$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.mft File: MRjDNNpY18ACHcqsqIHfudyDZf8.mft (raw, json) Hash identifier: VlmoxjVWN+IXGQ+7jfIIXrBzZx9gMYWf2hEbOxZxJBc= Subject key identifier: F6:56:C2:46:23:F1:C5:FA:82:6A:36:23:D5:49:C7:8C:94:78:6F:D1 Authority key identifier: 31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF Certificate issuer: /CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Certificate serial: 0A97 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.mft Manifest number: 0A55 Signing time: Sun 26 Apr 2026 13:05:11 +0000 Manifest this update: Sun 26 Apr 2026 13:05:11 +0000 Manifest next update: Tue 28 Apr 2026 13:05:11 +0000 Files and hashes: 1: 44sG5xI6nObR0Nd-hc8TaTCdATg.roa (hash: FJ7Le5rn60lhby1vG/m2v/XL3EBad43cQPzlEDPMoKk=) 2: MRjDNNpY18ACHcqsqIHfudyDZf8.crl (hash: 7Rre9nHW6s29Yrn7ImUK27lHcTs6xu28PdlqfXFreTA=) 3: QZjFtdoB5l0VTrzX-othhePeAgY.roa (hash: BLrWyqVSE+tVmnPedxYbiaCQSa6RU71YU5xms1YpmlU=) 4: V9YEmLdJhQFtsWJWorisoXIvVtw.roa (hash: /VKlDId99UKtfPkAw8js8diP9eE4bkubMMbxq+BGPmY=) 5: WkGHlkHiKRr9YdA9HkFCfEw3NcA.roa (hash: Jz4U0BnfPv0KHUcYi+wtEY13mo+tbc7KgFpXp/haMRo=) 6: l0rXUoTh_xLUPs7d5-Nlb3JIaZI.roa (hash: Jnkka3SwH42MQr34xBXmyRwTQKDUuBpqeRrjMItSBHE=) 7: mqtTMHIAwZWCyqJa7LuHi2FU7jg.roa (hash: NawBos98lTXwDlztOK6wPoulJfb1zu4vVysJihoFx04=) 8: y9QGEN5055qgFt31vjnn3TxJtcY.roa (hash: w0LD8G8mjBGJjsDJSBm7oZ9yRTd2X636Wd2lQ7xbIpc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 Apr 2026 02:06:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2711 (0xa97) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3118C334DA58D7C0021DCAACA881DFB9DC8365FF Validity Not Before: Apr 26 13:05:11 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=F656C24623F1C5FA826A3623D549C78C94786FD1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:cc:20:a4:b2:9a:76:7c:ab:42:d7:70:d3:11: ff:4c:9e:35:91:34:8d:27:c0:20:0c:c4:f8:8e:bb: 4e:eb:cb:ac:9d:86:aa:fb:ed:1d:66:51:89:3d:d3: 22:12:f0:f1:b1:6b:75:a8:29:8c:24:a2:33:16:b6: e5:d8:67:ba:fc:86:88:a9:eb:9b:f5:e9:2c:cf:67: 49:62:ed:af:f1:98:aa:03:92:91:08:f6:0f:f8:88: 76:45:d3:10:fe:af:c9:73:8b:7d:26:7e:05:dd:82: 39:a3:ac:2e:08:16:55:ae:a6:3e:cf:ce:74:33:8d: 9d:83:82:c7:b4:37:38:16:a6:58:90:b2:57:37:3c: b7:52:09:7d:24:a8:3e:6d:9f:73:0c:1c:c3:56:ad: 76:76:93:f6:5f:58:43:4f:91:dd:0a:21:ce:cd:d7: 4d:49:e6:f9:7a:0b:c3:f6:55:05:c6:ab:85:f7:3c: 8d:e1:e9:3a:79:e5:44:bc:54:d3:5f:3c:e2:93:b0: 72:02:0f:61:f9:bf:4c:cf:b7:e5:03:95:1f:7b:ef: c2:ab:18:c1:ce:67:16:1c:a3:26:b2:34:a7:aa:4b: d3:af:09:ec:a4:f4:0b:69:6b:31:4d:fc:86:35:09: 33:35:4d:e4:88:28:8c:11:49:32:fa:fa:53:ea:a5: f9:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:56:C2:46:23:F1:C5:FA:82:6A:36:23:D5:49:C7:8C:94:78:6F:D1 