$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft File: gFHy7O_CQumvnx5FSk-3llkbjas.mft (raw, json) Hash identifier: abD2mssAWjgsDmB1CMEWSI0v00DUTu16MvNwwgUM5ys= Subject key identifier: B3:F4:1E:4B:D4:12:F0:37:18:44:B2:30:AC:07:B4:A4:B3:4E:4E:0F Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Certificate serial: 14FE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft Manifest number: 14D4 Signing time: Thu 16 Apr 2026 10:34:10 +0000 Manifest this update: Thu 16 Apr 2026 10:34:10 +0000 Manifest next update: Sat 18 Apr 2026 10:34:10 +0000 Files and hashes: 1: 31m7dx_bn0Ro8ePcnB2TYVLaCKo.roa (hash: q27K7syNnI6b+P8BSh5Is6tYNQbmHPJyp56ERdT/Jm8=) 2: C-2l4-5lLtB18jchVLlfhpvA0Ac.roa (hash: aQDdazI7yAsxvVxYbta5QXOcf4rSIc2slfFRuknYIt8=) 3: ZaEYdQEYlwV-99ewE3_Pl_5c-KM.roa (hash: 6c2SxvONR/8qBuF3lZJ54LOGkZExJj3WEROWJnwl/q0=) 4: gFHy7O_CQumvnx5FSk-3llkbjas.crl (hash: KRHpeBaKfyzrnqOy7V3KFCFY6AYWltUuS1IMNDjrQT0=) 5: tD6C8fAbkv4Tw-j0az_FdowFa6g.roa (hash: E1/GW3SC5d67/+/8Koshd/Wi/2b0bOuMZ4db7+CIyzI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 06:33:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5374 (0x14fe) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Validity Not Before: Apr 16 10:34:10 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B3F41E4BD412F0371844B230AC07B4A4B34E4E0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bb:c8:a4:92:b6:18:8b:21:23:0d:eb:65:b6: c0:c0:b2:90:1b:32:af:50:df:84:ca:45:a1:f7:48: 3d:96:c1:e1:de:d5:74:1b:67:9b:23:75:d1:bc:f0: e2:bb:aa:14:7e:15:63:3c:af:29:d2:2b:76:82:cf: 8c:a5:56:b6:29:d1:b9:68:30:68:90:d6:d3:70:f1: c7:9c:48:b5:37:e0:e4:2a:97:63:be:22:97:d7:47: 19:69:af:ee:c0:8b:75:ad:c6:db:68:7d:5f:e2:7e: 25:c6:bc:81:a5:29:9b:09:f0:94:d5:64:a8:9d:a9: 82:68:20:84:69:5b:56:c2:9b:dc:92:4e:b6:6e:50: 06:be:7c:10:4b:a1:05:9e:34:f7:40:86:e6:5c:d9: 49:a8:df:d8:39:3d:92:2b:0b:75:3f:b6:9c:1e:8a: 96:79:24:3c:d5:3c:2f:1c:0c:2d:c3:9e:dd:fe:c6: 79:27:f0:5f:7d:19:39:26:90:63:67:6b:92:c7:a7: 2c:dd:0a:c6:8c:f4:4b:11:0c:43:28:f3:91:b7:e2: f5:7e:f6:35:20:01:8c:78:67:a5:f5:ee:56:af:63: 0c:9b:69:c1:b5:a9:a1:f3:10:5d:e1:ab:58:33:31: e4:55:38:bb:d5:cc:95:6f:ec:62:e2:ef:d5:15:07: 89:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F4:1E:4B:D4:12:F0:37:18:44:B2:30:AC:07:B4:A4:B3:4E:4E:0F X509v3 Authority Key Identifier: keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 