$ rpki-client -vvf rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft File: 3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft (raw, json) Hash identifier: eVPYRWS7EIkUDM21xX3pJH5flT0+HLwDHh8RDihbasY= Subject key identifier: 69:49:81:04:F2:83:ED:0C:AA:B5:85:07:D3:CE:6A:B1:0D:FC:EA:B3 Authority key identifier: 3E:0A:B7:86:AB:86:C4:D2:5A:7B:E8:64:DD:D1:40:76:0C:C0:2E:EA Certificate issuer: /CN=3E0AB786AB86C4D25A7BE864DDD140760CC02EEA Certificate serial: 236F19B1761D3D6B7BDDAEEC8A184F50C3238EDD Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft Manifest number: 44 Signing time: Tue 30 Jun 2026 05:23:10 +0000 Manifest this update: Tue 30 Jun 2026 05:18:10 +0000 Manifest next update: Wed 01 Jul 2026 06:59:10 +0000 Files and hashes: 1: 3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.crl (hash: jzyzw/GYpdp+RNr9m5iXp10Os3WX25CT/IPGGgziIjo=) 2: 3130332e3130302e3136342e302f32322d3232203d3e20313331363131.roa (hash: LqxzSENA6MQT2gEkGTBGcnDvqFZoJ6iXojpLB0vT1ng=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.crl rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 06:59:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23:6f:19:b1:76:1d:3d:6b:7b:dd:ae:ec:8a:18:4f:50:c3:23:8e:dd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3E0AB786AB86C4D25A7BE864DDD140760CC02EEA Validity Not Before: Jun 30 05:18:10 2026 GMT Not After : Jul 1 06:59:10 2026 GMT Subject: CN=69498104F283ED0CAAB58507D3CE6AB10DFCEAB3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:21:19:48:39:58:ee:05:ef:23:77:0b:ac:80: 0c:e2:90:5b:23:7a:50:6a:f8:bb:00:48:cb:33:df: 4c:b4:19:2c:b2:38:d9:64:77:72:a3:b3:17:13:30: cf:ee:9b:f2:5e:43:a1:a4:02:1b:29:0b:85:20:ad: bb:d5:b3:a9:53:59:26:c9:a1:9b:b7:36:2c:45:36: 52:83:a1:97:4b:b9:a9:62:62:87:ef:84:58:50:1a: 9d:dd:7e:df:ac:0a:d2:f1:f1:3e:3d:fd:df:ad:3f: a0:25:36:65:a4:5a:a2:ff:6a:b6:fe:bc:e1:91:a2: 3f:fc:69:41:e8:df:99:0f:94:ee:dd:bf:a8:b9:96: 96:3b:49:2f:2a:b9:68:db:41:08:e6:c4:ba:da:4d: 98:02:a5:a0:b7:7a:bb:54:be:60:c7:98:02:ad:92: 8e:05:53:e3:01:e7:b6:68:87:a2:e8:8d:da:10:1b: 1d:ae:f1:8f:82:ad:b6:c6:4a:a8:2a:de:47:75:bc: 35:f1:60:a1:9d:5e:b9:f6:f6:d3:08:c0:1f:c0:a7: 8d:2c:36:1e:7c:ae:72:8d:5f:bf:2f:71:41:47:26: 9c:1e:37:40:f3:13:58:97:5a:29:bf:4b:c3:61:d4: 6c:18:9a:f5:0f:76:3d:d6:2d:ca:04:11:27:14:77: 7f:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:49:81:04:F2:83:ED:0C:AA:B5:85:07:D3:CE:6A:B1:0D:FC:EA:B3 X509v3 Authority Key Identifier: keyid:3E:0A:B7:86:AB:86:C4:D2:5A:7B:E8:64:DD:D1:40:76:0C:C0:2E:EA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SDTV/0/3E0AB786AB86C4D25A7BE864DDD140760CC02EEA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:5e:ae:df:03:78:a1:dd:b1:9e:b6:af:c9:e6:2e:a5:72:9b: 2e:d4:2a:a6:f1:ea:5f:b9:84:9e:d8:4c:58:c5:0c:ed:82:33: 56:30:07:33:3a:a6:49:e3:66:33:07:8a:91:73:9e:0c:de:8a: 73:e6:e7:04:e8:4f:cc:14:05:20:47:18:ed:07:74:52:aa:f4: 32:df:6e:94:7d:3d:2c:c1:53:16:af:00:37:5c:15:06:aa:7a: cd:06:d5:ed:16:3b:b2:eb:d9:f7:7f:d5:21:88:86:05:85:33: 9a:ce:e5:48:89:96:60:72:35:3f:f7:47:4d:e8:b5:45:1f:46: 0a:04:86:63:88:5b:8d:99:18:5f:04:b6:03:13:52:2e:61:65: d1:69:f9:c8:cf:02:a0:55:57:36:24:b3:e4:b8:8f:27:71:fd: 91:28:be:d2:20:7a:1b:8a:02:a0:98:a5:10:8a:9a:be:c6:e5: 6e:9c:8e:9d:db:a8:50:8b:46:cc:6c:40:d4:ec:22:3a:a2:f3: b1:84:f8:8f:33:ff:21:e7:f2:a6:cf:e9:9e:77:f5:db:48:9f: be:a5:2f:88:a0:8a:68:a9:48:a3:34:21:9a:1d:4c:46:db:cf: eb:1c:a7:29:bc:13:58:a9:05:16:4f:c0:e4:4f:cb:e8:41:d6: 9f:2f:e3:36 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUI28ZsXYdPWt73a7sihhPUMMjjt0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0UwQUI3ODZBQjg2QzREMjVBN0JFODY0REREMTQwNzYw Q0MwMkVFQTAeFw0yNjA2MzAwNTE4MTBaFw0yNjA3MDEwNjU5MTBaMDMxMTAvBgNV BAMTKDY5NDk4MTA0RjI4M0VEMENBQUI1ODUwN0QzQ0U2QUIxMERGQ0VBQjMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC3IRlIOVjuBe8jdwusgAzikFsj elBq+LsASMsz30y0GSyyONlkd3KjsxcTMM/um/JeQ6GkAhspC4UgrbvVs6lTWSbJ oZu3NixFNlKDoZdLualiYofvhFhQGp3dft+sCtLx8T49/d+tP6AlNmWkWqL/arb+ vOGRoj/8aUHo35kPlO7dv6i5lpY7SS8quWjbQQjmxLraTZgCpaC3ertUvmDHmAKt ko4FU+MB57Zoh6LojdoQGx2u8Y+CrbbGSqgq3kd1vDXxYKGdXrn29tMIwB/Ap40s Nh58rnKNX78vcUFHJpweN0DzE1iXWim/S8Nh1GwYmvUPdj3WLcoEEScUd39zAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUaUmBBPKD7QyqtYUH085qsQ386rMwHwYDVR0j BBgwFoAUPgq3hquGxNJae+hk3dFAdgzALuowDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0RUVi8w LzNFMEFCNzg2QUI4NkM0RDI1QTdCRTg2NERERDE0MDc2MENDMDJFRUEuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvM0UwQUI3ODZBQjg2QzREMjVBN0JFODY0REREMTQw NzYwQ0MwMkVFQS5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NEVFYvMC8zRTBBQjc4NkFCODZDNEQy NUE3QkU4NjREREQxNDA3NjBDQzAyRUVBLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAl16u3wN4od2xnrav yeYupXKbLtQqpvHqX7mEnthMWMUM7YIzVjAHMzqmSeNmMweKkXOeDN6Kc+bnBOhP zBQFIEcY7Qd0Uqr0Mt9ulH09LMFTFq8AN1wVBqp6zQbV7RY7suvZ93/VIYiGBYUz ms7lSImWYHI1P/dHTei1RR9GCgSGY4hbjZkYXwS2AxNSLmFl0Wn5yM8CoFVXNiSz 5LiPJ3H9kSi+0iB6G4oCoJilEIqavsblbpyOnduoUItGzGxA1OwiOqLzsYT4jzP/ Iefyps/pnnf120ifvqUviKCKaKlIozQhmh1MRtvP6xynKbwTWKkFFk/A5E/L6EHW ny/jNg== -----END CERTIFICATE-----Generated at Tue Jun 30 19:10:50 2026 by rpki-client