$ rpki-client -vvf rpkica.twnic.tw/rpki/STWN/0/28110DE86B5C0A286A9B3545A4369B11A7480010.mft File: 28110DE86B5C0A286A9B3545A4369B11A7480010.mft (raw, json) Hash identifier: 8EnKa9yIkqSlYhG8LGpXkaBMCoLrbT8AIFy6PZ57Fmk= Subject key identifier: DD:06:F8:3E:19:A5:02:F1:29:40:66:9F:C2:F3:F0:C8:A0:58:D7:25 Authority key identifier: 28:11:0D:E8:6B:5C:0A:28:6A:9B:35:45:A4:36:9B:11:A7:48:00:10 Certificate issuer: /CN=28110DE86B5C0A286A9B3545A4369B11A7480010 Certificate serial: 142A5A5C1643FB395A81C8466BBEA980B057F4D7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/28110DE86B5C0A286A9B3545A4369B11A7480010.cer Subject info access: rsync://rpkica.twnic.tw/rpki/STWN/0/28110DE86B5C0A286A9B3545A4369B11A7480010.mft Manifest number: 43 Signing time: Tue 30 Jun 2026 08:08:23 +0000 Manifest this update: Tue 30 Jun 2026 08:03:23 +0000 Manifest next update: Wed 01 Jul 2026 08:51:23 +0000 Files and hashes: 1: 28110DE86B5C0A286A9B3545A4369B11A7480010.crl (hash: NnQLrafid6GnUgmUp/MhHWwN8YapWUHJIaWtNqr62Ro=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/STWN/0/28110DE86B5C0A286A9B3545A4369B11A7480010.crl rsync://rpkica.twnic.tw/rpki/STWN/0/28110DE86B5C0A286A9B3545A4369B11A7480010.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/28110DE86B5C0A286A9B3545A4369B11A7480010.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 08:51:23 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 14:2a:5a:5c:16:43:fb:39:5a:81:c8:46:6b:be:a9:80:b0:57:f4:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=28110DE86B5C0A286A9B3545A4369B11A7480010 Validity Not Before: Jun 30 08:03:23 2026 GMT Not After : Jul 1 08:51:23 2026 GMT Subject: CN=DD06F83E19A502F12940669FC2F3F0C8A058D725 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:5b:c6:55:33:5c:1f:88:4f:7a:72:b0:31:48: 94:93:94:4f:66:be:3d:88:ff:f1:f0:f9:1f:fb:68: cc:b0:18:c1:1f:a5:e7:35:a3:e5:e2:91:fb:f3:df: 71:a8:b4:22:9b:9f:2a:90:93:17:2d:ab:71:68:25: f8:f9:29:03:42:95:91:4d:e4:d2:6d:4e:d0:11:75: 42:61:0a:f6:68:44:75:a8:25:48:57:dd:49:85:02: b1:ed:ae:b7:22:fd:14:79:3a:54:95:f8:56:15:3c: 82:df:f7:4d:af:f2:2c:80:39:fc:dc:b6:b2:03:6f: 7d:80:5d:aa:99:8e:ba:21:45:94:73:e2:9d:c2:1a: 7a:d1:2d:fc:21:22:08:91:bc:c9:b8:f9:87:d9:25: f6:37:78:0b:52:f5:2e:32:df:fa:15:1e:c6:c5:0a: bb:71:2d:95:1f:33:a0:29:55:10:10:b2:a3:4f:aa: 9f:ad:8e:01:cb:c4:ea:23:09:6a:8a:05:45:ff:28: 51:f4:d9:51:61:ed:78:f4:03:27:f6:5f:18:25:15: 8d:05:ec:dd:4c:13:ec:b4:9f:d7:a6:7d:95:80:87: 64:a1:ad:d1:28:ce:d2:42:e4:21:b6:70:eb:30:21: 8b:41:5b:50:20:44:91:af:28:12:4d:fc:59:33:c2: 32:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:06:F8:3E:19:A5:02:F1:29:40:66:9F:C2:F3:F0:C8:A0:58:D7:25 X509v3 Authority Key Identifier: keyid:28:11:0D:E8:6B:5C:0A:28:6A:9B:35:45:A4:36:9B:11:A7:48:00:10 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/STWN/0/28110DE86B5C0A286A9B3545A4369B11A7480010.