$ rpki-client -vvf rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft File: 68C2C435D736FC21F07F0FD09824C8408E615E50.mft (raw, json) Hash identifier: t7x7kdxLSUUvMpc+8U3BsuQPtmzC0MujHJYf0CrdEyA= Subject key identifier: 18:85:EA:25:B1:4D:72:F1:FC:84:44:A6:DB:23:32:A6:BE:3A:40:BC Authority key identifier: 68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 Certificate issuer: /CN=68C2C435D736FC21F07F0FD09824C8408E615E50 Certificate serial: 4888D197646131306634AD056FF52C7CC8F31DB5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft Manifest number: 08 Signing time: Wed 13 May 2026 09:07:51 +0000 Manifest this update: Wed 13 May 2026 09:02:51 +0000 Manifest next update: Thu 14 May 2026 10:02:51 +0000 Files and hashes: 1: 323430323a346465303a3a2f33322d3438203d3e20313432303436.roa (hash: utFWN+nIe6ybPW2ARjXAofwG1zRBUaKHEqvyyRToBOU=) 2: 323430323a346465303a3a2f33322d3438203d3e20313331363331.roa (hash: OfflDa5KhbNli0ingnwLTuILzm6N60MY2kq1CLNfkuU=) 3: 68C2C435D736FC21F07F0FD09824C8408E615E50.crl (hash: 8mL2XnRdoSyoeCScP5FedNfaCp6duaKlOZ+4TdrogRQ=) 4: 323430323a346465303a3a2f33322d3438203d3e20323135393933.roa (hash: hn8g2szDRcwiFI4NluomCU2oCcAtBWUgOMXavAqk71Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.crl rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 10:02:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 48:88:d1:97:64:61:31:30:66:34:ad:05:6f:f5:2c:7c:c8:f3:1d:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68C2C435D736FC21F07F0FD09824C8408E615E50 Validity Not Before: May 13 09:02:51 2026 GMT Not After : May 14 10:02:51 2026 GMT Subject: CN=1885EA25B14D72F1FC8444A6DB2332A6BE3A40BC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:20:54:ea:04:5b:5d:3b:f5:ec:bf:00:78:e3: 3c:56:e5:99:4d:02:36:2a:38:39:4c:5f:1a:28:bc: 15:c3:68:a1:92:52:c4:92:8b:4b:3f:01:db:af:4c: 7f:9d:f4:e1:70:3b:d1:7a:62:3a:e8:c4:80:b1:7e: 7e:6e:f1:17:87:e6:34:55:29:36:44:ad:9f:99:0a: 35:a6:45:b7:20:3c:d7:53:d3:b3:12:e7:59:0b:be: 4b:db:6c:2b:f9:d8:c5:e7:78:72:1d:2e:e0:7e:d1: 98:b1:d6:5a:fd:88:7a:da:04:0a:7c:33:f4:4b:d4: 40:c7:3a:0f:a0:f8:24:67:95:b5:e0:26:a5:16:ff: 0e:55:b0:69:32:8b:b9:2d:0c:7b:9a:ec:72:02:e9: df:8b:80:74:13:76:fc:29:65:3d:57:73:cc:2a:b7: 63:ef:ef:48:5a:b2:47:3f:e9:5c:35:f2:bd:75:9e: 15:66:7c:47:9d:48:dd:6c:26:88:db:3f:0a:fb:e3: 96:84:f3:42:f2:1f:fc:62:69:05:ec:ea:f6:e7:a4: 13:90:24:ce:42:5a:c0:43:47:66:3f:27:4b:f9:38: 46:96:e0:ff:d4:5e:9a:f9:15:37:c1:7e:76:30:60: 24:01:05:6a:29:2d:b9:bd:dd:de:fa:8e:a1:88:dd: 9f:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:85:EA:25:B1:4D:72:F1:FC:84:44:A6:DB:23:32:A6:BE:3A:40:BC