$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft File: BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft (raw, json) Hash identifier: MHjx2rRaG28f4P8WdI3DSmB9iF7TvK3wnYRoHF7Plq4= Subject key identifier: 10:47:11:EE:F3:88:C3:A4:06:64:CB:BF:FF:A9:F3:40:83:8F:C7:E8 Authority key identifier: BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA Certificate issuer: /CN=BED725C413C7A436F5A200F207F3CB3A7A9E05DA Certificate serial: 13659C63A19C7AFDD4C28434D6CE00F5426D9028 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft Manifest number: 35 Signing time: Sat 13 Jun 2026 00:58:35 +0000 Manifest this update: Sat 13 Jun 2026 00:53:35 +0000 Manifest next update: Sun 14 Jun 2026 04:35:35 +0000 Files and hashes: 1: 323430323a346432303a313a3a2f34382d3438203d3e20313331363533.roa (hash: X9wIzhuw1c0lYPQ7mtcEb2gQt9tzHi6f24KHdsIqRUI=) 2: BED725C413C7A436F5A200F207F3CB3A7A9E05DA.crl (hash: FeD4nOJMAcq0pFf38iibZ8v3dJxl3EnlyLtXHm7oODQ=) 3: 323430323a346432303a3a2f34382d3438203d3e20323133343330.roa (hash: yXLG5aJYFzJQAOcQmz7saI6BueUDkIVJ2tp9ey7Y/oo=) 4: 323430323a346432303a3a2f34382d3438203d3e20313532363236.roa (hash: gWGrH7k/E1wfVhOhIGsZWVZwwwOvXG8dp1buitprMVE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.crl rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13:65:9c:63:a1:9c:7a:fd:d4:c2:84:34:d6:ce:00:f5:42:6d:90:28 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BED725C413C7A436F5A200F207F3CB3A7A9E05DA Validity Not Before: Jun 13 00:53:35 2026 GMT Not After : Jun 14 04:35:35 2026 GMT Subject: CN=104711EEF388C3A40664CBBFFFA9F340838FC7E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:87:6d:e3:17:8c:32:b5:3c:e2:c4:e8:cc:12: bd:06:d0:5d:f4:b1:f5:aa:b7:d0:35:d9:cf:2b:54: 59:2a:6e:b7:4c:12:63:74:e0:77:14:33:0c:0d:cc: 4e:c5:04:f2:18:fd:34:a9:31:af:50:ac:95:3a:9a: 4a:10:28:49:31:35:97:c8:29:f8:1f:45:8e:53:1d: 7b:84:3b:90:59:30:1e:10:ae:71:51:0a:0b:5d:2d: 90:7e:fa:1d:ab:ea:9e:f8:d7:42:7c:1f:f3:5f:da: c0:8b:7c:de:0d:07:9b:c9:1d:28:80:76:99:4a:a8: 65:c9:08:17:ee:4f:fc:52:01:a9:ff:0d:52:a1:cf: 24:1e:57:71:33:a4:32:29:a8:1c:15:7c:72:a5:4f: 27:d9:da:14:c1:b3:e3:df:d5:47:42:4b:f0:6f:97: 01:6b:f1:81:40:ef:3f:c8:a5:16:6f:58:e9:e8:01: 33:da:c3:e8:6a:0d:03:cc:55:d1:27:80:fd:76:08: 77:a6:30:13:5b:cc:62:76:1b:0d:b6:a3:54:ec:d6: 60:3f:48:9c:c4:f4:db:18:85:b6:c2:97:e1:84:c8: e1:ab:63:85:e9:6e:b3:c3:f2:51:b0:17:c3:76:94: 5e:2a:fc:48:05:54:f2:10:7d:2d:ad:c0:1c:36:30: d4:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:47:11:EE:F3:88:C3:A4:06:64:CB:BF:FF:A9:F3:40:83:8F:C7:E8 X509v3 Authority Key Identifier: keyid:BE:D7:25:C4:13:C7:A4:36:F5:A2:00:F2:07:F3:CB:3A:7A:9E:05:DA X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDBASE/0/BED725C413C7A436F5A200F207F3CB3A7A9E05DA.