$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft File: faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft (raw, json) Hash identifier: Kb9n6iXc1qhxr7QsaaiItjo/HnW58vlogajmYfjfby0= Subject key identifier: 1D:67:BE:08:D6:17:3D:57:35:E8:21:23:4F:80:9B:5F:7B:83:B1:B6 Authority key identifier: 7D:A2:CB:7F:59:43:C8:A4:1C:0E:2B:D3:0C:5E:1F:4A:9F:84:C3:74 Certificate issuer: /CN=7DA2CB7F5943C8A41C0E2BD30C5E1F4A9F84C374 Certificate serial: 023B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/faLLf1lDyKQcDivTDF4fSp-Ew3Q.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft Manifest number: 023A Signing time: Wed 22 Apr 2026 00:34:05 +0000 Manifest this update: Wed 22 Apr 2026 00:34:05 +0000 Manifest next update: Wed 22 Apr 2026 06:34:05 +0000 Files and hashes: 1: YPnhMYTTuH2SgqQt_jT5abvU5_I.roa (hash: UmX7HJBrzyrOQ5GcuWvDGD0yzeseArr+5fx4h5KscqA=) 2: faLLf1lDyKQcDivTDF4fSp-Ew3Q.crl (hash: GTa4AqC27m+mtmzcO0K4O8d83MBqDnWBlVEyzPk1e9k=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/faLLf1lDyKQcDivTDF4fSp-Ew3Q.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:34:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 571 (0x23b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DA2CB7F5943C8A41C0E2BD30C5E1F4A9F84C374 Validity Not Before: Apr 22 00:34:05 2026 GMT Not After : Nov 12 15:30:20 2026 GMT Subject: CN=1D67BE08D6173D5735E821234F809B5F7B83B1B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b9:d2:64:d7:8c:38:5c:e6:8f:80:29:6f:57: 72:47:b6:48:a6:26:8b:af:ae:7e:ee:90:d2:74:b2: 16:eb:c6:68:f1:52:98:2f:fa:fe:d2:2a:1f:8c:9c: c2:0d:23:a8:87:93:2b:f7:c7:f9:91:32:b4:52:71: ab:80:58:53:67:2e:fa:83:49:1d:81:a3:44:29:21: 47:a4:22:03:99:2c:69:f5:c7:f3:3f:4e:02:a7:c1: e7:68:c7:5e:47:d7:17:90:fc:c6:d0:d1:86:fb:b6: cc:f5:86:08:44:dd:a6:eb:24:1c:f0:61:79:9b:06: ae:01:92:7d:f3:2e:3b:af:1f:9e:38:ae:84:e8:5a: 08:51:15:a1:c8:73:b7:cc:fd:c6:9c:7c:d2:d9:e6: dc:dc:6c:78:28:1b:c1:80:ba:b4:9b:c9:47:39:ca: 34:68:01:d7:43:10:50:c4:c6:da:a8:b8:89:89:dc: 88:e9:27:03:e2:04:0c:d0:b8:b4:77:d2:60:e8:33: 23:80:03:f4:dc:a4:ac:c2:56:63:d2:6f:62:1a:1c: 78:e8:b9:d8:dc:7c:91:32:81:c4:88:ef:fb:bb:88: b5:68:72:7d:fe:92:e3:dd:76:6c:17:36:a5:dd:24: 16:74:8c:c5:28:10:de:f2:ec:84:97:1a:de:8e:df: 55:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:67:BE:08:D6:17:3D:57:35:E8:21:23:4F:80:9B:5F:7B:83:B1:B6 X509v3 Authority Key Identifier: keyid:7D:A2:CB:7F:59:43:C8:A4:1C:0E:2B:D3:0C:5E:1F:4A:9F:84:C3:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/faLLf1lDyKQcDivTDF4fSp-Ew3Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:f7:dc:87:16:3a:45:06:a3:0e:d9:f2:83:64:1c:cc:21:0b: a1:1a:28:72:29:14:72:44:5e:32:58:14:97:db:40:13:06:9d: bf:f4:7b:c0:c0:a5:99:09:1f:79:e3:d2:70:e5:4d:0a:89:c7: 82:21:ab:c8:d7:35:2e:40:84:41:48:c1:38:f9:b1:11:86:17: 79:81:e1:cd:e9:5e:af:6b:02:a0:ed:49:fd:33:5b:91:10:f0: 4e:44:00:aa:7a:6b:38:96:da:e6:ed:c8:bc:20:35:23:0c:24: 3e:97:c5:ce:c7:76:b8:5c:24:3c:ac:8d:a7:c5:1e:2f:fb:c3: 47:96:5a:91:69:72:62:ce:a9:b8:b7:94:5b:ea:ba:48:e7:e5: 30:24:30:60:5d:63:f1:b0:a4:9f:3d:8b:42:ed:a4:09:f4:70: 6a:97:ad:7b:2b:f8:7d:09:a9:6e:49:fb:99:d0:73:ff:96:5a: 62:6f:f7:4f:f3:ad:56:ec:1d:31:ea:45:30:5e:2b:b6:cc:ea: 47:c6:75:ce:d1:74:34:8f:cc:e2:eb:12:f2:66:cf:e9:75:23: f6:8d:41:8e:32:69:85:67:4a:9a:82:96:7e:f8:f6:d5:1c:81: 41:66:39:98:90:bd:b3:e6:15:6f:52:0a:00:64:f6:c1:a9:3a: 26:94:19:19 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAjswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0RB MkNCN0Y1OTQzQzhBNDFDMEUyQkQzMEM1RTFGNEE5Rjg0QzM3NDAeFw0yNjA0MjIw MDM0MDVaFw0yNjExMTIxNTMwMjBaMDMxMTAvBgNVBAMTKDFENjdCRTA4RDYxNzNE NTczNUU4MjEyMzRGODA5QjVGN0I4M0IxQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTudJk14w4XOaPgClvV3JHtkimJouvrn7ukNJ0shbrxmjxUpgv +v7SKh+MnMINI6iHkyv3x/mRMrRScauAWFNnLvqDSR2Bo0QpIUekIgOZLGn1x/M/ TgKnwedox15H1xeQ/MbQ0Yb7tsz1hghE3abrJBzwYXmbBq4Bkn3zLjuvH544roTo WghRFaHIc7fM/cacfNLZ5tzcbHgoG8GAurSbyUc5yjRoAddDEFDExtqouImJ3Ijp JwPiBAzQuLR30mDoMyOAA/TcpKzCVmPSb2IaHHjoudjcfJEygcSI7/u7iLVocn3+ kuPddmwXNqXdJBZ0jMUoEN7y7ISXGt6O31UrAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUHWe+CNYXPVc16CEjT4CbX3uDsbYwHwYDVR0jBBgwFoAUfaLLf1lDyKQcDivT DF4fSp+Ew3QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR01JQ0xP VUQvZmFMTGYxbER5S1FjRGl2VERGNGZTcC1FdzNRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9mYUxMZjFsRHlLUWNEaXZUREY0ZlNwLUV3M1EuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HTUlDTE9VRC9mYUxMZjFsRHlLUWNE aXZUREY0ZlNwLUV3M1EubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuffchxY6RQajDtnyg2QczCELoRoocikUckReMlgUl9tAEwadv/R7wMClmQkf eePScOVNConHgiGryNc1LkCEQUjBOPmxEYYXeYHhzeler2sCoO1J/TNbkRDwTkQA qnprOJba5u3IvCA1IwwkPpfFzsd2uFwkPKyNp8UeL/vDR5ZakWlyYs6puLeUW+q6 SOflMCQwYF1j8bCknz2LQu2kCfRwapeteyv4fQmpbkn7mdBz/5ZaYm/3T/OtVuwd MepFMF4rtszqR8Z1ztF0NI/M4usS8mbP6XUj9o1BjjJphWdKmoKWfvj21RyBQWY5 mJC9s+YVb1IKAGT2wak6JpQZGQ== -----END CERTIFICATE-----Generated at Wed Apr 22 06:29:00 2026 by rpki-client