$ rpki-client -vvf rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft File: 21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft (raw, json) Hash identifier: Cbhh/ft0LnhaxDR8yv+thgEpWiPjjDVV2oeXbd31Lu4= Subject key identifier: BF:51:3B:3C:D4:CC:A6:56:8E:90:34:0D:49:3B:28:E7:F2:A0:D7:10 Authority key identifier: 21:DB:FD:19:21:12:1F:73:0C:61:4C:0D:E6:21:2C:D6:94:9C:D5:AF Certificate issuer: /CN=21DBFD1921121F730C614C0DE6212CD6949CD5AF Certificate serial: 68269682BE9428879061C6328669A91BE8627B25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21DBFD1921121F730C614C0DE6212CD6949CD5AF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft Manifest number: 32 Signing time: Sat 13 Jun 2026 03:08:49 +0000 Manifest this update: Sat 13 Jun 2026 03:03:49 +0000 Manifest next update: Sun 14 Jun 2026 04:19:49 +0000 Files and hashes: 1: 323430313a636436303a3a2f34302d3430203d3e20323134303330.roa (hash: 780V3DLt+Fe7Fs8V4ULwUWJozzo56xPXySO9+JGJ2W8=) 2: 21DBFD1921121F730C614C0DE6212CD6949CD5AF.crl (hash: I/f3skcMg6afiAHR2KEg/qzYAXx8HLx0/NpghRBedAY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.crl rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21DBFD1921121F730C614C0DE6212CD6949CD5AF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 68:26:96:82:be:94:28:87:90:61:c6:32:86:69:a9:1b:e8:62:7b:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=21DBFD1921121F730C614C0DE6212CD6949CD5AF Validity Not Before: Jun 13 03:03:49 2026 GMT Not After : Jun 14 04:19:49 2026 GMT Subject: CN=BF513B3CD4CCA6568E90340D493B28E7F2A0D710 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:f3:62:0b:31:bb:35:af:e8:ec:36:d8:c3:57: 73:63:99:73:04:a1:62:bb:c2:bc:eb:ea:2e:c3:39: 9c:c1:fc:b5:70:ab:e2:4f:9e:50:fc:d6:d9:b8:0e: a2:32:32:be:81:51:36:ba:1e:3f:e0:ea:0e:1c:53: c4:34:4f:ce:4a:33:18:98:cc:71:4d:45:4c:d5:29: 85:46:38:5a:35:4d:61:41:cb:32:11:58:5b:d5:87: 04:05:3c:28:e8:c5:30:8d:62:eb:e9:c9:c3:57:56: 5f:2d:04:0e:f5:c6:34:13:d6:a0:e1:2c:f8:9e:80: c7:cc:71:37:f8:e5:1b:22:a0:24:01:e6:22:86:cb: fc:4d:f2:88:4a:d0:87:bc:bf:21:d0:4a:2c:73:fc: a1:87:6b:cd:7b:d6:6f:4c:c5:5a:e7:55:cd:2f:0c: 98:29:5b:7e:a2:09:45:a6:57:c5:23:b4:c8:04:3b: 36:cc:7a:cb:38:1c:2a:33:4a:af:28:ac:57:58:95: 8a:6e:2c:59:02:9d:e1:95:3f:87:db:11:69:70:d8: e2:fd:23:fd:9d:ea:3a:fe:c5:2c:01:65:2c:5f:1b: a0:42:31:9b:15:f5:55:c0:b3:63:9a:00:90:54:8e: ad:cc:45:92:cd:cf:a9:e5:6b:34:71:f0:de:88:a3: 96:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:51:3B:3C:D4:CC:A6:56:8E:90:34:0D:49:3B:28:E7:F2:A0:D7:10 X509v3 Authority Key Identifier: