$ rpki-client -vvf rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft File: 0291B733B1EED1AF7E817D958CE6F13A585F0695.mft (raw, json) Hash identifier: C63TfvvtcvzdL8j1k+/i39WzeIfYQTEOMLBWEUMgOX8= Subject key identifier: 96:66:37:2A:99:EA:CE:C2:32:63:D4:F0:17:26:B4:37:7A:EE:30:7A Authority key identifier: 02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 Certificate issuer: /CN=0291B733B1EED1AF7E817D958CE6F13A585F0695 Certificate serial: 2BE5B2E096A20C1EE2CE4C6670C1E1987EF2722F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft Manifest number: 06 Signing time: Wed 13 May 2026 07:07:33 +0000 Manifest this update: Wed 13 May 2026 07:02:33 +0000 Manifest next update: Thu 14 May 2026 08:40:33 +0000 Files and hashes: 1: 0291B733B1EED1AF7E817D958CE6F13A585F0695.crl (hash: 5dUhDHdEBd48p5GaDyVCBtp9mMOMBeVxme6g5M+A0bk=) 2: 3231302e37392e3135302e302f32332d3234203d3e203138303431.roa (hash: XF9vSkheKC1NRFUS3alvj8iCKGl0+/ZaB+X31yisdf0=) 3: 3231302e37392e3135312e302f32342d3234203d3e20323031323137.roa (hash: WRpRpWc9nNYJzvwhsCMAvWKmyMgtn7Z1UBftNahQj4c=) 4: 323430313a353561303a3a2f33322d3332203d3e203138303431.roa (hash: CrzulhqYuNBjNzDQRC8BOsQxP+QuAw4ZbCFe65kH3fw=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.crl rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 08:40:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2b:e5:b2:e0:96:a2:0c:1e:e2:ce:4c:66:70:c1:e1:98:7e:f2:72:2f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0291B733B1EED1AF7E817D958CE6F13A585F0695 Validity Not Before: May 13 07:02:33 2026 GMT Not After : May 14 08:40:33 2026 GMT Subject: CN=9666372A99EACEC23263D4F01726B4377AEE307A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:f3:d8:d7:95:39:e9:66:9d:ff:f6:75:52:b4: f5:1d:50:42:66:39:f5:d2:43:8f:ee:34:c1:97:20: 83:5c:8b:e0:79:4d:69:e0:cf:16:1c:6f:30:62:bd: 38:a7:93:d2:43:28:e9:9a:39:0d:55:86:0a:34:3c: b4:ac:45:8e:7d:45:82:52:e8:a9:3f:b6:2a:93:8a: ca:f2:4e:1c:67:f6:dc:eb:59:a0:d4:e6:b2:a6:6f: 80:1a:b4:91:ab:01:76:12:f5:f5:d5:f1:a0:40:30: a6:5e:e6:fa:2c:a2:ec:70:6f:68:16:8d:71:33:63: f3:86:8a:b3:9a:de:2b:f8:1c:05:af:a2:e3:cb:b1: d1:c7:97:e1:bf:59:1a:01:89:0e:e2:c6:d3:d5:82: 4b:0e:96:2b:c7:53:c1:27:c2:5c:c1:16:1f:ff:d5: ee:07:8c:80:09:32:44:63:b4:f2:bd:f3:f1:6d:46: 4b:22:1e:5f:13:a8:f4:b9:f2:ac:41:5c:4b:b8:8c: ea:ab:d4:c2:b9:73:0b:46:fa:5c:01:60:5a:67:73: f5:dd:1a:ce:6d:b0:33:9b:0f:d4:76:b8:7a:b0:4e: 29:01:ea:61:61:cb:d9:e4:66:13:86:5f:92:e2:68: 33:7e:42:94:fa:35:f9:e2:19:78:ab:95:27:5a:0a: ef:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:66:37:2A:99:EA:CE:C2:32:63:D4:F0:17:26:B4:37:7A:EE:30:7A