$ rpki-client -vvf rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft File: CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft (raw, json) Hash identifier: lBZ8esV+lFKcyudpHtkdsUlMP5MhyFEIwOb6PDIfa3o= Subject key identifier: E7:4D:2D:57:58:44:FB:5E:D0:C2:FE:71:91:10:E6:D5:C8:78:3B:42 Authority key identifier: CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD Certificate issuer: /CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD Certificate serial: 6B3AC5DDD354087F77BE264D1F21EEBB13523AD7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft Manifest number: 30 Signing time: Sat 13 Jun 2026 06:04:12 +0000 Manifest this update: Sat 13 Jun 2026 05:59:12 +0000 Manifest next update: Sun 14 Jun 2026 09:05:12 +0000 Files and hashes: 1: 3130332e3132332e3138392e302f32342d3234203d3e2039393234.roa (hash: ehfoOrBXE/RYfQPRqQV54VXyN1X6HRTFxmEyqkWRtOI=) 2: CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl (hash: IOoURuDyHiPneZOCxyjCAV9OADIq6NEojBUSDgUsN6I=) 3: 3130332e3132332e3138382e302f32342d3234203d3e203138303432.roa (hash: VGG3iALCYmsIo1frTwJ57vcG6Z53Cw4xXzO8I+lKQrc=) 4: 3130332e3132332e3139302e302f32342d3234203d3e2039393234.roa (hash: MkYfWxcvdtrJJbnLts1+66GKlU7GZ8ty9L0jiRzo53o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6b:3a:c5:dd:d3:54:08:7f:77:be:26:4d:1f:21:ee:bb:13:52:3a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CE5A8100BA0994A2B807F5F4FB741C528EEACCDD Validity Not Before: Jun 13 05:59:12 2026 GMT Not After : Jun 14 09:05:12 2026 GMT Subject: CN=E74D2D575844FB5ED0C2FE719110E6D5C8783B42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:f4:f9:b9:13:32:42:af:2f:19:d2:ad:6b:49: d4:26:4f:a1:be:2a:93:5c:16:e7:6c:9b:82:bc:51: c9:32:c6:13:84:8b:48:22:9e:89:35:7d:73:70:75: c4:e2:31:28:4a:10:8c:77:d5:55:54:14:3b:ef:d2: d9:6f:41:38:54:9b:91:2a:5c:d8:db:89:25:a2:cf: bc:d8:f9:15:64:76:7b:bd:0f:d2:ec:da:ba:b0:d0: 82:0e:53:7d:47:85:03:47:32:87:62:64:0a:ea:38: 83:a0:f0:e7:3c:67:67:a9:16:b9:01:0b:47:eb:a1: b3:e1:cd:9b:86:da:06:50:55:1f:c7:a9:41:c2:eb: 00:06:21:9d:01:2c:bc:10:82:4b:51:34:21:96:9c: 12:83:e3:1e:ba:df:a3:ee:f0:c9:3f:51:e9:91:c3: c3:25:71:b0:1f:96:80:82:71:85:89:b6:46:3a:92: 51:50:e1:45:ba:d7:9f:3c:47:b7:15:20:70:44:f6: d4:bc:fd:ee:f3:2c:e3:75:24:a7:02:4e:bd:78:7d: 94:38:11:16:55:ca:51:2f:cc:e8:8f:16:79:68:21: f0:8e:ee:b2:1a:c1:b6:d5:fb:c8:6b:a2:b7:da:53: 55:76:ed:f2:be:a4:21:a1:57:b7:79:9f:9b:6d:6a: 2e:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:4D:2D:57:58:44:FB:5E:D0:C2:FE:71:91:10:E6:D5:C8:78:3B:42 X509v3 Authority Key Identifier: keyid:CE:5A:81:00:BA:09:94:A2:B8:07:F5:F4:FB:74:1C:52:8E:EA:CC:DD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CHINALIFE/0/CE5A8100BA0994A2B807F5F4FB741C528EEACCDD.