$ rpki-client -vvf rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft File: 2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft (raw, json) Hash identifier: MaM17DusNOjq8sQh9wC2baevva7L1367x3+YG+rmcLA= Subject key identifier: AF:5A:94:F8:72:09:E8:90:03:11:35:7C:72:61:AF:02:65:F0:4D:DA Authority key identifier: 2D:58:FB:0A:D6:CB:4C:FD:F7:36:47:91:D1:43:5A:D4:8C:67:5D:22 Certificate issuer: /CN=2D58FB0AD6CB4CFDF7364791D1435AD48C675D22 Certificate serial: 579F9E5D75EC8CB6DDC65E7CC1032492C8861D5A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft Manifest number: 05 Signing time: Wed 13 May 2026 06:52:28 +0000 Manifest this update: Wed 13 May 2026 06:47:28 +0000 Manifest next update: Thu 14 May 2026 09:12:28 +0000 Files and hashes: 1: 3130332e3134302e3233322e302f32342d3234203d3e203332323432.roa (hash: q7dF1jX4ROfIjFDlO5sVW9hRX9k2oXkr8fjwFlVtFmE=) 2: 3130332e3134302e3233332e302f32342d3234203d3e203332323432.roa (hash: dWqlZ57qGRFx6N79EQLtYosKEY+TDhYs9JMAewBJPsQ=) 3: 2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.crl (hash: XU+eiOj5F9eXcYQZxBmJI6rjrxEDDxVQkbs3q0tnB/Q=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.crl rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:12:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 57:9f:9e:5d:75:ec:8c:b6:dd:c6:5e:7c:c1:03:24:92:c8:86:1d:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D58FB0AD6CB4CFDF7364791D1435AD48C675D22 Validity Not Before: May 13 06:47:28 2026 GMT Not After : May 14 09:12:28 2026 GMT Subject: CN=AF5A94F87209E8900311357C7261AF0265F04DDA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f2:4b:b1:b1:fe:9e:c8:29:bc:54:49:b8:cb:dc: da:5e:51:36:04:18:12:b3:9e:84:6f:a4:67:a2:30: 21:0b:35:5f:a2:f8:18:d2:72:da:3b:20:f6:49:04: 18:44:d2:45:c6:3a:43:5d:37:20:8f:c4:34:55:de: d9:cd:8f:14:7f:3f:1d:e3:ed:77:36:d4:0b:b9:22: 80:ce:18:f0:55:9d:1d:8b:32:48:64:03:99:e5:4e: d3:8e:d6:75:9e:b9:75:2d:0e:85:81:32:99:5d:04: 3b:04:8a:2c:bd:4e:b4:cc:b8:c2:4f:3e:d6:cb:78: e8:1a:14:58:59:be:c4:04:11:fe:4e:94:9a:ce:cf: 6f:ef:b1:38:1c:95:f8:11:9b:ab:00:2d:d6:7b:12: b1:52:8d:6f:4a:a7:6a:e0:c2:11:3f:53:e4:9b:30: 20:6f:c4:4e:22:d1:a6:6a:7e:67:e8:df:3a:29:2e: 59:67:87:7d:67:be:05:6c:8d:4e:e8:93:a1:0a:2f: 4e:37:91:dd:fc:8f:a9:48:30:ac:fe:0b:e9:08:c2: 59:10:03:57:b9:fc:40:49:b9:db:f2:86:9d:46:6b: 22:44:63:63:44:c4:c3:20:22:76:64:b2:ee:c7:a4: 96:f9:f7:ce:d3:ed:0d:68:26:7e:10:94:99:51:f1: c5:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:5A:94:F8:72:09:E8:90:03:11:35:7C:72:61:AF:02:65:F0:4D:DA X509v3 Authority Key Identifier: keyid:2D:58:FB:0A:D6:CB:4C:FD:F7:36:47:91:D1:43:5A:D4:8C:67:5D:22 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NTCL/0/2D58FB0AD6CB4CFDF7364791D1435AD48C675D22.