$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft File: cGQhJf35AjZbJAykAigCEy_cHBU.mft (raw, json) Hash identifier: 23KlsL3WmpbYm5fXLN3TEs5VuGrQTW0X8d9T7C1Dqho= Subject key identifier: 83:51:27:D7:B9:08:A0:C8:B5:1C:CB:C3:92:DD:2B:E1:4C:3C:44:24 Authority key identifier: 70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15 Certificate issuer: /CN=70642125FDF902365B240CA4022802132FDC1C15 Certificate serial: 7E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft Manifest number: 7A Signing time: Sat 07 Mar 2026 09:55:27 +0000 Manifest this update: Sat 07 Mar 2026 09:55:27 +0000 Manifest next update: Sat 07 Mar 2026 15:55:27 +0000 Files and hashes: 1: -1XVPannxNhE0gN6nt3WaVnbJzY.roa (hash: HckFBq6bNh0Ty5m0qi4KgS81TTmfyriYDAa0HhLToXs=) 2: GWJGOfhpsfrJd0kw5QzE4IUzcYc.roa (hash: S/LrahTF1ecL3rlxDi1WrfdvhV+9F5uRIbwg43rBxkg=) 3: cGQhJf35AjZbJAykAigCEy_cHBU.crl (hash: U7jkgBb7Lbr60ACvB7usKUevg6Ny0S+XzfLRlWSc30Y=) 4: qiVREO8yx4XRDKb3jtJiGN7C9lU.roa (hash: 6+rIhtnl5zgQPi3KWYUxtuPLFfq5UCLqmQ3T0RLII/A=) 5: sIR8g5rQFVdHVOwJRmeSXyTm15M.roa (hash: bN4TXRPC8WF2qSqbM7O6KTJe4r3PiqwWhD78/z0GAj4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 07 Mar 2026 13:55:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 126 (0x7e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70642125FDF902365B240CA4022802132FDC1C15 Validity Not Before: Mar 7 09:55:27 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=835127D7B908A0C8B51CCBC392DD2BE14C3C4424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:69:84:cc:fb:6a:46:8a:78:66:41:5a:0e:e0: 63:19:8d:37:40:e3:99:ed:d5:19:66:10:53:4f:27: dd:19:5e:3a:65:79:74:d5:a5:0c:89:0a:e9:4e:0b: 61:0a:39:39:53:5a:82:c4:9b:74:a8:9b:30:1d:f1: 43:62:50:a0:c1:cd:1e:44:17:be:2e:31:25:45:e0: 98:56:c9:4e:97:2f:96:62:e6:46:2a:93:b5:43:aa: 55:2c:e3:85:c8:39:0b:12:de:ff:5a:6b:03:67:cb: f4:85:2a:0c:13:8d:6d:70:db:1d:d1:55:9f:d6:a3: 3a:8f:81:14:0e:56:d9:fe:03:e9:78:21:1b:42:e9: b9:36:25:32:fe:e0:5b:d5:fd:d2:70:8f:61:d3:5d: 95:fb:9c:3c:0e:e0:6c:a2:ea:42:e8:89:2e:e2:08: 91:51:16:05:8b:e0:1d:e7:5e:bb:cb:7e:ae:3e:ef: a7:8e:b2:c5:fb:fc:34:b1:10:2d:4e:8a:15:38:88: 21:ea:2d:c4:02:40:57:a6:07:65:43:33:5f:3b:50: 78:8f:4d:28:61:25:bc:48:9e:aa:09:3a:7d:cb:1b: 37:f7:af:74:bd:da:29:22:bb:cf:8f:ad:00:91:40: 52:dd:5f:77:29:38:f5:ab:2c:f5:f7:10:bc:66:ca: 23:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:51:27:D7:B9:08:A0:C8:B5:1C:CB:C3:92:DD:2B:E1:4C:3C:44:24 X509v3 Authority