$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft File: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft (raw, json) Hash identifier: bHtBbfBhcplQCwEmofOqezZXKwAONmpGCqNBMurO4YM= Subject key identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Certificate serial: 0239 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft Manifest number: 0233 Signing time: Mon 20 Apr 2026 22:04:26 +0000 Manifest this update: Mon 20 Apr 2026 22:04:26 +0000 Manifest next update: Wed 22 Apr 2026 22:04:26 +0000 Files and hashes: 1: DHfspAVUUZ0rNFX5agFJgGyx23Q.roa (hash: 0yRv4FcWg1qFIUGDL74GwiVrS4qIfgwZ9YjYGaMW7Ks=) 2: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl (hash: tiVF2FVfNfnaJdp8kef3hDGGDUGkA9xjJiw94r/joqE=) 3: plN6TlQMP3qTM5WBPlFYzO6YRCE.roa (hash: oXn5+/wl8H3Ceea5XWKI+xNM2/t6MEJx6Sg2hKc5Oaw=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 09:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 569 (0x239) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Validity Not Before: Apr 20 22:04:26 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EAF2BE883EF8ED0C1C90C3D05D111B8539F37A69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b5:3e:8b:b8:23:d0:67:20:07:ec:8a:ac:1d: e4:82:63:90:b5:bd:e0:39:64:00:a9:a4:04:a5:e8: 32:34:38:0f:ad:0b:f1:dd:bf:6d:52:4d:5e:98:cd: bd:83:9d:40:9a:ae:40:0e:c6:e6:df:2f:ca:36:02: 96:ba:a1:3d:b3:d1:66:f9:3c:2e:63:d4:3a:95:c4: 4d:b9:cc:57:07:4c:72:12:e1:15:50:6c:14:72:41: 58:79:2d:09:03:55:e3:f8:65:8b:9f:28:9a:09:80: 6b:ef:6b:4c:4d:2d:cc:9c:3b:39:00:3f:99:35:00: f9:2a:92:95:51:e8:42:56:64:12:94:d2:43:f5:60: 79:65:56:27:e6:20:8d:0f:30:0c:92:fe:6c:2e:f4: 1f:09:0f:ab:9c:22:2d:e2:73:ef:dd:09:97:d3:35: 83:ef:81:75:33:60:63:83:81:2b:91:1c:55:f8:8c: 48:7e:db:af:79:b6:82:ba:65:79:cd:98:36:a9:b4: dd:28:ef:8d:bd:e7:46:d5:da:79:d5:30:58:89:5c: 58:95:a8:1b:d0:57:e1:7e:d7:ce:1d:80:99:ee:ae: 00:20:12:45:a5:f3:37:69:71:b6:27:45:32:46:55: 8c:f9:ea:86:77:07:bd:c9:68:9c:15:29:02:f2:d5: df:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 X509v3 Authority Key Identifier: keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c5:b4:ad:7a:12:bc:d8:c4:a7:cc:4c:36:86:70:f0:10:f7:a2: 00:b5:82:b6:c2:26:fb:55:42:ce:7a:e6:8f:ca:4c:22:6c:d5: 1a:95:3e:34:1c:50:ca:55:07:e0:b4:52:4c:fd:85:f4:01:a8: 66:50:82:91:50:2d:bf:6d:05:34:df:2f:58:24:6d:77:f5:79: 59:57:05:00:bd:ac:80:fd:41:56:95:99:7e:b9:eb:ef:f8:79: 54:ab:52:b7:19:60:44:65:66:3a:a0:38:ee:90:c8:ab:86:2f: 3e:04:67:40:b1:e4:6c:d8:93:57:d1:3e:bc:97:37:ca:a7:ed: 8a:5a:91:e1:30:e3:cb:e9:25:ba:fe:86:93:84:74:6f:df:92: 9f:46:5e:29:08:49:03:0a:f6:a1:e0:f0:b8:3b:9c:23:1e:44: 79:5b:ba:46:a6:b1:9d:cd:0d:34:df:97:b4:4e:aa:f8:2a:05: c0:a6:0a:51:21:e0:c5:a9:20:a0:85:24:9c:06:c4:1d:2a:8e: ad:10:9d:19:cf:fa:f1:87:73:86:90:ad:7e:6b:63:d5:44:8c: 8e:58:d6:2b:47:ad:62:75:19:82:f1:8c:e9:af:d6:88:9d:c4: 9b:68:5f:d5:04:a4:0f:5f:5e:64:35:40:f9:ec:58:bb:25:a2: 1a:22:8e:fa -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAjkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNF QkQzOUZCNTE4QjU1REEwMDc0MkFFRUM3QjBEQTZBQUJBNjFGNzAeFw0yNjA0MjAy MjA0MjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVBRjJCRTg4M0VGOEVE MEMxQzkwQzNEMDVEMTExQjg1MzlGMzdBNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDftT6LuCPQZyAH7IqsHeSCY5C1veA5ZACppASl6DI0OA+tC/Hd v21STV6Yzb2DnUCarkAOxubfL8o2Apa6oT2z0Wb5PC5j1DqVxE25zFcHTHIS4RVQ bBRyQVh5LQkDVeP4ZYufKJoJgGvva0xNLcycOzkAP5k1APkqkpVR6EJWZBKU0kP1 YHllVifmII0PMAyS/mwu9B8JD6ucIi3ic+/dCZfTNYPvgXUzYGODgSuRHFX4jEh+ 2695toK6ZXnNmDaptN0o742950bV2nnVMFiJXFiVqBvQV+F+184dgJnurgAgEkWl 8zdpcbYnRTJGVYz56oZ3B73JaJwVKQLy1d+BAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU6vK+iD747QwckMPQXREbhTnzemkwHwYDVR0jBBgwFoAUQ+vTn7UYtV2gB0Ku 7HsNpqq6YfcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FFTFcv US12VG43VVl0VjJnQjBLdTdIc05wcXE2WWZjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9RLXZUbjdVWXRWMmdCMEt1N0hzTnBxcTZZZmMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQUVMVy9RLXZUbjdVWXRWMmdCMEt1N0hz TnBxcTZZZmMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAxbSt ehK82MSnzEw2hnDwEPeiALWCtsIm+1VCznrmj8pMImzVGpU+NBxQylUH4LRSTP2F 9AGoZlCCkVAtv20FNN8vWCRtd/V5WVcFAL2sgP1BVpWZfrnr7/h5VKtStxlgRGVm OqA47pDIq4YvPgRnQLHkbNiTV9E+vJc3yqftilqR4TDjy+kluv6Gk4R0b9+Sn0Ze KQhJAwr2oeDwuDucIx5EeVu6Rqaxnc0NNN+XtE6q+CoFwKYKUSHgxakgoIUknAbE HSqOrRCdGc/68YdzhpCtfmtj1USMjljWK0etYnUZgvGM6a/WiJ3Em2hf1QSkD19e ZDVA+exYuyWiGiKO+g== -----END CERTIFICATE-----Generated at Wed Apr 22 06:31:59 2026 by rpki-client