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 2f:4a:2a:d1:68:d8:25:ba:03:8d:c2:33:ef:eb:dd:aa:4d:f6: b1:45:89:17:11:fb:62:9e:07:33:d9:6d:30:52:41:1f:e0:69: c8:c1:a4:27:f8:8a:16:7c:bb:27:7b:0d:06:26:5f:fe:c7:ed: 46:c7:7f:d9:e8:ec:57:b0:47:85:5d:59:36:f7:45:12:8e:71: 58:5f:db:ea:b8:0e:fd:3f:16:8a:85:53:3f:b4:b9:ed:1d:c0: 10:c7:c4:4c:92:21:2c:a7:43:7b:c9:90:88:45:a3:19:0b:6b: bb:f8:00:d6:14:c9:0a:41:e2:c8:36:65:dc:1a:af:b9:94:11: 68:4e:53:c6:f6:6c:48:99:34:95:33:3a:f3:02:5b:b9:12:a7: 24:df:e5:17:fa:26:4d:e7:3d:56:d3:95:6b:8c:18:39:03:d3: 1e:da:54:c8:04:fb:42:84:fe:03:b2:05:7f:10:14:8e:4b:2c: 81:eb:75:a9:c9:c0:a0:c4:f1:36:a7:6c:d2:6c:82:af:bd:75: 89:ee:b8:00:eb:52:69:27:09:78:4d:c3:b4:6e:0f:3b:53:02: 96:c7:49:26:3c:10:86:86:1d:8d:44:70:ad:ce:6d:65:3d:ca: 66:11:ec:b0:c1:f7:4f:63:6d:9f:90:96:ed:70:33:a3:7e:a7: 0e:7e:a1:7b -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUazrF3dNUCH93viZNHyHuuxNSOtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0U1QTgxMDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4 RUVBQ0NERDAeFw0yNjA2MTMwNTU5MTJaFw0yNjA2MTQwOTA1MTJaMDMxMTAvBgNV BAMTKEU3NEQyRDU3NTg0NEZCNUVEMEMyRkU3MTkxMTBFNkQ1Qzg3ODNCNDIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCp9Pm5EzJCry8Z0q1rSdQmT6G+ KpNcFudsm4K8UckyxhOEi0ginok1fXNwdcTiMShKEIx31VVUFDvv0tlvQThUm5Eq XNjbiSWiz7zY+RVkdnu9D9Ls2rqw0IIOU31HhQNHModiZArqOIOg8Oc8Z2epFrkB C0frobPhzZuG2gZQVR/HqUHC6wAGIZ0BLLwQgktRNCGWnBKD4x6636Pu8Mk/UemR w8MlcbAfloCCcYWJtkY6klFQ4UW61588R7cVIHBE9tS8/e7zLON1JKcCTr14fZQ4 ERZVylEvzOiPFnloIfCO7rIawbbV+8hrorfaU1V27fK+pCGhV7d5n5ttai5dAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQU500tV1hE+17Qwv5xkRDm1ch4O0IwHwYDVR0j BBgwFoAUzlqBALoJlKK4B/X0+3QcUo7qzN0wDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFM SUZFLzAvQ0U1QTgxMDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4RUVBQ0NERC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9DRTVBODEwMEJBMDk5NEEyQjgwN0Y1RjRG Qjc0MUM1MjhFRUFDQ0RELmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0hJTkFMSUZFLzAvQ0U1QTgx MDBCQTA5OTRBMkI4MDdGNUY0RkI3NDFDNTI4RUVBQ0NERC5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAC9K KtFo2CW6A43CM+/r3apN9rFFiRcR+2KeBzPZbTBSQR/gacjBpCf4ihZ8uyd7DQYm X/7H7UbHf9no7FewR4VdWTb3RRKOcVhf2+q4Dv0/FoqFUz+0ue0dwBDHxEySISyn Q3vJkIhFoxkLa7v4ANYUyQpB4sg2Zdwar7mUEWhOU8b2bEiZNJUzOvMCW7kSpyTf 5Rf6Jk3nPVbTlWuMGDkD0x7aVMgE+0KE/gOyBX8QFI5LLIHrdanJwKDE8TanbNJs gq+9dYnuuADrUmknCXhNw7RuDztTApbHSSY8EIaGHY1EcK3ObWU9ymYR7LDB909j bZ+Qlu1wM6N+pw5+oXs= -----END CERTIFICATE-----Generated at Sat Jun 13 11:28:30 2026 by rpki-client