$ rpki-client -vvf rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft File: 8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft (raw, json) Hash identifier: FdL3syFATKqHrPGCMF5B8yAHcJiBOfc1S7t51r2Hfa8= Subject key identifier: BA:1E:A5:51:11:B9:90:06:AE:5A:73:25:C2:8E:14:68:99:B4:E9:27 Authority key identifier: 86:81:A4:AE:9D:1E:38:75:36:C2:E0:B9:1C:79:A8:76:CF:7D:E4:E4 Certificate issuer: /CN=8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4 Certificate serial: 137BF5B2E8D11DEDD199D533CD546BA0B7E49154 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft Manifest number: 05 Signing time: Wed 13 May 2026 05:22:06 +0000 Manifest this update: Wed 13 May 2026 05:17:06 +0000 Manifest next update: Thu 14 May 2026 09:18:06 +0000 Files and hashes: 1: 323430323a6361303a3a2f33322d3438203d3e20313331363831.roa (hash: S/vvxrC76LtkDDAr3Lwj+sG9Po2jPNI3vSVyXNzI5B0=) 2: 8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.crl (hash: 6bafg7tJ/cJECcxWvtIycmHOUDpk8VZ1PBM3VhjhIGs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.crl rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:18:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:7b:f5:b2:e8:d1:1d:ed:d1:99:d5:33:cd:54:6b:a0:b7:e4:91:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4 Validity Not Before: May 13 05:17:06 2026 GMT Not After : May 14 09:18:06 2026 GMT Subject: CN=BA1EA55111B99006AE5A7325C28E146899B4E927 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:e9:50:e6:67:ec:8a:ec:e3:0b:75:fe:35:f0: cc:dd:a2:eb:09:be:1e:1b:58:a2:b6:d7:39:f3:67: 33:2c:e3:2b:30:e5:02:bb:4a:15:5e:14:ed:5e:41: 34:45:6d:41:8c:14:8a:60:98:0d:b1:59:3e:9d:41: aa:a0:8e:92:f9:fd:1a:ba:7e:37:83:2d:0e:4d:a0: 77:e1:9c:77:e8:bd:2c:09:12:a5:fe:24:5b:55:a3: 28:af:86:a0:db:99:9f:cd:1c:0e:43:a0:06:77:93: d1:c1:84:b5:f6:9e:55:f8:49:ef:15:f7:b0:9a:b3: 8e:69:49:03:d6:a0:6d:36:51:4b:13:c5:dd:97:1a: eb:f5:6f:92:5c:41:13:9f:bb:46:cf:b5:86:8a:77: 8b:5c:67:45:34:ab:41:78:27:3f:53:3d:1a:2c:e1: 74:25:fc:75:68:41:2b:ff:13:e1:0c:b7:b5:37:52: a7:44:11:41:13:e4:e5:24:bb:11:d3:f7:97:d9:d7: 34:6a:3f:d8:64:1e:b6:5f:98:b8:29:70:44:38:0f: cb:35:a7:69:0b:32:96:07:5b:a7:3d:77:1a:01:4b: c1:f0:37:4e:57:97:d8:da:5e:03:51:db:b5:50:8c: f4:ad:34:57:cd:38:32:48:16:56:c4:74:74:e0:7a: 98:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BA:1E:A5:51:11:B9:90:06:AE:5A:73:25:C2:8E:14:68:99:B4:E9:27 X509v3 Authority Key Identifier: keyid:86:81:A4:AE:9D:1E:38:75:36:C2:E0:B9:1C:79:A8:76:CF:7D:E4:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 