$ rpki-client -vvf rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft File: 61F2C234A51074E0978404BDC79AA79130040B00.mft (raw, json) Hash identifier: k9U8V1I8q9ZIDU7GI4pCD8MFEC9wsmjXqU7Vl4XKAhA= Subject key identifier: E2:9E:DF:5B:25:D3:EE:FF:B3:AE:6B:58:EA:50:5D:15:D1:38:E6:4C Authority key identifier: 61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00 Certificate issuer: /CN=61F2C234A51074E0978404BDC79AA79130040B00 Certificate serial: 0F9D1AF2FE1F38B12937B8003EDF69BCCCBA39EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer Subject info access: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft Manifest number: 07 Signing time: Wed 13 May 2026 08:27:48 +0000 Manifest this update: Wed 13 May 2026 08:22:48 +0000 Manifest next update: Thu 14 May 2026 09:48:48 +0000 Files and hashes: 1: 3130332e3134372e3133302e302f32332d3234203d3e20313331363737.roa (hash: VGWA54tpU9ZSYiEjleM6DRC35GLg1lZvqOaYCzFR4yI=) 2: 323430353a623863303a3a2f33322d3634203d3e20313331363734.roa (hash: zPchVf+BzdWdK6jtiyFuKEMvAaWvPZafeIufyi+NDAU=) 3: 61F2C234A51074E0978404BDC79AA79130040B00.crl (hash: xE9Nk3PmX4t/tfnkWKeuiRKTVYLGxDMy1jH7KWNep1I=) 4: 3130332e3134372e3133302e302f32332d3234203d3e20313331363734.roa (hash: hPsd6S2D9hMin8P77QyQ2OhAm+/bYf9j5m2G2tBdGrg=) 5: 323430353a623863303a3a2f33322d3634203d3e20313331363737.roa (hash: AnPDeDj6hR2bEdYvy6SAFA3A/pHmArnFaxzCcI0NAKA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.crl rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:48:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:9d:1a:f2:fe:1f:38:b1:29:37:b8:00:3e:df:69:bc:cc:ba:39:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=61F2C234A51074E0978404BDC79AA79130040B00 Validity Not Before: May 13 08:22:48 2026 GMT Not After : May 14 09:48:48 2026 GMT Subject: CN=E29EDF5B25D3EEFFB3AE6B58EA505D15D138E64C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:86:ce:f3:b6:5a:d0:1d:0f:8f:ea:22:17:c2: fb:cc:69:e5:8e:5a:e8:e8:2d:0d:d3:15:6c:14:1e: b8:69:ef:84:a8:c2:e0:56:82:89:6c:27:d1:c4:5c: 6b:79:41:09:bb:4b:97:0a:eb:5c:c2:9b:85:10:60: 72:a9:ea:71:34:c2:8a:c9:29:bf:f3:71:4f:38:7c: 61:00:bc:21:0c:81:a1:0b:29:8e:c5:d9:a6:2b:c8: d1:7c:71:df:99:90:d9:30:55:69:8e:ca:b3:77:d1: 95:4a:76:5e:43:6d:b0:dd:7a:0d:86:b6:8f:62:ea: b8:b6:50:8c:bf:88:a3:1d:4e:54:64:90:80:f8:b5: 6a:27:a2:23:bc:ae:28:a2:f0:b8:e1:9a:f4:91:29: b6:f0:25:5e:f6:86:60:f4:3a:f8:44:2a:fb:58:d9: 0a:8f:7e:8f:73:89:ad:6b:ce:0e:52:12:e5:ad:52: 6c:4d:a9:5e:c5:e2:84:01:38:b8:b3:a1:c6:ff:f2: 37:b7:5e:6d:71:6f:dd:b7:97:92:4d:0d:d5:65:04: 87:10:39:cf:1e:be:b6:bd:f2:6f:c0:a5:41:c9:3a: e9:ed:93:c6:f0:14:cd:74:bc:59:ee:03:a9:6e:14: 75:83:07:89:22:f2:8b:c4:39:9b:71:0d:92:b0:9c: f3:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:9E:DF:5B:25:D3:EE:FF:B3:AE:6B:58:EA:50:5D:15:D1:38:E6:4C X509v3 Authority Key Identifier: keyid:61:F2:C2:34:A5:10:74:E0:97:84:04:BD:C7:9A:A7:91:30:04:0B:00 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/61F2C234A51074E0978404BDC79AA79130040B00.