$ rpki-client -vvf rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft File: A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft (raw, json) Hash identifier: GVrITV9qiqEbJr+9z8oT7ozps+A0xcygriyS9dorCEQ= Subject key identifier: 0F:6F:A6:86:FB:F7:09:C6:F6:16:CA:06:98:01:1B:74:37:D7:03:A4 Authority key identifier: A0:67:A9:5C:B7:88:29:38:BA:5E:E0:BF:9E:47:C2:E0:30:ED:F6:FB Certificate issuer: /CN=A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB Certificate serial: 0F72542F835F845BF05D0675B04E99D8071FF4B0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft Manifest number: 2D Signing time: Sat 13 Jun 2026 09:09:32 +0000 Manifest this update: Sat 13 Jun 2026 09:04:32 +0000 Manifest next update: Sun 14 Jun 2026 11:18:32 +0000 Files and hashes: 1: A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl (hash: x0Uni3QjftRx6Z2qUIeb1aZtSguUB5s6kCcyz6ZTteU=) 2: 3130332e3131382e3134382e302f32332d3332203d3e20313331313439.roa (hash: 37E46pfPxEq9A4RxL1D37D3fAAtA0Gnx6vMhsNaTo4A=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 11:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:72:54:2f:83:5f:84:5b:f0:5d:06:75:b0:4e:99:d8:07:1f:f4:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB Validity Not Before: Jun 13 09:04:32 2026 GMT Not After : Jun 14 11:18:32 2026 GMT Subject: CN=0F6FA686FBF709C6F616CA0698011B7437D703A4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:96:cc:07:b3:7d:f2:27:2f:1d:5f:7b:12:f0: dc:b9:ae:77:a1:54:6e:8e:07:0d:79:61:83:11:5b: f8:46:ae:cd:e3:e5:de:cd:4a:f9:9e:c1:60:5e:d2: 55:b2:a2:81:5a:99:fd:d3:17:c8:2a:62:93:37:e2: 68:d3:c5:34:8a:20:71:a8:97:f3:dc:d0:d0:55:e6: 0a:a9:13:4b:45:ac:65:e2:09:6a:f3:da:e4:be:36: 38:4e:ce:02:22:9b:aa:9b:93:02:08:b6:48:3b:9f: 44:5c:0e:bf:e2:f9:11:e1:4a:a2:ff:7c:89:bc:6b: 1c:23:70:27:b9:96:8a:97:98:c0:5a:12:f8:f7:02: 4a:71:c2:ca:7c:bf:3e:93:fa:65:ab:81:f2:b4:ae: 07:27:da:95:62:a0:6b:4f:a9:e5:17:0c:d6:02:9e: 27:fe:cc:10:34:ce:43:43:21:a2:2d:5c:1d:ea:5a: 2d:90:78:66:62:86:a0:d0:ee:9c:a5:c5:95:60:17: 76:6a:cc:f3:4e:b7:00:ed:f0:ad:54:aa:02:84:cf: c0:ac:7b:44:5b:10:5d:51:9d:50:f7:fc:bd:54:2d: 5c:f8:41:34:62:d0:a7:5e:ef:60:4d:c5:57:0c:bd: e3:ea:2d:01:15:18:d3:f4:b1:31:06:f0:d3:4c:2f: 0c:53 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:6F:A6:86:FB:F7:09:C6:F6:16:CA:06:98:01:1B:74:37:D7:03:A4 X509v3 Authority Key Identifier: keyid:A0:67:A9:5C:B7:88:29:38:BA:5E:E0:BF:9E:47:C2:E0:30:ED:F6:FB X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DOWNWIN/0/A067A95CB7882938BA5EE0BF9E47C2E030EDF6FB.