$ rpki-client -vvf rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.mft File: 432734F40920205CA6443A3B99308DD718E70D42.mft (raw, json) Hash identifier: KHnOxucHzGu6hIBuridVRLTjrNaSmCc4cCXS4quUsoY= Subject key identifier: 21:39:1E:E1:BE:B7:CC:B2:A6:27:CF:52:BA:8B:99:8D:AB:C2:A8:3D Authority key identifier: 43:27:34:F4:09:20:20:5C:A6:44:3A:3B:99:30:8D:D7:18:E7:0D:42 Certificate issuer: /CN=432734F40920205CA6443A3B99308DD718E70D42 Certificate serial: 311A4EE7DB8E283FA91AF4619EC59D3AB83A3B9B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432734F40920205CA6443A3B99308DD718E70D42.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.mft Manifest number: 08 Signing time: Wed 13 May 2026 03:21:32 +0000 Manifest this update: Wed 13 May 2026 03:16:32 +0000 Manifest next update: Thu 14 May 2026 04:08:32 +0000 Files and hashes: 1: 432734F40920205CA6443A3B99308DD718E70D42.crl (hash: 3PskrHTXHkgPuKBh8AKpWfS20DusXwaLeVK+Ll814dU=) 2: 3130332e3134372e32322e302f32332d3234203d3e203138303431.roa (hash: B4DWL17lSxBYMT/SKD6UY6D7iduYtyLTzr7HPcix8dk=) 3: 323430353a613634303a3a2f33322d3438203d3e203138303431.roa (hash: Me8ETjKs1rBTDIHMtzcFjvks6+2DOyVK7V5OGraUmDY=) 4: 323430353a613634303a313137333a3a2f34382d3438203d3e20313431313733.roa (hash: 87eGcMzsBcFERAr5N4m3uIfuCE9wu8GrAFKZcBGz6Qc=) 5: 323430353a613634303a313137333a3a2f34382d3438203d3e20323039353537.roa (hash: QNMFjQL+XZqARqPpMvaXZNEvipiDpxefIbtDxQ7JW9Y=) 6: 3231312e37362e3138302e302f32332d3234203d3e203138303431.roa (hash: bbxNqJpcFoKQB8YEZ9k9dbWZhlMmSJIxxEto4IGtK6w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.crl rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432734F40920205CA6443A3B99308DD718E70D42.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 04:08:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 31:1a:4e:e7:db:8e:28:3f:a9:1a:f4:61:9e:c5:9d:3a:b8:3a:3b:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432734F40920205CA6443A3B99308DD718E70D42 Validity Not Before: May 13 03:16:32 2026 GMT Not After : May 14 04:08:32 2026 GMT Subject: CN=21391EE1BEB7CCB2A627CF52BA8B998DABC2A83D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:63:ee:4c:9d:ee:b2:fa:81:10:56:2b:25:68: b0:9b:e3:0d:ad:bc:a1:e2:05:18:69:cd:f8:bf:c5: fe:92:65:b7:8c:99:e9:cd:e4:a9:3f:61:47:da:78: 5e:69:4b:63:7a:e9:8e:e3:b5:4d:af:12:70:74:fd: 06:e6:a6:62:fc:53:a0:9a:d3:51:34:e6:20:49:55: 42:e5:8c:e7:1b:78:b5:b5:34:15:20:ce:8b:f3:6c: 51:7f:0b:8e:61:4a:58:d3:4c:19:71:83:84:58:2c: 05:9c:63:bb:d6:53:08:26:59:12:47:3e:46:ac:78: e3:b8:71:96:40:df:c6:3a:11:c5:a4:c4:46:99:21: bd:c2:7e:53:3a:12:74:31:ce:b3:92:15:72:d1:67: dc:b6:43:7e:8b:6a:30:94:9a:65:d7:be:c6:7e:8f: 0f:c1:0e:c4:df:d6:75:d3:cc:50:58:b4:ba:81:6c: 74:66:21:c5:d0:3b:a8:b7:a5:54:f1:5a:63:34:6a: 7a:d6:85:e4:e3:61:3c:d1:e7:e4:85:37:9f:0e:e9: 45:23:91:4b:b9:8b:a0:0a:4e:fa:a1:73:c2:ef:8b: 1d:a0:6c:6a:cd:d4:f6:a5:c7:69:21:74:d9:a0:e2: fd:4f:98:37:3d:ca:4f:04:6d:45:15:95:fc:9e:25: 68:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:39:1E:E1:BE:B7:CC:B2:A6:27:CF:52:BA:8B:99:8D:AB:C2:A8:3D X509v3 Authority Key Identifier: keyid:43:27:34:F4:09:20:20:5C:A6:44:3A:3B:99:30:8D:D7:18:E7:0D:42 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432734F40920205CA6443A3B99308DD718E70D42.