$ rpki-client -vvf rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft File: 4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft (raw, json) Hash identifier: SIvx+DdJ8983Ba71qGRl1LMz9GkvSMHypEBfGno/uz4= Subject key identifier: 8C:93:05:A8:F3:37:96:91:32:21:3C:2E:51:79:7F:4F:A7:D1:CE:D3 Authority key identifier: 4F:B4:59:5D:86:97:FD:1A:B7:D2:16:DE:07:9E:BA:59:77:36:43:D5 Certificate issuer: /CN=4FB4595D8697FD1AB7D216DE079EBA59773643D5 Certificate serial: 07C2568F35C5DA96E6525C01E0007A8D16521416 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft Manifest number: 2E Signing time: Sat 13 Jun 2026 20:05:23 +0000 Manifest this update: Sat 13 Jun 2026 20:00:23 +0000 Manifest next update: Sun 14 Jun 2026 20:53:23 +0000 Files and hashes: 1: 4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl (hash: 3FCGaOw8fpRIVpaLsVTcdwuf7Pl1P/l6jSsgS4nKqgY=) 2: 3130332e362e3132362e302f32332d3332203d3e20313331313439.roa (hash: lHrkC3JHZwSMosCVLrge69PjEFVk3qgvY9qe4jsf15s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 19:52:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 07:c2:56:8f:35:c5:da:96:e6:52:5c:01:e0:00:7a:8d:16:52:14:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB4595D8697FD1AB7D216DE079EBA59773643D5 Validity Not Before: Jun 13 20:00:23 2026 GMT Not After : Jun 14 20:53:23 2026 GMT Subject: CN=8C9305A8F337969132213C2E51797F4FA7D1CED3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:89:6a:99:bd:0b:cd:7c:93:26:35:e5:8b:70: bd:d2:a6:2d:3c:ba:90:6d:db:fd:e1:df:5d:1b:77: 4a:c9:17:d1:a8:5f:4e:ca:30:db:7d:17:8d:a1:49: ad:97:05:0f:2a:81:d8:1c:33:a0:e8:77:af:a5:05: 78:ed:ec:dc:47:84:e6:76:dc:b6:29:8c:3d:76:0a: 40:de:81:b7:7f:f4:70:40:45:ba:fc:02:1b:da:0c: cc:a2:dd:cc:10:9c:27:52:a8:82:d3:e2:8e:e5:51: f4:75:2a:0c:cd:9f:d7:e3:e2:23:38:cb:8d:99:0a: ea:e7:ad:56:5b:2d:68:7a:5f:c1:78:f9:43:ba:3c: ac:91:31:29:17:35:63:1e:d6:76:6f:05:ae:ae:8d: 60:b9:13:89:96:07:af:3a:53:7c:b8:fc:9e:2c:4f: 65:ee:de:6c:9f:3a:88:28:5b:f9:25:1b:89:ef:01: 91:10:c1:4f:3e:10:22:88:90:09:a6:94:3a:7e:e5: 74:28:81:f7:6e:6c:2d:f3:17:21:90:d4:01:f5:84: 3c:22:ca:5a:09:d9:cf:e5:0d:cf:87:cc:0e:bd:f7: dc:23:cd:b8:ed:80:89:3c:e1:a7:8d:eb:c8:20:1f: 19:33:bd:f8:ce:b0:97:f2:77:3c:5b:bb:54:67:4f: e3:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:93:05:A8:F3:37:96:91:32:21:3C:2E:51:79:7F:4F:A7:D1:CE:D3 X509v3 Authority Key Identifier: keyid:4F:B4:59:5D:86:97:FD:1A:B7:D2:16:DE:07:9E:BA:59:77:36:43:D5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/4FB4595D8697FD1AB7D216DE079EBA59773643D5.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BESTBASIS/0/4FB4595D8697FD1AB7D216DE079EBA59773643D5.