$ rpki-client -vvf rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft File: 56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft (raw, json) Hash identifier: drpBVPSbanHfMMD8YkFeu8TLyXkuHNU5qGoCp9lie4c= Subject key identifier: A5:A6:61:9E:34:ED:72:16:B3:47:46:01:0B:6C:41:DC:E7:30:FA:B7 Authority key identifier: 56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3 Certificate issuer: /CN=56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3 Certificate serial: 3EEA5F6C65BA36008FB9B188BE46D0E1E55CF27E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft Manifest number: 4B Signing time: Tue 30 Jun 2026 16:14:14 +0000 Manifest this update: Tue 30 Jun 2026 16:09:14 +0000 Manifest next update: Wed 01 Jul 2026 17:51:14 +0000 Files and hashes: 1: 323430333a376634303a666630303a3a2f34382d3438203d3e203230343733.roa (hash: AfAX13SxCLnlMaK5dhRCuMKxU7A8dV/NgyypCpd1bdY=) 2: 3130332e3132392e3134352e302f32342d3234203d3e203338323534.roa (hash: xP411/3P+QncE7UBCG9FjIpMvagWAoQKRii7/7dwrps=) 3: 3130332e3132392e3134342e302f32342d3234203d3e2035303635.roa (hash: r6atDIqgperuF3RfaudvB73QXSoXlYlurO9YxRuzsEo=) 4: 56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.crl (hash: TihWIq8QP1iYHf3JX3bBKWasVQllQQdXjU3inuxjYeM=) 5: 323430333a376634303a653030303a3a2f33362d3336203d3e203338323534.roa (hash: o6RGuHIfda02+Jk34ePKyhchsrC+xHDAy6BJ51uRReg=) 6: 323430333a376634303a663030303a3a2f34382d3634203d3e20313331363339.roa (hash: ZRXaYx+Nrn2iAFlJIwnl9HLp8Eud4rItrm9qIQL8K3o=) 7: 3130332e3132392e3134372e302f32342d3234203d3e203230343733.roa (hash: jLHkK85y6D6I/P5jhpzcJkW6hQFZ18OruOJ4poV43Y8=) 8: 3130332e3132392e3134362e302f32342d3234203d3e20313331363339.roa (hash: CBt4aj49jAfK/FkdSCAEmu5FJcJ8ZBpytmS6xaMxItA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.crl rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 14:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3e:ea:5f:6c:65:ba:36:00:8f:b9:b1:88:be:46:d0:e1:e5:5c:f2:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3 Validity Not Before: Jun 30 16:09:14 2026 GMT Not After : Jul 1 17:51:14 2026 GMT Subject: CN=A5A6619E34ED7216B34746010B6C41DCE730FAB7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:cd:14:55:b1:4a:06:a1:78:32:1d:6f:29:b4: b4:23:75:81:b0:d8:31:5d:58:e9:1d:19:23:ad:67: b1:5e:a7:35:a5:da:ef:7b:13:a9:39:b9:f0:5c:43: 53:df:32:34:b4:67:7f:d5:a0:98:37:61:5a:f2:2e: 08:a4:34:27:3e:87:11:f4:f4:e9:c1:98:7f:3a:12: f3:1a:c5:ae:65:d2:cb:3f:32:63:cb:60:96:ef:f2: 3f:2b:b1:41:55:82:4d:b2:02:5b:55:3f:fb:6a:1e: a5:ce:74:69:f8:7f:47:33:a2:a0:a4:0d:a3:4e:bc: a5:25:2a:99:09:ab:8d:7a:a0:3d:85:6a:c6:dd:57: e8:cc:65:9d:0f:93:94:b0:62:37:a4:05:10:fb:69: 7a:81:2f:df:af:a2:e9:0e:5d:1a:a4:b8:40:08:e7: 34:15:2d:d1:52:e3:16:b1:02:aa:1f:16:07:e3:2e: e4:7d:7d:ef:6b:22:63:2e:08:fe:c3:ef:44:dd:b3: 8e:ae:d7:29:40:52:30:f3:54:be:31:58:b4:18:29: 86:94:5e:55:58:3a:64:29:d8:56:74:61:d6:16:74: 3d:d6:b8:f3:49:a0:6e:5a:61:f3:f5:aa:dc:f1:33: 23:63:1f:89:e0:8d:64:ea:82:fa:93:eb:c5:76:a9: 08:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:A6:61:9E:34:ED:72:16:B3:47:46:01:0B:6C:41:DC:E7:30:FA:B7 X509v3 Authority Key Identifier: keyid:56:D2:E2:5E:40:9F:E9:56:A1:4A:8F:5A:5C:0E:EA:69:CC:F5:0E:A3 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TIH/0/56D2E25E409FE956A14A8F5A5C0EEA69CCF50EA3.