$ rpki-client -vvf rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft File: CA678C886D87F023B9297877BF550E88E90AE169.mft (raw, json) Hash identifier: WQU+BDyXjmqTt2l8OivCE42EP+B8uZUrRg29AK720QE= Subject key identifier: 95:E9:C1:63:E3:94:B8:E5:AE:F4:11:FF:93:04:95:98:6B:99:97:E0 Authority key identifier: CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 Certificate issuer: /CN=CA678C886D87F023B9297877BF550E88E90AE169 Certificate serial: 56205C7E1075A794D318DC1EAB4CCD75CB7E5A98 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft Manifest number: 07 Signing time: Thu 14 May 2026 16:20:04 +0000 Manifest this update: Thu 14 May 2026 16:15:04 +0000 Manifest next update: Fri 15 May 2026 16:59:04 +0000 Files and hashes: 1: 34392e3231332e33342e302f32332d3234203d3e203231383539.roa (hash: fJnxPhgLX/rch2cog18IcRNcikXmBfffJ21WF3oWCTE=) 2: CA678C886D87F023B9297877BF550E88E90AE169.crl (hash: +xBDvPSOqOz8Bd/jrXjuVwgwcOUxzKvQ3w+rQxJ38Fk=) 3: 34392e3231332e33342e302f32332d3234203d3e2037353336.roa (hash: UiYvDw3Nz5+XLnUJ6ot0sHBwCYvrMQN4qa4YEtJyIAc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 15 May 2026 16:59:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56:20:5c:7e:10:75:a7:94:d3:18:dc:1e:ab:4c:cd:75:cb:7e:5a:98 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA678C886D87F023B9297877BF550E88E90AE169 Validity Not Before: May 14 16:15:04 2026 GMT Not After : May 15 16:59:04 2026 GMT Subject: CN=95E9C163E394B8E5AEF411FF930495986B9997E0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:25:62:ef:9d:35:35:73:33:ab:82:b1:b2:73: 96:2f:c4:ba:6a:fa:cf:ab:87:34:da:b1:ea:6a:42: 5d:e2:35:4d:fb:ba:2a:f4:1a:e5:02:24:1e:df:d2: 1b:68:97:64:60:56:84:1f:41:7d:1f:00:3e:b3:af: c5:c0:2a:87:4c:40:54:d9:8f:c4:42:f2:f6:c8:d4: bf:b2:a3:38:af:c9:02:60:db:74:33:87:89:bd:91: 03:1e:cf:d7:e1:5a:d3:85:c4:d0:e5:a7:df:dd:e1: 84:6c:e8:09:e0:4e:f8:b2:75:91:3e:9d:04:e2:a6: 0f:75:d7:3f:a0:ed:0c:89:98:5d:79:98:da:0d:45: 20:9d:f8:32:6a:7b:d6:35:13:c7:d8:e1:e7:d5:9e: 1e:21:28:66:98:4d:59:96:72:cd:5f:4b:dc:24:bd: 69:75:ee:d8:e0:f2:4f:ba:c2:8a:02:be:6f:c5:2c: 5f:54:45:4a:42:96:b8:f3:3f:06:3c:ae:18:d1:5a: 19:3b:ab:3a:c3:79:f9:45:88:4c:dc:49:8f:51:d6: cc:72:31:b0:d3:1e:0a:61:b8:7d:26:1e:3c:c2:f4: 5c:c0:a8:8f:af:3b:1c:4c:55:d7:6b:71:3a:52:f8: 2b:44:cf:09:4a:e4:90:83:6d:ca:cb:b7:da:7c:de: 86:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:E9:C1:63:E3:94:B8:E5:AE:F4:11:FF:93:04:95:98:6B:99:97:E0 X509v3 Authority Key