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 52:c4:8c:29:47:c7:cf:e9:3a:57:fc:0e:e4:67:83:98:92:ed: 96:10:57:86:08:f5:07:72:09:e3:d1:ef:c4:33:88:41:80:b2: f3:0a:98:ff:f4:35:c9:10:0a:1c:95:90:32:66:e4:4c:ff:32: 92:e2:fc:04:7d:25:39:40:26:67:2a:fc:a0:c8:54:ea:08:36: 70:be:9c:81:41:2a:bb:45:e2:e7:fe:94:79:06:76:3a:34:f7: b6:2f:73:d7:e1:01:6e:d1:b3:4b:d9:61:b9:4b:60:bf:b0:56: 9d:5e:72:87:44:8b:43:af:08:97:a9:2e:5c:5f:78:ca:9c:e2: 7c:45:a3:7b:16:e9:cf:ac:7b:d6:c1:2e:87:ab:1d:e8:3b:2f: ae:1a:59:c7:67:a9:f2:d2:2a:e3:4e:c3:19:fc:0a:c4:43:53: 64:d6:fd:92:e9:27:8a:bd:14:43:6e:45:f8:1d:5d:15:5e:f8: 7c:22:7c:2c:a3:0c:02:d7:b3:65:65:6b:51:2a:d8:e6:90:fa: 3c:40:eb:b2:2b:02:f7:e0:31:76:57:97:04:ef:61:23:a7:16: c0:cb:04:f8:c1:97:91:42:f6:60:94:0f:ba:1d:14:ae:49:a6: e2:e8:48:68:5f:03:66:9c:09:96:64:3b:57:c6:ca:e6:1f:a0: 3d:dd:c5:47 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUV5+eXXXsjLbdxl58wQMkksiGHVowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMkQ1OEZCMEFENkNCNENGREY3MzY0NzkxRDE0MzVBRDQ4 QzY3NUQyMjAeFw0yNjA1MTMwNjQ3MjhaFw0yNjA1MTQwOTEyMjhaMDMxMTAvBgNV BAMTKEFGNUE5NEY4NzIwOUU4OTAwMzExMzU3QzcyNjFBRjAyNjVGMDREREEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDyS7Gx/p7IKbxUSbjL3NpeUTYE GBKznoRvpGeiMCELNV+i+BjScto7IPZJBBhE0kXGOkNdNyCPxDRV3tnNjxR/Px3j 7Xc21Au5IoDOGPBVnR2LMkhkA5nlTtOO1nWeuXUtDoWBMpldBDsEiiy9TrTMuMJP PtbLeOgaFFhZvsQEEf5OlJrOz2/vsTgclfgRm6sALdZ7ErFSjW9Kp2rgwhE/U+Sb MCBvxE4i0aZqfmfo3zopLllnh31nvgVsjU7ok6EKL043kd38j6lIMKz+C+kIwlkQ A1e5/EBJudvyhp1GayJEY2NExMMgInZksu7HpJb5987T7Q1oJn4QlJlR8cW3AgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUr1qU+HIJ6JADETV8cmGvAmXwTdowHwYDVR0j BBgwFoAULVj7CtbLTP33NkeR0UNa1IxnXSIwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTlRDTC8w LzJENThGQjBBRDZDQjRDRkRGNzM2NDc5MUQxNDM1QUQ0OEM2NzVEMjIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMkQ1OEZCMEFENkNCNENGREY3MzY0NzkxRDE0MzVB RDQ4QzY3NUQyMi5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05UQ0wvMC8yRDU4RkIwQUQ2Q0I0Q0ZE RjczNjQ3OTFEMTQzNUFENDhDNjc1RDIyLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUsSMKUfHz+k6V/wO 5GeDmJLtlhBXhgj1B3IJ49HvxDOIQYCy8wqY//Q1yRAKHJWQMmbkTP8ykuL8BH0l OUAmZyr8oMhU6gg2cL6cgUEqu0Xi5/6UeQZ2OjT3ti9z1+EBbtGzS9lhuUtgv7BW nV5yh0SLQ68Il6kuXF94ypzifEWjexbpz6x71sEuh6sd6DsvrhpZx2ep8tIq407D GfwKxENTZNb9kuknir0UQ25F+B1dFV74fCJ8LKMMAtezZWVrUSrY5pD6PEDrsisC 9+AxdleXBO9hI6cWwMsE+MGXkUL2YJQPuh0Urkmm4uhIaF8DZpwJlmQ7V8bK5h+g Pd3FRw== -----END CERTIFICATE-----Generated at Wed May 13 20:33:32 2026 by rpki-client