$ rpki-client -vvf rpkica.twnic.tw/rpki/CLOUDNODE/0/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.mft File: E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.mft (raw, json) Hash identifier: pqBb6RU+kCq9gT8xZYBzA9EI3w1hYYYXn/oPNnkz47U= Subject key identifier: 21:6B:D5:7E:D3:0B:3B:00:35:5F:44:B9:CE:A1:43:2B:9F:D2:A9:50 Authority key identifier: E3:82:3D:FE:A2:1F:EF:04:E3:26:9E:B9:AC:C3:BD:AC:1E:38:7E:CB Certificate issuer: /CN=E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB Certificate serial: 5D4424CD35D8CEABCD99FB698765C9769E9C36D7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/CLOUDNODE/0/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.mft Manifest number: 2F Signing time: Fri 12 Jun 2026 19:07:51 +0000 Manifest this update: Fri 12 Jun 2026 19:02:51 +0000 Manifest next update: Sat 13 Jun 2026 22:29:51 +0000 Files and hashes: 1: 3130332e3137352e3136362e302f32332d3234203d3e2037343833.roa (hash: M1t938UdIZV1R1GsREb23xynohkO0qzg0e3CIh+SGGk=) 2: E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.crl (hash: AWtvQCBiOzPGkdmIKBAzOUBuGBU1cqTNFxk6f9foAMM=) 3: 3232332e32362e31302e302f32332d3234203d3e203231383539.roa (hash: KeYIdvmIdFmXoaD7PfpE0neyX1HamQXTrD45lQIfHyQ=) 4: 3232332e32362e31302e302f32332d3234203d3e2037343833.roa (hash: KY91dZeL6/YwGvfBK0FnKFAVL/6EOM1qXx3UNjlNsSo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/CLOUDNODE/0/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.crl rsync://rpkica.twnic.tw/rpki/CLOUDNODE/0/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 22:29:51 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5d:44:24:cd:35:d8:ce:ab:cd:99:fb:69:87:65:c9:76:9e:9c:36:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB Validity Not Before: Jun 12 19:02:51 2026 GMT Not After : Jun 13 22:29:51 2026 GMT Subject: CN=216BD57ED30B3B00355F44B9CEA1432B9FD2A950 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ab:1f:55:a5:e7:b6:da:86:b0:43:a1:fa:b6: 72:92:61:ff:37:18:d3:d5:23:65:28:fc:33:60:fb: 2a:68:17:68:3e:bd:ab:09:3a:c4:f7:74:2b:8c:48: 2a:4c:a7:bb:18:ec:1b:c7:06:62:02:71:a7:1a:05: 27:78:ba:8e:7f:13:07:ce:0f:3a:04:5d:3b:3e:55: 5f:07:4e:01:ba:89:bd:e0:93:01:41:ff:3e:c3:0e: de:85:ca:4a:71:86:62:fd:6a:76:36:23:f8:79:0f: fa:e1:83:95:c8:25:2a:5c:dc:c3:f4:6e:87:c3:3c: 26:df:57:74:d9:30:f9:b0:71:b1:7c:9f:f9:42:a0: 7b:60:7f:ca:1a:85:6a:f2:10:b4:91:3b:a3:e1:f7: cc:09:ae:e7:64:29:e9:34:fe:a4:3d:a2:c6:be:01: ad:14:2e:73:10:0f:ce:a9:7f:5e:68:47:6e:2d:0d: 3b:b4:6e:6b:21:6d:7b:d7:d4:96:5e:c4:d7:10:b0: 6c:48:83:e2:4e:88:53:b3:f7:73:07:ff:38:9c:01: b7:75:b6:f8:68:ec:66:b2:4c:6b:e7:e2:8e:57:0a: 26:00:96:23:0d:03:72:01:e7:db:df:ab:fc:6f:24: f9:a4:d8:c9:c4:2d:4c:44:a1:c3:fa:d0:72:3f:4a: 10:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 21:6B:D5:7E:D3:0B:3B:00:35:5F:44:B9:CE:A1:43:2B:9F:D2:A9:50 