X509v3 Authority Key Identifier: keyid:31:18:C3:34:DA:58:D7:C0:02:1D:CA:AC:A8:81:DF:B9:DC:83:65:FF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MRjDNNpY18ACHcqsqIHfudyDZf8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PNI/MRjDNNpY18ACHcqsqIHfudyDZf8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2d:85:b1:f0:2a:ea:7a:40:ba:29:01:a7:e7:da:cd:13:ff:04: c4:7e:aa:f3:5a:d7:ec:12:8e:73:35:79:11:22:6b:6c:3c:ea: 30:03:71:c0:50:47:e8:60:29:a5:c8:43:a6:16:98:6f:43:02: 56:de:6a:e1:7f:b8:0d:aa:92:55:b7:af:59:67:d4:01:c1:06: 6c:77:ee:c9:b0:fc:5b:56:a3:22:21:d7:0a:1b:79:cf:9b:ae: 11:78:e5:79:2f:14:24:4e:b4:43:d6:e5:20:56:7d:6a:b0:fe: 97:f2:07:cc:2e:0d:b1:20:ee:da:52:aa:f2:72:65:84:bc:c8: 64:cb:42:6a:88:9a:59:b3:09:aa:da:92:b7:1d:19:f8:54:84: 38:5c:99:64:94:6c:6a:82:2a:9f:03:e9:56:f1:66:e2:dd:d7: 71:4a:b0:39:01:bc:b7:64:26:07:43:b2:f4:3d:eb:d5:56:d2: 0f:a7:fb:75:e6:1b:c6:0f:bc:2c:f0:e9:2f:f5:a2:95:44:c9: 51:d1:89:44:a3:36:bf:75:f8:c1:af:7e:16:b6:d4:dd:b8:56: a1:0c:13:88:c4:31:e8:c1:52:e1:65:ba:5e:68:d9:39:54:9d: 9a:6c:85:4d:1a:d2:c5:e4:fb:4d:67:a8:1c:9b:2e:44:d6:2f: 67:e7:a3:78 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICCpcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzEx OEMzMzREQTU4RDdDMDAyMURDQUFDQTg4MURGQjlEQzgzNjVGRjAeFw0yNjA0MjYx MzA1MTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEY2NTZDMjQ2MjNGMUM1 RkE4MjZBMzYyM0Q1NDlDNzhDOTQ3ODZGRDEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDgzCCkspp2fKtC13DTEf9MnjWRNI0nwCAMxPiOu07ry6ydhqr7 7R1mUYk90yIS8PGxa3WoKYwkojMWtuXYZ7r8hoip65v16SzPZ0li7a/xmKoDkpEI 9g/4iHZF0xD+r8lzi30mfgXdgjmjrC4IFlWupj7PznQzjZ2Dgse0NzgWpliQslc3 PLdSCX0kqD5tn3MMHMNWrXZ2k/ZfWENPkd0KIc7N101J5vl6C8P2VQXGq4X3PI3h 6Tp55US8VNNfPOKTsHICD2H5v0zPt+UDlR9778KrGMHOZxYcoyayNKeqS9OvCeyk 9AtpazFN/IY1CTM1TeSIKIwRSTL6+lPqpfnbAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQU9lbCRiPxxfqCajYj1UnHjJR4b9EwHwYDVR0jBBgwFoAUMRjDNNpY18ACHcqs qIHfudyDZf8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01S akROTnBZMThBQ0hjcXNxSUhmdWR5RFpmOC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TVJqRE5OcFkxOEFDSGNxc3FJSGZ1ZHlEWmY4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvUE5JL01SakROTnBZMThBQ0hjcXNxSUhmdWR5 RFpmOC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAthbHwKup6 QLopAafn2s0T/wTEfqrzWtfsEo5zNXkRImtsPOowA3HAUEfoYCmlyEOmFphvQwJW 3mrhf7gNqpJVt69ZZ9QBwQZsd+7JsPxbVqMiIdcKG3nPm64ReOV5LxQkTrRD1uUg Vn1qsP6X8gfMLg2xIO7aUqrycmWEvMhky0JqiJpZswmq2pK3HRn4VIQ4XJlklGxq giqfA+lW8Wbi3ddxSrA5Aby3ZCYHQ7L0PevVVtIPp/t15hvGD7ws8Okv9aKVRMlR 0YlEoza/dfjBr34WttTduFahDBOIxDHowVLhZbpeaNk5VJ2abIVNGtLF5PtNZ6gc my5E1i9n56N4 -----END CERTIFICATE-----Generated at Mon Apr 27 23:51:01 2026 by rpki-client