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 3e:4c:36:e4:0c:5c:8a:b7:73:19:17:60:61:58:cc:54:0c:70: 6f:bd:46:79:8a:8d:43:0d:ac:e8:fe:db:f8:be:9b:c7:96:39: 24:b2:6c:77:e5:38:47:76:e5:cb:0e:c3:53:e4:f1:c6:03:25: b6:7e:f5:e8:e8:7c:78:6c:94:cb:f2:e2:61:5a:87:0f:1b:ec: 9f:b0:22:8d:c8:2c:22:26:9f:df:17:a8:15:a3:2e:03:fe:92: f7:03:1b:b2:60:d1:cd:41:05:95:dd:d3:ac:62:af:79:7a:27: ef:5e:a8:d3:31:43:06:3f:a5:46:6a:f6:6b:d7:6a:d6:91:52: bd:6d:39:c4:c8:4a:56:0d:13:de:d8:26:67:cf:ea:2e:02:6d: 5d:7c:3a:b9:ed:e9:ed:5e:2c:d3:81:c6:44:7a:3f:90:0f:7e: 36:44:88:29:4f:d0:28:c6:67:1c:71:64:09:ba:32:76:6a:89: ec:3a:d0:8e:86:71:dc:82:10:a4:1b:d3:bb:16:58:98:1e:55: f9:f2:70:fc:76:38:86:8c:49:13:87:45:55:52:43:67:17:dd: 20:19:6b:34:c4:06:7b:95:04:d8:92:ca:87:6c:3f:3d:d4:59: ee:71:75:a6:8f:df:78:94:b6:4f:4d:eb:2a:22:66:8a:8d:2a: 4c:1d:9c:6e -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUPupfbGW6NgCPubGIvkbQ4eVc8n4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTZEMkUyNUU0MDlGRTk1NkExNEE4RjVBNUMwRUVBNjlD Q0Y1MEVBMzAeFw0yNjA2MzAxNjA5MTRaFw0yNjA3MDExNzUxMTRaMDMxMTAvBgNV BAMTKEE1QTY2MTlFMzRFRDcyMTZCMzQ3NDYwMTBCNkM0MURDRTczMEZBQjcwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDCzRRVsUoGoXgyHW8ptLQjdYGw 2DFdWOkdGSOtZ7FepzWl2u97E6k5ufBcQ1PfMjS0Z3/VoJg3YVryLgikNCc+hxH0 9OnBmH86EvMaxa5l0ss/MmPLYJbv8j8rsUFVgk2yAltVP/tqHqXOdGn4f0czoqCk DaNOvKUlKpkJq416oD2FasbdV+jMZZ0Pk5SwYjekBRD7aXqBL9+voukOXRqkuEAI 5zQVLdFS4xaxAqofFgfjLuR9fe9rImMuCP7D70Tds46u1ylAUjDzVL4xWLQYKYaU XlVYOmQp2FZ0YdYWdD3WuPNJoG5aYfP1qtzxMyNjH4ngjWTqgvqT68V2qQjfAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUpaZhnjTtchazR0YBC2xB3Ocw+rcwHwYDVR0j BBgwFoAUVtLiXkCf6VahSo9aXA7qacz1DqMwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElILzAv NTZEMkUyNUU0MDlGRTk1NkExNEE4RjVBNUMwRUVBNjlDQ0Y1MEVBMy5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS81NkQyRTI1RTQwOUZFOTU2QTE0QThGNUE1QzBFRUE2 OUNDRjUwRUEzLmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVElILzAvNTZEMkUyNUU0MDlGRTk1NkEx NEE4RjVBNUMwRUVBNjlDQ0Y1MEVBMy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAD5MNuQMXIq3cxkXYGFY zFQMcG+9RnmKjUMNrOj+2/i+m8eWOSSybHflOEd25csOw1Pk8cYDJbZ+9ejofHhs lMvy4mFahw8b7J+wIo3ILCImn98XqBWjLgP+kvcDG7Jg0c1BBZXd06xir3l6J+9e qNMxQwY/pUZq9mvXataRUr1tOcTISlYNE97YJmfP6i4CbV18Ornt6e1eLNOBxkR6 P5APfjZEiClP0CjGZxxxZAm6MnZqiew60I6GcdyCEKQb07sWWJgeVfnycPx2OIaM SROHRVVSQ2cX3SAZazTEBnuVBNiSyodsPz3UWe5xdaaP33iUtk9N6yoiZoqNKkwd nG4= -----END CERTIFICATE-----Generated at Tue Jun 30 19:10:36 2026 by rpki-client