X509v3 Authority Key Identifier: keyid:E3:82:3D:FE:A2:1F:EF:04:E3:26:9E:B9:AC:C3:BD:AC:1E:38:7E:CB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/CLOUDNODE/0/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/CLOUDNODE/0/E3823DFEA21FEF04E3269EB9ACC3BDAC1E387ECB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 45:58:9e:90:fb:50:f5:40:86:d0:50:cf:88:d9:0f:b3:0b:90: a3:7b:46:3c:5f:05:16:3e:c6:a9:f2:15:a0:93:41:7e:c5:10: 7b:a7:05:45:e7:12:c1:74:9a:a0:90:8c:e3:4b:9b:45:61:5e: c9:9b:86:9a:e1:ca:6b:0a:72:55:7c:77:7a:fc:ca:f9:b3:be: 56:f2:e1:3c:7c:ac:c5:fd:46:cc:4f:e2:82:00:d2:32:de:b9: 05:4e:99:52:36:e1:b2:f3:00:94:5f:75:37:41:14:21:72:8a: 8f:4a:3c:1d:18:2f:79:3a:c7:0d:9f:04:c9:96:ac:41:d6:4e: 19:0a:fd:c6:38:36:1f:89:41:d3:62:92:15:8c:5d:24:5c:91: b3:d3:71:db:05:95:88:9b:2b:1f:9d:dc:c0:d8:19:38:a8:ba: 41:e6:71:43:40:37:64:d0:d2:0d:63:b4:0d:20:51:0a:90:d0: c2:66:5a:03:9a:1a:eb:b8:21:7c:04:7c:01:67:fd:37:b7:da: 8b:54:3b:0c:cf:d3:40:0a:0f:41:f2:54:58:7e:8d:68:fe:9f: 98:e8:4c:32:6f:88:83:24:0d:d9:49:e3:8f:db:0a:0c:a8:33: ae:f1:df:13:62:8e:5f:78:c7:83:a1:1f:03:dc:b3:b4:07:f8: 36:6b:72:71 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUXUQkzTXYzqvNmftph2XJdp6cNtcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRTM4MjNERkVBMjFGRUYwNEUzMjY5RUI5QUNDM0JEQUMx RTM4N0VDQjAeFw0yNjA2MTIxOTAyNTFaFw0yNjA2MTMyMjI5NTFaMDMxMTAvBgNV BAMTKDIxNkJENTdFRDMwQjNCMDAzNTVGNDRCOUNFQTE0MzJCOUZEMkE5NTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDUqx9Vpee22oawQ6H6tnKSYf83 GNPVI2Uo/DNg+ypoF2g+vasJOsT3dCuMSCpMp7sY7BvHBmICcacaBSd4uo5/EwfO DzoEXTs+VV8HTgG6ib3gkwFB/z7DDt6FykpxhmL9anY2I/h5D/rhg5XIJSpc3MP0 bofDPCbfV3TZMPmwcbF8n/lCoHtgf8oahWryELSRO6Ph98wJrudkKek0/qQ9osa+ Aa0ULnMQD86pf15oR24tDTu0bmshbXvX1JZexNcQsGxIg+JOiFOz93MH/zicAbd1 tvho7GayTGvn4o5XCiYAliMNA3IB59vfq/xvJPmk2MnELUxEocP60HI/ShAhAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIWvVftMLOwA1X0S5zqFDK5/SqVAwHwYDVR0j BBgwFoAU44I9/qIf7wTjJp65rMO9rB44fsswDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVURO T0RFLzAvRTM4MjNERkVBMjFGRUYwNEUzMjY5RUI5QUNDM0JEQUMxRTM4N0VDQi5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9FMzgyM0RGRUEyMUZFRjA0RTMyNjlFQjlB Q0MzQkRBQzFFMzg3RUNCLmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQ0xPVUROT0RFLzAvRTM4MjNE RkVBMjFGRUYwNEUzMjY5RUI5QUNDM0JEQUMxRTM4N0VDQi5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAEVY npD7UPVAhtBQz4jZD7MLkKN7RjxfBRY+xqnyFaCTQX7FEHunBUXnEsF0mqCQjONL m0VhXsmbhprhymsKclV8d3r8yvmzvlby4Tx8rMX9RsxP4oIA0jLeuQVOmVI24bLz AJRfdTdBFCFyio9KPB0YL3k6xw2fBMmWrEHWThkK/cY4Nh+JQdNikhWMXSRckbPT cdsFlYibKx+d3MDYGTioukHmcUNAN2TQ0g1jtA0gUQqQ0MJmWgOaGuu4IXwEfAFn /Te32otUOwzP00AKD0HyVFh+jWj+n5joTDJviIMkDdlJ44/bCgyoM67x3xNijl94 x4OhHwPcs7QH+DZrcnE= -----END CERTIFICATE-----Generated at Sat Jun 13 10:16:29 2026 by rpki-client