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 9e:af:8d:67:43:ac:67:47:1c:4e:1c:63:ff:0e:5d:d6:55:12: f9:38:da:31:38:32:b2:1b:06:17:88:dd:0d:18:46:35:b7:0d: b0:d6:54:f0:27:a0:de:55:72:57:04:0d:35:64:30:bd:2b:31: a9:5f:c1:11:fd:20:b8:b2:33:d1:00:e7:9a:dd:f4:83:d9:2e: 71:d8:4a:d2:d9:8f:2f:7c:35:c5:b7:dd:a0:61:4d:0d:d2:76: fd:eb:11:56:b0:96:85:17:81:fe:06:e3:bb:3a:e9:4e:6e:be: 0f:df:2f:e8:af:95:e1:63:70:f9:ef:ec:9c:c1:ff:8a:43:67: a5:ee:c8:e2:08:d4:74:9d:6c:33:69:7a:b2:3b:17:90:b7:ac: 65:89:5f:2a:dc:fe:20:a5:48:11:b0:71:66:dc:38:43:b1:07: 80:95:d4:f9:6f:9b:b9:77:74:2f:40:89:33:63:8b:20:03:0b: 44:bb:a1:19:68:cc:9c:a3:05:bc:aa:d9:84:78:c1:74:5e:4e: f4:3b:71:18:e5:5e:35:a8:14:e6:3d:b8:36:41:63:ce:2f:44: 27:ee:2f:c8:bc:d1:03:07:43:ac:03:ed:ca:34:a4:4b:03:34: 4f:bc:ee:0a:81:74:99:7e:b6:8b:1b:27:fd:10:d4:7d:b9:98: 31:78:c2:d1 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUD3JUL4NfhFvwXQZ1sE6Z2Acf9LAwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA2N0E5NUNCNzg4MjkzOEJBNUVFMEJGOUU0N0MyRTAz MEVERjZGQjAeFw0yNjA2MTMwOTA0MzJaFw0yNjA2MTQxMTE4MzJaMDMxMTAvBgNV BAMTKDBGNkZBNjg2RkJGNzA5QzZGNjE2Q0EwNjk4MDExQjc0MzdENzAzQTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCclswHs33yJy8dX3sS8Ny5rneh VG6OBw15YYMRW/hGrs3j5d7NSvmewWBe0lWyooFamf3TF8gqYpM34mjTxTSKIHGo l/Pc0NBV5gqpE0tFrGXiCWrz2uS+NjhOzgIim6qbkwIItkg7n0RcDr/i+RHhSqL/ fIm8axwjcCe5loqXmMBaEvj3Akpxwsp8vz6T+mWrgfK0rgcn2pVioGtPqeUXDNYC nif+zBA0zkNDIaItXB3qWi2QeGZihqDQ7pylxZVgF3ZqzPNOtwDt8K1UqgKEz8Cs e0RbEF1RnVD3/L1ULVz4QTRi0Kde72BNxVcMvePqLQEVGNP0sTEG8NNMLwxTAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUD2+mhvv3Ccb2FsoGmAEbdDfXA6QwHwYDVR0j BBgwFoAUoGepXLeIKTi6XuC/nkfC4DDt9vswDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvRE9XTldJ Ti8wL0EwNjdBOTVDQjc4ODI5MzhCQTVFRTBCRjlFNDdDMkUwMzBFREY2RkIuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQTA2N0E5NUNCNzg4MjkzOEJBNUVFMEJGOUU0 N0MyRTAzMEVERjZGQi5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0RPV05XSU4vMC9BMDY3QTk1Q0I3 ODgyOTM4QkE1RUUwQkY5RTQ3QzJFMDMwRURGNkZCLm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnq+NZ0Os Z0ccThxj/w5d1lUS+TjaMTgyshsGF4jdDRhGNbcNsNZU8Ceg3lVyVwQNNWQwvSsx qV/BEf0guLIz0QDnmt30g9kucdhK0tmPL3w1xbfdoGFNDdJ2/esRVrCWhReB/gbj uzrpTm6+D98v6K+V4WNw+e/snMH/ikNnpe7I4gjUdJ1sM2l6sjsXkLesZYlfKtz+ IKVIEbBxZtw4Q7EHgJXU+W+buXd0L0CJM2OLIAMLRLuhGWjMnKMFvKrZhHjBdF5O 9DtxGOVeNagU5j24NkFjzi9EJ+4vyLzRAwdDrAPtyjSkSwM0T7zuCoF0mX62ixsn /RDUfbmYMXjC0Q== -----END CERTIFICATE-----Generated at Sun Jun 14 02:58:40 2026 by rpki-client