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/28110DE86B5C0A286A9B3545A4369B11A7480010.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/STWN/0/28110DE86B5C0A286A9B3545A4369B11A7480010.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 61:a2:b1:c3:bb:66:22:cc:34:09:02:1f:99:d8:98:8a:23:a1: 66:8a:23:29:0b:1b:f7:8f:4f:ac:d0:dc:27:0b:25:96:e7:2c: 96:d4:a4:bc:09:b5:91:9e:6c:16:38:40:89:85:ac:33:55:c2: 07:ca:05:7f:5b:4f:b2:ad:4d:fd:3d:99:f0:5a:49:a1:f2:92: 94:d4:fb:21:0f:f4:66:22:65:f4:27:fa:08:73:e9:e6:47:68: 2f:de:25:62:6d:26:58:ef:c3:23:cb:c8:ef:28:48:59:87:77: e0:40:70:65:eb:4d:7c:ae:19:fb:ed:a4:06:66:b1:e6:ff:f8: 72:9b:9c:c7:34:a8:b6:81:a8:64:89:f2:5a:5f:c1:40:1b:70: 58:9c:23:7e:a4:1b:a5:a2:fd:57:b7:1a:f7:1b:1b:bd:fd:f9: 2a:d3:aa:12:b7:44:47:6e:ae:a5:03:5d:44:10:29:80:e6:96: 4f:45:15:7e:52:be:96:c1:a0:4e:37:12:98:15:d3:01:bc:08: fa:8a:93:4b:37:c9:74:4b:ad:af:9a:fe:48:0d:1a:1c:cb:15: 9d:d2:86:81:33:a0:9f:ac:36:58:af:33:eb:95:aa:b6:c4:30: ce:c9:f2:e6:f1:f9:e8:78:4e:8b:55:e6:26:22:7b:94:d6:a8: c2:65:81:f4 -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUFCpaXBZD+zlagchGa76pgLBX9NcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjgxMTBERTg2QjVDMEEyODZBOUIzNTQ1QTQzNjlCMTFB NzQ4MDAxMDAeFw0yNjA2MzAwODAzMjNaFw0yNjA3MDEwODUxMjNaMDMxMTAvBgNV BAMTKEREMDZGODNFMTlBNTAyRjEyOTQwNjY5RkMyRjNGMEM4QTA1OEQ3MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1W8ZVM1wfiE96crAxSJSTlE9m vj2I//Hw+R/7aMywGMEfpec1o+Xikfvz33GotCKbnyqQkxctq3FoJfj5KQNClZFN 5NJtTtARdUJhCvZoRHWoJUhX3UmFArHtrrci/RR5OlSV+FYVPILf902v8iyAOfzc trIDb32AXaqZjrohRZRz4p3CGnrRLfwhIgiRvMm4+YfZJfY3eAtS9S4y3/oVHsbF CrtxLZUfM6ApVRAQsqNPqp+tjgHLxOojCWqKBUX/KFH02VFh7Xj0Ayf2XxglFY0F 7N1ME+y0n9emfZWAh2ShrdEoztJC5CG2cOswIYtBW1AgRJGvKBJN/FkzwjLTAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQU3Qb4PhmlAvEpQGafwvPwyKBY1yUwHwYDVR0j BBgwFoAUKBEN6GtcCihqmzVFpDabEadIABAwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU1RXTi8w LzI4MTEwREU4NkI1QzBBMjg2QTlCMzU0NUE0MzY5QjExQTc0ODAwMTAuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvMjgxMTBERTg2QjVDMEEyODZBOUIzNTQ1QTQzNjlC MTFBNzQ4MDAxMC5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NUV04vMC8yODExMERFODZCNUMwQTI4 NkE5QjM1NDVBNDM2OUIxMUE3NDgwMDEwLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAYaKxw7tmIsw0CQIf mdiYiiOhZoojKQsb949PrNDcJwsllucsltSkvAm1kZ5sFjhAiYWsM1XCB8oFf1tP sq1N/T2Z8FpJofKSlNT7IQ/0ZiJl9Cf6CHPp5kdoL94lYm0mWO/DI8vI7yhIWYd3 4EBwZetNfK4Z++2kBmax5v/4cpucxzSotoGoZInyWl/BQBtwWJwjfqQbpaL9V7ca 9xsbvf35KtOqErdER26upQNdRBApgOaWT0UVflK+lsGgTjcSmBXTAbwI+oqTSzfJ dEutr5r+SA0aHMsVndKGgTOgn6w2WK8z65WqtsQwzsny5vH56HhOi1XmJiJ7lNao wmWB9A== -----END CERTIFICATE-----Generated at Tue Jun 30 19:09:45 2026 by rpki-client