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/OPENRICH/0/61F2C234A51074E0978404BDC79AA79130040B00.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a6:2a:3b:6f:b8:6c:2b:c7:cf:ae:f3:05:f9:33:31:60:32:03: c7:f3:e4:95:7c:a0:64:3a:56:03:fd:21:9e:6a:0f:ca:91:d8: 65:e1:92:ee:d2:62:9b:1f:47:67:28:70:d4:58:ed:20:49:51: 2d:ff:96:e5:5d:fb:80:0a:78:8b:0f:c5:02:15:0e:f8:35:19: 18:53:61:61:62:62:70:17:4e:82:41:d0:20:95:35:5e:5a:05: f9:39:2b:14:14:b3:e6:3a:4a:fc:1b:f8:4d:1b:df:30:76:4d: b9:99:57:27:d1:fd:10:98:ca:38:e6:38:84:80:0d:6f:82:63: 43:ec:b8:2a:34:5b:eb:e6:2f:63:42:2f:c0:02:bd:40:8c:ea: 41:68:7b:a0:4a:9d:a3:45:17:0a:3d:0c:95:32:81:58:8e:d8: 21:04:71:89:89:f5:5d:ec:f1:45:de:cf:86:e6:91:f0:9a:5c: 4a:32:e4:fc:ab:60:74:fc:5b:3c:12:03:9d:cd:1c:f5:cd:c3: bc:c2:e8:0b:20:83:e9:1c:3b:18:a7:19:b1:e9:7b:49:14:f4: 05:b5:b5:39:a7:6d:cf:0b:5d:cf:31:9b:8c:e8:53:f4:19:3c: 7f:19:2b:ff:d5:e3:53:25:a3:52:44:28:82:9b:e3:2f:ed:c1: 53:d0:96:a7 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUD50a8v4fOLEpN7gAPt9pvMy6Oe4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjFGMkMyMzRBNTEwNzRFMDk3ODQwNEJEQzc5QUE3OTEz MDA0MEIwMDAeFw0yNjA1MTMwODIyNDhaFw0yNjA1MTQwOTQ4NDhaMDMxMTAvBgNV BAMTKEUyOUVERjVCMjVEM0VFRkZCM0FFNkI1OEVBNTA1RDE1RDEzOEU2NEMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDJhs7ztlrQHQ+P6iIXwvvMaeWO WujoLQ3TFWwUHrhp74SowuBWgolsJ9HEXGt5QQm7S5cK61zCm4UQYHKp6nE0worJ Kb/zcU84fGEAvCEMgaELKY7F2aYryNF8cd+ZkNkwVWmOyrN30ZVKdl5DbbDdeg2G to9i6ri2UIy/iKMdTlRkkID4tWonoiO8riii8LjhmvSRKbbwJV72hmD0OvhEKvtY 2QqPfo9zia1rzg5SEuWtUmxNqV7F4oQBOLizocb/8je3Xm1xb923l5JNDdVlBIcQ Oc8evra98m/ApUHJOuntk8bwFM10vFnuA6luFHWDB4ki8ovEOZtxDZKwnPN9AgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQU4p7fWyXT7v+zrmtY6lBdFdE45kwwHwYDVR0j BBgwFoAUYfLCNKUQdOCXhAS9x5qnkTAECwAwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT1BFTlJJ Q0gvMC82MUYyQzIzNEE1MTA3NEUwOTc4NDA0QkRDNzlBQTc5MTMwMDQwQjAwLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xLzYxRjJDMjM0QTUxMDc0RTA5Nzg0MDRCREM3 OUFBNzkxMzAwNDBCMDAuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZU cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9PUEVOUklDSC8wLzYxRjJDMjM0 QTUxMDc0RTA5Nzg0MDRCREM3OUFBNzkxMzAwNDBCMDAubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCmKjtv uGwrx8+u8wX5MzFgMgPH8+SVfKBkOlYD/SGeag/Kkdhl4ZLu0mKbH0dnKHDUWO0g SVEt/5blXfuACniLD8UCFQ74NRkYU2FhYmJwF06CQdAglTVeWgX5OSsUFLPmOkr8 G/hNG98wdk25mVcn0f0QmMo45jiEgA1vgmND7LgqNFvr5i9jQi/AAr1AjOpBaHug Sp2jRRcKPQyVMoFYjtghBHGJifVd7PFF3s+G5pHwmlxKMuT8q2B0/Fs8EgOdzRz1 zcO8wugLIIPpHDsYpxmx6XtJFPQFtbU5p23PC13PMZuM6FP0GTx/GSv/1eNTJaNS RCiCm+Mv7cFT0Jan -----END CERTIFICATE-----Generated at Wed May 13 20:36:36 2026 by rpki-client