$ rpki-client -vvf rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft File: 0CA9C32F7806470F750EC53431D4F322F0851573.mft (raw, json) Hash identifier: CHzkCI+qtB6cEV9QKn1aNEq+SETjoXX6eDnP7x28dUA= Subject key identifier: 0C:7E:BB:7A:56:89:98:18:35:35:B4:A9:1A:38:77:EE:DE:80:C0:21 Authority key identifier: 0C:A9:C3:2F:78:06:47:0F:75:0E:C5:34:31:D4:F3:22:F0:85:15:73 Certificate issuer: /CN=0CA9C32F7806470F750EC53431D4F322F0851573 Certificate serial: 1E77B093E01E04A08C00F6F6D2A14A9E33AFA5CB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer Subject info access: rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft Manifest number: 32 Signing time: Tue 16 Jun 2026 18:50:44 +0000 Manifest this update: Tue 16 Jun 2026 18:45:44 +0000 Manifest next update: Wed 17 Jun 2026 18:51:44 +0000 Files and hashes: 1: 3130332e3132352e3232382e302f32322d3234203d3e2039393139.roa (hash: 38TYeX+oJtOc/DoknBxIqH/fjs1oSmUXDDdootW8reI=) 2: 0CA9C32F7806470F750EC53431D4F322F0851573.crl (hash: 637xyJjmmvv32lkRtbo28zpSX6aN8DyVjI2gwPqb88s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.crl rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 18:51:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:77:b0:93:e0:1e:04:a0:8c:00:f6:f6:d2:a1:4a:9e:33:af:a5:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0CA9C32F7806470F750EC53431D4F322F0851573 Validity Not Before: Jun 16 18:45:44 2026 GMT Not After : Jun 17 18:51:44 2026 GMT Subject: CN=0C7EBB7A568998183535B4A91A3877EEDE80C021 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:7b:9a:fb:e8:12:f8:f4:f0:cd:fd:12:28:e5: 34:33:57:7f:27:3f:ae:70:a6:8a:c6:78:32:36:9d: f3:2e:dd:69:61:1e:af:1b:be:48:5c:5b:62:c2:eb: b2:2c:0e:bf:ac:cf:b2:56:2f:12:4b:02:e2:b3:2c: 25:72:f1:ea:b1:79:01:6e:ce:ec:5b:60:08:15:1e: fc:2d:01:e4:21:69:42:0a:06:90:59:5c:38:70:42: e1:84:59:22:fe:c9:0f:6f:46:fe:00:35:4c:4a:44: 02:b2:30:45:42:0f:e0:c3:83:15:ca:82:a6:5c:69: 4b:ac:38:0b:66:9f:d5:7d:aa:3b:89:3a:2f:0f:83: 11:f8:ca:80:ab:fa:15:8b:32:7f:4c:6a:17:47:e8: 1b:40:fa:78:c8:1e:ee:a4:b2:96:3a:5c:95:95:60: 85:d3:55:ca:93:cb:16:10:b4:62:80:b4:9f:87:95: 83:aa:66:6a:4b:2e:bd:52:44:29:e3:29:32:70:27: aa:22:8e:f7:2b:7c:61:d6:c7:a1:3a:8d:25:dd:0a: 5f:90:49:e3:18:ec:c5:94:d9:aa:36:1b:f2:33:2b: 7f:c0:a7:68:3b:66:0f:db:4c:26:e3:2d:55:0e:b7: fe:58:c4:16:cd:30:57:6d:8d:20:ee:a1:60:80:dc: 2a:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0C:7E:BB:7A:56:89:98:18:35:35:B4:A9:1A:38:77:EE:DE:80:C0:21 X509v3 Authority Key Identifier: keyid:0C:A9:C3:2F:78:06:47:0F:75:0E:C5:34:31:D4:F3:22:F0:85:15:73 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0CA9C32F7806470F750EC53431D4F322F0851573.