:c0:e1:26:4d:2a: 02:c8:7c:00:e5:85:ed:ed:72:40:79:af:5f:fa:bc:c2:0d:6b: cd:0d:19:ec -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUH60XoOOWZ7xRn8cPdYI63JXuWuYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThDNjJBRkM1 MzMzQTJBODAeFw0yNjA2MzAwNDIzMDVaFw0yNjA3MDEwNDM4MDVaMDMxMTAvBgNV BAMTKDkyODJGOUQyOTRBMDE0QTRGNTg4RjZCQzk1NjJFRkVFNjM3RDM4QzIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5uYqKYeQvxDLWTigtYifGX9bl y//m0AoorZ+4eSc5176FQsQE20BRxcC8oWj2s5rqeT4y0jcfLYQb2QuXn/0ls1RO iaQMl9YcdQLtreqcSiVM2MMNh29vjE5X2Bh5SMIizjUenmIY104VOLmph6PDpUIC jY5KNI83I6r7Zkr0BEtUwUpoLkI4jRzBBjQaGubEXslh44GqHoR6TibXmFtdDK88 LzTeNeN3M2Jx/3FV6LPPPH3RGmiqTMIQWuQNNiaNIOUild7gFCZIhI7FtnBdYe+7 7+aIVY4zw2QoPQ/bAzEQo9+rw1hoAeDoHFfTXkCqihfYk2PZxk9CL4cvCS1DAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUkoL50pSgFKT1iPa8lWLv7mN9OMIwHwYDVR0j BBgwFoAUQycW7gVM69xi/ALd6MYq/FMzoqgwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTk9SREFU Vy8wLzQzMjcxNkVFMDU0Q0VCREM2MkZDMDJEREU4QzYyQUZDNTMzM0EyQTguY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThD NjJBRkM1MzMzQTJBOC5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05PUkRBVFcvMC80MzI3MTZFRTA1 NENFQkRDNjJGQzAyRERFOEM2MkFGQzUzMzNBMkE4Lm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAPSImZFfZ Ah2o+Z3hRdfRjcRBKzAAnqglzDsLIpB+YmxYVBck4p3qvK0uS1/+4UgqOmSYBKbC eDfYqY1wyRecz4KnEnvAt3jxVruIMWb3k1nbkQflQlI/FH9OkDf2AY+nylZ/mp2J d2usXkKtCi4KMJOusV7VHgAwVHgcTotqfaqEDXt4tzqLNUKL1Jdl8nsn5AYgs5i1 Bv68Sg8wOCQ1+DDf4QMw5PwQW7dQ7RlIzq8KhHE2dpSSrBrtdIuz/0c0aPOXuT+h 7sN5JrG2k1/Fwh/sKPMytttwxY0npbRSAfyIEKY5W8DhJk0qAsh8AOWF7e1yQHmv X/q8wg1rzQ0Z7A== -----END CERTIFICATE-----Generated at Tue Jun 30 19:10:37 2026 by rpki-client