Key Identifier: keyid:70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 01:1c:00:85:a3:2f:c4:ec:01:b4:dc:f1:42:c1:b5:3a:c7:d4: 06:a4:e5:1c:20:e3:8b:03:1d:a9:c3:68:51:19:6d:44:d8:06: bc:e6:0d:e2:ae:b0:27:43:78:70:d2:96:fa:af:44:a0:78:1a: c2:96:79:b0:4d:0c:3d:82:a5:a0:7f:0e:95:2e:6e:58:dd:ed: 5c:d8:77:51:2d:30:20:dd:25:a1:f2:e4:eb:8e:7c:50:65:e6: f1:32:7d:50:ae:34:85:61:a0:9e:2f:6a:30:b6:4e:4c:e8:fb: c4:83:da:0c:07:c0:1f:c2:51:af:29:f3:75:27:04:13:68:71: 40:3c:07:93:c1:b2:40:2f:ec:a8:8e:ec:cc:4b:25:e3:e3:26: 00:b1:de:57:8e:58:be:c7:34:8b:b0:dc:47:7d:b3:f3:7c:12: f6:98:50:6c:1f:60:08:e4:97:d2:6c:56:15:b5:da:71:09:44: a6:6e:88:95:96:a5:f1:a6:1d:ef:a0:61:18:d2:9a:48:63:81: 8e:01:2e:ed:85:8e:66:22:8d:52:b6:c9:4b:be:b1:9b:e2:d7: e7:e3:52:6b:61:18:40:0b:da:8a:30:9c:b3:cc:7b:6f:4d:e8: 61:d7:19:97:ac:0f:a9:f3:4d:a8:5d:9e:ae:ef:ae:00:60:42: b7:79:f9:d3 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIBfjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MDY0 MjEyNUZERjkwMjM2NUIyNDBDQTQwMjI4MDIxMzJGREMxQzE1MB4XDTI2MDMwNzA5 NTUyN1oXDTI2MDgyMjA4MTQyOFowMzExMC8GA1UEAxMoODM1MTI3RDdCOTA4QTBD OEI1MUNDQkMzOTJERDJCRTE0QzNDNDQyNDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMxphMz7akaKeGZBWg7gYxmNN0Djme3VGWYQU08n3RleOmV5dNWl DIkK6U4LYQo5OVNagsSbdKibMB3xQ2JQoMHNHkQXvi4xJUXgmFbJTpcvlmLmRiqT tUOqVSzjhcg5CxLe/1prA2fL9IUqDBONbXDbHdFVn9ajOo+BFA5W2f4D6XghG0Lp uTYlMv7gW9X90nCPYdNdlfucPA7gbKLqQuiJLuIIkVEWBYvgHedeu8t+rj7vp46y xfv8NLEQLU6KFTiIIeotxAJAV6YHZUMzXztQeI9NKGElvEieqgk6fcsbN/evdL3a KSK7z4+tAJFAUt1fdyk49ass9fcQvGbKI08CAwEAAaOCAg0wggIJMB0GA1UdDgQW BBSDUSfXuQigyLUcy8OS3SvhTDxEJDAfBgNVHSMEGDAWgBRwZCEl/fkCNlskDKQC KAITL9wcFTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTE9VREJB U0UvY0dRaEpmMzVBalpiSkF5a0FpZ0NFeV9jSEJVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9jR1FoSmYzNUFqWmJKQXlrQWlnQ0V5X2NIQlUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DTE9VREJBU0UvY0dRaEpmMzVBalpi SkF5a0FpZ0NFeV9jSEJVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAAEcAIWjL8TsAbTc8ULBtTrH1Aak5Rwg44sDHanDaFEZbUTYBrzmDeKusCdD eHDSlvqvRKB4GsKWebBNDD2CpaB/DpUubljd7VzYd1EtMCDdJaHy5OuOfFBl5vEy fVCuNIVhoJ4vajC2Tkzo+8SD2gwHwB/CUa8p83UnBBNocUA8B5PBskAv7KiO7MxL JePjJgCx3leOWL7HNIuw3Ed9s/N8EvaYUGwfYAjkl9JsVhW12nEJRKZuiJWWpfGm He+gYRjSmkhjgY4BLu2FjmYijVK2yUu+sZvi1+fjUmthGEAL2oownLPMe29N6GHX GZesD6nzTahdnq7vrgBgQrd5+dM= -----END CERTIFICATE-----Generated at Sat Mar 7 12:42:10 2026 by rpki-client