$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft File: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft (raw, json) Hash identifier: ixWa4J8Do0Fendhyo4/QWUW41tPf9UJg+at/eAI6u7c= Subject key identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Certificate serial: 0270 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft Manifest number: 0262 Signing time: Mon 20 Apr 2026 22:34:30 +0000 Manifest this update: Mon 20 Apr 2026 22:34:30 +0000 Manifest next update: Wed 22 Apr 2026 22:34:30 +0000 Files and hashes: 1: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl (hash: xpTrqbu4qoaLd+PMqgSHVpasdVBUPckRMuCuLqFfjYM=) 2: Cg7tohmMh5saCNIzU2ngrmhS4hQ.roa (hash: xLFhUUQSzCZzSuN6C34hcq+pSFhdqgsCF6lBLi1RME0=) 3: UKiAu9DBouIS6MzSfFnTOhCKjk8.roa (hash: HUOCS7o68Oz0egV5TPUT3GtLtUMosl436IdLe3HoVt8=) 4: j7K_nCeKsBMYe9_jdu8NKQ1vn1Y.roa (hash: oP7Q5gapANp1URfuC5e25xUXVnEBjFJWyMYVybOusro=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 09:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 624 (0x270) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Validity Not Before: Apr 20 22:34:30 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=721BD71397601F82691E128A2782C35B4FC3AC40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:85:dd:8e:40:a6:72:e5:c1:f7:b8:37:1b:68: c8:64:1b:d0:2a:24:ac:4d:57:74:67:03:07:e8:a4: 6b:2b:d7:0b:62:1b:78:1f:73:05:95:f3:23:86:27: 5f:9b:ab:4a:67:34:ea:8a:1d:12:78:76:b0:df:78: 86:eb:a3:a8:31:65:3c:48:08:da:6c:06:fe:5c:6a: 59:16:be:af:39:2d:60:6a:ad:be:7e:15:e4:0c:81: cf:e8:05:89:05:3e:cd:f7:7d:9a:9b:c0:02:55:4c: f1:4a:ef:73:ff:0d:d8:16:f2:58:b4:a5:b7:5f:d3: f6:a1:18:77:ce:48:4a:7c:ee:bf:cf:a8:34:82:a8: b5:a0:d3:1f:6d:86:8b:9c:b2:0b:2e:4d:f0:60:4f: 3f:b7:c4:91:cb:07:70:f1:dd:82:da:5d:b8:a5:21: 1a:9f:5e:7c:87:30:4a:0a:a2:c7:4f:61:d0:b7:43: de:db:c8:20:05:7d:e6:ce:b8:17:3f:85:cd:b9:0f: de:cf:7c:ce:63:7a:25:28:3e:81:5d:85:cf:eb:7d: 48:e1:44:22:52:cb:32:95:aa:70:a3:42:df:98:23: 4d:ca:fe:70:4c:d0:9a:24:ff:b9:23:f4:6c:7c:b4: 42:39:a5:82:b2:11:58:a7:e7:6c:3c:c8:ad:1d:24: c7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 X509v3 Authority Key Identifier: keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 74:cc:2c:b4:a8:6f:e6:b6:cd:eb:42:44:04:b4:e4:45:57:f6: b4:22:8b:1b:d5:1f:20:0b:b9:60:f1:c0:1e:9b:50:eb:8f:39: e8:80:05:9b:91:a4:e3:c6:20:f3:52:4e:ff:2b:be:41:2e:3f: a4:22:ed:c3:48:b5:cf:12:53:16:03:a7:bd:05:55:ec:31:46: 70:bc:59:63:d5:92:1f:46:84:18:56:e5:2b:02:08:8c:7c:4f: 01:a0:88:74:2d:2d:d6:78:66:2b:d4:df:66:31:e6:b5:65:82: a2:11:09:2c:40:b9:61:c3:02:40:92:b0:65:d8:a4:50:f1:80: 85:2c:cd:82:1a:0e:f7:f5:44:82:f3:82:c6:8b:50:54:d9:da: 55:7d:af:b3:ee:a2:31:19:fa:3c:9f:31:5a:68:2c:b9:35:59: 48:17:29:02:6f:1f:ef:35:f5:f8:2a:7a:7f:a2:1b:a0:e4:d3: 38:c0:ba:01:3c:b6:be:c1:a8:98:2d:ec:54:06:97:ee:b7:ca: a3:d4:61:07:7f:c7:98:60:94:60:60:d4:f3:dc:fe:dc:35:c9: 8a:31:e8:2a:4d:c0:c2:4a:fb:2c:d4:19:52:f6:80:48:d0:77: 11:95:bc:a8:9b:5e:a4:2a:09:43:46:6c:50:11:09:6a:fa:e0: 9b:20:74:a9 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAnAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDk2 NkI1NTkwOTMyNDE4MEE4OEE0NUUxRjY4M0NGNEQyRUQ5QkNBNTAeFw0yNjA0MjAy MjM0MzBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcyMUJENzEzOTc2MDFG ODI2OTFFMTI4QTI3ODJDMzVCNEZDM0FDNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdhd2OQKZy5cH3uDcbaMhkG9AqJKxNV3RnAwfopGsr1wtiG3gf cwWV8yOGJ1+bq0pnNOqKHRJ4drDfeIbro6gxZTxICNpsBv5calkWvq85LWBqrb5+ FeQMgc/oBYkFPs33fZqbwAJVTPFK73P/DdgW8li0pbdf0/ahGHfOSEp87r/PqDSC qLWg0x9thoucsgsuTfBgTz+3xJHLB3Dx3YLaXbilIRqfXnyHMEoKosdPYdC3Q97b yCAFfebOuBc/hc25D97PfM5jeiUoPoFdhc/rfUjhRCJSyzKVqnCjQt+YI03K/nBM 0Jok/7kj9Gx8tEI5pYKyEVin52w8yK0dJMenAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUchvXE5dgH4JpHhKKJ4LDW0/DrEAwHwYDVR0jBBgwFoAU2Wa1WQkyQYCoikXh 9oPPTS7ZvKUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v MldhMVdRa3lRWUNvaWtYaDlvUFBUUzdadktVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8yV2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8yV2ExV1FreVFZQ29pa1hoOW9Q UFRTN1p2S1UubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdMws tKhv5rbN60JEBLTkRVf2tCKLG9UfIAu5YPHAHptQ64856IAFm5Gk48Yg81JO/yu+ QS4/pCLtw0i1zxJTFgOnvQVV7DFGcLxZY9WSH0aEGFblKwIIjHxPAaCIdC0t1nhm K9TfZjHmtWWCohEJLEC5YcMCQJKwZdikUPGAhSzNghoO9/VEgvOCxotQVNnaVX2v s+6iMRn6PJ8xWmgsuTVZSBcpAm8f7zX1+Cp6f6IboOTTOMC6ATy2vsGomC3sVAaX 7rfKo9RhB3/HmGCUYGDU89z+3DXJijHoKk3Awkr7LNQZUvaASNB3EZW8qJtepCoJ Q0ZsUBEJavrgmyB0qQ== -----END CERTIFICATE-----Generated at Wed Apr 22 06:30:58 2026 by rpki-client