$ rpki-client -vvf rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft File: 56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft (raw, json) Hash identifier: RsdNvOnX9SvbdrOYuH54J977ZTUjyeewU4P7tdQ+1dg= Subject key identifier: EC:4D:F8:C5:5F:62:C5:2B:A1:7D:96:46:C3:7C:50:1C:AA:EC:AA:49 Authority key identifier: 56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3 Certificate issuer: /CN=56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3 Certificate serial: 3304EEEE892711ACF38F63CC99059F457FD6FD41 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft Manifest number: 0A Signing time: Wed 13 May 2026 06:52:27 +0000 Manifest this update: Wed 13 May 2026 06:47:27 +0000 Manifest next update: Thu 14 May 2026 09:04:27 +0000 Files and hashes: 1: 3130332e3132392e3134342e302f32342d3234203d3e2035303635.roa (hash: r6atDIqgperuF3RfaudvB73QXSoXlYlurO9YxRuzsEo=) 2: 3130332e3132392e3134352e302f32342d3234203d3e203338323534.roa (hash: xP411/3P+QncE7UBCG9FjIpMvagWAoQKRii7/7dwrps=) 3: 323430333a376634303a663030303a3a2f34382d3634203d3e20313331363339.roa (hash: ZRXaYx+Nrn2iAFlJIwnl9HLp8Eud4rItrm9qIQL8K3o=) 4: 3130332e3132392e3134362e302f32342d3234203d3e20313331363339.roa (hash: CBt4aj49jAfK/FkdSCAEmu5FJcJ8ZBpytmS6xaMxItA=) 5: 323430333a376634303a666630303a3a2f34382d3438203d3e203230343733.roa (hash: AfAX13SxCLnlMaK5dhRCuMKxU7A8dV/NgyypCpd1bdY=) 6: 323430333a376634303a653030303a3a2f33362d3336203d3e203338323534.roa (hash: o6RGuHIfda02+Jk34ePKyhchsrC+xHDAy6BJ51uRReg=) 7: 3130332e3132392e3134372e302f32342d3234203d3e203230343733.roa (hash: jLHkK85y6D6I/P5jhpzcJkW6hQFZ18OruOJ4poV43Y8=) 8: 56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.crl (hash: 0TBR3LO5hRDbjzDYORoaAMxQ1wWmYXXePPvhotVhFcg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.crl rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 09:04:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 33:04:ee:ee:89:27:11:ac:f3:8f:63:cc:99:05:9f:45:7f:d6:fd:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3 Validity Not Before: May 13 06:47:27 2026 GMT Not After : May 14 09:04:27 2026 GMT Subject: CN=EC4DF8C55F62C52BA17D9646C37C501CAAECAA49 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:4d:dc:39:d6:4a:7c:0f:66:26:11:4d:20:12: fd:6b:6a:77:85:8f:52:15:2f:d9:87:88:a6:94:0d: 2a:d3:a5:f5:95:c4:3f:af:ac:f1:f0:1b:07:78:73: ec:70:2a:73:0a:19:07:28:b4:04:8e:ff:3c:96:60: a8:e4:02:27:3c:c2:86:c2:a1:04:5d:89:87:d0:3d: 58:21:2d:90:af:03:17:bb:b0:83:fb:bb:4f:7e:f9: 7a:06:22:ec:97:14:3d:9b:40:3a:c1:bf:77:db:e9: de:66:82:ff:e6:cf:0b:66:8f:ab:e9:15:8d:95:a3: 91:7e:be:fc:ed:40:13:ac:46:4d:71:7e:51:3a:2c: db:b5:df:fd:3b:ee:9d:73:26:a6:11:03:59:84:f4: 90:3c:ad:98:c1:d5:56:1f:b4:5f:a7:37:5f:5e:6d: b8:0c:ce:83:5b:ab:4e:cd:60:d9:e8:a8:d1:cf:67: 33:5e:8a:1e:23:97:c5:7e:a7:de:49:14:87:1f:d8: f7:b3:95:0e:be:4d:16:72:42:ea:dd:21:49:0f:e7: f1:21:7a:e3:aa:e3:53:c0:86:99:67:75:48:ec:b2: bf:68:f2:da:79:2e:ae:01:21:9a:8f:24:2b:24:0f: e0:6c:e8:a1:76:6d:9e:bb:3a:29:be:d9:1c:6c:d1: 6d:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:4D:F8:C5:5F:62:C5:2B:A1:7D:96:46:C3:7C:50:1C:AA:EC:AA:49 X509v3 Authority Key Identifier: keyid:56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7b:6f:99:fd:0f:d6:51:49:ce:ce:1b:2b:46:16:c4:7d:ba:f8: e2:30:be:02:a5:f2:83:a2:da:c4:9c:f7:fb:a8:05:47:b7:98: 2b:64:63:7a:fd:12:28:47:c0:42:f2:cc:24:d6:d1:15:cd:d4: d5:37:f0:ad:8f:2d:37:d2:e8:86:9b:4f:c2:61:59:b3:ef:de: d6:c7:a7:25:91:e7:f2:ec:50:b5:fe:4b:8b:71:49:ed:e5:b6: 96:0b:07:98:a0:16:4a:89:09:55:32:a1:9a:75:7d:1e:84:ec: da:d5:f8:4d:98:0d:d1:a9:9b:d8:e7:0a:0b:25:67:fd:4a:71: 76:e3:43:3f:fe:be:a6:fe:b8:06:fa:a2:4c:55:78:e0:f2:cc: 9f:fb:38:66:4c:f3:cc:54:bf:d5:36:f8:f0:d3:ce:a0:02:8f: cd:28:ea:f8:3e:4f:0d:a7:64:5d:12:71:6a:e8:b7:bf:da:dd: b9:b5:3e:42:c3:1f:e6:08:36:49:d4:e1:29:2d:33:d8:57:6d: c2:f6:d2:25:3e:d1:3a:81:b0:eb:65:82:e4:5d:fd:8f:f6:e5: d4:e8:bc:39:4b:4f:04:87:3c:f0:57:90:ce:20:5a:46:21:f0: db:7d:3b:6b:44:3a:cb:a5:61:cf:21:3f:94:52:84:25:72:d1: d5:5f:37:ae -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUMwTu7oknEazzj2PMmQWfRX/W/UEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTZEMkUyNUU0MDlGRTk1NkExNEE4RjVBNUMwRUVBNjlD Q0Y1MEVBMzAeFw0yNjA1MTMwNjQ3MjdaFw0yNjA1MTQwOTA0MjdaMDMxMTAvBgNV BAMTKEVDNERGOEM1NUY2MkM1MkJBMTdEOTY0NkMzN0M1MDFDQUFFQ0FBNDkwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC1Tdw51kp8D2YmEU0gEv1raneF j1IVL9mHiKaUDSrTpfWVxD+vrPHwGwd4c+xwKnMKGQcotASO/zyWYKjkAic8wobC oQRdiYfQPVghLZCvAxe7sIP7u09++XoGIuyXFD2bQDrBv3fb6d5mgv/mzwtmj6vp FY2Vo5F+vvztQBOsRk1xflE6LNu13/077p1zJqYRA1mE9JA8rZjB1VYftF+nN19e bbgMzoNbq07NYNnoqNHPZzNeih4jl8V+p95JFIcf2PezlQ6+TRZyQurdIUkP5/Eh euOq41PAhplndUjssr9o8tp5Lq4BIZqPJCskD+Bs6KF2bZ67Oim+2Rxs0W1hAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQU7E34xV9ixSuhfZZGw3xQHKrsqkkwHwYDVR0j BBgwFoAUVtLiXkCf6VahSo9aXA7qacz1DqMwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElILzAv NTZEMkUyNUU0MDlGRTk1NkExNEE4RjVBNUMwRUVBNjlDQ0Y1MEVBMy5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS81NkQyRTI1RTQwOUZFOTU2QTE0QThGNUE1QzBFRUE2 OUNDRjUwRUEzLmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElILzAvNTZEMkUyNUU0MDlGRTk1NkEx NEE4RjVBNUMwRUVBNjlDQ0Y1MEVBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAHtvmf0P1lFJzs4bK0YW xH26+OIwvgKl8oOi2sSc9/uoBUe3mCtkY3r9EihHwELyzCTW0RXN1NU38K2PLTfS 6IabT8JhWbPv3tbHpyWR5/LsULX+S4txSe3ltpYLB5igFkqJCVUyoZp1fR6E7NrV +E2YDdGpm9jnCgslZ/1KcXbjQz/+vqb+uAb6okxVeODyzJ/7OGZM88xUv9U2+PDT zqACj80o6vg+Tw2nZF0ScWrot7/a3bm1PkLDH+YINknU4SktM9hXbcL20iU+0TqB sOtlguRd/Y/25dTovDlLTwSHPPBXkM4gWkYh8Nt9O2tEOsulYc8hP5RShCVy0dVf N64= -----END CERTIFICATE-----Generated at Wed May 13 20:34:02 2026 by rpki-client