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/BOOKS/0/0CA9C32F7806470F750EC53431D4F322F0851573.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption d3:1c:e4:bc:db:cd:15:59:f1:e5:98:fd:26:c8:27:9a:61:b8: 74:f4:80:8d:1c:d2:a0:8b:84:66:38:33:c5:66:b7:02:de:53: d0:28:e1:b5:06:ef:e4:61:db:16:3c:96:26:03:99:87:01:34: 7b:0a:45:b8:9a:8e:0a:3d:9a:7e:3b:e3:05:1b:07:ba:77:52: 38:c3:f4:f3:3c:25:37:6f:0b:da:43:2c:6f:02:3f:ab:ca:03: 52:f4:05:40:f1:b3:39:be:13:a4:a3:29:b4:c7:66:41:34:ab: da:28:15:63:bd:c1:06:29:a3:b6:e5:e0:c0:bf:a1:31:a5:d0: b0:31:2b:15:92:42:5a:10:85:44:08:cd:10:e1:53:db:da:74: 60:13:10:3d:96:8d:9a:b9:29:73:19:f5:27:59:e6:85:98:06: a4:eb:9d:3b:9f:b4:ff:69:ad:58:4f:e8:91:5b:0e:d6:f2:46: 19:af:03:2e:02:83:4f:36:01:ff:cd:0a:2e:a6:d6:b8:51:9f: 1c:55:16:88:1b:a9:91:c4:d0:9e:c2:77:18:6a:dd:9e:cc:f4: 3e:5f:f1:af:6a:a7:c3:1f:0c:cb:1a:29:12:d7:4e:f9:a0:f6: b0:31:ab:2f:3f:ce:3a:c3:38:cc:09:25:b8:ff:eb:2b:9d:30: a2:b1:2d:6f -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUHnewk+AeBKCMAPb20qFKnjOvpcswDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMENBOUMzMkY3ODA2NDcwRjc1MEVDNTM0MzFENEYzMjJG MDg1MTU3MzAeFw0yNjA2MTYxODQ1NDRaFw0yNjA2MTcxODUxNDRaMDMxMTAvBgNV BAMTKDBDN0VCQjdBNTY4OTk4MTgzNTM1QjRBOTFBMzg3N0VFREU4MEMwMjEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCde5r76BL49PDN/RIo5TQzV38n P65wporGeDI2nfMu3WlhHq8bvkhcW2LC67IsDr+sz7JWLxJLAuKzLCVy8eqxeQFu zuxbYAgVHvwtAeQhaUIKBpBZXDhwQuGEWSL+yQ9vRv4ANUxKRAKyMEVCD+DDgxXK gqZcaUusOAtmn9V9qjuJOi8PgxH4yoCr+hWLMn9MahdH6BtA+njIHu6kspY6XJWV YIXTVcqTyxYQtGKAtJ+HlYOqZmpLLr1SRCnjKTJwJ6oijvcrfGHWx6E6jSXdCl+Q SeMY7MWU2ao2G/IzK3/Ap2g7Zg/bTCbjLVUOt/5YxBbNMFdtjSDuoWCA3CqLAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUDH67elaJmBg1NbSpGjh37t6AwCEwHwYDVR0j BBgwFoAUDKnDL3gGRw91DsU0MdTzIvCFFXMwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQk9PS1Mv MC8wQ0E5QzMyRjc4MDY0NzBGNzUwRUM1MzQzMUQ0RjMyMkYwODUxNTczLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzBDQTlDMzJGNzgwNjQ3MEY3NTBFQzUzNDMxRDRG MzIyRjA4NTE1NzMuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9CT09LUy8wLzBDQTlDMzJGNzgwNjQ3 MEY3NTBFQzUzNDMxRDRGMzIyRjA4NTE1NzMubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDTHOS8280VWfHl mP0myCeaYbh09ICNHNKgi4RmODPFZrcC3lPQKOG1Bu/kYdsWPJYmA5mHATR7CkW4 mo4KPZp+O+MFGwe6d1I4w/TzPCU3bwvaQyxvAj+rygNS9AVA8bM5vhOkoym0x2ZB NKvaKBVjvcEGKaO25eDAv6ExpdCwMSsVkkJaEIVECM0Q4VPb2nRgExA9lo2auSlz GfUnWeaFmAak6507n7T/aa1YT+iRWw7W8kYZrwMuAoNPNgH/zQoupta4UZ8cVRaI G6mRxNCewncYat2ezPQ+X/GvaqfDHwzLGikS1075oPawMasvP846wzjMCSW4/+sr nTCisS1v -----END CERTIFICATE-----Generated at Wed Jun 17 09:27:29 2026 by rpki-client