$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft File: oY6zd90DGK5GXY8_fW4K0KTp7R4.mft (raw, json) Hash identifier: mk1gGPKo8IqnJQIy++H/WqML71WqVK2NkPa67qrS2B4= Subject key identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 106A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft Manifest number: 1038 Signing time: Wed 18 Mar 2026 22:57:23 +0000 Manifest this update: Wed 18 Mar 2026 22:57:23 +0000 Manifest next update: Fri 20 Mar 2026 22:57:23 +0000 Files and hashes: 1: DGCHCLoOOygF2ADsms7jOh3Egr0.roa (hash: CnEKmku8KZ6SkB2EVKr5ZqB58e6c9EHII9iHP2BKdFM=) 2: J5fNdMEhy7gHZ2JBspxnG1hNo2E.roa (hash: MUkTBc/4eIEaSmSWvFMQcd0p7JlUd0tJIJJZxfD0YMQ=) 3: JQcce5o_xVRKp_GPqeu8dqDKVO8.roa (hash: KxxHI/9wdteNmdbJX1B9yihyolKLm0Rw9xw+g1z3S1I=) 4: MWTOx1zPk-C90vuBRgn9P8nryok.roa (hash: HUbHvZZBmo10DW8MZxl3d6MDo54lA48f8BOUF9Fjg04=) 5: S6f_uIgkwij3QVlXdNoWMy-Jebo.roa (hash: kfjnV1QYZbtsi7b/Zyw9bxa1e7mztwNGJgFCawQz8+c=) 6: Z9vw8KivPQFMAW55QJxhUuZNP0M.roa (hash: Hg9mTGr7ogqg3jVLG2uu71QIvlqBWhwCI4hJ/oL8Wik=) 7: frWI7Eeslz12PC1F7Skc0fz90Fc.roa (hash: EM88IHqP4B6zsm8vOmbqDtA1QolhIApxnELHjUY7A+Y=) 8: oY6zd90DGK5GXY8_fW4K0KTp7R4.crl (hash: ChwUk4yRR0gF9PBypSOv+6GHoGQZ/KM6bGzYroEEXdI=) 9: uCQSXy9O7rFC4HdZ8I6Qv-rLpKU.roa (hash: yYN/TniJq1UcsoCWo77ewd0NkAcyzUnSN8aWtg8WmG0=) 10: uKTaHaPjaE0A0lls-6EDyKfKzCE.roa (hash: H2AWfGJ4xNTJ9VNCNA97PnqGWDw8S7gQLAtTPw3JXKQ=) 11: z6o8lEmUSDxUseLPuAy15ybZwm8.roa (hash: eifEWLy5bDN7kvoySklvkmx/0pRbaZsQzN5+Z4s7vew=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 20 Mar 2026 09:57:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4202 (0x106a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Mar 18 22:57:23 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B0FBBD3D590D48A1A30B70313F514E1E038590C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:63:27:d7:0b:a8:24:ea:9c:4f:c1:43:11:ca: b3:45:5d:08:03:35:03:49:a0:63:2f:7a:09:e3:80: 9c:4f:c5:61:3c:d1:62:1c:e0:93:96:bf:bb:7b:87: 5c:61:54:b9:2a:d1:73:a3:9d:2d:e9:81:14:76:05: d3:3d:00:3a:67:60:6d:b2:5a:13:2a:84:3f:cb:5e: 58:e4:7d:48:c2:d5:0f:ae:8d:99:de:65:4f:c5:6f: f7:37:21:8d:17:05:58:7a:17:eb:d9:c9:bd:d2:98: 1f:c6:60:6a:8a:e9:3c:fb:ba:0b:f2:99:2e:c5:2b: a0:5b:70:1b:de:cb:9c:39:af:ce:74:0c:93:94:e3: 31:a4:0c:77:48:7b:d9:cd:52:3f:89:88:f0:47:de: 82:9e:2e:9a:87:09:94:7f:47:62:ef:2b:f5:8d:38: 42:30:35:46:5b:62:b5:26:4e:f4:e3:d1:9d:05:e6: 