$ rpki-client -vvf rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft File: 2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft (raw, json) Hash identifier: 3V66AExMep84tY0Ho74i1HUy/qnziZAzLV9uR6upVSM= Subject key identifier: AC:0E:33:94:EE:C9:14:15:38:0B:C0:04:88:96:EF:50:00:BA:DE:DC Authority key identifier: 2D:58:FB:0A:D6:CB:4C:FD:F7:36:47:91:D1:43:5A:D4:8C:67:5D:22 Certificate issuer: /CN=2D58FB0AD6CB4CFDF7364791D1435AD48C675D22 Certificate serial: 671CB6909A2900528309429C1308686D007CD2E2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft Manifest number: 45 Signing time: Tue 30 Jun 2026 08:53:28 +0000 Manifest this update: Tue 30 Jun 2026 08:48:28 +0000 Manifest next update: Wed 01 Jul 2026 10:39:28 +0000 Files and hashes: 1: 3130332e3134302e3233332e302f32342d3234203d3e203332323432.roa (hash: dWqlZ57qGRFx6N79EQLtYosKEY+TDhYs9JMAewBJPsQ=) 2: 2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.crl (hash: h9rJhy2vw3XOqHSvs22cRRxICTKsqBLQT1jHdnHxoBA=) 3: 3130332e3134302e3233322e302f32342d3234203d3e203332323432.roa (hash: q7dF1jX4ROfIjFDlO5sVW9hRX9k2oXkr8fjwFlVtFmE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.crl rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 10:39:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:1c:b6:90:9a:29:00:52:83:09:42:9c:13:08:68:6d:00:7c:d2:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D58FB0AD6CB4CFDF7364791D1435AD48C675D22 Validity Not Before: Jun 30 08:48:28 2026 GMT Not After : Jul 1 10:39:28 2026 GMT Subject: CN=AC0E3394EEC91415380BC0048896EF5000BADEDC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:2b:25:3a:ed:51:7e:9c:c0:d8:cd:c7:2e:b9: fb:cd:29:88:01:84:29:06:cc:b4:af:28:4d:95:88: 99:63:83:61:43:ff:c5:8c:50:3b:55:b0:6d:cd:1a: 07:4c:fc:7f:9f:97:6b:a1:a5:87:de:0c:6b:c6:71: 14:4c:ea:32:50:29:c7:5c:51:57:cc:05:71:c7:87: 20:19:69:98:33:68:7d:b6:5e:11:6c:1b:f9:ab:af: 1a:57:10:33:b2:d4:dc:c4:24:3a:f2:2d:2c:30:3d: d0:10:a9:10:bb:33:31:0c:5d:4b:7c:f5:b3:04:64: 8f:ed:21:1a:e9:97:3b:73:ff:99:8e:29:ed:a0:79: ee:27:e8:d3:17:71:29:09:28:f5:59:16:7e:24:4d: 85:0f:6f:77:ed:3a:dc:fc:22:b7:83:91:d4:03:a5: b8:b0:be:04:7e:a1:d1:08:a2:d1:0f:4a:38:20:77: 3b:6d:3d:f0:cf:42:5b:4e:b8:a5:c9:f6:44:50:e7: cc:6a:ba:a2:39:f9:25:dc:d7:bb:c4:e6:cb:4d:9a: ef:64:25:ad:4f:a9:34:9b:01:a8:04:35:d1:6d:65: 98:56:23:f2:83:4e:99:d4:c5:b8:84:be:33:a8:b9: f0:1c:f7:43:c2:d5:c2:db:79:80:02:13:b9:bf:2f: e7:2f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:0E:33:94:EE:C9:14:15:38:0B:C0:04:88:96:EF:50:00:BA:DE:DC X509v3 Authority Key Identifier: