$ rpki-client -vvf rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft File: 9F4621BE2CEB15DD74809D52692588598490FABF.mft (raw, json) Hash identifier: DF+ms0PriD07grGORJkkjjUGiECH9br00k+0vTNzNEA= Subject key identifier: 18:16:2D:BD:2A:53:CC:E7:91:F5:F9:14:69:C7:E8:68:B0:BE:D9:36 Authority key identifier: 9F:46:21:BE:2C:EB:15:DD:74:80:9D:52:69:25:88:59:84:90:FA:BF Certificate issuer: /CN=9F4621BE2CEB15DD74809D52692588598490FABF Certificate serial: 18BD7CF4BC00E14CF08E41960C869B961641290E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft Manifest number: 4A Signing time: Tue 30 Jun 2026 03:02:59 +0000 Manifest this update: Tue 30 Jun 2026 02:57:59 +0000 Manifest next update: Wed 01 Jul 2026 04:16:59 +0000 Files and hashes: 1: 3130332e3135372e34322e302f32332d3332203d3e20323033353438.roa (hash: nYR+Ml8lrCk7Dl21maH1wtxMxSe7KjzyLwH7FozLC7o=) 2: 3130332e3134382e37322e302f32332d3332203d3e20313331363432.roa (hash: OLaMU17HmXpsMBlzaeBhODO2N7nOliRaF32TUtfckJg=) 3: 323430353a636463303a3a2f33322d313234203d3e20313331363432.roa (hash: B+rZIPiEbFPdUxH0aia2ffpZrMmBBOdtjQ5TGrFZI/g=) 4: 3231312e37362e3137362e302f32332d3332203d3e20313331363432.roa (hash: Neacdwz6usPvpnxdcJO7WdPsbmwrbKBYPAqd9PXlS3o=) 5: 3130332e3133372e36322e302f32332d3332203d3e20313331363432.roa (hash: Om14eoHT5IhomeKnYkvjKpVL1HxviUxm8BBB1REH3/4=) 6: 9F4621BE2CEB15DD74809D52692588598490FABF.crl (hash: lL9WZafWqEmxTjXRL1B0w/gP6gSnqKIDwAsq0vHB9/U=) 7: 3130332e3133372e3234362e302f32332d3332203d3e20313331363432.roa (hash: taJQRTDQ90UxXadAvWM0GS41DZC0w4SutBUxh10g3Ls=) 8: 3230322e3134382e3232322e302f32332d3332203d3e20313331363432.roa (hash: QSozWjihGPRSxS1l+02abUaaKtc4iDRAVQB/oWLei3c=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.crl rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 04:16:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:bd:7c:f4:bc:00:e1:4c:f0:8e:41:96:0c:86:9b:96:16:41:29:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F4621BE2CEB15DD74809D52692588598490FABF Validity Not Before: Jun 30 02:57:59 2026 GMT Not After : Jul 1 04:16:59 2026 GMT Subject: CN=18162DBD2A53CCE791F5F91469C7E868B0BED936 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:1f:e4:e2:35:f7:4f:6d:c6:0a:ae:86:d7:b2: 79:9e:54:cf:98:c5:2a:66:8d:4b:45:be:d2:39:9b: ed:74:73:4b:79:9c:e6:14:1f:41:13:54:ea:ac:6b: 32:de:76:f2:e1:d2:9e:e2:6d:a5:1b:68:c0:d2:cc: 53:e8:47:82:3f:bd:58:48:88:41:5d:ef:c5:4b:84: ec:ca:b6:da:91:db:2a:65:95:47:9c:67:4f:47:a6: f3:b1:ab:9d:b9:0a:53:c3:b6:98:81:d9:20:c6:13: 5e:96:95:31:08:d0:e5:da:0a:78:6d:c4:e5:0a:fc: 1e:23:b9:b3:d3:5c:09:d9:ee:56:c6:ea:8f:74:a0: f6:21:67:7e:1e:fd:7a:5f:47:f6:65:03:32:c0:68: c8:dc:c0:d7:8e:f5:77:b4:9c:56:41:d8:79:4d:24: 14:3d:e2:02:14:33:81:cc:fc:06:96:7a:95:23:aa: ca:26:b8:ae:d4:61:38:71:9f:75:99:af:e5:a6:45: 10:1d:c3:4a:5c:ed:54:6f:cd:0b:9a:a0:3a:7d:85: 