$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft File: Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft (raw, json) Hash identifier: Bc/DpEZANT20tNeWIJTf2ohIZ+FmN5a1ZzB5fMDBfhU= Subject key identifier: 20:1D:7B:C2:8F:A7:DF:B7:19:29:5B:68:F0:DF:D7:92:6A:AE:4E:1C Authority key identifier: 49:FD:81:9B:DA:C0:16:62:B7:3E:AC:90:05:08:8C:D6:A3:B8:87:62 Certificate issuer: /CN=49FD819BDAC01662B73EAC9005088CD6A3B88762 Certificate serial: 0680 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft Manifest number: 067B Signing time: Mon 27 Apr 2026 13:35:27 +0000 Manifest this update: Mon 27 Apr 2026 13:35:27 +0000 Manifest next update: Mon 27 Apr 2026 19:35:27 +0000 Files and hashes: 1: BTB03Fjy8KSHm8tBwvGU0kAAUUw.roa (hash: 6S/046Q/gSy74n6LwEE7B9ZdH7esJBgwf4CXzeCHLPk=) 2: Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.crl (hash: JrCOH81YxWI5rnHZqmMeBfFI+TMS9znJIKm5xJaq1+o=) 3: aMR2DRj0Z54X3ubzFeDHeHI1Vyg.roa (hash: lFq4fs3TGjBKbtdnmDZmt74WmFZVzfzyQSiARAA3R8E=) 4: urHrOYdWdooldqGvcVOkbHMGnRA.roa (hash: aNnnj85R/WrhRMtrpBjZNY4oytOW9gN4mRF6VHdjWU0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 18:36:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1664 (0x680) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=49FD819BDAC01662B73EAC9005088CD6A3B88762 Validity Not Before: Apr 27 13:35:27 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=201D7BC28FA7DFB719295B68F0DFD7926AAE4E1C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:56:73:59:2d:b8:86:04:e8:1c:0b:0b:82:88: 3c:b9:4e:d2:4b:c2:cd:c9:d6:9a:11:63:a5:ed:94: 34:93:47:d1:47:14:e9:bb:a9:30:99:55:f2:16:78: 72:60:5b:33:f4:b8:88:75:4c:78:68:86:e9:e6:c6: c4:9c:32:e4:91:f5:7a:4f:ea:48:c4:bf:86:1c:ec: b3:41:1a:b7:05:ee:0d:fd:5c:51:4d:a3:33:c6:0b: f0:c2:e5:c9:80:de:79:d8:dd:e8:e5:4b:d6:e8:07: 58:34:b6:e0:6a:78:04:56:91:ef:4d:32:cd:b3:43: 35:7b:ae:1b:a9:7e:a9:6e:c1:2f:e2:ac:46:7a:6f: 7a:4e:93:85:c7:19:2f:ce:d5:b8:ee:ac:c0:36:48: b9:d0:ac:8f:96:c5:55:d6:c6:22:c0:6c:d6:e3:6f: d4:cc:a4:d1:7e:cc:bb:be:b9:f0:f0:84:1b:59:b5: 42:f2:02:38:5b:c9:9c:43:5e:e6:76:97:16:13:ee: df:3a:be:11:ea:4b:7e:2b:c6:99:bc:e3:90:75:e5: 66:09:7c:77:1d:2b:1d:48:b6:69:58:10:2d:e6:c5: 5b:28:d2:97:f0:e7:d2:bc:69:c4:73:65:42:79:bf: 2d:26:af:ce:40:c2:c7:92:5c:c4:9c:b3:de:b6:61: f8:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:1D:7B:C2:8F:A7:DF:B7:19:29:5B:68:F0:DF:D7:92:6A:AE:4E:1C X509v3 Authority Key Identifier: keyid:49:FD:81:9B:DA:C0:16:62:B7:3E:AC:90:05:08:8C:D6:A3:B8:87:62 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/Sf2Bm9rAFmK3PqyQBQiM1qO4h2I.