keyid:2D:58:FB:0A:D6:CB:4C:FD:F7:36:47:91:D1:43:5A:D4:8C:67:5D:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:54:d8:75:5f:f2:eb:1d:e2:c7:2e:1d:c7:07:26:be:85:e3: b5:7a:f4:7b:2b:05:3e:46:7c:39:32:f6:0a:1a:57:96:80:bc: cd:09:be:f4:f2:6d:ce:f5:fc:8d:09:a4:04:25:40:26:a5:79: 17:13:4b:c9:61:27:79:50:c0:c3:9f:0e:e7:0b:37:26:70:47: 6a:21:51:74:87:06:5a:e6:17:2f:89:fc:21:b6:57:c6:88:96: 43:df:1f:47:ce:ad:a5:96:8f:d4:b5:18:99:d2:7e:98:df:d1: f9:a2:96:71:4d:06:44:5e:36:7e:65:f6:66:4d:45:15:e7:92: 61:5c:51:79:b4:79:7c:fb:07:02:99:a2:66:99:b7:fe:4f:a6: e0:61:03:56:17:cd:c3:18:55:4f:42:06:67:cb:85:e7:7f:f9: 62:f2:c3:76:45:7f:a9:4c:be:1a:87:f9:68:c5:f1:7d:29:88: 08:63:5a:f6:8e:62:7c:4c:c9:c4:27:f9:d4:0e:b3:1e:b4:73: e3:6d:cd:10:8c:2b:54:bf:89:b5:cf:5b:93:e1:e7:bb:9d:2c: ac:ee:1b:8f:32:0e:72:cb:0b:29:32:0f:df:c9:38:04:fd:f6: c7:56:94:34:c2:cc:5f:db:0e:19:7c:f2:b4:44:4a:9e:7c:32: 0c:aa:7e:79 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUZxy2kJopAFKDCUKcEwhobQB80uIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ1OEZCMEFENkNCNENGREY3MzY0NzkxRDE0MzVBRDQ4 QzY3NUQyMjAeFw0yNjA2MzAwODQ4MjhaFw0yNjA3MDExMDM5MjhaMDMxMTAvBgNV BAMTKEFDMEUzMzk0RUVDOTE0MTUzODBCQzAwNDg4OTZFRjUwMDBCQURFREMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCvKyU67VF+nMDYzccuufvNKYgB hCkGzLSvKE2ViJljg2FD/8WMUDtVsG3NGgdM/H+fl2uhpYfeDGvGcRRM6jJQKcdc UVfMBXHHhyAZaZgzaH22XhFsG/mrrxpXEDOy1NzEJDryLSwwPdAQqRC7MzEMXUt8 9bMEZI/tIRrplztz/5mOKe2gee4n6NMXcSkJKPVZFn4kTYUPb3ftOtz8IreDkdQD pbiwvgR+odEIotEPSjggdzttPfDPQltOuKXJ9kRQ58xquqI5+SXc17vE5stNmu9k Ja1PqTSbAagENdFtZZhWI/KDTpnUxbiEvjOoufAc90PC1cLbeYACE7m/L+cvAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUrA4zlO7JFBU4C8AEiJbvUAC63twwHwYDVR0j BBgwFoAULVj7CtbLTP33NkeR0UNa1IxnXSIwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTlRDTC8w LzJENThGQjBBRDZDQjRDRkRGNzM2NDc5MUQxNDM1QUQ0OEM2NzVEMjIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMkQ1OEZCMEFENkNCNENGREY3MzY0NzkxRDE0MzVB RDQ4QzY3NUQyMi5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05UQ0wvMC8yRDU4RkIwQUQ2Q0I0Q0ZE RjczNjQ3OTFEMTQzNUFENDhDNjc1RDIyLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYVTYdV/y6x3ixy4d xwcmvoXjtXr0eysFPkZ8OTL2ChpXloC8zQm+9PJtzvX8jQmkBCVAJqV5FxNLyWEn eVDAw58O5ws3JnBHaiFRdIcGWuYXL4n8IbZXxoiWQ98fR86tpZaP1LUYmdJ+mN/R +aKWcU0GRF42fmX2Zk1FFeeSYVxRebR5fPsHApmiZpm3/k+m4GEDVhfNwxhVT0IG Z8uF53/5YvLDdkV/qUy+Gof5aMXxfSmICGNa9o5ifEzJxCf51A6zHrRz423NEIwr VL+Jtc9bk+Hnu50srO4bjzIOcssLKTIP38k4BP32x1aUNMLMX9sOGXzytERKnnwy DKp+eQ== -----END CERTIFICATE-----Generated at Tue Jun 30 19:07:35 2026 by rpki-client