28:7f:69:1f:71:c7:53:d9:19:65:13:4e:23:56:4e:a8:34:e5: 66:05:11:ec:30:cb:dd:21:bd:4e:ff:c0:89:a1:c7:f0:b5:28: e1:62:7e:86:b4:ac:5d:a5:d3:65:6d:2a:0c:8a:5f:84:f5:2b: c3:f6:57:94:9a:6e:44:62:2b:43:a4:ea:17:11:ea:95:bd:e8: 52:e7:46:7a:3e:91:8c:a1:0c:41:8b:b6:b1:4d:8e:99:85:88: e2:c5:c4:86:4e:af:d7:50:0e:a9:99:e5:82:c3:4e:aa:8f:78: f8:31:15:02:0b:19:b0:69:d3:c7:08:b3:c7:bf:a4:2c:3e:0d: aa:3d:9a:82:47:ca:cd:f1:49:a2:eb:3d:5d:bc:af:19:b6:bf: 7c:87:18:aa:db:64:5b:36:dd:bb:d0:41:7d:2f:79:87:85:26: 5d:36:d7:2a:39:19:b6:01:07:d4:e2:b8:f2:4a:8e:80:81:d4: 27:63:7f:1f:9b:fa:2e:5d:95:ec:db:d1:2d:ea:98:82:a5:01: 28:1e:8a:6d:83:ab:2c:08:41:9f:f9:bf:cc:6b:9f:68:14:48: fd:7e:64:54:f3:3d:89:02:de:5c:22:87:c1:54:a1:a6:86:22: 58:05:a1:14:87:b4:c5:0d:de:18:35:66:3c:48:1c:75:f0:ac: b8:bc:84:3a -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICFP4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODA1 MUYyRUNFRkMyNDJFOUFGOUYxRTQ1NEE0RkI3OTY1OTFCOERBQjAeFw0yNjA0MTYx MDM0MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIzRjQxRTRCRDQxMkYw MzcxODQ0QjIzMEFDMDdCNEE0QjM0RTRFMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVu8ikkrYYiyEjDetltsDAspAbMq9Q34TKRaH3SD2WweHe1XQb Z5sjddG88OK7qhR+FWM8rynSK3aCz4ylVrYp0bloMGiQ1tNw8cecSLU34OQql2O+ IpfXRxlpr+7Ai3WtxttofV/ifiXGvIGlKZsJ8JTVZKidqYJoIIRpW1bCm9ySTrZu UAa+fBBLoQWeNPdAhuZc2Umo39g5PZIrC3U/tpweipZ5JDzVPC8cDC3Dnt3+xnkn 8F99GTkmkGNna5LHpyzdCsaM9EsRDEMo85G34vV+9jUgAYx4Z6X17lavYwybacG1 qaHzEF3hq1gzMeRVOLvVzJVv7GLi79UVB4k9AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUs/QeS9QS8DcYRLIwrAe0pLNOTg8wHwYDVR0jBBgwFoAUgFHy7O/CQumvnx5F Sk+3llkbjaswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVU L2dGSHk3T19DUXVtdm54NUZTay0zbGxrYmphcy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZ0ZIeTdPX0NRdW12bng1RlNrLTNsbGtiamFzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVUL2dGSHk3T19DUXVtdm54NUZT ay0zbGxrYmphcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAo f2kfccdT2RllE04jVk6oNOVmBRHsMMvdIb1O/8CJocfwtSjhYn6GtKxdpdNlbSoM il+E9SvD9leUmm5EYitDpOoXEeqVvehS50Z6PpGMoQxBi7axTY6ZhYjixcSGTq/X UA6pmeWCw06qj3j4MRUCCxmwadPHCLPHv6QsPg2qPZqCR8rN8Umi6z1dvK8Ztr98 hxiq22RbNt270EF9L3mHhSZdNtcqORm2AQfU4rjySo6AgdQnY38fm/ouXZXs29Et 6piCpQEoHoptg6ssCEGf+b/Ma59oFEj9fmRU8z2JAt5cIofBVKGmhiJYBaEUh7TF Dd4YNWY8SBx18Ky4vIQ6 -----END CERTIFICATE-----Generated at Fri Apr 17 05:00:52 2026 by rpki-client