$ rpki-client -vvf rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft File: 0291B733B1EED1AF7E817D958CE6F13A585F0695.mft (raw, json) Hash identifier: GK1xeEDDPVBPYN05wR73AN5rMSIdd3nbaEy+3x+jFaw= Subject key identifier: FA:D0:19:07:AB:16:AC:D6:30:47:69:E1:90:0B:8A:C3:C6:96:AE:38 Authority key identifier: 02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 Certificate issuer: /CN=0291B733B1EED1AF7E817D958CE6F13A585F0695 Certificate serial: 51D4765DBA2F59AB0BA0111D4B7548357ADF34E1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft Manifest number: 47 Signing time: Tue 30 Jun 2026 16:19:15 +0000 Manifest this update: Tue 30 Jun 2026 16:14:15 +0000 Manifest next update: Wed 01 Jul 2026 17:42:15 +0000 Files and hashes: 1: 0291B733B1EED1AF7E817D958CE6F13A585F0695.crl (hash: TAZHA6reMn3sTPt7aWHsVXjU2KrY7EOVq2D8ZcrEPgc=) 2: 3231302e37392e3135312e302f32342d3234203d3e20323031323137.roa (hash: WRpRpWc9nNYJzvwhsCMAvWKmyMgtn7Z1UBftNahQj4c=) 3: 323430313a353561303a3a2f33322d3332203d3e203138303431.roa (hash: CrzulhqYuNBjNzDQRC8BOsQxP+QuAw4ZbCFe65kH3fw=) 4: 3231302e37392e3135302e302f32332d3234203d3e203138303431.roa (hash: XF9vSkheKC1NRFUS3alvj8iCKGl0+/ZaB+X31yisdf0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.crl rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Jul 2026 14:08:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 51:d4:76:5d:ba:2f:59:ab:0b:a0:11:1d:4b:75:48:35:7a:df:34:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0291B733B1EED1AF7E817D958CE6F13A585F0695 Validity Not Before: Jun 30 16:14:15 2026 GMT Not After : Jul 1 17:42:15 2026 GMT Subject: CN=FAD01907AB16ACD6304769E1900B8AC3C696AE38 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:6f:3c:aa:00:08:59:5d:f3:12:aa:36:2e:00: 5c:f1:88:9b:e0:ff:36:eb:3e:50:76:99:1d:ef:f5: 62:17:6f:b4:a0:62:9b:2a:f4:92:70:0c:1a:56:56: a3:ec:ae:6b:ee:9b:8b:20:8b:7c:a6:8e:52:06:fb: 7a:fe:e1:a6:d9:66:4a:62:27:ff:74:56:cb:dd:a3: 20:06:ae:3d:50:17:79:3e:bb:89:82:b9:99:db:ed: b3:ba:cc:32:56:d4:1a:09:17:f9:07:f0:8c:10:36: 42:e2:37:61:8a:ed:10:67:55:f7:ff:c8:88:03:d4: e6:49:e2:58:6d:0b:0d:47:fd:49:a4:c2:a2:2c:97: 8b:45:ff:b9:67:3a:39:6a:37:c7:8c:1c:9f:e9:ac: 87:dd:12:00:7b:14:3f:a1:32:1f:6f:60:b3:02:4a: 09:6e:7b:23:dd:9a:08:a7:72:15:e8:89:ca:29:de: be:d9:bc:9e:d2:64:32:7e:8b:61:93:c7:4d:06:73: 35:b5:7d:d8:f2:0c:2e:c1:73:12:5e:af:69:9b:b9: fb:1a:2e:06:2c:bc:f8:4d:18:24:95:bf:0e:1a:0a: 9f:ae:e2:6f:22:14:a2:cd:01:bf:ca:5d:9e:92:b4: 25:0e:a3:00:4f:fc:3d:3c:ce:11:8c:8c:78:59:af: 02:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:D0:19:07:AB:16:AC:D6:30:47:69:E1:90:0B:8A:C3:C6:96:AE:38 