$ rpki-client -vvf rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.mft File: 857A2684D7DBC89CE784E4DF16F1A1C03D945585.mft (raw, json) Hash identifier: 7JPnhb53BSdKWSZA6ytrkoe9jNf34RzvIwgskIZQtjk= Subject key identifier: 71:8A:2E:03:05:05:22:74:32:C2:06:21:7D:5D:71:4D:29:C1:89:B3 Authority key identifier: 85:7A:26:84:D7:DB:C8:9C:E7:84:E4:DF:16:F1:A1:C0:3D:94:55:85 Certificate issuer: /CN=857A2684D7DBC89CE784E4DF16F1A1C03D945585 Certificate serial: 68856A0D49B27627E652B5A9468E407AD5FC0E14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.mft Manifest number: 48 Signing time: Tue 30 Jun 2026 16:19:15 +0000 Manifest this update: Tue 30 Jun 2026 16:14:15 +0000 Manifest next update: Wed 01 Jul 2026 19:41:15 +0000 Files and hashes: 1: 3130332e3233342e38302e302f32322d3234203d3e203137373130.roa (hash: uqLuHrrFZUmLWpdnoJCaLRe1oXTuRusUvNya24FB8bg=) 2: 857A2684D7DBC89CE784E4DF16F1A1C03D945585.crl (hash: XdhtMq/lbjR640ZIQsw3YnkaEpeZIupCvWmfappYBHY=) 3: 3135302e3130372e36342e302f32322d3234203d3e203137373130.roa (hash: n+v5o9SBdWVqA5qvRZf6BeSCSFLkZj6roCOPAhBcFqM=) 4: 36312e35372e3232342e302f32302d3234203d3e203137373130.roa (hash: X08v+g23C1Fx8BQtKNgspF5UjPkGFKh01lY2BRa8ypo=) 5: 3130332e3233342e38312e302f32342d3234203d3e203137373130.roa (hash: Zvu3k5iDBaX9iOQpea8Ybb+zcrWBht3qRGl2nLlRl/o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.crl rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 14:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:85:6a:0d:49:b2:76:27:e6:52:b5:a9:46:8e:40:7a:d5:fc:0e:14 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=857A2684D7DBC89CE784E4DF16F1A1C03D945585 Validity Not Before: Jun 30 16:14:15 2026 GMT Not After : Jul 1 19:41:15 2026 GMT Subject: CN=718A2E030505227432C206217D5D714D29C189B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:b0:99:bd:d8:06:fb:82:2d:ff:63:77:79:1e: d8:d6:02:01:64:5b:3f:5b:1f:45:59:0e:8b:e7:25: 01:ee:1e:54:22:4c:a4:9c:33:0c:04:83:36:42:4a: 45:04:76:a2:36:84:76:b8:69:d8:d0:43:02:84:7b: b6:fb:0f:3f:01:41:f8:d4:5c:20:15:62:8c:26:95: 9a:07:32:3a:a1:05:2a:7f:55:99:95:cc:80:44:42: 0f:c1:9f:18:32:e1:31:da:c2:51:1a:95:4a:bc:58: 3c:d7:8a:40:73:e9:7b:75:7d:0a:cd:e3:a5:ee:11: 67:35:10:11:b8:cd:8e:78:5f:5d:fe:96:62:f4:79: eb:80:c0:a3:1f:29:9f:d7:da:9b:5b:19:53:fa:cb: fa:2b:66:f3:9e:6f:eb:22:a5:3c:74:6c:1d:fe:b7: 39:5f:66:c5:6a:52:81:74:75:bd:d1:f7:d2:cb:3f: 43:76:3a:50:2e:f6:d2:9f:74:02:3c:ec:4a:ad:58: d5:41:12:1b:46:e6:2e:76:5b:ee:9f:a2:f4:27:e7: 29:a2:eb:5c:9f:08:57:be:fe:37:c6:e2:1e:aa:cd: a3:bd:f9:7f:3a:eb:f2:72:17:2d:2d:0f:2f:2e:e2: d6:0c:76:be:6c:37:ae:c1:88:79:73:ea:35:87:cf: 3a:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 71:8A:2E:03:05:05:22:74:32:C2:06:21:7D:5D:71:4D:29:C1:89:B3 X509v3 Authority Key Identifier: keyid:85:7A:26:84:D7:DB:C8:9C:E7:84:E4:DF:16:F1:A1:C0:3D:94:55:85 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/857A2684D7DBC89CE784E4DF16F1A1C03D945585.