$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft File: x1hCDPdi5IrXyqYOs53NYisftPY.mft (raw, json) Hash identifier: ZDamvGXdHMIfZ1WYWC5lAYBvdKLqhIMljm9DVYW0a30= Subject key identifier: 3B:2E:15:28:E7:5A:4B:9A:45:45:79:55:8F:70:25:41:85:67:56:33 Authority key identifier: C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6 Certificate issuer: /CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6 Certificate serial: 0202 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft Manifest number: 01FF Signing time: Wed 22 Apr 2026 04:04:52 +0000 Manifest this update: Wed 22 Apr 2026 04:04:52 +0000 Manifest next update: Fri 24 Apr 2026 04:04:52 +0000 Files and hashes: 1: bBSNn9sCzQJ-c6W6pbNOAisjYJQ.roa (hash: GMv3c2c3ddPdnP9XF6uQx6H8RorOB3gRV/gTV4C48uA=) 2: ctbYvQlOL6j448wTy_8FTGZ-sBI.roa (hash: XQt96vsMeGS6Wi8KdRRheyyn73riNaI61YlxOlZq/b8=) 3: x1hCDPdi5IrXyqYOs53NYisftPY.crl (hash: XhojlypdgruaPcARBKRQNB8UJBNLOCUiJYPe2HP6nGw=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 09:35:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 514 (0x202) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C758420CF762E48AD7CAA60EB39DCD622B1FB4F6 Validity Not Before: Apr 22 04:04:52 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3B2E1528E75A4B9A454579558F70254185675633 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:1c:1f:bc:16:1d:9c:c6:2f:56:f4:ff:ba:2b: b1:61:05:0c:4e:14:c0:9c:13:62:be:3b:df:1a:59: cb:cd:fd:61:c0:19:fb:93:ab:60:63:c7:76:cc:39: d8:3a:0b:9a:a2:36:65:53:87:76:e5:66:ec:6a:14: 02:39:f0:02:2b:ce:80:59:ab:34:53:30:8f:90:74: 46:c6:98:c9:40:8d:c7:ef:66:f9:0a:ed:63:06:0d: bc:a2:b8:ff:ce:72:47:4a:2a:b4:87:aa:50:c2:c0: c7:b3:24:54:c7:dc:9f:85:94:77:8c:94:eb:f3:74: 00:bc:5f:1b:71:75:f4:3e:c1:3d:44:9a:e8:50:96: 6e:5f:e8:f8:fb:78:08:0f:4e:bb:ec:a8:d5:ec:5e: d3:04:6f:f3:13:2e:55:7a:48:f1:42:df:6e:eb:c0: 35:87:5e:0e:53:c8:c1:52:27:0d:de:34:32:6a:66: fb:9b:71:f2:98:b6:fa:97:39:b3:6e:ed:9a:4e:1f: 8d:b4:ed:d7:58:20:d0:98:49:39:6c:b5:92:b9:54: 0f:b2:5a:d8:00:96:3e:d5:62:81:8a:67:a3:f5:68: c5:92:a5:cf:1a:dd:ee:5f:55:54:60:73:dc:6d:41: 09:c8:87:f3:e2:18:b5:55:42:38:20:97:12:c5:f9: 7b:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3B:2E:15:28:E7:5A:4B:9A:45:45:79:55:8F:70:25:41:85:67:56:33 X509v3 Authority Key Identifier: keyid:C7:58:42:0C:F7:62:E4:8A:D7:CA:A6:0E:B3:9D:CD:62:2B:1F:B4:F6 