$ rpki-client -vvf rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft File: 68C2C435D736FC21F07F0FD09824C8408E615E50.mft (raw, json) Hash identifier: 7qGQj+qeVgStbppWwVN6Y66I1o1PgmSNznuRlmB/wK4= Subject key identifier: 08:9F:78:9B:F9:CB:9F:FE:9C:F0:D1:67:70:7B:D2:A6:6B:06:12:CB Authority key identifier: 68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 Certificate issuer: /CN=68C2C435D736FC21F07F0FD09824C8408E615E50 Certificate serial: 32CAB638C7F5C059F20258DFD6B22BF5FB9928B6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft Manifest number: 48 Signing time: Tue 30 Jun 2026 13:59:05 +0000 Manifest this update: Tue 30 Jun 2026 13:54:05 +0000 Manifest next update: Wed 01 Jul 2026 16:17:05 +0000 Files and hashes: 1: 323430323a346465303a3a2f33322d3438203d3e20323135393933.roa (hash: hn8g2szDRcwiFI4NluomCU2oCcAtBWUgOMXavAqk71Y=) 2: 68C2C435D736FC21F07F0FD09824C8408E615E50.crl (hash: 6thcC+j7Q5IY7KgYb3n6cGgmZT4zxQfWBlODpcLal1I=) 3: 323430323a346465303a3a2f33322d3438203d3e20313432303436.roa (hash: utFWN+nIe6ybPW2ARjXAofwG1zRBUaKHEqvyyRToBOU=) 4: 323430323a346465303a3a2f33322d3438203d3e20313331363331.roa (hash: OfflDa5KhbNli0ingnwLTuILzm6N60MY2kq1CLNfkuU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.crl rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 14:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 32:ca:b6:38:c7:f5:c0:59:f2:02:58:df:d6:b2:2b:f5:fb:99:28:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68C2C435D736FC21F07F0FD09824C8408E615E50 Validity Not Before: Jun 30 13:54:05 2026 GMT Not After : Jul 1 16:17:05 2026 GMT Subject: CN=089F789BF9CB9FFE9CF0D167707BD2A66B0612CB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:1a:c0:cc:67:eb:10:e7:bc:71:59:ca:da:b9: 02:23:a7:99:e7:71:70:b6:6c:f6:b7:b9:6a:ff:ea: 93:7e:c7:6f:93:91:b2:cb:1f:e5:80:2d:bd:c3:75: 95:c0:42:73:49:de:a9:a6:94:ed:e8:f4:d6:78:da: 9a:89:9f:de:27:73:a8:80:66:b2:97:69:81:73:fc: 04:67:64:80:62:3a:93:ac:e3:c3:89:4a:fb:79:1f: b0:ed:c7:99:c0:b6:a4:4b:cf:86:3d:06:a5:7f:8c: 65:a9:2b:9b:de:bf:1e:81:66:85:ff:f6:70:fa:a0: 14:32:1b:48:60:88:e9:fd:53:7c:bf:e4:dc:a9:5a: 5c:05:21:f2:2f:1a:73:a3:20:d3:62:ea:4c:35:0c: af:47:f3:63:89:07:81:65:07:5a:eb:cd:b2:1f:9d: 37:03:20:0c:80:e3:53:32:5e:84:52:1f:ff:03:9e: 6e:18:fd:9b:cd:2a:77:77:72:05:77:8f:e4:9e:86: de:ba:97:8f:02:36:26:25:8e:a9:e7:f8:d4:fb:75: 66:a9:71:97:b9:70:1e:39:bf:c6:7b:48:65:4a:fb: d1:29:5f:74:85:88:3b:e4:e4:80:dc:85:79:73:27: c2:4a:cc:b5:6b:6f:00:d9:c1:52:71:82:ae:78:cd: 20:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 08:9F:78:9B:F9:CB:9F:FE:9C:F0:D1:67:70:7B:D2:A6:6B:06:12:CB