81:31:69:38:05:6c:99:91:9d:2d:c4:ca:21:06:43: 14:10:1e:82:6d:0c:02:d1:1a:af:b3:92:46:31:5a: 5f:f7:5b:df:c4:a3:7a:15:11:2b:46:78:06:89:b1: b2:7a:07:d4:7b:e9:14:06:77:f6:f4:65:a1:d3:4e: 68:59:cc:85:a2:fa:f6:bd:e8:9c:3f:f0:3a:b5:8f: 42:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7d:55:d1:f4:ab:55:35:59:6f:7e:95:d9:11:44:f1:d6:57:ab: da:00:6f:18:a2:6e:9f:81:4c:b9:67:20:fb:0e:69:65:0e:91: 2c:c9:a8:10:06:43:ea:71:29:44:59:c1:c7:52:1e:98:25:a8: 69:7c:e6:4f:e5:7a:53:c0:7b:ed:92:60:dd:5c:e3:4e:62:e8: c3:79:7b:8f:0c:8e:ee:dc:86:ab:5f:39:a3:15:99:29:45:22: 3b:bf:cd:cf:b5:f7:a6:3e:5c:d8:9f:a0:61:a6:5d:01:e0:2a: 7b:de:13:26:82:a5:b5:a3:3a:21:20:62:df:8a:72:aa:c3:b6: 6e:3e:ac:34:97:fb:9c:a9:08:48:ed:f3:6a:33:d2:d7:18:7f: 8a:68:51:10:2c:41:e4:7f:fd:4d:f6:f1:0b:fe:c3:f3:25:bd: 67:2c:f9:e6:07:a1:8d:bd:b0:72:e5:28:82:88:d7:95:04:65: f8:07:cc:42:1a:4c:cc:b4:6d:b6:4d:88:cb:82:e9:9e:2f:20: 34:2e:da:48:2e:1e:a8:04:44:dc:d3:c1:11:2b:15:3e:2d:ca: ef:f2:f3:6e:23:2f:ed:f8:07:fd:1d:e7:7a:d8:12:d0:aa:b0: 30:39:0c:d3:31:21:16:b0:0a:93:d7:dd:9a:50:ba:5c:f5:1d: ad:4e:86:83 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICEGowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNjAzMTgy MjU3MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIwRkJCRDNENTkwRDQ4 QTFBMzBCNzAzMTNGNTE0RTFFMDM4NTkwQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCYyfXC6gk6pxPwUMRyrNFXQgDNQNJoGMvegnjgJxPxWE80WIc 4JOWv7t7h1xhVLkq0XOjnS3pgRR2BdM9ADpnYG2yWhMqhD/LXljkfUjC1Q+ujZne ZU/Fb/c3IY0XBVh6F+vZyb3SmB/GYGqK6Tz7ugvymS7FK6BbcBvey5w5r850DJOU 4zGkDHdIe9nNUj+JiPBH3oKeLpqHCZR/R2LvK/WNOEIwNUZbYrUmTvTj0Z0F5oEx aTgFbJmRnS3EyiEGQxQQHoJtDALRGq+zkkYxWl/3W9/Eo3oVEStGeAaJsbJ6B9R7 6RQGd/b0ZaHTTmhZzIWi+va96Jw/8Dq1j0IxAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUsPu9PVkNSKGjC3AxP1FOHgOFkMgwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vb1k2emQ5MERH SzVHWFk4X2ZXNEswS1RwN1I0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAH1V0fSrVTVZb36V2RFE8dZXq9oAbxiibp+BTLlnIPsOaWUOkSzJqBAG Q+pxKURZwcdSHpglqGl85k/lelPAe+2SYN1c405i6MN5e48Mju7chqtfOaMVmSlF Iju/zc+196Y+XNifoGGmXQHgKnveEyaCpbWjOiEgYt+KcqrDtm4+rDSX+5ypCEjt 82oz0tcYf4poURAsQeR//U328Qv+w/MlvWcs+eYHoY29sHLlKIKI15UEZfgHzEIa TMy0bbZNiMuC6Z4vIDQu2kguHqgERNzTwRErFT4tyu/y824jL+34B/0d53rYEtCq sDA5DNMxIRawCpPX3ZpQulz1Ha1OhoM= -----END CERTIFICATE-----Generated at Fri Mar 20 07:07:28 2026 by rpki-client