03:57:37:28:2b:fc:d0:70:56:01:23:72:47:dd:9d:2d:39:bd: b0:45:75:69:83:64:f2:ed:a9:c6:92:a5:42:5a:bf:da:ae:48: 08:8b:26:ed:18:a9:fe:cc:cd:79:df:12:cd:0a:56:ba:93:dc: 77:45:77:b7:36:12:d4:a6:59:72:7a:74:ce:ad:68:c4:ab:3d: 05:1e:80:e4:4e:5a:42:bc:18:78:45:f8:35:5c:dd:82:75:2b: 86:f2:97:9d:99:a5:59:d8:a9:12:49:2b:52:d1:da:16:c7:97: fa:e8:c2:82:68:d2:49:67:0e:97:f0:fd:84:c9:77:dc:55:67: 6a:5a:93:01:d6:81:91:4f:96:26:59:46:ff:c1:94:28:e2:a3: a0:f8:fe:b4:54:dc:ca:55:dd:1e:32:73:c3:8d:62:dd:ff:33: d7:3f:48:2e:86:e5:14:64:e0:ef:47:92:53:b3:00:93:1a:4e: 98:4e:e4:ea:9e:26:61:ab:66:96:fb:da:f2:b1:7e:9b:3e:70: 95:4f:f9:00:2c:77:99:e7:f0:75:c1:22:ee:51:c1:97:96:82: f7:43:e0:3d:ae:9f:1f:4b:5e:2e:b0:60:76:37:ea:de:72:69: fb:44:7a:6f:e7:c3:41:9a:59:aa:10:74:ca:ba:1a:e2:f2:02: 6a:c5:c9:1d -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUE3v1sujRHe3RmdUzzVRroLfkkVQwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY4MUE0QUU5RDFFMzg3NTM2QzJFMEI5MUM3OUE4NzZD RjdERTRFNDAeFw0yNjA1MTMwNTE3MDZaFw0yNjA1MTQwOTE4MDZaMDMxMTAvBgNV BAMTKEJBMUVBNTUxMTFCOTkwMDZBRTVBNzMyNUMyOEUxNDY4OTlCNEU5MjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDC6VDmZ+yK7OMLdf418MzdousJ vh4bWKK21znzZzMs4ysw5QK7ShVeFO1eQTRFbUGMFIpgmA2xWT6dQaqgjpL5/Rq6 fjeDLQ5NoHfhnHfovSwJEqX+JFtVoyivhqDbmZ/NHA5DoAZ3k9HBhLX2nlX4Se8V 97Cas45pSQPWoG02UUsTxd2XGuv1b5JcQROfu0bPtYaKd4tcZ0U0q0F4Jz9TPRos 4XQl/HVoQSv/E+EMt7U3UqdEEUET5OUkuxHT95fZ1zRqP9hkHrZfmLgpcEQ4D8s1 p2kLMpYHW6c9dxoBS8HwN05Xl9jaXgNR27VQjPStNFfNODJIFlbEdHTgeph1AgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUuh6lURG5kAauWnMlwo4UaJm06ScwHwYDVR0j BBgwFoAUhoGkrp0eOHU2wuC5HHmods995OQwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUUlTREEv MC84NjgxQTRBRTlEMUUzODc1MzZDMkUwQjkxQzc5QTg3NkNGN0RFNEU0LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzg2ODFBNEFFOUQxRTM4NzUzNkMyRTBCOTFDNzlB ODc2Q0Y3REU0RTQuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9RSVNEQS8wLzg2ODFBNEFFOUQxRTM4 NzUzNkMyRTBCOTFDNzlBODc2Q0Y3REU0RTQubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQADVzcoK/zQcFYB I3JH3Z0tOb2wRXVpg2Ty7anGkqVCWr/arkgIiybtGKn+zM153xLNCla6k9x3RXe3 NhLUpllyenTOrWjEqz0FHoDkTlpCvBh4Rfg1XN2CdSuG8pedmaVZ2KkSSStS0doW x5f66MKCaNJJZw6X8P2EyXfcVWdqWpMB1oGRT5YmWUb/wZQo4qOg+P60VNzKVd0e MnPDjWLd/zPXP0guhuUUZODvR5JTswCTGk6YTuTqniZhq2aW+9rysX6bPnCVT/kA LHeZ5/B1wSLuUcGXloL3Q+A9rp8fS14usGB2N+recmn7RHpv58NBmlmqEHTKuhri 8gJqxckd -----END CERTIFICATE-----Generated at Wed May 13 20:36:31 2026 by rpki-client