keyid:21:DB:FD:19:21:12:1F:73:0C:61:4C:0D:E6:21:2C:D6:94:9C:D5:AF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/21DBFD1921121F730C614C0DE6212CD6949CD5AF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CATHDD/0/21DBFD1921121F730C614C0DE6212CD6949CD5AF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 6b:6a:24:ef:6c:91:ab:52:27:d3:c4:32:df:28:6f:60:13:ba: 51:5d:df:cb:c1:98:82:b1:18:c2:83:15:ea:6c:02:39:78:d1: d7:80:e3:05:39:33:72:68:0d:ff:06:da:5e:91:de:2e:25:30: e7:15:9f:5e:97:f9:a7:b7:e1:20:b9:28:1e:64:f6:86:26:ef: 12:c9:e9:bb:a7:05:34:52:8f:75:91:b4:62:8b:5b:b8:79:6f: d9:7a:99:a8:4a:ea:b0:05:fb:fd:06:3b:c3:34:df:c8:e2:1a: e1:3c:cf:d5:97:41:c4:2e:5e:80:11:1f:ad:48:30:52:72:3b: ae:78:18:f1:39:10:28:cd:88:34:f3:2f:2f:bb:7a:bb:e1:f0: 70:cb:48:53:66:15:43:ff:c1:07:8f:a7:30:0a:5f:3a:70:3e: 01:02:94:56:46:88:d5:5b:2f:5f:81:59:63:aa:d5:c4:3e:d1: 83:ac:47:b3:b6:43:0d:7b:34:2c:89:60:a6:0a:71:68:7d:ec: 92:02:24:45:68:e5:e6:76:c4:cf:55:83:d9:8b:9e:73:4b:53: 4e:39:49:83:1f:9b:a4:99:15:0a:f9:24:c8:df:50:30:7b:81: 13:68:3e:bb:44:13:45:d3:60:4b:28:91:2e:2e:e9:73:51:d9: df:cb:bc:31 -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUaCaWgr6UKIeQYcYyhmmpG+hieyUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjFEQkZEMTkyMTEyMUY3MzBDNjE0QzBERTYyMTJDRDY5 NDlDRDVBRjAeFw0yNjA2MTMwMzAzNDlaFw0yNjA2MTQwNDE5NDlaMDMxMTAvBgNV BAMTKEJGNTEzQjNDRDRDQ0E2NTY4RTkwMzQwRDQ5M0IyOEU3RjJBMEQ3MTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCx82ILMbs1r+jsNtjDV3NjmXME oWK7wrzr6i7DOZzB/LVwq+JPnlD81tm4DqIyMr6BUTa6Hj/g6g4cU8Q0T85KMxiY zHFNRUzVKYVGOFo1TWFByzIRWFvVhwQFPCjoxTCNYuvpycNXVl8tBA71xjQT1qDh LPiegMfMcTf45RsioCQB5iKGy/xN8ohK0Ie8vyHQSixz/KGHa8171m9MxVrnVc0v DJgpW36iCUWmV8UjtMgEOzbMess4HCozSq8orFdYlYpuLFkCneGVP4fbEWlw2OL9 I/2d6jr+xSwBZSxfG6BCMZsV9VXAs2OaAJBUjq3MRZLNz6nlazRx8N6Io5ZdAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUv1E7PNTMplaOkDQNSTso5/Kg1xAwHwYDVR0j BBgwFoAUIdv9GSESH3MMYUwN5iEs1pSc1a8wDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FUSERE LzAvMjFEQkZEMTkyMTEyMUY3MzBDNjE0QzBERTYyMTJDRDY5NDlDRDVBRi5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS8yMURCRkQxOTIxMTIxRjczMEM2MTRDMERFNjIx MkNENjk0OUNENUFGLmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0FUSERELzAvMjFEQkZEMTkyMTEy MUY3MzBDNjE0QzBERTYyMTJDRDY5NDlDRDVBRi5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAGtqJO9skatS J9PEMt8ob2ATulFd38vBmIKxGMKDFepsAjl40deA4wU5M3JoDf8G2l6R3i4lMOcV n16X+ae34SC5KB5k9oYm7xLJ6bunBTRSj3WRtGKLW7h5b9l6mahK6rAF+/0GO8M0 38jiGuE8z9WXQcQuXoARH61IMFJyO654GPE5ECjNiDTzLy+7ervh8HDLSFNmFUP/ wQePpzAKXzpwPgEClFZGiNVbL1+BWWOq1cQ+0YOsR7O2Qw17NCyJYKYKcWh97JIC JEVo5eZ2xM9Vg9mLnnNLU045SYMfm6SZFQr5JMjfUDB7gRNoPrtEE0XTYEsokS4u 6XNR2d/LvDE= -----END CERTIFICATE-----Generated at Sat Jun 13 10:16:22 2026 by rpki-client