$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft File: Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft (raw, json) Hash identifier: k/S+X1kDWBJuDQYdYvY2vzcjVTj+pHltUg5RN8iKppU= Subject key identifier: 56:98:0A:C0:90:CF:7A:C1:89:68:DC:66:13:BD:E3:85:9D:50:C7:A2 Authority key identifier: 43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 Certificate issuer: /CN=43FF5C92CC4950A457A7327D168FBC465B218322 Certificate serial: 0E21 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft Manifest number: 0E0C Signing time: Tue 14 Apr 2026 23:33:07 +0000 Manifest this update: Tue 14 Apr 2026 23:33:07 +0000 Manifest next update: Thu 16 Apr 2026 23:33:07 +0000 Files and hashes: 1: Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl (hash: bR/x3wc8d0TSx3BQ7iJL5RIPdf0DWe0vqbwKdESQVhs=) 2: eItlqzXK2ZnmvoiEXAvzgFYxlww.roa (hash: 7k+uZA170TNHumRhdurKt1PUgUul9uB628TPBM/EN/w=) 3: kieT8LagANN4MIdEotBeitC0r8Q.roa (hash: JWLTLkuk28V9j2y2WhNckU+KVRshz88pQy5IMqv9ZgY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 09:03:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3617 (0xe21) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43FF5C92CC4950A457A7327D168FBC465B218322 Validity Not Before: Apr 14 23:33:07 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=56980AC090CF7AC18968DC6613BDE3859D50C7A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:54:32:cc:56:3f:6e:08:87:11:d5:84:95:31: 04:3b:1e:8f:9d:ee:a1:0c:2f:e3:69:5c:da:45:76: 03:eb:d7:07:89:d3:27:18:6e:a1:cd:8c:fb:fe:69: d5:8c:88:77:c6:ef:e4:f2:e9:97:1b:f5:c8:b0:9a: ca:c9:52:01:aa:98:9d:e6:27:af:3c:9d:9b:de:0c: 06:6f:c0:9c:a8:8c:eb:82:dc:c4:64:e4:3c:16:61: 4a:68:d4:1c:f7:8b:01:a2:f5:99:82:4d:67:c4:7e: e5:12:bd:ad:d5:98:49:97:c8:d6:13:25:5a:5f:27: af:1e:58:c7:6a:26:b0:cc:05:22:e9:7d:20:ac:2f: 8b:31:24:52:90:54:f4:e7:39:df:d5:5b:bc:83:c4: 98:6c:b6:03:92:aa:f5:c5:26:09:96:b0:14:22:08: 12:89:bc:ac:e6:7c:de:77:69:c5:fa:27:ea:4f:2f: cc:7a:0b:43:39:a1:8e:0c:d9:fe:dd:04:73:71:4c: c5:a5:f3:b1:1e:13:3c:59:7f:2c:3c:04:f0:a0:58: 68:16:db:61:86:aa:a1:34:e4:90:d3:30:68:5f:2e: f1:c8:d4:d0:a4:28:67:e4:e9:96:a0:4c:e8:4c:2f: 1b:95:92:d8:a6:6c:14:12:58:cf:d7:62:70:41:a0: 11:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:98:0A:C0:90:CF:7A:C1:89:68:DC:66:13:BD:E3:85:9D:50:C7:A2 X509v3 Authority Key Identifier: keyid:43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 39:1d:97:15:2d:a9:5e:94:68:10:6b:15:29:97:11:6b:a3:6b: ad:ac:92:f3:dd:f8:82:bf:98:fd:9b:bd:b6:df:c7:60:a1:bc: 2c:68:23:85:b2:0e:5d:a5:83:d6:64:1f:51:3f:d2:47:a3:7b: a2:13:fa:78:b0:0e:28:80:3d:4f:e8:62:5a:92:09:0f:e3:73: 32:69:b9:3c:1a:63:c0:2e:44:9d:ab:d5:74:20:04:7f:1e:ee: b7:f1:15:09:21:41:5f:3f:8a:59:f4:08:ec:bd:26:45:6d:0f: 14:d7:98:5f:39:1d:08:24:93:09:b9:43:2c:c5:1c:b9:ba:ac: a9:d7:ea:f2:f0:1d:29:eb:15:78:12:df:12:20:cf:20:9c:93: db:81:6c:d7:5b:ec:c5:18:31:00:17:ad:79:90:d2:c7:d0:be: 81:05:b3:f0:e9:0d:85:3e:ea:b2:ec:30:aa:99:16:81:dc:64: 84:0c:5f:99:a8:46:97:f9:6d:e6:ae:c0:48:af:87:e6:b0:e2: 1b:ae:fc:37:98:95:d6:f4:b0:4e:3f:30:60:dd:b3:f4:da:6c: b1:92:c9:f0:78:a2:9e:07:d4:a3:01:ea:3f:b2:63:c3:10:09: 5a:b7:19:86:6b:8b:e6:ee:4a:04:ad:95:c6:b7:3c:7d:63:87: 01:45:55:cb -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICDiEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNG RjVDOTJDQzQ5NTBBNDU3QTczMjdEMTY4RkJDNDY1QjIxODMyMjAeFw0yNjA0MTQy MzMzMDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDU2OTgwQUMwOTBDRjdB QzE4OTY4REM2NjEzQkRFMzg1OUQ1MEM3QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMVDLMVj9uCIcR1YSVMQQ7Ho+d7qEML+NpXNpFdgPr1weJ0ycY bqHNjPv+adWMiHfG7+Ty6Zcb9ciwmsrJUgGqmJ3mJ688nZveDAZvwJyojOuC3MRk 5DwWYUpo1Bz3iwGi9ZmCTWfEfuUSva3VmEmXyNYTJVpfJ68eWMdqJrDMBSLpfSCs L4sxJFKQVPTnOd/VW7yDxJhstgOSqvXFJgmWsBQiCBKJvKzmfN53acX6J+pPL8x6 C0M5oY4M2f7dBHNxTMWl87EeEzxZfyw8BPCgWGgW22GGqqE05JDTMGhfLvHI1NCk KGfk6ZagTOhMLxuVktimbBQSWM/XYnBBoBGnAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUVpgKwJDPesGJaNxmE73jhZ1Qx6IwHwYDVR0jBBgwFoAUQ/9cksxJUKRXpzJ9 Fo+8RlshgyIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRI TkVUL1FfOWNrc3hKVUtSWHB6SjlGby04UmxzaGd5SS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvUV85Y2tzeEpVS1JYcHpKOUZvLThSbHNoZ3lJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRITkVUL1FfOWNrc3hKVUtS WHB6SjlGby04UmxzaGd5SS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQA5HZcVLalelGgQaxUplxFro2utrJLz3fiCv5j9m72238dgobwsaCOFsg5d pYPWZB9RP9JHo3uiE/p4sA4ogD1P6GJakgkP43Myabk8GmPALkSdq9V0IAR/Hu63 8RUJIUFfP4pZ9AjsvSZFbQ8U15hfOR0IJJMJuUMsxRy5uqyp1+ry8B0p6xV4Et8S IM8gnJPbgWzXW+zFGDEAF615kNLH0L6BBbPw6Q2FPuqy7DCqmRaB3GSEDF+ZqEaX +W3mrsBIr4fmsOIbrvw3mJXW9LBOPzBg3bP02myxksnweKKeB9SjAeo/smPDEAla txmGa4vm7koErZXGtzx9Y4cBRVXL -----END CERTIFICATE-----Generated at Wed Apr 15 06:27:47 2026 by rpki-client