$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft File: agoWUzfc-5EnxghAxFy8641tv3U.mft (raw, json) Hash identifier: fbthdVMKPj26aIIYj+KMTKlt6oP7dKzpMvW0prPCe/c= Subject key identifier: 65:79:98:3B:90:AB:DC:26:D8:11:75:53:DF:21:66:FA:E0:26:43:31 Authority key identifier: 6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75 Certificate issuer: /CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75 Certificate serial: 021E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft Manifest number: 0217 Signing time: Mon 27 Apr 2026 17:05:24 +0000 Manifest this update: Mon 27 Apr 2026 17:05:24 +0000 Manifest next update: Wed 29 Apr 2026 17:05:24 +0000 Files and hashes: 1: agoWUzfc-5EnxghAxFy8641tv3U.crl (hash: HJjo7cQbu/KiL7rpnpUCVl32Td98mykFPV4d7HPhVeE=) 2: m9sr44yopVtBGaFN1rTZk9HwKvs.roa (hash: Iwgi4+scPw9ONWEICD9ImWuS2yG1IRQUh6LodXQVs+o=) 3: xWizb_o9xK91PWc8yBDWVukQpAs.roa (hash: sXyiqxn/UKcyS8fyXe9tfgO/mF6s5bppdmlNFFENh0o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 27 Apr 2026 21:36:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 542 (0x21e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6A0A165337DCFB9127C60840C45CBCEB8D6DBF75 Validity Not Before: Apr 27 17:05:24 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6579983B90ABDC26D8117553DF2166FAE0264331 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:bd:10:3b:86:1d:66:1c:ce:de:2d:4c:b7:47: 50:ba:71:34:f6:62:55:1b:10:ce:6f:f1:c3:9f:17: fc:d3:2f:31:d0:15:0d:28:93:33:b1:c1:a2:79:3b: 22:6b:3d:63:3c:76:b9:9c:3c:22:77:2e:6c:bd:b8: f8:69:f0:61:1f:6c:ff:59:10:6d:86:1b:b7:4b:e6: cd:00:73:32:2e:e6:b1:1a:4f:87:7e:7f:50:80:55: 0e:91:3e:ee:7e:7b:bd:45:5d:5a:1d:1e:a0:a3:d8: fc:40:79:81:fa:8f:14:77:e4:70:ea:00:c2:cb:9c: 6b:b6:dd:7c:8c:91:01:3d:7f:98:5e:b9:36:23:d1: f8:44:4d:a5:8a:fe:ea:3e:4b:20:b4:37:ec:89:15: 39:ea:97:86:46:97:13:73:2d:36:66:77:cb:ed:91: 53:79:fe:32:c4:24:52:52:d1:45:4b:30:f4:f9:6e: 38:12:73:1c:2b:44:dc:97:07:f0:91:76:b8:07:6e: c9:80:d1:2b:cb:6f:14:1c:15:ef:c1:2f:5d:00:f0: f4:44:93:2a:c4:b3:ec:a0:b6:bf:2c:ba:1e:55:60: a3:4f:ea:73:4e:55:94:4e:76:86:55:9f:f7:9a:4d: 50:c0:7f:b0:9a:bd:8f:8d:63:02:38:f7:e9:f6:54: 16:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:79:98:3B:90:AB:DC:26:D8:11:75:53:DF:21:66:FA:E0:26:43:31 X509v3 Authority Key Identifier: keyid:6A:0A:16:53:37:DC:FB:91:27:C6:08:40:C4:5C:BC:EB:8D:6D:BF:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/agoWUzfc-5EnxghAxFy8641tv3U.