$ rpki-client -vvf rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft File: 61F2C234A51074E0978404BDC79AA79130040B00.mft (raw, json) Hash identifier: Wtt3fhOrhnywUkRCnfxs0QwJBXj1hQNcY55IgvANNQ4= Subject key identifier: C9:A2:40:9A:28:5E:90:B0:91:4C:15:BE:76:3D:B0:3E:4A:06:1E:DD Authority key identifier: 61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00 Certificate issuer: /CN=61F2C234A51074E0978404BDC79AA79130040B00 Certificate serial: 75AE760298A21241B28C549B77C544ED55985BD5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer Subject info access: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft Manifest number: 48 Signing time: Tue 30 Jun 2026 09:28:32 +0000 Manifest this update: Tue 30 Jun 2026 09:23:32 +0000 Manifest next update: Wed 01 Jul 2026 11:38:32 +0000 Files and hashes: 1: 3130332e3134372e3133302e302f32332d3234203d3e20313331363737.roa (hash: VGWA54tpU9ZSYiEjleM6DRC35GLg1lZvqOaYCzFR4yI=) 2: 61F2C234A51074E0978404BDC79AA79130040B00.crl (hash: Kpw8dsgw540A7AYntLTAyO0QH8g5dtUieSxTZdgTdj4=) 3: 3130332e3134372e3133302e302f32332d3234203d3e20313331363734.roa (hash: hPsd6S2D9hMin8P77QyQ2OhAm+/bYf9j5m2G2tBdGrg=) 4: 323430353a623863303a3a2f33322d3634203d3e20313331363734.roa (hash: zPchVf+BzdWdK6jtiyFuKEMvAaWvPZafeIufyi+NDAU=) 5: 323430353a623863303a3a2f33322d3634203d3e20313331363737.roa (hash: AnPDeDj6hR2bEdYvy6SAFA3A/pHmArnFaxzCcI0NAKA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.crl rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 11:38:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 75:ae:76:02:98:a2:12:41:b2:8c:54:9b:77:c5:44:ed:55:98:5b:d5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61F2C234A51074E0978404BDC79AA79130040B00 Validity Not Before: Jun 30 09:23:32 2026 GMT Not After : Jul 1 11:38:32 2026 GMT Subject: CN=C9A2409A285E90B0914C15BE763DB03E4A061EDD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:3c:46:92:c1:89:bd:0f:95:8e:ec:c4:d5:38: 46:08:5c:ef:63:a3:96:21:b7:51:76:93:48:3d:e0: cb:f0:c5:72:95:33:f5:cb:d7:94:aa:7e:b5:cd:9a: 41:4e:8e:e1:cf:2a:26:b6:73:28:6a:4e:95:fe:45: 6e:b7:7e:13:3f:8d:46:e7:67:f3:ac:da:de:f6:70: c2:4e:18:de:db:fb:01:7d:62:09:dd:af:94:22:0e: ef:32:b2:db:94:2b:e2:10:2f:89:b5:c8:ca:47:d9: 0a:f9:79:d8:48:ee:96:8b:39:9b:76:aa:01:9a:c2: 12:a8:72:f7:bb:4f:55:d6:55:bc:ba:d3:14:d2:7d: 26:93:3b:77:cf:8e:c8:13:bf:06:00:3c:ba:0d:0c: 7a:60:84:97:3c:f6:45:6b:37:6a:76:58:56:a4:4e: 22:5a:b0:57:41:9d:b7:95:96:5a:32:71:33:78:5b: 42:0a:e0:6a:04:83:20:3d:91:e0:b9:bc:db:4d:b9: ea:63:42:45:8f:70:e7:e8:63:a4:b4:31:b3:4c:ca: f8:be:8d:91:0d:3a:bc:7f:24:59:33:50:ff:8a:a1: 70:1a:cb:99:59:ae:ba:8e:59:9d:52:d7:04:9b:7b: bd:52:fd:49:23:76:f4:07:b1:c2:86:4f:37:99:49: de:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C9:A2:40:9A:28:5E:90:B0:91:4C:15:BE:76:3D:B0:3E:4A:06:1E:DD X509v3 Authority Key Identifier: keyid:61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 49:72:48:be:33:20:b6:5b:ab:8b:fa:82:84:95:b1:8d:a2:3d: 1d:da:49:c7:16:7e:82:63:1c:40:30:4c:0b:9f:5e:c7:d1:ee: bd:26:23:70:47:23:f6:6a:0d:49:e3:d7:5b:5c:fe:30:2a:d0: 6e:05:f2:e1:b5:23:36:4f:d7:d6:b7:b3:0d:27:3f:86:36:4f: 7a:e7:6d:3e:53:c1:3c:01:fa:94:8b:61:ce:44:6a:3e:ae:e1: 83:70:83:5a:25:93:2f:c3:f7:cd:72:46:ae:fa:dd:46:b5:57: 78:a2:9f:2d:83:57:d4:02:85:df:8b:9b:11:d8:3d:8e:6d:a5: ff:c8:f7:18:51:c8:0d:d1:a4:b1:27:4b:21:54:a5:5d:24:63: d8:d5:02:0b:49:ed:38:04:45:f7:e1:b3:76:3f:34:e2:31:be: ae:56:74:e7:df:7a:dc:c0:c3:a5:2c:26:37:60:45:be:cf:18: 25:90:0f:13:23:cf:64:e9:05:14:0d:d7:cb:a2:a7:e1:9f:43: 68:31:83:04:df:a1:2f:80:ae:93:f9:ef:fc:1a:b4:46:4e:ee: 5a:48:a8:20:51:8f:1e:f1:8e:63:2e:38:8e:eb:4c:46:04:67: f0:a6:a2:22:72:dc:92:4e:a7:88:3c:de:bb:99:d0:01:bf:a1: 01:95:91:42 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUda52ApiiEkGyjFSbd8VE7VWYW9UwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFGMkMyMzRBNTEwNzRFMDk3ODQwNEJEQzc5QUE3OTEz MDA0MEIwMDAeFw0yNjA2MzAwOTIzMzJaFw0yNjA3MDExMTM4MzJaMDMxMTAvBgNV BAMTKEM5QTI0MDlBMjg1RTkwQjA5MTRDMTVCRTc2M0RCMDNFNEEwNjFFREQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC6PEaSwYm9D5WO7MTVOEYIXO9j o5Yht1F2k0g94MvwxXKVM/XL15SqfrXNmkFOjuHPKia2cyhqTpX+RW63fhM/jUbn Z/Os2t72cMJOGN7b+wF9Ygndr5QiDu8ystuUK+IQL4m1yMpH2Qr5edhI7paLOZt2 qgGawhKocve7T1XWVby60xTSfSaTO3fPjsgTvwYAPLoNDHpghJc89kVrN2p2WFak TiJasFdBnbeVlloycTN4W0IK4GoEgyA9keC5vNtNuepjQkWPcOfoY6S0MbNMyvi+ jZENOrx/JFkzUP+KoXAay5lZrrqOWZ1S1wSbe71S/UkjdvQHscKGTzeZSd6lAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUyaJAmihekLCRTBW+dj2wPkoGHt0wHwYDVR0j BBgwFoAUYfLCNKUQdOCXhAS9x5qnkTAECwAwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT1BFTlJJ Q0gvMC82MUYyQzIzNEE1MTA3NEUwOTc4NDA0QkRDNzlBQTc5MTMwMDQwQjAwLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzYxRjJDMjM0QTUxMDc0RTA5Nzg0MDRCREM3 OUFBNzkxMzAwNDBCMDAuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZU cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9PUEVOUklDSC8wLzYxRjJDMjM0 QTUxMDc0RTA5Nzg0MDRCREM3OUFBNzkxMzAwNDBCMDAubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBJcki+ MyC2W6uL+oKElbGNoj0d2knHFn6CYxxAMEwLn17H0e69JiNwRyP2ag1J49dbXP4w KtBuBfLhtSM2T9fWt7MNJz+GNk96520+U8E8AfqUi2HORGo+ruGDcINaJZMvw/fN ckau+t1GtVd4op8tg1fUAoXfi5sR2D2ObaX/yPcYUcgN0aSxJ0shVKVdJGPY1QIL Se04BEX34bN2PzTiMb6uVnTn33rcwMOlLCY3YEW+zxglkA8TI89k6QUUDdfLoqfh n0NoMYME36EvgK6T+e/8GrRGTu5aSKggUY8e8Y5jLjiO60xGBGfwpqIictySTqeI PN67mdABv6EBlZFC -----END CERTIFICATE-----Generated at Tue Jun 30 19:11:51 2026 by rpki-client