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:a7:38:27:f7:6d:53:ce:b8:23:a2:e4:59:aa:8d:f8:eb:a7: 30:25:df:03:6d:02:0d:82:a6:5c:4d:d8:0b:48:81:46:99:7c: 0d:d8:f9:92:49:d9:20:6f:1f:76:97:19:4e:3c:23:3f:35:b1: 67:bc:a1:83:a2:7e:0e:51:95:01:ab:de:02:8a:c9:0d:b3:f6: e3:14:ff:84:8d:bc:71:a4:a3:1d:35:16:63:27:2d:b9:7c:63: 14:ea:b3:c7:39:bc:e1:f7:6a:7b:07:10:f9:ad:61:7b:1d:c5: 12:b7:f7:5b:49:c2:38:9d:d5:4a:7f:46:31:e9:fe:02:b9:2f: c7:6e:13:29:cb:45:56:1c:16:1b:20:36:40:ce:2e:d6:e4:a0: 5b:85:78:8d:36:6e:7d:eb:c6:8b:f3:9b:e1:f2:a2:ce:7d:54: d6:c2:ae:a5:e3:30:e2:d7:bf:49:83:01:1f:19:c6:09:3e:40: 6c:c5:c3:8b:ca:3b:dc:00:e8:3d:a0:96:17:c9:5a:4d:a5:a9: 7e:9a:f5:c1:9f:37:c1:df:ab:48:58:43:37:d7:87:f6:df:42: fe:00:47:bc:fb:1c:cd:48:36:13:5a:fe:b3:41:8a:ca:49:7e: cf:e4:12:fb:0b:90:ea:f6:42:15:34:18:57:68:1f:9f:0e:a5: f0:3a:4c:ff -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBoAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDlG RDgxOUJEQUMwMTY2MkI3M0VBQzkwMDUwODhDRDZBM0I4ODc2MjAeFw0yNjA0Mjcx MzM1MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDIwMUQ3QkMyOEZBN0RG QjcxOTI5NUI2OEYwREZENzkyNkFBRTRFMUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxVnNZLbiGBOgcCwuCiDy5TtJLws3J1poRY6XtlDSTR9FHFOm7 qTCZVfIWeHJgWzP0uIh1THhohunmxsScMuSR9XpP6kjEv4Yc7LNBGrcF7g39XFFN ozPGC/DC5cmA3nnY3ejlS9boB1g0tuBqeARWke9NMs2zQzV7rhupfqluwS/irEZ6 b3pOk4XHGS/O1bjurMA2SLnQrI+WxVXWxiLAbNbjb9TMpNF+zLu+ufDwhBtZtULy AjhbyZxDXuZ2lxYT7t86vhHqS34rxpm845B15WYJfHcdKx1ItmlYEC3mxVso0pfw 59K8acRzZUJ5vy0mr85AwseSXMScs962YfiLAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUIB17wo+n37cZKVto8N/XkmquThwwHwYDVR0jBBgwFoAUSf2Bm9rAFmK3PqyQ BQiM1qO4h2IwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURC QVNFL1NmMkJtOXJBRm1LM1BxeVFCUWlNMXFPNGgySS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvU2YyQm05ckFGbUszUHF5UUJRaU0xcU80aDJJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURCQVNFL1NmMkJtOXJBRm1L M1BxeVFCUWlNMXFPNGgySS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAnpzgn921TzrgjouRZqo3466cwJd8DbQINgqZcTdgLSIFGmXwN2PmSSdkg bx92lxlOPCM/NbFnvKGDon4OUZUBq94CiskNs/bjFP+EjbxxpKMdNRZjJy25fGMU 6rPHObzh92p7BxD5rWF7HcUSt/dbScI4ndVKf0Yx6f4CuS/HbhMpy0VWHBYbIDZA zi7W5KBbhXiNNm5968aL85vh8qLOfVTWwq6l4zDi179JgwEfGcYJPkBsxcOLyjvc AOg9oJYXyVpNpal+mvXBnzfB36tIWEM314f230L+AEe8+xzNSDYTWv6zQYrKSX7P 5BL7C5Dq9kIVNBhXaB+fDqXwOkz/ -----END CERTIFICATE-----Generated at Mon Apr 27 17:30:50 2026 by rpki-client