4f:7f:81:dc:fd:13:63:17:25:85:f9:a1:1a:02:d9: 9f:91:62:bb:0a:82:0a:d3:ca:e1:08:0e:3d:89:df: 73:9f:35:d4:e6:f7:0f:2e:a1:df:36:2f:ed:a7:b9: 9c:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:16:2D:BD:2A:53:CC:E7:91:F5:F9:14:69:C7:E8:68:B0:BE:D9:36 X509v3 Authority Key Identifier: keyid:9F:46:21:BE:2C:EB:15:DD:74:80:9D:52:69:25:88:59:84:90:FA:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 84:09:6b:a3:b2:0d:d9:b3:88:9a:09:e7:df:29:42:2a:f7:90: 2a:ed:2a:ea:f8:f7:cf:b7:74:93:8b:79:a1:ee:cc:1f:b5:40: 56:f0:6d:18:ac:8e:4b:e6:e3:02:de:ac:6a:db:3a:50:46:ec: 59:53:41:50:38:8c:c8:11:92:52:56:27:64:1d:59:1f:bf:b8: 99:10:46:eb:f4:1c:16:e2:cb:ff:ec:42:c4:11:6d:25:e2:8c: 07:f6:db:4b:7d:06:74:98:61:b4:82:7e:bb:6f:fa:63:0b:20: 5b:95:98:2f:e6:d7:b0:35:cb:be:5d:f1:ca:7a:bd:8f:c0:34: 19:3a:ae:b3:b9:82:f1:5d:f7:b2:d8:ce:04:de:49:c3:d1:9e: 70:f2:f6:e9:44:b6:42:34:4c:a4:e4:e9:6e:0d:35:29:5e:61: 38:d0:2f:b1:6e:01:7a:ad:27:8d:da:0f:6d:86:ff:0c:fd:b6: ba:d4:34:83:fb:1a:2d:81:42:0b:c2:d2:39:22:7b:a7:bf:c5: 60:71:e6:83:d2:96:2a:84:a1:22:b7:3e:9f:a8:0c:51:54:62: 0c:93:d2:d0:d9:9c:f6:47:dc:d9:95:a1:84:bd:0a:ab:19:2b: 82:e6:59:01:1e:e9:49:04:19:fb:e0:b7:2b:7c:47:20:95:ba: c8:e9:b0:07 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUGL189LwA4UzwjkGWDIablhZBKQ4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY0NjIxQkUyQ0VCMTVERDc0ODA5RDUyNjkyNTg4NTk4 NDkwRkFCRjAeFw0yNjA2MzAwMjU3NTlaFw0yNjA3MDEwNDE2NTlaMDMxMTAvBgNV BAMTKDE4MTYyREJEMkE1M0NDRTc5MUY1RjkxNDY5QzdFODY4QjBCRUQ5MzYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCmH+TiNfdPbcYKrobXsnmeVM+Y xSpmjUtFvtI5m+10c0t5nOYUH0ETVOqsazLedvLh0p7ibaUbaMDSzFPoR4I/vVhI iEFd78VLhOzKttqR2ypllUecZ09HpvOxq525ClPDtpiB2SDGE16WlTEI0OXaCnht xOUK/B4jubPTXAnZ7lbG6o90oPYhZ34e/XpfR/ZlAzLAaMjcwNeO9Xe0nFZB2HlN JBQ94gIUM4HM/AaWepUjqsomuK7UYThxn3WZr+WmRRAdw0pc7VRvzQuaoDp9hU9/ gdz9E2MXJYX5oRoC2Z+RYrsKggrTyuEIDj2J33OfNdTm9w8uod82L+2nuZyVAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUGBYtvSpTzOeR9fkUacfoaLC+2TYwHwYDVR0j BBgwFoAUn0YhvizrFd10gJ1SaSWIWYSQ+r8wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUE5JLzAv OUY0NjIxQkUyQ0VCMTVERDc0ODA5RDUyNjkyNTg4NTk4NDkwRkFCRi5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85RjQ2MjFCRTJDRUIxNURENzQ4MDlENTI2OTI1ODg1 OTg0OTBGQUJGLmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUE5JLzAvOUY0NjIxQkUyQ0VCMTVERDc0 ODA5RDUyNjkyNTg4NTk4NDkwRkFCRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAIQJa6OyDdmziJoJ598p Qir3kCrtKur498+3dJOLeaHuzB+1QFbwbRisjkvm4wLerGrbOlBG7FlTQVA4jMgR klJWJ2QdWR+/uJkQRuv0HBbiy//sQsQRbSXijAf220t9BnSYYbSCfrtv+mMLIFuV mC/m17A1y75d8cp6vY/ANBk6rrO5gvFd97LYzgTeScPRnnDy9ulEtkI0TKTk6W4N NSleYTjQL7FuAXqtJ43aD22G/wz9trrUNIP7Gi2BQgvC0jkie6e/xWBx5oPSliqE oSK3Pp+oDFFUYgyT0tDZnPZH3NmVoYS9CqsZK4LmWQEe6UkEGfvgtyt8RyCVusjp sAc= -----END CERTIFICATE-----Generated at Tue Jun 30 19:09:52 2026 by rpki-client