X509v3 Authority Key Identifier: keyid:02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption c9:4a:11:8a:67:e4:15:cf:6a:92:67:12:cc:b7:04:67:13:09: 72:fb:e9:d6:14:2e:22:3c:15:91:f1:6d:d3:bc:42:41:3c:e9: 80:d7:ee:6d:66:a7:6c:0c:b3:0e:c6:2e:08:b0:f4:15:41:37: f8:8c:30:34:75:e6:64:3c:bb:8b:b5:19:9d:93:f3:d1:3d:d5: 08:4b:75:31:57:07:de:43:85:df:fe:d6:64:ab:ca:8b:64:3d: bc:c3:7a:29:2b:7b:dc:d0:51:51:5b:d6:c9:f4:e5:f3:78:1d: 8e:d8:fe:5a:c8:ce:91:95:75:c4:6c:19:97:d7:3a:dc:a5:25: 90:79:4c:13:31:e6:65:1e:9d:09:79:98:37:d5:d0:51:f6:1c: 2c:62:7c:34:26:86:19:95:5d:b2:43:e8:b4:a9:3e:40:93:b2: 1d:b6:80:a8:79:22:3c:45:0f:bc:e0:48:ab:ad:48:7e:7d:37: 93:6b:bc:db:d7:d5:ec:ee:62:32:60:9f:30:cf:cb:32:c8:ea: f5:bd:b6:73:db:f3:12:36:5e:e8:5c:ab:bb:5c:c0:af:2f:fe: 4b:2f:9f:a5:e5:ba:9e:81:db:aa:b7:08:8e:37:a4:50:b6:83: fb:51:b9:a3:68:af:2c:5e:50:fd:3c:a4:eb:d8:75:84:b9:2e: fd:e6:82:23 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUUdR2XbovWasLoBEdS3VINXrfNOEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI5MUI3MzNCMUVFRDFBRjdFODE3RDk1OENFNkYxM0E1 ODVGMDY5NTAeFw0yNjA2MzAxNjE0MTVaFw0yNjA3MDExNzQyMTVaMDMxMTAvBgNV BAMTKEZBRDAxOTA3QUIxNkFDRDYzMDQ3NjlFMTkwMEI4QUMzQzY5NkFFMzgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCRbzyqAAhZXfMSqjYuAFzxiJvg /zbrPlB2mR3v9WIXb7SgYpsq9JJwDBpWVqPsrmvum4sgi3ymjlIG+3r+4abZZkpi J/90VsvdoyAGrj1QF3k+u4mCuZnb7bO6zDJW1BoJF/kH8IwQNkLiN2GK7RBnVff/ yIgD1OZJ4lhtCw1H/UmkwqIsl4tF/7lnOjlqN8eMHJ/prIfdEgB7FD+hMh9vYLMC SglueyPdmginchXoicop3r7ZvJ7SZDJ+i2GTx00GczW1fdjyDC7BcxJer2mbufsa LgYsvPhNGCSVvw4aCp+u4m8iFKLNAb/KXZ6StCUOowBP/D08zhGMjHhZrwLJAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQU+tAZB6sWrNYwR2nhkAuKw8aWrjgwHwYDVR0j BBgwFoAUApG3M7Hu0a9+gX2VjObxOlhfBpUwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWkFULzAv MDI5MUI3MzNCMUVFRDFBRjdFODE3RDk1OENFNkYxM0E1ODVGMDY5NS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8wMjkxQjczM0IxRUVEMUFGN0U4MTdEOTU4Q0U2RjEz QTU4NUYwNjk1LmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWkFULzAvMDI5MUI3MzNCMUVFRDFBRjdF ODE3RDk1OENFNkYxM0E1ODVGMDY5NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAMlKEYpn5BXPapJnEsy3 BGcTCXL76dYULiI8FZHxbdO8QkE86YDX7m1mp2wMsw7GLgiw9BVBN/iMMDR15mQ8 u4u1GZ2T89E91QhLdTFXB95Dhd/+1mSryotkPbzDeikre9zQUVFb1sn05fN4HY7Y /lrIzpGVdcRsGZfXOtylJZB5TBMx5mUenQl5mDfV0FH2HCxifDQmhhmVXbJD6LSp PkCTsh22gKh5IjxFD7zgSKutSH59N5NrvNvX1ezuYjJgnzDPyzLI6vW9tnPb8xI2 Xuhcq7tcwK8v/ksvn6Xlup6B26q3CI43pFC2g/tRuaNoryxeUP08pOvYdYS5Lv3m giM= -----END CERTIFICATE-----Generated at Tue Jun 30 19:09:08 2026 by rpki-client