$ rpki-client -vvf rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft File: 9F4621BE2CEB15DD74809D52692588598490FABF.mft (raw, json) Hash identifier: FOny5wQkaCMVmqdQyHNq2MH+LUjr5lOquWhaAU5lnRc= Subject key identifier: 6C:35:11:5E:EA:BC:E4:95:AA:BF:13:92:3A:45:09:FC:6A:F4:61:7A Authority key identifier: 9F:46:21:BE:2C:EB:15:DD:74:80:9D:52:69:25:88:59:84:90:FA:BF Certificate issuer: /CN=9F4621BE2CEB15DD74809D52692588598490FABF Certificate serial: 6704D742B3CA70E308B4D08E7CBF477E6C21EF03 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft Manifest number: 0A Signing time: Wed 13 May 2026 03:21:31 +0000 Manifest this update: Wed 13 May 2026 03:16:31 +0000 Manifest next update: Thu 14 May 2026 06:33:31 +0000 Files and hashes: 1: 3130332e3133372e36322e302f32332d3332203d3e20313331363432.roa (hash: Om14eoHT5IhomeKnYkvjKpVL1HxviUxm8BBB1REH3/4=) 2: 3130332e3133372e3234362e302f32332d3332203d3e20313331363432.roa (hash: taJQRTDQ90UxXadAvWM0GS41DZC0w4SutBUxh10g3Ls=) 3: 323430353a636463303a3a2f33322d313234203d3e20313331363432.roa (hash: B+rZIPiEbFPdUxH0aia2ffpZrMmBBOdtjQ5TGrFZI/g=) 4: 9F4621BE2CEB15DD74809D52692588598490FABF.crl (hash: aH4pHrPPHn/5P9gKZzam0w6k5O9Uh/piy1FVMo2Lo98=) 5: 3230322e3134382e3232322e302f32332d3332203d3e20313331363432.roa (hash: QSozWjihGPRSxS1l+02abUaaKtc4iDRAVQB/oWLei3c=) 6: 3130332e3135372e34322e302f32332d3332203d3e20323033353438.roa (hash: nYR+Ml8lrCk7Dl21maH1wtxMxSe7KjzyLwH7FozLC7o=) 7: 3231312e37362e3137362e302f32332d3332203d3e20313331363432.roa (hash: Neacdwz6usPvpnxdcJO7WdPsbmwrbKBYPAqd9PXlS3o=) 8: 3130332e3134382e37322e302f32332d3332203d3e20313331363432.roa (hash: OLaMU17HmXpsMBlzaeBhODO2N7nOliRaF32TUtfckJg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.crl rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:33:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 67:04:d7:42:b3:ca:70:e3:08:b4:d0:8e:7c:bf:47:7e:6c:21:ef:03 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9F4621BE2CEB15DD74809D52692588598490FABF Validity Not Before: May 13 03:16:31 2026 GMT Not After : May 14 06:33:31 2026 GMT Subject: CN=6C35115EEABCE495AABF13923A4509FC6AF4617A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:c8:aa:0b:c1:e5:1e:d8:c4:12:b3:ab:d9:85: cf:15:0e:b1:2e:57:20:43:5b:0d:c3:92:bb:9b:0b: be:39:09:e3:7e:55:c0:10:8d:79:2c:d3:15:fa:ec: cd:c9:19:07:30:eb:f9:fa:1b:26:ce:7a:c5:f5:9d: 53:cc:43:41:da:2b:35:0d:2f:46:a5:94:25:c7:99: 4b:be:77:e4:1f:9a:5a:7b:3f:68:66:43:b2:c6:eb: d8:39:68:fe:74:18:90:0f:98:14:2b:ce:51:84:5d: a9:f4:20:af:60:0c:e8:19:06:44:33:ab:e5:54:a4: d4:e9:5a:30:03:27:2d:29:1d:85:04:ab:2c:b1:12: 88:24:69:d4:9a:d3:c4:2e:04:33:25:91:95:fb:89: ea:3b:04:10:90:92:6b:a6:b6:70:20:51:7d:4b:77: 87:e4:70:f2:55:25:49:7c:32:37:d2:2a:eb:79:9c: 56:f3:6b:78:f1:35:18:85:73:36:c9:83:9a:e6:54: c5:ac:88:06:66:83:0a:c8:76:bf:19:0d:c7:be:0a: 43:91:70:6e:a9:76:f2:4d:5e:74:0a:68:42:e2:3a: 4e:8e:78:e2:62:da:f2:4c:03:23:c8:9b:89:c9:ba: ad:34:fb:85:90:a9:b9:ab:07:d5:8b:35:12:f1:8d: eb:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6C:35:11:5E:EA:BC:E4:95:AA:BF:13:92:3A:45:09:FC:6A:F4:61:7A X509v3 Authority Key Identifier: keyid:9F:46:21:BE:2C:EB:15:DD:74:80:9D:52:69:25:88:59:84:90:FA:BF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/9F4621BE2CEB15DD74809D52692588598490FABF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/PNI/0/9F4621BE2CEB15DD74809D52692588598490FABF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d9:87:81:9a:67:8d:50:4a:24:2a:e5:51:61:5e:87:03:6d:e0: f3:59:e8:f8:49:99:58:f3:fa:62:f9:a6:7c:2a:4e:58:b2:b1: ec:de:94:6d:e6:9a:f9:46:d3:da:45:07:bd:8d:dc:e9:23:63: 59:f3:d7:db:d3:ec:7f:75:23:71:d8:93:32:fc:51:0b:92:a6: 67:c8:dd:a7:9b:a8:75:0e:4f:93:31:bb:5a:2d:dc:4a:6c:b4: bc:36:59:81:81:07:04:50:4e:9e:e8:54:43:b3:38:a9:83:93: d1:4e:6d:6a:49:1d:d5:f5:e2:fc:dc:e8:f8:23:0b:49:83:23: b2:22:f0:41:02:f5:78:f7:30:d1:86:97:d4:13:8b:b4:4e:d3: 83:d0:58:75:e4:bd:01:42:48:ee:16:d9:bb:8c:22:65:c1:e1: e8:4d:74:19:88:b9:89:41:7d:50:ef:7e:ab:7e:66:31:88:c6: 04:91:83:6a:96:bd:c8:d9:fb:18:e4:03:ae:05:69:db:4d:7a: c0:c5:3f:d7:0e:29:a6:77:d1:dd:4e:42:cf:94:8a:c5:8c:11: 8b:3d:2a:38:bc:51:61:a3:b9:c3:77:a6:02:6a:5f:94:7d:33: 31:e2:00:45:2d:d5:a4:ad:00:c5:0c:5d:cf:b7:d1:f5:0d:b1: 5b:3d:e4:b0 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUZwTXQrPKcOMItNCOfL9Hfmwh7wMwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOUY0NjIxQkUyQ0VCMTVERDc0ODA5RDUyNjkyNTg4NTk4 NDkwRkFCRjAeFw0yNjA1MTMwMzE2MzFaFw0yNjA1MTQwNjMzMzFaMDMxMTAvBgNV BAMTKDZDMzUxMTVFRUFCQ0U0OTVBQUJGMTM5MjNBNDUwOUZDNkFGNDYxN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRyKoLweUe2MQSs6vZhc8VDrEu VyBDWw3DkrubC745CeN+VcAQjXks0xX67M3JGQcw6/n6GybOesX1nVPMQ0HaKzUN L0allCXHmUu+d+Qfmlp7P2hmQ7LG69g5aP50GJAPmBQrzlGEXan0IK9gDOgZBkQz q+VUpNTpWjADJy0pHYUEqyyxEogkadSa08QuBDMlkZX7ieo7BBCQkmumtnAgUX1L d4fkcPJVJUl8MjfSKut5nFbza3jxNRiFczbJg5rmVMWsiAZmgwrIdr8ZDce+CkOR cG6pdvJNXnQKaELiOk6OeOJi2vJMAyPIm4nJuq00+4WQqbmrB9WLNRLxjevrAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUbDURXuq85JWqvxOSOkUJ/Gr0YXowHwYDVR0j BBgwFoAUn0YhvizrFd10gJ1SaSWIWYSQ+r8wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUE5JLzAv OUY0NjIxQkUyQ0VCMTVERDc0ODA5RDUyNjkyNTg4NTk4NDkwRkFCRi5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS85RjQ2MjFCRTJDRUIxNURENzQ4MDlENTI2OTI1ODg1 OTg0OTBGQUJGLmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUE5JLzAvOUY0NjIxQkUyQ0VCMTVERDc0 ODA5RDUyNjkyNTg4NTk4NDkwRkFCRi5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBANmHgZpnjVBKJCrlUWFe hwNt4PNZ6PhJmVjz+mL5pnwqTliysezelG3mmvlG09pFB72N3OkjY1nz19vT7H91 I3HYkzL8UQuSpmfI3aebqHUOT5Mxu1ot3EpstLw2WYGBBwRQTp7oVEOzOKmDk9FO bWpJHdX14vzc6PgjC0mDI7Ii8EEC9Xj3MNGGl9QTi7RO04PQWHXkvQFCSO4W2buM ImXB4ehNdBmIuYlBfVDvfqt+ZjGIxgSRg2qWvcjZ+xjkA64FadtNesDFP9cOKaZ3 0d1OQs+UisWMEYs9Kji8UWGjucN3pgJqX5R9MzHiAEUt1aStAMUMXc+30fUNsVs9 5LA= -----END CERTIFICATE-----Generated at Wed May 13 20:33:46 2026 by rpki-client