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWDS/0/432734F40920205CA6443A3B99308DD718E70D42.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:f7:8d:4c:28:73:86:47:f0:c3:a7:bd:6d:2d:bc:2d:f5:73: 33:e1:44:81:9d:d4:f8:fb:3e:e1:d8:fc:f4:a3:b5:b0:18:0a: ef:19:f0:40:bb:b7:0e:c1:c1:97:c9:e3:74:c3:8b:24:b2:7a: f2:89:dc:24:f1:c3:b8:5a:d7:0b:ed:31:b8:13:b3:1e:40:03: df:27:7e:79:25:a1:83:10:64:19:89:02:80:3d:ba:e6:68:0e: 39:a4:7c:a3:3a:82:c9:9c:2b:26:65:5c:fc:7f:b1:46:bc:59: b8:98:b5:4c:69:20:96:56:d8:96:21:c7:a6:e9:b2:e2:19:68: f4:b0:b8:59:bc:19:61:81:cc:04:c5:5c:0d:52:e3:59:d8:de: 95:da:e3:3d:73:2e:89:9a:fa:bd:bd:08:26:67:80:21:f4:2d: 77:f7:40:e4:4e:9a:41:85:93:df:61:c9:d0:8f:03:ca:11:d1: 41:78:f6:12:51:4b:9f:6a:ef:de:81:52:69:e3:05:7a:5a:a6: 2b:20:e9:c5:e4:d1:53:b2:ee:87:77:55:46:66:9b:7c:df:ce: 89:63:cc:15:8f:5c:fa:ba:38:1a:31:61:cc:46:63:cb:87:30: 42:af:1d:3a:dd:d9:e7:d7:8b:1b:df:19:e5:5a:6f:13:f5:79: b0:14:d8:5d -----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgIUMRpO59uOKD+pGvRhnsWdOrg6O5swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyNzM0RjQwOTIwMjA1Q0E2NDQzQTNCOTkzMDhERDcx OEU3MEQ0MjAeFw0yNjA1MTMwMzE2MzJaFw0yNjA1MTQwNDA4MzJaMDMxMTAvBgNV BAMTKDIxMzkxRUUxQkVCN0NDQjJBNjI3Q0Y1MkJBOEI5OThEQUJDMkE4M0QwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC0Y+5Mne6y+oEQVislaLCb4w2t vKHiBRhpzfi/xf6SZbeMmenN5Kk/YUfaeF5pS2N66Y7jtU2vEnB0/QbmpmL8U6Ca 01E05iBJVULljOcbeLW1NBUgzovzbFF/C45hSljTTBlxg4RYLAWcY7vWUwgmWRJH PkaseOO4cZZA38Y6EcWkxEaZIb3CflM6EnQxzrOSFXLRZ9y2Q36LajCUmmXXvsZ+ jw/BDsTf1nXTzFBYtLqBbHRmIcXQO6i3pVTxWmM0anrWheTjYTzR5+SFN58O6UUj kUu5i6AKTvqhc8Lvix2gbGrN1Palx2khdNmg4v1PmDc9yk8EbUUVlfyeJWgzAgMB AAGjggHqMIIB5jAdBgNVHQ4EFgQUITke4b63zLKmJ89SuouZjavCqD0wHwYDVR0j BBgwFoAUQyc09AkgIFymRDo7mTCN1xjnDUIwDgYDVR0PAQH/BAQDAgeAMGEGA1Ud HwRaMFgwVqBUoFKGUHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdEUy8w LzQzMjczNEY0MDkyMDIwNUNBNjQ0M0EzQjk5MzA4REQ3MThFNzBENDIuY3JsMG8G CCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHduaWMu dHcvcnBraS9UV05JQ0NBLzEvNDMyNzM0RjQwOTIwMjA1Q0E2NDQzQTNCOTkzMDhE RDcxOEU3MEQ0Mi5jZXIwbAYIKwYBBQUHAQsEYDBeMFwGCCsGAQUFBzALhlByc3lu YzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXRFMvMC80MzI3MzRGNDA5MjAyMDVD QTY0NDNBM0I5OTMwOERENzE4RTcwRDQyLm1mdDAYBgNVHSABAf8EDjAMMAoGCCsG AQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwFQYIKwYB BQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAePeNTChzhkfww6e9 bS28LfVzM+FEgZ3U+Ps+4dj89KO1sBgK7xnwQLu3DsHBl8njdMOLJLJ68oncJPHD uFrXC+0xuBOzHkAD3yd+eSWhgxBkGYkCgD265mgOOaR8ozqCyZwrJmVc/H+xRrxZ uJi1TGkgllbYliHHpumy4hlo9LC4WbwZYYHMBMVcDVLjWdjeldrjPXMuiZr6vb0I JmeAIfQtd/dA5E6aQYWT32HJ0I8DyhHRQXj2ElFLn2rv3oFSaeMFelqmKyDpxeTR U7Luh3dVRmabfN/OiWPMFY9c+ro4GjFhzEZjy4cwQq8dOt3Z59eLG98Z5VpvE/V5 sBTYXQ== -----END CERTIFICATE-----Generated at Wed May 13 20:36:09 2026 by rpki-client