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/x1hCDPdi5IrXyqYOs53NYisftPY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/STW/x1hCDPdi5IrXyqYOs53NYisftPY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:85:84:d1:25:50:ff:f9:39:6e:a5:c5:fc:ba:da:36:ec:22: a1:e6:a6:2a:fd:af:45:b2:f7:a4:9f:67:88:b8:93:a0:ef:10: f9:b8:b4:5c:6a:ac:a6:56:25:e3:f9:0c:2d:81:b7:9f:b9:3e: a9:9e:02:c7:b5:4a:57:44:20:50:c3:cb:04:23:17:1b:a3:8a: 76:0c:34:e1:cc:81:65:91:88:31:9f:81:22:7d:54:6f:aa:b4: a1:5d:75:a2:ac:9d:2c:73:7d:67:55:23:18:6c:fb:23:2b:e3: c4:7f:2b:41:62:4b:df:91:9e:05:f0:57:2f:ae:73:5d:bc:79: c4:72:04:7b:70:72:c6:f5:ce:c1:27:eb:2f:63:40:2d:63:47: b4:ac:13:5a:73:fc:5b:70:7b:4d:ad:64:7e:49:eb:60:bb:40: 6d:09:0c:ef:54:e7:a3:b1:19:f3:0b:7e:95:8e:66:ac:d1:ee: 60:78:5d:73:d2:17:f4:23:af:3a:64:f0:2f:d1:de:d5:1e:21: 13:3c:8a:c9:a9:84:9b:eb:6b:cf:6f:8b:2c:31:58:9b:ba:19: b6:72:01:cd:1c:6c:d9:9d:ef:9d:ca:29:62:3a:57:f7:9f:08: f5:0f:06:3c:db:2d:b6:bf:7b:1e:54:91:82:a8:0a:5b:32:ea: 3e:6e:0e:a2 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAgIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzc1 ODQyMENGNzYyRTQ4QUQ3Q0FBNjBFQjM5RENENjIyQjFGQjRGNjAeFw0yNjA0MjIw NDA0NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNCMkUxNTI4RTc1QTRC OUE0NTQ1Nzk1NThGNzAyNTQxODU2NzU2MzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDYHB+8Fh2cxi9W9P+6K7FhBQxOFMCcE2K+O98aWcvN/WHAGfuT q2Bjx3bMOdg6C5qiNmVTh3blZuxqFAI58AIrzoBZqzRTMI+QdEbGmMlAjcfvZvkK 7WMGDbyiuP/OckdKKrSHqlDCwMezJFTH3J+FlHeMlOvzdAC8XxtxdfQ+wT1EmuhQ lm5f6Pj7eAgPTrvsqNXsXtMEb/MTLlV6SPFC327rwDWHXg5TyMFSJw3eNDJqZvub cfKYtvqXObNu7ZpOH4207ddYINCYSTlstZK5VA+yWtgAlj7VYoGKZ6P1aMWSpc8a 3e5fVVRgc9xtQQnIh/PiGLVVQjgglxLF+XuHAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUOy4VKOdaS5pFRXlVj3AlQYVnVjMwHwYDVR0jBBgwFoAUx1hCDPdi5IrXyqYO s53NYisftPYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1RXL3gx aENEUGRpNUlyWHlxWU9zNTNOWWlzZnRQWS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev eDFoQ0RQZGk1SXJYeXFZT3M1M05ZaXNmdFBZLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvU1RXL3gxaENEUGRpNUlyWHlxWU9zNTNOWWlz ZnRQWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB4hYTRJVD/ +TlupcX8uto27CKh5qYq/a9Fsvekn2eIuJOg7xD5uLRcaqymViXj+QwtgbefuT6p ngLHtUpXRCBQw8sEIxcbo4p2DDThzIFlkYgxn4EifVRvqrShXXWirJ0sc31nVSMY bPsjK+PEfytBYkvfkZ4F8FcvrnNdvHnEcgR7cHLG9c7BJ+svY0AtY0e0rBNac/xb cHtNrWR+Setgu0BtCQzvVOejsRnzC36Vjmas0e5geF1z0hf0I686ZPAv0d7VHiET PIrJqYSb62vPb4ssMVibuhm2cgHNHGzZne+dyiliOlf3nwj1DwY82y22v3seVJGC qApbMuo+bg6i -----END CERTIFICATE-----Generated at Wed Apr 22 06:30:33 2026 by rpki-client