Identifier: keyid:CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3f:92:7f:93:86:e1:e2:6c:c8:fd:95:71:fc:b6:68:37:d1:04: 6e:0b:c2:7c:fe:c9:85:bd:d0:c2:60:37:9c:94:57:d7:7c:22: 4f:6c:1f:03:b5:38:7c:0d:2d:a6:28:5c:6c:b2:9a:de:8e:4e: 5a:be:c8:1b:84:9b:43:53:b9:ee:49:8b:21:2b:d4:09:43:5a: 8d:61:33:c7:b1:e0:1a:c8:36:8a:c7:a8:aa:cc:6d:b4:43:d6: 01:d0:64:e8:a9:11:df:f1:12:9a:c1:b2:3b:37:bc:3e:ee:9b: 88:b0:ee:16:3e:a7:2a:c2:07:d1:54:1c:0f:5c:28:07:0a:27: b6:8c:fd:93:30:4d:e7:3f:da:0b:8a:03:3e:39:3d:34:21:76: 6f:1e:09:d5:7a:c2:71:44:2f:f4:8e:ee:52:67:2d:2e:62:4a: 49:71:6b:07:6a:ba:88:4c:47:da:88:af:fc:2c:a0:c2:6a:42: cf:4c:ec:8c:1a:2a:de:80:4c:76:d0:10:32:34:7d:8f:ce:4b: f2:b6:34:f8:3c:69:a9:cb:b0:10:25:1c:4b:a4:ba:da:8d:7a: a8:2f:7e:52:33:2e:40:8c:7f:28:7f:18:d5:cf:b9:8d:48:19: 16:26:2d:41:4f:b1:f8:79:49:83:07:a7:3e:42:80:a2:1c:05: cf:76:14:d7 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUViBcfhB1p5TTGNweq0zNdct+WpgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1NTBFODhF OTBBRTE2OTAeFw0yNjA1MTQxNjE1MDRaFw0yNjA1MTUxNjU5MDRaMDMxMTAvBgNV BAMTKDk1RTlDMTYzRTM5NEI4RTVBRUY0MTFGRjkzMDQ5NTk4NkI5OTk3RTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDPJWLvnTU1czOrgrGyc5YvxLpq +s+rhzTasepqQl3iNU37uir0GuUCJB7f0htol2RgVoQfQX0fAD6zr8XAKodMQFTZ j8RC8vbI1L+yozivyQJg23Qzh4m9kQMez9fhWtOFxNDlp9/d4YRs6AngTviydZE+ nQTipg911z+g7QyJmF15mNoNRSCd+DJqe9Y1E8fY4efVnh4hKGaYTVmWcs1fS9wk vWl17tjg8k+6wooCvm/FLF9URUpClrjzPwY8rhjRWhk7qzrDeflFiEzcSY9R1sxy MbDTHgphuH0mHjzC9FzAqI+vOxxMVddrcTpS+CtEzwlK5JCDbcrLt9p83oY5AgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUlenBY+OUuOWu9BH/kwSVmGuZl+AwHwYDVR0j BBgwFoAUymeMiG2H8CO5KXh3v1UOiOkK4WkwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0hJWUlZ SS8wL0NBNjc4Qzg4NkQ4N0YwMjNCOTI5Nzg3N0JGNTUwRTg4RTkwQUUxNjkuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1 NTBFODhFOTBBRTE2OS5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NISVlJWUkvMC9DQTY3OEM4ODZE ODdGMDIzQjkyOTc4NzdCRjU1MEU4OEU5MEFFMTY5Lm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAP5J/k4bh 4mzI/ZVx/LZoN9EEbgvCfP7Jhb3QwmA3nJRX13wiT2wfA7U4fA0tpihcbLKa3o5O Wr7IG4SbQ1O57kmLISvUCUNajWEzx7HgGsg2iseoqsxttEPWAdBk6KkR3/ESmsGy Oze8Pu6biLDuFj6nKsIH0VQcD1woBwontoz9kzBN5z/aC4oDPjk9NCF2bx4J1XrC cUQv9I7uUmctLmJKSXFrB2q6iExH2oiv/CygwmpCz0zsjBoq3oBMdtAQMjR9j85L 8rY0+DxpqcuwECUcS6S62o16qC9+UjMuQIx/KH8Y1c+5jUgZFiYtQU+x+HlJgwen PkKAohwFz3YU1w== -----END CERTIFICATE-----Generated at Fri May 15 08:24:24 2026 by rpki-client