X509v3 Authority Key Identifier: keyid:68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 97:5c:f4:d8:ec:b7:89:28:7f:5c:f2:5b:c2:d9:da:31:14:c1: 8b:90:c4:b9:e0:da:ed:19:c8:d8:b0:1d:5f:3e:b4:74:e1:f2: 6e:9a:3c:b8:8e:76:d9:43:ad:3b:5c:9a:8b:e1:a0:1a:42:90: 3c:a7:06:34:54:54:f2:19:c0:82:b2:e8:bb:2b:20:07:74:af: 3e:81:ec:c9:8b:e6:14:73:44:b3:74:da:19:55:c4:10:a6:0e: cf:4f:d3:b4:b4:c9:4f:96:91:33:8f:c2:9f:74:43:60:51:93: 84:f5:64:2c:ab:76:c1:da:b0:25:f7:21:8a:13:b6:75:af:cf: 1f:2a:c9:e7:aa:b3:29:3f:8d:0b:a8:8d:d0:15:44:62:0c:03: a6:f6:b6:a9:7e:62:8f:66:42:27:b7:52:cd:2b:fd:60:35:be: 51:ad:80:05:ec:55:49:cd:eb:9f:d9:b2:9e:fd:65:b4:a8:3e: 16:2c:61:8c:6f:ee:d6:48:79:0d:b8:86:a6:41:1a:5b:45:1e: b7:40:a6:20:cb:9d:4b:0e:d3:b0:1f:a0:ae:9b:24:33:0f:50: 28:d4:2d:6c:14:90:88:d8:46:56:50:aa:9a:6b:87:0f:2b:50: 95:76:b0:d2:d6:64:8c:06:fc:e7:d4:f2:42:22:b0:c4:c7:15: 89:96:10:40 -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUMsq2OMf1wFnyAljf1rIr9fuZKLYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhDMkM0MzVENzM2RkMyMUYwN0YwRkQwOTgyNEM4NDA4 RTYxNUU1MDAeFw0yNjA2MzAxMzU0MDVaFw0yNjA3MDExNjE3MDVaMDMxMTAvBgNV BAMTKDA4OUY3ODlCRjlDQjlGRkU5Q0YwRDE2NzcwN0JEMkE2NkIwNjEyQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCyGsDMZ+sQ57xxWcrauQIjp5nn cXC2bPa3uWr/6pN+x2+TkbLLH+WALb3DdZXAQnNJ3qmmlO3o9NZ42pqJn94nc6iA ZrKXaYFz/ARnZIBiOpOs48OJSvt5H7Dtx5nAtqRLz4Y9BqV/jGWpK5vevx6BZoX/ 9nD6oBQyG0hgiOn9U3y/5NypWlwFIfIvGnOjINNi6kw1DK9H82OJB4FlB1rrzbIf nTcDIAyA41MyXoRSH/8Dnm4Y/ZvNKnd3cgV3j+Seht66l48CNiYljqnn+NT7dWap cZe5cB45v8Z7SGVK+9EpX3SFiDvk5IDchXlzJ8JKzLVrbwDZwVJxgq54zSDxAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUCJ94m/nLn/6c8NFncHvSpmsGEsswHwYDVR0j BBgwFoAUaMLENdc2/CHwfw/QmCTIQI5hXlAwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMz LzAvNjhDMkM0MzVENzM2RkMyMUYwN0YwRkQwOTgyNEM4NDA4RTYxNUU1MC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS82OEMyQzQzNUQ3MzZGQzIxRjA3RjBGRDA5ODI0 Qzg0MDhFNjE1RTUwLmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMzLzAvNjhDMkM0MzVENzM2 RkMyMUYwN0YwRkQwOTgyNEM4NDA4RTYxNUU1MC5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAJdc9Njst4ko f1zyW8LZ2jEUwYuQxLng2u0ZyNiwHV8+tHTh8m6aPLiOdtlDrTtcmovhoBpCkDyn BjRUVPIZwIKy6LsrIAd0rz6B7MmL5hRzRLN02hlVxBCmDs9P07S0yU+WkTOPwp90 Q2BRk4T1ZCyrdsHasCX3IYoTtnWvzx8qyeeqsyk/jQuojdAVRGIMA6b2tql+Yo9m Qie3Us0r/WA1vlGtgAXsVUnN65/Zsp79ZbSoPhYsYYxv7tZIeQ24hqZBGltFHrdA piDLnUsO07AfoK6bJDMPUCjULWwUkIjYRlZQqpprhw8rUJV2sNLWZIwG/OfU8kIi sMTHFYmWEEA= -----END CERTIFICATE-----Generated at Tue Jun 30 19:08:56 2026 by rpki-client