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 64:7e:bb:9c:35:b4:32:ca:57:b0:43:c7:44:bc:21:1a:f9:76: c7:27:7f:e3:3c:ef:60:46:9c:f1:9e:45:79:d6:b1:9e:e3:2b: cd:f3:d8:3f:7a:06:0a:e3:44:14:49:5a:82:8a:56:0a:0c:0d: eb:6e:d6:57:8b:72:13:e9:be:d6:16:18:e5:0d:32:71:72:e4: d1:1b:4f:83:aa:92:d5:0a:37:50:44:3c:4d:03:21:6d:06:c1: bf:f4:b7:1b:26:41:e9:86:7f:4e:3b:85:01:0b:7e:72:b5:1f: c3:e0:dc:bd:5d:91:12:79:81:bb:14:df:e4:30:56:cc:52:27: cf:a9:f6:82:73:ba:02:48:dd:d5:ac:ba:68:b4:62:64:c0:19: 78:8b:e8:44:f2:2e:72:e8:5d:c7:cf:c5:5d:37:86:b2:9c:7f: d1:36:80:df:dc:d2:47:f9:41:ea:07:06:70:c5:ca:e0:99:86: ec:76:64:bd:38:f0:bf:48:9d:e7:9a:8b:f8:3c:c1:6d:6c:ca: ba:4a:a0:15:64:b5:e0:d1:f2:a6:4b:a8:9a:9b:8d:d7:84:62: 81:e5:43:98:66:e3:9a:47:fe:81:39:12:02:71:a6:a4:8e:f7: 88:bd:63:c8:42:96:3e:6d:11:28:6f:81:b7:a3:bd:6b:71:35: a8:ba:f3:ef -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUB8JWjzXF2pbmUlwB4AB6jRZSFBYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNEZCNDU5NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3 NzM2NDNENTAeFw0yNjA2MTMyMDAwMjNaFw0yNjA2MTQyMDUzMjNaMDMxMTAvBgNV BAMTKDhDOTMwNUE4RjMzNzk2OTEzMjIxM0MyRTUxNzk3RjRGQTdEMUNFRDMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCkiWqZvQvNfJMmNeWLcL3Spi08 upBt2/3h310bd0rJF9GoX07KMNt9F42hSa2XBQ8qgdgcM6Dod6+lBXjt7NxHhOZ2 3LYpjD12CkDegbd/9HBARbr8AhvaDMyi3cwQnCdSqILT4o7lUfR1KgzNn9fj4iM4 y42ZCurnrVZbLWh6X8F4+UO6PKyRMSkXNWMe1nZvBa6ujWC5E4mWB686U3y4/J4s T2Xu3myfOogoW/klG4nvAZEQwU8+ECKIkAmmlDp+5XQogfdubC3zFyGQ1AH1hDwi yloJ2c/lDc+HzA6999wjzbjtgIk84aeN68ggHxkzvfjOsJfydzxbu1RnT+M3AgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUjJMFqPM3lpEyITwuUXl/T6fRztMwHwYDVR0j BBgwFoAUT7RZXYaX/Rq30hbeB566WXc2Q9UwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkVTVEJB U0lTLzAvNEZCNDU5NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3NzM2NDNENS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS80RkI0NTk1RDg2OTdGRDFBQjdEMjE2REUw NzlFQkE1OTc3MzY0M0Q1LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQkVTVEJBU0lTLzAvNEZCNDU5 NUQ4Njk3RkQxQUI3RDIxNkRFMDc5RUJBNTk3NzM2NDNENS5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAGR+ u5w1tDLKV7BDx0S8IRr5dscnf+M872BGnPGeRXnWsZ7jK83z2D96BgrjRBRJWoKK VgoMDetu1leLchPpvtYWGOUNMnFy5NEbT4OqktUKN1BEPE0DIW0Gwb/0txsmQemG f047hQELfnK1H8Pg3L1dkRJ5gbsU3+QwVsxSJ8+p9oJzugJI3dWsumi0YmTAGXiL 6ETyLnLoXcfPxV03hrKcf9E2gN/c0kf5QeoHBnDFyuCZhux2ZL048L9Ineeai/g8 wW1syrpKoBVkteDR8qZLqJqbjdeEYoHlQ5hm45pH/oE5EgJxpqSO94i9Y8hClj5t EShvgbejvWtxNai68+8= -----END CERTIFICATE-----Generated at Sun Jun 14 04:10:45 2026 by rpki-client