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PIINET/0/857A2684D7DBC89CE784E4DF16F1A1C03D945585.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 8c:7e:ea:05:7d:0c:37:f6:95:56:26:75:26:8b:be:b6:5c:28: 4c:4f:1d:f5:61:fe:ee:68:6c:7a:96:6d:6d:da:c4:68:f8:60: c4:c1:c8:81:2d:9e:55:86:f0:ac:fd:57:b2:05:54:d9:d1:01: 13:fc:a1:f0:5f:da:fd:2d:87:2d:c1:26:73:94:f5:1d:6e:74: 68:b8:49:f8:91:1a:00:b4:b6:e5:0b:24:3e:84:89:3a:2c:92: fd:07:9c:6a:06:d7:cb:bf:ba:dd:cd:47:6e:15:ed:67:5f:e9: 13:c7:cf:83:cd:f6:f4:4d:43:4a:19:2e:16:a4:00:26:2b:b0: bd:82:35:2d:b1:8d:c9:92:cd:d6:42:0c:14:7e:3c:58:47:79: dd:09:75:26:5f:ec:19:f8:72:21:ef:b0:c8:7b:e5:82:91:16: f0:b8:27:9a:02:f6:ca:fd:97:bf:df:d1:ac:8a:e8:11:2c:5c: 99:83:73:d7:c3:42:5a:91:df:4e:08:ea:da:df:3b:19:5b:d1: 84:d8:75:58:24:31:a8:d1:3e:29:fa:17:2f:ab:96:0b:63:e1: c7:ee:49:9c:be:7e:08:ce:04:51:2b:37:26:61:bf:f3:31:7d: b4:70:54:b3:cf:12:73:39:4b:32:6e:89:48:66:22:02:34:34: bd:15:9d:ad -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUaIVqDUmydifmUrWpRo5AetX8DhQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODU3QTI2ODREN0RCQzg5Q0U3ODRFNERGMTZGMUExQzAz RDk0NTU4NTAeFw0yNjA2MzAxNjE0MTVaFw0yNjA3MDExOTQxMTVaMDMxMTAvBgNV BAMTKDcxOEEyRTAzMDUwNTIyNzQzMkMyMDYyMTdENUQ3MTREMjlDMTg5QjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDosJm92Ab7gi3/Y3d5HtjWAgFk Wz9bH0VZDovnJQHuHlQiTKScMwwEgzZCSkUEdqI2hHa4adjQQwKEe7b7Dz8BQfjU XCAVYowmlZoHMjqhBSp/VZmVzIBEQg/Bnxgy4THawlEalUq8WDzXikBz6Xt1fQrN 46XuEWc1EBG4zY54X13+lmL0eeuAwKMfKZ/X2ptbGVP6y/orZvOeb+sipTx0bB3+ tzlfZsVqUoF0db3R99LLP0N2OlAu9tKfdAI87EqtWNVBEhtG5i52W+6fovQn5ymi 61yfCFe+/jfG4h6qzaO9+X866/JyFy0tDy8u4tYMdr5sN67BiHlz6jWHzzoTAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUcYouAwUFInQywgYhfV1xTSnBibMwHwYDVR0j BBgwFoAUhXomhNfbyJznhOTfFvGhwD2UVYUwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUElJTkVU LzAvODU3QTI2ODREN0RCQzg5Q0U3ODRFNERGMTZGMUExQzAzRDk0NTU4NS5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS84NTdBMjY4NEQ3REJDODlDRTc4NEU0REYxNkYx QTFDMDNEOTQ1NTg1LmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUElJTkVULzAvODU3QTI2ODREN0RC Qzg5Q0U3ODRFNERGMTZGMUExQzAzRDk0NTU4NS5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAIx+6gV9DDf2 lVYmdSaLvrZcKExPHfVh/u5obHqWbW3axGj4YMTByIEtnlWG8Kz9V7IFVNnRARP8 ofBf2v0thy3BJnOU9R1udGi4SfiRGgC0tuULJD6EiToskv0HnGoG18u/ut3NR24V 7Wdf6RPHz4PN9vRNQ0oZLhakACYrsL2CNS2xjcmSzdZCDBR+PFhHed0JdSZf7Bn4 ciHvsMh75YKRFvC4J5oC9sr9l7/f0ayK6BEsXJmDc9fDQlqR304I6trfOxlb0YTY dVgkMajRPin6Fy+rlgtj4cfuSZy+fgjOBFErNyZhv/MxfbRwVLPPEnM5SzJuiUhm IgI0NL0Vna0= -----END CERTIFICATE-----Generated at Tue Jun 30 19:08:27 2026 by rpki-client