$ rpki-client -vvf rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft File: CA678C886D87F023B9297877BF550E88E90AE169.mft (raw, json) Hash identifier: udkpPdWFwX5Mo2nJ6a+HppeDKsPoCWZIpOD32fPZ+Vk= Subject key identifier: 16:55:4A:B1:77:33:40:38:C6:FB:E4:D6:D8:F0:05:63:4A:38:A1:69 Authority key identifier: CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 Certificate issuer: /CN=CA678C886D87F023B9297877BF550E88E90AE169 Certificate serial: 7A9F39E1FE9E2FFEA2854C6BA81CE1A6D18065A2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft Manifest number: 45 Signing time: Tue 30 Jun 2026 07:08:17 +0000 Manifest this update: Tue 30 Jun 2026 07:03:17 +0000 Manifest next update: Wed 01 Jul 2026 10:16:17 +0000 Files and hashes: 1: 34392e3231332e33342e302f32332d3234203d3e2037353336.roa (hash: UiYvDw3Nz5+XLnUJ6ot0sHBwCYvrMQN4qa4YEtJyIAc=) 2: CA678C886D87F023B9297877BF550E88E90AE169.crl (hash: Uh3hZbY4FETEypEQrz54ZSauU31ywO6Fpyrx9mP4Rzw=) 3: 34392e3231332e33342e302f32332d3234203d3e203231383539.roa (hash: fJnxPhgLX/rch2cog18IcRNcikXmBfffJ21WF3oWCTE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 10:16:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7a:9f:39:e1:fe:9e:2f:fe:a2:85:4c:6b:a8:1c:e1:a6:d1:80:65:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA678C886D87F023B9297877BF550E88E90AE169 Validity Not Before: Jun 30 07:03:17 2026 GMT Not After : Jul 1 10:16:17 2026 GMT Subject: CN=16554AB177334038C6FBE4D6D8F005634A38A169 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:f2:38:e8:33:aa:33:52:67:80:29:e0:e5:34: 04:c4:99:7e:fc:6d:20:45:cc:34:2a:a2:b7:20:eb: 66:48:db:24:77:c1:ff:7d:4c:6e:3a:d4:d5:53:65: 5f:65:21:b4:78:ab:a3:60:68:ae:4c:19:58:d4:e5: c1:0c:1a:a0:17:0e:88:8d:ab:1d:28:04:08:44:8f: 1a:a6:8a:7a:85:27:3e:e9:e9:df:8e:1c:b9:c7:d9: 60:bc:52:99:94:b2:ec:9a:6b:81:f6:19:e8:fe:a7: 78:a1:4e:b8:57:75:96:8d:bd:1c:69:1d:f3:db:06: 41:3e:52:69:7c:2a:4b:97:7f:fc:7b:9e:cb:1a:82: 6e:3c:7e:0a:cd:40:6d:1d:67:27:17:1b:91:05:6a: a8:d2:37:94:75:10:48:ef:7e:b2:fb:a7:00:2d:e3: ac:59:4b:a0:11:96:b9:03:de:af:b5:47:ce:fa:dc: 9b:9c:e2:53:85:71:d4:40:e0:db:68:b4:b1:36:30: 31:85:71:c8:21:21:26:73:68:23:ee:e5:8c:80:2f: ff:87:84:52:77:b9:c3:0c:31:3a:db:c1:ed:30:72: 2a:50:b5:02:af:46:21:d4:ca:9d:74:fe:2d:fb:cf: 10:ed:29:59:fe:99:f5:cc:2e:c2:36:81:06:fd:5a: 3f:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:55:4A:B1:77:33:40:38:C6:FB:E4:D6:D8:F0:05:63:4A:38:A1:69 X509v3 Authority Key Identifier: keyid:CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 62:6c:0d:e7:89:91:39:76:cb:43:07:19:11:01:54:81:dd:44: d6:66:8a:16:1f:c1:9d:4d:c6:39:20:b3:a4:4c:b2:75:2a:0a: fc:e0:a0:db:18:ce:04:88:46:e6:cd:b2:71:67:3c:1c:2f:ec: 7d:67:11:fb:b1:93:19:b5:a2:15:46:8c:65:77:76:e7:d3:4e: 70:a7:52:a0:44:da:71:13:9d:c6:7f:f0:92:76:49:ba:c0:4b: c7:fd:93:b4:89:25:18:85:8c:e5:1d:ce:1d:01:30:3a:02:3c: 4f:7d:3e:9b:c6:82:7d:ee:f8:00:5f:b9:ea:20:7e:20:20:a5: 27:9b:10:cb:25:6b:a6:f8:d4:67:3a:e4:a4:42:32:59:2d:4c: c5:26:e7:c4:1b:e7:db:3e:33:2c:1d:d4:7b:40:75:7a:08:45: c5:45:f8:96:99:64:18:9d:d2:f9:17:3d:fa:f0:65:6a:cc:d7: a3:dc:ba:a6:ab:81:42:e7:28:86:c0:5f:33:4e:f8:1d:4d:75: c8:a3:8e:63:dd:9c:77:d1:fb:be:67:9a:d0:15:05:a1:c1:b0: 85:a1:e0:e9:f0:de:a6:c9:6b:cb:2c:45:33:84:00:63:08:ae: e5:3d:30:c4:91:77:3b:71:0a:46:8c:2d:4c:02:96:27:02:8b: 6a:bc:c1:c2 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUep854f6eL/6ihUxrqBzhptGAZaIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1NTBFODhF OTBBRTE2OTAeFw0yNjA2MzAwNzAzMTdaFw0yNjA3MDExMDE2MTdaMDMxMTAvBgNV BAMTKDE2NTU0QUIxNzczMzQwMzhDNkZCRTRENkQ4RjAwNTYzNEEzOEExNjkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl8jjoM6ozUmeAKeDlNATEmX78 bSBFzDQqorcg62ZI2yR3wf99TG461NVTZV9lIbR4q6NgaK5MGVjU5cEMGqAXDoiN qx0oBAhEjxqminqFJz7p6d+OHLnH2WC8UpmUsuyaa4H2Gej+p3ihTrhXdZaNvRxp HfPbBkE+Uml8KkuXf/x7nssagm48fgrNQG0dZycXG5EFaqjSN5R1EEjvfrL7pwAt 46xZS6ARlrkD3q+1R8763Juc4lOFcdRA4NtotLE2MDGFccghISZzaCPu5YyAL/+H hFJ3ucMMMTrbwe0wcipQtQKvRiHUyp10/i37zxDtKVn+mfXMLsI2gQb9Wj+XAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUFlVKsXczQDjG++TW2PAFY0o4oWkwHwYDVR0j BBgwFoAUymeMiG2H8CO5KXh3v1UOiOkK4WkwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0hJWUlZ SS8wL0NBNjc4Qzg4NkQ4N0YwMjNCOTI5Nzg3N0JGNTUwRTg4RTkwQUUxNjkuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1 NTBFODhFOTBBRTE2OS5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NISVlJWUkvMC9DQTY3OEM4ODZE ODdGMDIzQjkyOTc4NzdCRjU1MEU4OEU5MEFFMTY5Lm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYmwN54mR OXbLQwcZEQFUgd1E1maKFh/BnU3GOSCzpEyydSoK/OCg2xjOBIhG5s2ycWc8HC/s fWcR+7GTGbWiFUaMZXd259NOcKdSoETacROdxn/wknZJusBLx/2TtIklGIWM5R3O HQEwOgI8T30+m8aCfe74AF+56iB+ICClJ5sQyyVrpvjUZzrkpEIyWS1MxSbnxBvn 2z4zLB3Ue0B1eghFxUX4lplkGJ3S+Rc9+vBlaszXo9y6pquBQucohsBfM074HU11 yKOOY92cd9H7vmea0BUFocGwhaHg6fDepslryyxFM4QAYwiu5T0wxJF3O3EKRowt TAKWJwKLarzBwg== -----END CERTIFICATE-----Generated at Tue Jun 30 19:12:55 2026 by rpki-client