$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft File: govRnvqOvlnvQHu3-raJj3VMfsE.mft (raw, json) Hash identifier: 8DgBJNKOABIa0jRHW4AH+0WqZEZO9N4mDcT6vR6Z+F8= Subject key identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Certificate serial: 11B0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft Manifest number: 1193 Signing time: Mon 20 Apr 2026 20:35:03 +0000 Manifest this update: Mon 20 Apr 2026 20:35:03 +0000 Manifest next update: Wed 22 Apr 2026 20:35:03 +0000 Files and hashes: 1: F-uIqLUJ2DofwkNp7jRcP9Rb0qU.roa (hash: qxhjM03lflZoUJobv28e2CqjaJUBiXRNnEpHgSf1MKI=) 2: fAA_7kU5d-eAsYyb4t9T_m-K9so.roa (hash: 0ssxX45r2zal8T5TYsBqjtxaxF/5kSi/C5RnyqK7E4Q=) 3: govRnvqOvlnvQHu3-raJj3VMfsE.crl (hash: NnPW4Sgx3FkVx0p+qdfOUU+3XLOBDUxiOB4WVuSBx8I=) 4: gswIJVnHvj1YUxuz_vWKd1fkfGM.roa (hash: FjCc5t+/MKmt4eTep1SuaHgKfSc3Wo0s0FQ+kwue/H0=) 5: zElcDX8txAiKF_nW3UuL27WFm-o.roa (hash: +K7BgWnfJX1+YlJoSHdk6dprDkM4g/+Bv/t19+nc8zA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 14:05:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4528 (0x11b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Validity Not Before: Apr 20 20:35:03 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=199435E3FC72374E8E7AC2AD5B0820DA50D3E8D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:da:3e:fa:9b:5a:dd:40:06:17:54:cf:46:56: c6:00:75:aa:0d:85:0d:78:43:77:58:47:f9:72:9d: ef:f1:76:2d:a0:b1:2c:0e:d4:8c:0e:07:0a:26:79: 1c:06:fa:b5:0c:58:5d:11:7b:e2:92:67:8a:33:a4: a0:bc:ac:2e:35:35:80:48:80:8b:f1:e7:0a:ca:23: 9c:f4:1b:ca:6f:af:e1:a2:1f:69:4d:05:d4:9c:ed: 11:75:0c:bb:76:5c:cf:b8:d4:d8:da:f5:58:75:a0: c4:9b:f5:b2:a5:eb:2e:34:4a:a9:8f:44:66:0c:fe: 6d:d3:6f:68:ab:c2:88:ed:8d:b3:f6:cb:7e:31:69: 9c:88:b0:53:07:b6:7f:85:13:0e:e6:47:a3:33:28: 9b:23:ed:0e:ab:62:df:f8:06:e3:8b:2f:a2:0c:57: e1:3e:db:33:7f:ad:2f:7e:39:71:ac:52:fe:62:f5: 0e:b4:cd:18:f6:65:1d:e7:c3:8b:ee:d3:61:ff:ea: d8:4f:ca:de:81:48:ae:19:24:47:2d:75:1b:18:b3: 5d:46:53:04:0c:21:de:3c:e4:eb:e2:7a:2c:39:22: 83:d6:7c:f3:92:af:c4:11:70:d2:c8:da:a9:8d:49: 7a:cf:f9:3d:1b:03:b3:af:e8:07:04:9d:22:60:a8: 0d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 X509v3 Authority Key Identifier: keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 83:7e:63:de:db:51:99:77:28:2b:dd:f4:6a:1d:3e:5e:c1:53: b8:21:11:b0:7a:0e:8a:59:0a:0e:98:1f:f4:b0:92:bb:5e:50: de:83:a3:de:be:4c:af:da:c0:28:e9:9b:9d:e2:6c:74:ab:19: fb:01:77:61:1f:31:71:21:c9:65:52:c3:76:67:c5:20:84:ed: 54:92:c5:87:a9:e6:e0:1e:04:06:41:3a:42:5d:00:15:7d:9b: a9:d9:84:69:3a:65:eb:47:73:05:8f:6e:a3:9d:e9:af:c0:4a: fa:4f:66:18:9d:cf:d5:92:3b:f8:71:fe:66:29:cd:b2:54:ed: 93:24:d6:ac:a1:44:44:2a:8c:5c:54:40:ce:75:29:1e:ec:d6: b9:9d:a9:11:65:a9:37:cf:98:ee:d3:5d:ac:9f:29:03:bb:06: 6b:d6:74:b9:6c:bc:85:ea:14:ca:ef:a7:1f:c2:42:84:b6:63: 54:56:73:29:27:e3:9b:58:cb:af:8e:3a:f8:36:ea:0d:9e:69: 67:84:50:6e:51:4e:63:14:7b:a1:cd:d4:21:95:3c:dd:be:5c: d6:37:b4:8e:e4:72:71:7c:bf:61:af:a3:4a:d4:f6:59:cd:42: 2c:5f:83:12:13:d0:a5:25:b5:b1:f5:c7:49:02:b0:c8:f7:30: 38:d7:d2:73 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICEbAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODI4 QkQxOUVGQThFQkU1OUVGNDA3QkI3RkFCNjg5OEY3NTRDN0VDMTAeFw0yNjA0MjAy MDM1MDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE5OTQzNUUzRkM3MjM3 NEU4RTdBQzJBRDVCMDgyMERBNTBEM0U4RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV2j76m1rdQAYXVM9GVsYAdaoNhQ14Q3dYR/lyne/xdi2gsSwO 1IwOBwomeRwG+rUMWF0Re+KSZ4ozpKC8rC41NYBIgIvx5wrKI5z0G8pvr+GiH2lN BdSc7RF1DLt2XM+41Nja9Vh1oMSb9bKl6y40SqmPRGYM/m3Tb2irwojtjbP2y34x aZyIsFMHtn+FEw7mR6MzKJsj7Q6rYt/4BuOLL6IMV+E+2zN/rS9+OXGsUv5i9Q60 zRj2ZR3nw4vu02H/6thPyt6BSK4ZJEctdRsYs11GUwQMId485Ovieiw5IoPWfPOS r8QRcNLI2qmNSXrP+T0bA7Ov6AcEnSJgqA1zAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUGZQ14/xyN06OesKtWwgg2lDT6NYwHwYDVR0jBBgwFoAUgovRnvqOvlnvQHu3 +raJj3VMfsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tDTy9n b3ZSbnZxT3ZsbnZRSHUzLXJhSmozVk1mc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2dvdlJudnFPdmxudlFIdTMtcmFKajNWTWZzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLQ08vZ292Um52cU92bG52UUh1My1yYUpq M1ZNZnNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAIN+Y97b UZl3KCvd9GodPl7BU7ghEbB6DopZCg6YH/SwkrteUN6Do96+TK/awCjpm53ibHSr GfsBd2EfMXEhyWVSw3ZnxSCE7VSSxYep5uAeBAZBOkJdABV9m6nZhGk6ZetHcwWP bqOd6a/ASvpPZhidz9WSO/hx/mYpzbJU7ZMk1qyhREQqjFxUQM51KR7s1rmdqRFl qTfPmO7TXayfKQO7BmvWdLlsvIXqFMrvpx/CQoS2Y1RWcykn45tYy6+OOvg26g2e aWeEUG5RTmMUe6HN1CGVPN2+XNY3tI7kcnF8v2Gvo0rU9lnNQixfgxIT0KUltbH1 x0kCsMj3MDjX0nM= -----END CERTIFICATE-----Generated at Wed Apr 22 11:28:11 2026 by rpki-client