X509v3 Authority Key Identifier: keyid:02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:e6:8b:f1:bd:a9:3d:70:c8:96:e2:51:d5:ba:a0:96:9a:f8: 0f:93:d0:01:f0:38:1f:35:61:95:bb:e9:66:df:a5:ea:4a:7d: 2f:fb:26:93:4e:48:11:e0:12:84:fd:36:1b:d0:6a:35:a7:dc: d7:7d:1c:2a:f1:6b:89:5e:a3:3b:b3:5b:02:de:17:5d:57:b6: 09:53:9c:c7:87:a2:7f:3d:29:f4:96:f1:6c:3e:d6:fb:34:60: cb:55:4b:33:25:1f:b7:b1:b9:96:24:64:d0:22:51:c3:cf:05: 87:34:11:fa:d0:2b:25:45:71:43:7a:b2:8c:8d:0c:b7:28:79: 90:c6:db:23:cd:c0:23:b7:e3:b3:aa:23:51:97:01:02:bb:03: 33:9c:f8:a1:a4:8b:2f:51:a4:cc:d2:d6:56:fc:bd:d7:af:52: a7:0a:55:66:70:2a:ca:4a:48:e7:ec:3b:d9:45:7d:39:33:96: 5d:dc:db:55:a6:c6:4e:c8:00:0c:0a:d9:96:b6:99:9a:5f:2f: be:87:e6:97:7b:da:83:23:56:f0:df:27:63:a4:00:2b:dd:4f: 46:ad:91:56:ea:73:eb:03:95:e6:e3:f1:0d:52:4c:c9:46:89: aa:4b:69:50:96:a2:a5:02:80:6e:52:4f:37:1b:f1:c7:a3:1c: dd:4b:03:88 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUK+Wy4JaiDB7izkxmcMHhmH7yci8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI5MUI3MzNCMUVFRDFBRjdFODE3RDk1OENFNkYxM0E1 ODVGMDY5NTAeFw0yNjA1MTMwNzAyMzNaFw0yNjA1MTQwODQwMzNaMDMxMTAvBgNV BAMTKDk2NjYzNzJBOTlFQUNFQzIzMjYzRDRGMDE3MjZCNDM3N0FFRTMwN0EwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK89jXlTnpZp3/9nVStPUdUEJm OfXSQ4/uNMGXIINci+B5TWngzxYcbzBivTink9JDKOmaOQ1Vhgo0PLSsRY59RYJS 6Kk/tiqTisryThxn9tzrWaDU5rKmb4AatJGrAXYS9fXV8aBAMKZe5vosouxwb2gW jXEzY/OGirOa3iv4HAWvouPLsdHHl+G/WRoBiQ7ixtPVgksOlivHU8EnwlzBFh// 1e4HjIAJMkRjtPK98/FtRksiHl8TqPS58qxBXEu4jOqr1MK5cwtG+lwBYFpnc/Xd Gs5tsDObD9R2uHqwTikB6mFhy9nkZhOGX5LiaDN+QpT6NfniGXirlSdaCu/LAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUlmY3KpnqzsIyY9TwFya0N3ruMHowHwYDVR0j BBgwFoAUApG3M7Hu0a9+gX2VjObxOlhfBpUwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWkFULzAv MDI5MUI3MzNCMUVFRDFBRjdFODE3RDk1OENFNkYxM0E1ODVGMDY5NS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8wMjkxQjczM0IxRUVEMUFGN0U4MTdEOTU4Q0U2RjEz QTU4NUYwNjk1LmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWkFULzAvMDI5MUI3MzNCMUVFRDFBRjdF ODE3RDk1OENFNkYxM0E1ODVGMDY5NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBADPmi/G9qT1wyJbiUdW6 oJaa+A+T0AHwOB81YZW76WbfpepKfS/7JpNOSBHgEoT9NhvQajWn3Nd9HCrxa4le ozuzWwLeF11XtglTnMeHon89KfSW8Ww+1vs0YMtVSzMlH7exuZYkZNAiUcPPBYc0 EfrQKyVFcUN6soyNDLcoeZDG2yPNwCO347OqI1GXAQK7AzOc+KGkiy9RpMzS1lb8 vdevUqcKVWZwKspKSOfsO9lFfTkzll3c21Wmxk7IAAwK2Za2mZpfL76H5pd72oMj VvDfJ2OkACvdT0atkVbqc+sDlebj8Q1STMlGiapLaVCWoqUCgG5STzcb8cejHN1L A4g= -----END CERTIFICATE-----Generated at Wed May 13 20:33:38 2026 by rpki-client