$ rpki-client -vvf rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft File: 3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft (raw, json) Hash identifier: FTw3DbtE7xHJZkijC5m4aY30oKS37l0BC3TvZVgTES4= Subject key identifier: C0:22:2C:71:AB:F7:2F:23:C1:85:36:09:7E:AA:DB:AC:49:00:BB:90 Authority key identifier: 3E:0A:B7:86:AB:86:C4:D2:5A:7B:E8:64:DD:D1:40:76:0C:C0:2E:EA Certificate issuer: /CN=3E0AB786AB86C4D25A7BE864DDD140760CC02EEA Certificate serial: 689954E25836B1BD339B5710E10CA206E4E4A316 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft Manifest number: 04 Signing time: Wed 13 May 2026 04:56:57 +0000 Manifest this update: Wed 13 May 2026 04:51:57 +0000 Manifest next update: Thu 14 May 2026 06:25:57 +0000 Files and hashes: 1: 3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.crl (hash: Bibk6dn0N1uF7KATBCO2Z7JB0R9kzE3jZZFNN/wJuKM=) 2: 3130332e3130302e3136342e302f32322d3232203d3e20313331363131.roa (hash: LqxzSENA6MQT2gEkGTBGcnDvqFZoJ6iXojpLB0vT1ng=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.crl rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 06:25:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:99:54:e2:58:36:b1:bd:33:9b:57:10:e1:0c:a2:06:e4:e4:a3:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0AB786AB86C4D25A7BE864DDD140760CC02EEA Validity Not Before: May 13 04:51:57 2026 GMT Not After : May 14 06:25:57 2026 GMT Subject: CN=C0222C71ABF72F23C18536097EAADBAC4900BB90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ec:3f:a8:5b:fc:0f:31:45:56:e4:93:9f:b4: df:bc:ca:0e:b0:a6:51:e3:38:0c:da:cd:7d:13:8f: 86:60:80:45:e3:05:1d:3c:45:3c:8d:f5:81:36:e5: 56:16:b3:87:5f:d0:5c:97:12:b1:08:05:5f:6e:a0: 4e:67:5d:f2:d6:5d:f5:c9:10:03:44:ea:15:35:64: 5d:b6:1e:5c:91:bf:5b:be:b2:6b:81:bf:4c:41:9e: d9:a8:21:fd:99:86:8e:51:25:bd:70:0b:ec:ec:c8: a2:7e:19:df:ff:27:e2:87:cd:9f:96:67:d1:7e:15: aa:23:a6:85:d3:0e:05:4b:d0:71:b8:58:32:24:93: 11:e5:7e:f6:5a:1b:b3:28:26:69:da:6c:2c:de:4c: 5f:9c:a8:7d:75:a5:b4:57:cb:69:40:93:9a:c5:a6: ea:86:36:f3:2f:fc:5b:96:e7:1c:31:74:1c:36:f7: bb:b4:2f:77:a4:56:9d:77:05:19:a4:2f:4b:de:cd: d6:23:f6:d3:a4:4f:b9:b5:fd:a8:2e:b2:ce:46:d9: 77:f4:34:44:ee:68:c7:bf:33:80:4e:9f:15:59:19: 69:47:f8:21:f1:74:db:b4:d4:fe:f6:73:57:fb:6d: d7:a9:57:72:72:c3:1f:be:94:c4:e8:d7:06:15:f8: ba:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:22:2C:71:AB:F7:2F:23:C1:85:36:09:7E:AA:DB:AC:49:00:BB:90 X509v3 Authority Key Identifier: keyid:3E:0A:B7:86:AB:86:C4:D2:5A:7B:E8:64:DD:D1:40:76:0C:C0:2E:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a7:f0:db:88:1c:5a:d8:3c:f1:59:b0:94:48:a1:6c:21:51:30: 4c:87:db:14:8e:e2:62:7b:f2:d0:31:69:7e:64:ce:50:c5:d3: a9:49:60:9f:09:74:77:c7:4c:a2:5f:26:d4:69:6e:ba:f6:3f: 04:e8:7c:9b:16:c4:02:6c:65:6a:cd:a2:42:3f:70:d1:61:41: 01:cc:9f:aa:28:47:98:68:21:50:d1:a3:de:77:63:ab:e4:8f: 57:f4:97:32:72:af:25:3f:25:1f:aa:7a:26:fb:c8:3c:f5:68: e1:c1:8b:f9:e3:c4:1a:28:7a:50:ef:c4:8e:4b:ef:a3:90:14: f2:d8:75:11:75:71:20:d0:2a:e2:31:8d:68:50:61:82:17:67: 15:3f:d2:86:06:09:3a:4d:2e:c1:c5:4b:23:9b:5e:a8:c4:6e: 85:30:66:9c:f6:e8:21:e0:25:ec:6f:45:9b:1c:0d:96:f4:95: a3:99:a5:df:ff:11:e9:5c:ea:41:9f:01:c9:6f:a7:c8:b7:81: fb:5d:9e:b7:b7:9f:76:be:23:97:9e:63:0d:69:69:6e:33:88: 1e:eb:34:1b:2c:b7:73:a8:3f:0c:ba:81:73:35:b3:91:74:2d: 2f:8f:ea:fc:9e:52:26:73:17:f0:f3:6f:36:ea:ff:11:19:74: a1:6e:3d:98 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUaJlU4lg2sb0zm1cQ4QyiBuTkoxYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwQUI3ODZBQjg2QzREMjVBN0JFODY0REREMTQwNzYw Q0MwMkVFQTAeFw0yNjA1MTMwNDUxNTdaFw0yNjA1MTQwNjI1NTdaMDMxMTAvBgNV BAMTKEMwMjIyQzcxQUJGNzJGMjNDMTg1MzYwOTdFQUFEQkFDNDkwMEJCOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCw7D+oW/wPMUVW5JOftN+8yg6w plHjOAzazX0Tj4ZggEXjBR08RTyN9YE25VYWs4df0FyXErEIBV9uoE5nXfLWXfXJ EANE6hU1ZF22HlyRv1u+smuBv0xBntmoIf2Zho5RJb1wC+zsyKJ+Gd//J+KHzZ+W Z9F+FaojpoXTDgVL0HG4WDIkkxHlfvZaG7MoJmnabCzeTF+cqH11pbRXy2lAk5rF puqGNvMv/FuW5xwxdBw297u0L3ekVp13BRmkL0vezdYj9tOkT7m1/aguss5G2Xf0 NETuaMe/M4BOnxVZGWlH+CHxdNu01P72c1f7bdepV3Jywx++lMTo1wYV+LrHAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUwCIscav3LyPBhTYJfqrbrEkAu5AwHwYDVR0j BBgwFoAUPgq3hquGxNJae+hk3dFAdgzALuowDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0RUVi8w LzNFMEFCNzg2QUI4NkM0RDI1QTdCRTg2NERERDE0MDc2MENDMDJFRUEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvM0UwQUI3ODZBQjg2QzREMjVBN0JFODY0REREMTQw NzYwQ0MwMkVFQS5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NEVFYvMC8zRTBBQjc4NkFCODZDNEQy NUE3QkU4NjREREQxNDA3NjBDQzAyRUVBLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAp/DbiBxa2DzxWbCU SKFsIVEwTIfbFI7iYnvy0DFpfmTOUMXTqUlgnwl0d8dMol8m1GluuvY/BOh8mxbE Amxlas2iQj9w0WFBAcyfqihHmGghUNGj3ndjq+SPV/SXMnKvJT8lH6p6JvvIPPVo 4cGL+ePEGih6UO/Ejkvvo5AU8th1EXVxINAq4jGNaFBhghdnFT/ShgYJOk0uwcVL I5teqMRuhTBmnPboIeAl7G9FmxwNlvSVo5ml3/8R6VzqQZ8ByW+nyLeB+12et7ef dr4jl55jDWlpbjOIHus0Gyy3c6g/DLqBczWzkXQtL4/q/J5SJnMX8PNvNur/ERl0 oW49mA== -----END CERTIFICATE-----Generated at Wed May 13 20:34:03 2026 by rpki-client