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 58:e6:7c:fd:4f:94:b2:38:d1:7a:26:e1:7f:61:74:8d:25:92: 57:8b:88:77:d6:3f:47:14:3d:d1:d9:2c:56:4b:7a:1e:24:e3: 0c:f9:b8:be:b4:93:d3:0b:b7:d1:c0:08:67:ff:6b:3e:db:21: bc:4e:1a:89:bb:42:1c:1a:c7:3c:1c:97:1e:3e:39:3e:62:5e: d7:66:f5:10:da:c5:4b:86:d7:af:42:bb:7f:7b:c3:37:e3:6e: e6:ca:40:32:9b:63:e5:23:9a:40:68:d2:57:1b:46:e2:de:9b: 80:61:2d:05:e3:62:56:42:44:43:aa:0b:ed:3a:c9:98:75:b4: 8d:dc:9a:d5:dc:d7:53:23:5f:98:db:26:38:09:10:ae:f1:12: 6d:76:99:b8:1b:10:21:bd:07:ed:7f:3d:3f:19:30:a7:39:ea: 7f:5e:96:a2:33:6b:20:b7:8d:32:d6:29:f7:b3:89:6f:71:56: f7:35:c6:97:69:8c:62:0c:b3:36:7e:e2:08:09:3c:81:e7:c9: 79:ea:be:b7:ba:c7:2f:b2:97:0d:78:b9:da:54:4d:a9:c5:7a: 08:ba:98:33:2d:93:f9:55:f3:ea:07:c9:b4:e4:5a:46:72:bd: 89:7a:62:4d:c6:65:18:fc:94:1f:d1:e6:d0:70:4c:e6:b9:29: a8:3a:08:fa -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUE2WcY6Gcev3UwoQ01s4A9UJtkCgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkVENzI1QzQxM0M3QTQzNkY1QTIwMEYyMDdGM0NCM0E3 QTlFMDVEQTAeFw0yNjA2MTMwMDUzMzVaFw0yNjA2MTQwNDM1MzVaMDMxMTAvBgNV BAMTKDEwNDcxMUVFRjM4OEMzQTQwNjY0Q0JCRkZGQTlGMzQwODM4RkM3RTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzh23jF4wytTzixOjMEr0G0F30 sfWqt9A12c8rVFkqbrdMEmN04HcUMwwNzE7FBPIY/TSpMa9QrJU6mkoQKEkxNZfI KfgfRY5THXuEO5BZMB4QrnFRCgtdLZB++h2r6p7410J8H/Nf2sCLfN4NB5vJHSiA dplKqGXJCBfuT/xSAan/DVKhzyQeV3EzpDIpqBwVfHKlTyfZ2hTBs+Pf1UdCS/Bv lwFr8YFA7z/IpRZvWOnoATPaw+hqDQPMVdEngP12CHemMBNbzGJ2Gw22o1Ts1mA/ SJzE9NsYhbbCl+GEyOGrY4XpbrPD8lGwF8N2lF4q/EgFVPIQfS2twBw2MNRlAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUEEcR7vOIw6QGZMu//6nzQIOPx+gwHwYDVR0j BBgwFoAUvtclxBPHpDb1ogDyB/PLOnqeBdowDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURC QVNFLzAvQkVENzI1QzQxM0M3QTQzNkY1QTIwMEYyMDdGM0NCM0E3QTlFMDVEQS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9CRUQ3MjVDNDEzQzdBNDM2RjVBMjAwRjIw N0YzQ0IzQTdBOUUwNURBLmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURCQVNFLzAvQkVENzI1 QzQxM0M3QTQzNkY1QTIwMEYyMDdGM0NCM0E3QTlFMDVEQS5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAFjm fP1PlLI40Xom4X9hdI0lkleLiHfWP0cUPdHZLFZLeh4k4wz5uL60k9MLt9HACGf/ az7bIbxOGom7Qhwaxzwclx4+OT5iXtdm9RDaxUuG169Cu397wzfjbubKQDKbY+Uj mkBo0lcbRuLem4BhLQXjYlZCREOqC+06yZh1tI3cmtXc11MjX5jbJjgJEK7xEm12 mbgbECG9B+1/PT8ZMKc56n9elqIzayC3jTLWKfeziW9xVvc1xpdpjGIMszZ+4ggJ PIHnyXnqvre6xy+ylw14udpUTanFegi6mDMtk/lV8+oHybTkWkZyvYl6Yk3GZRj8 lB/R5tBwTOa5Kag6CPo= -----END CERTIFICATE-----Generated at Sat Jun 13 10:16:29 2026 by rpki-client