$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft File: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft (raw, json) Hash identifier: whoJIBJDZrmxOK8cg+i25mwo8pFBt73EpUEnPNB2AwE= Subject key identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C Authority key identifier: DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 Certificate issuer: /CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Certificate serial: 0282 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft Manifest number: 0276 Signing time: Tue 21 Apr 2026 04:34:53 +0000 Manifest this update: Tue 21 Apr 2026 04:34:53 +0000 Manifest next update: Thu 23 Apr 2026 04:34:53 +0000 Files and hashes: 1: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl (hash: newGlNwAb9pxtdXuInHbaiaoyllnubY/6yKJUFoWaps=) 2: HV6k0jPT9jnucGWKQ6nC-66nn54.roa (hash: eboLgYZLDYJYbajXhks+tl7qtRbNqb9jc0PhNl5r/ak=) 3: y-oacVpBDQFqidbXVI-NR-26Gdg.roa (hash: gskJqvd2XDLpcECC32Ww1AilH6xmVPpz965WapnRvOg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 09:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 642 (0x282) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DE872BAD262D18F0A6749E0272D975261D949EC3 Validity Not Before: Apr 21 04:34:53 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=275DBCFF08D33A5850754C5E3AACBCC723CEDE3C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:03:e4:67:d1:00:b1:3a:66:a8:aa:bc:22:c0: f4:41:5d:11:da:88:40:62:27:af:d4:39:d3:8a:02: 22:05:07:9e:05:e0:75:56:92:5b:17:44:70:e9:ba: 9a:0f:ef:1c:7a:78:a4:73:5e:35:e1:65:c0:4c:f8: 92:57:44:82:c3:6b:7b:8e:b9:24:a0:03:04:2f:fe: 99:b4:d1:3f:ad:f3:21:50:37:17:14:f2:12:8b:a9: e7:50:65:50:d4:14:af:d3:31:93:1b:ea:b1:aa:3b: 9e:78:50:c0:ba:64:58:d4:a3:34:a0:b9:50:81:ea: 19:1e:70:6e:73:0c:07:70:3e:ff:40:b2:0a:47:cc: ef:47:af:59:ca:bc:15:7e:a1:e7:8f:4f:4c:26:1b: 58:15:68:c4:f6:ee:83:70:b2:c3:dd:30:b7:53:25: 00:e2:cb:be:65:8e:20:15:8e:bd:21:aa:cc:ba:f9: 0a:5b:3f:e7:a0:31:81:28:27:fe:c7:ff:05:3b:4d: 70:b3:68:8a:ad:73:f3:74:0b:2f:3d:e7:08:7e:56: 98:9b:7b:67:85:4c:02:9d:0b:82:35:e3:e3:49:b9: c2:60:c2:f7:8c:27:1e:f3:05:00:bd:28:e4:c3:aa: 3e:7d:7c:98:55:1e:bb:05:09:53:87:91:53:f1:c7: bf:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:5D:BC:FF:08:D3:3A:58:50:75:4C:5E:3A:AC:BC:C7:23:CE:DE:3C X509v3 Authority Key Identifier: keyid:DE:87:2B:AD:26:2D:18:F0:A6:74:9E:02:72:D9:75:26:1D:94:9E:C3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FUYU/3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:b0:4e:05:61:e2:e7:d3:1e:f5:46:53:49:81:d2:ac:5b:44: 9e:b4:74:18:be:74:fe:a2:6d:9d:78:cb:09:a9:37:f7:0c:55: 4d:cc:77:c8:10:78:ee:3a:3c:b6:69:6e:7f:be:7a:00:e1:b9: 01:6f:68:d4:af:29:52:ac:49:8f:d4:c1:2b:58:b4:5f:76:79: 6e:b3:9e:c4:c6:20:fc:eb:be:7b:19:d9:da:48:49:6c:13:d9: 60:2a:a9:12:98:83:2e:46:a4:7f:cb:a6:82:5f:a2:09:aa:21: 15:c1:b5:1b:30:a6:92:fa:5b:b2:1f:d2:ed:0c:4d:88:1a:84: c4:ab:a1:10:42:4a:6e:2e:1a:90:aa:ce:aa:e5:d8:fa:e6:37: c5:fa:30:aa:57:9d:99:ae:b0:25:b5:26:71:39:be:41:48:26: 36:19:63:79:72:85:b1:4c:3e:19:e3:51:ca:d6:8b:f3:f0:54: eb:a5:4f:22:da:45:9d:ff:e3:87:90:b5:76:2d:1d:ed:c6:96: bb:9b:f0:4d:6d:e3:93:07:76:1d:87:74:f8:51:e0:ff:a2:3e: 76:51:da:1c:d4:69:f0:d0:10:7e:88:cf:fb:91:81:bf:78:d0: f7:a3:96:c0:7e:94:ad:29:dc:e8:70:92:6e:93:e8:3f:a9:ac: af:2c:d6:1f -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAoIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREU4 NzJCQUQyNjJEMThGMEE2NzQ5RTAyNzJEOTc1MjYxRDk0OUVDMzAeFw0yNjA0MjEw NDM0NTNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI3NURCQ0ZGMDhEMzNB NTg1MDc1NEM1RTNBQUNCQ0M3MjNDRURFM0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCuA+Rn0QCxOmaoqrwiwPRBXRHaiEBiJ6/UOdOKAiIFB54F4HVW klsXRHDpupoP7xx6eKRzXjXhZcBM+JJXRILDa3uOuSSgAwQv/pm00T+t8yFQNxcU 8hKLqedQZVDUFK/TMZMb6rGqO554UMC6ZFjUozSguVCB6hkecG5zDAdwPv9AsgpH zO9Hr1nKvBV+oeePT0wmG1gVaMT27oNwssPdMLdTJQDiy75ljiAVjr0hqsy6+Qpb P+egMYEoJ/7H/wU7TXCzaIqtc/N0Cy895wh+Vpibe2eFTAKdC4I14+NJucJgwveM Jx7zBQC9KOTDqj59fJhVHrsFCVOHkVPxx79hAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUJ128/wjTOlhQdUxeOqy8xyPO3jwwHwYDVR0jBBgwFoAU3ocrrSYtGPCmdJ4C ctl1Jh2UnsMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRlVZVS8z b2NyclNZdEdQQ21kSjRDY3RsMUpoMlVuc00uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzNvY3JyU1l0R1BDbWRKNENjdGwxSmgyVW5zTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZVWVUvM29jcnJTWXRHUENtZEo0Q2N0bDFK aDJVbnNNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAFewTgVh 4ufTHvVGU0mB0qxbRJ60dBi+dP6ibZ14ywmpN/cMVU3Md8gQeO46PLZpbn++egDh uQFvaNSvKVKsSY/UwStYtF92eW6znsTGIPzrvnsZ2dpISWwT2WAqqRKYgy5GpH/L poJfogmqIRXBtRswppL6W7If0u0MTYgahMSroRBCSm4uGpCqzqrl2PrmN8X6MKpX nZmusCW1JnE5vkFIJjYZY3lyhbFMPhnjUcrWi/PwVOulTyLaRZ3/44eQtXYtHe3G lrub8E1t45MHdh2HdPhR4P+iPnZR2hzUafDQEH6Iz/uRgb940PejlsB+lK0p3Ohw km6T6D+prK8s1h8= -----END CERTIFICATE-----Generated at Wed Apr 22 06:29:00 2026 by rpki-client