X509v3 Authority Key Identifier: keyid:68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:79:4e:e0:89:b1:0b:f9:7a:10:19:a8:7c:19:40:22:56:a0: 58:9e:4c:ae:21:15:1e:0b:33:cc:b4:a7:d4:a4:8b:eb:07:75: 44:d7:f5:fc:28:52:f1:0f:3f:ba:3a:17:d9:84:12:4e:f7:19: ce:70:89:fd:9b:7d:0e:b8:bc:3a:fe:1e:3d:17:56:da:af:61: 64:6c:f8:13:92:d9:ce:f4:55:71:9b:c1:eb:a9:88:16:2b:56: 0d:04:aa:dd:01:b4:13:9f:cd:9d:e7:d7:55:06:ed:9c:bf:52: 28:14:0c:a7:86:5b:74:4a:98:73:75:bc:bf:d2:ee:e4:d8:90: a4:e9:9d:a5:3a:1d:92:b4:3d:6a:0d:a3:e5:12:c6:ea:61:b8: 53:28:2b:55:14:9f:fe:0a:3b:d3:65:00:d2:d2:be:13:11:2a: 6f:20:cf:ac:5e:07:a1:01:7c:15:2c:d3:85:7d:8e:5b:16:2b: 37:11:ed:5b:23:09:6b:b0:5b:a4:8e:26:7e:aa:bb:fc:75:91: 37:5d:82:61:0e:77:cc:08:ec:f0:f4:a5:9f:42:28:3a:1d:ec: 07:52:5d:a2:9f:42:a2:ac:80:e2:e1:a8:3c:66:78:80:5d:ce: 7d:d2:51:1f:c1:2e:ba:1d:1f:4a:39:fb:78:cd:d4:c1:08:42: 4c:b1:ae:46 -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUSIjRl2RhMTBmNK0Fb/UsfMjzHbUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhDMkM0MzVENzM2RkMyMUYwN0YwRkQwOTgyNEM4NDA4 RTYxNUU1MDAeFw0yNjA1MTMwOTAyNTFaFw0yNjA1MTQxMDAyNTFaMDMxMTAvBgNV BAMTKDE4ODVFQTI1QjE0RDcyRjFGQzg0NDRBNkRCMjMzMkE2QkUzQTQwQkMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCcIFTqBFtdO/XsvwB44zxW5ZlN AjYqODlMXxoovBXDaKGSUsSSi0s/AduvTH+d9OFwO9F6YjroxICxfn5u8ReH5jRV KTZErZ+ZCjWmRbcgPNdT07MS51kLvkvbbCv52MXneHIdLuB+0Zix1lr9iHraBAp8 M/RL1EDHOg+g+CRnlbXgJqUW/w5VsGkyi7ktDHua7HIC6d+LgHQTdvwpZT1Xc8wq t2Pv70haskc/6Vw18r11nhVmfEedSN1sJojbPwr745aE80LyH/xiaQXs6vbnpBOQ JM5CWsBDR2Y/J0v5OEaW4P/UXpr5FTfBfnYwYCQBBWopLbm93d76jqGI3Z+vAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUGIXqJbFNcvH8hESm2yMypr46QLwwHwYDVR0j BBgwFoAUaMLENdc2/CHwfw/QmCTIQI5hXlAwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMz LzAvNjhDMkM0MzVENzM2RkMyMUYwN0YwRkQwOTgyNEM4NDA4RTYxNUU1MC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS82OEMyQzQzNUQ3MzZGQzIxRjA3RjBGRDA5ODI0 Qzg0MDhFNjE1RTUwLmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMzLzAvNjhDMkM0MzVENzM2 RkMyMUYwN0YwRkQwOTgyNEM4NDA4RTYxNUU1MC5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAAF5TuCJsQv5 ehAZqHwZQCJWoFieTK4hFR4LM8y0p9Ski+sHdUTX9fwoUvEPP7o6F9mEEk73Gc5w if2bfQ64vDr+Hj0XVtqvYWRs+BOS2c70VXGbweupiBYrVg0Eqt0BtBOfzZ3n11UG 7Zy/UigUDKeGW3RKmHN1vL/S7uTYkKTpnaU6HZK0PWoNo+USxuphuFMoK1UUn/4K O9NlANLSvhMRKm8gz6xeB6EBfBUs04V9jlsWKzcR7VsjCWuwW6SOJn6qu/x1kTdd gmEOd8wI7PD0pZ9CKDod7AdSXaKfQqKsgOLhqDxmeIBdzn3SUR/BLrodH0o5+3jN 1MEIQkyxrkY= -----END CERTIFICATE-----Generated at Wed May 13 20:33:39 2026 by rpki-client