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/agoWUzfc-5EnxghAxFy8641tv3U.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 99:32:53:b1:5b:cf:9b:3c:b7:19:39:26:52:ca:af:6d:fd:ca: 24:fc:f0:db:c5:42:f1:82:5d:7f:b9:e6:c0:bd:ee:50:6f:8b: 1c:50:14:b9:fb:45:83:86:d6:54:7d:e5:13:d9:31:b2:92:d9: 58:dc:2c:a7:e8:cb:7e:e9:12:48:55:4c:a6:4a:95:a5:01:af: 1d:aa:1b:1e:26:59:33:bc:ff:6e:0d:b4:c8:05:e0:3b:10:47: 8d:52:7b:6d:87:7d:15:56:3a:a8:f2:45:77:88:4c:bd:44:f5: b7:ad:85:45:ea:d4:09:42:2c:37:4b:ce:9c:ab:00:bf:17:3a: 7b:fe:67:bc:2e:e1:f4:2f:1c:9d:57:84:47:fd:40:87:bd:2d: 2a:cb:0f:b6:c7:39:f9:10:df:19:5b:63:b2:7b:7d:be:91:80: d4:f4:3c:c7:c5:63:4e:92:48:fd:0f:ea:93:04:45:2a:0f:99: 8d:94:39:f7:db:73:1e:97:ad:2f:50:4c:cb:d2:ff:07:87:f7: be:23:57:6a:ca:38:93:df:05:e6:2d:7e:8c:b5:ab:f2:48:3e: 8f:ae:cd:72:16:d4:95:a1:26:f4:2d:27:06:68:f9:14:d7:06: fd:f8:ec:00:e6:c5:25:f3:1a:e5:ed:81:f3:43:a3:02:dc:5b: fb:0c:02:df -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICAh4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkEw QTE2NTMzN0RDRkI5MTI3QzYwODQwQzQ1Q0JDRUI4RDZEQkY3NTAeFw0yNjA0Mjcx NzA1MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY1Nzk5ODNCOTBBQkRD MjZEODExNzU1M0RGMjE2NkZBRTAyNjQzMzEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQClvRA7hh1mHM7eLUy3R1C6cTT2YlUbEM5v8cOfF/zTLzHQFQ0o kzOxwaJ5OyJrPWM8drmcPCJ3Lmy9uPhp8GEfbP9ZEG2GG7dL5s0AczIu5rEaT4d+ f1CAVQ6RPu5+e71FXVodHqCj2PxAeYH6jxR35HDqAMLLnGu23XyMkQE9f5heuTYj 0fhETaWK/uo+SyC0N+yJFTnql4ZGlxNzLTZmd8vtkVN5/jLEJFJS0UVLMPT5bjgS cxwrRNyXB/CRdrgHbsmA0SvLbxQcFe/BL10A8PREkyrEs+ygtr8suh5VYKNP6nNO VZROdoZVn/eaTVDAf7CavY+NYwI49+n2VBY5AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUZXmYO5Cr3CbYEXVT3yFm+uAmQzEwHwYDVR0jBBgwFoAUagoWUzfc+5EnxghA xFy8641tv3UwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lNUExF L2Fnb1dVemZjLTVFbnhnaEF4Rnk4NjQxdHYzVS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvYWdvV1V6ZmMtNUVueGdoQXhGeTg2NDF0djNVLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lNUExFL2Fnb1dVemZjLTVFbnhnaEF4 Rnk4NjQxdHYzVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCZ MlOxW8+bPLcZOSZSyq9t/cok/PDbxULxgl1/uebAve5Qb4scUBS5+0WDhtZUfeUT 2TGyktlY3Cyn6Mt+6RJIVUymSpWlAa8dqhseJlkzvP9uDbTIBeA7EEeNUntth30V Vjqo8kV3iEy9RPW3rYVF6tQJQiw3S86cqwC/Fzp7/me8LuH0LxydV4RH/UCHvS0q yw+2xzn5EN8ZW2Oye32+kYDU9DzHxWNOkkj9D+qTBEUqD5mNlDn323Mel60vUEzL 0v8Hh/e+I1dqyjiT3wXmLX6MtavySD6Prs1yFtSVoSb0LScGaPkU1wb9+OwA5sUl 8xrl7YHzQ6MC3Fv7DALf -----END CERTIFICATE-----Generated at Mon Apr 27 19:04:11 2026 by rpki-client