$ rpki-client -vvf rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft File: BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft (raw, json) Hash identifier: miYk3nlYbMoCZ2bmo1+Sp2YD11Vb6+qSAo2ZsytwRW4= Subject key identifier: 57:4F:61:47:14:E4:C0:C5:F6:1E:EF:FF:4B:42:B5:23:28:75:19:EE Authority key identifier: BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0 Certificate issuer: /CN=BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0 Certificate serial: 0FBA9E793F68B71C69A3B6CB155C4EC95A068E76 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft Manifest number: 37 Signing time: Wed 17 Jun 2026 00:31:26 +0000 Manifest this update: Wed 17 Jun 2026 00:26:26 +0000 Manifest next update: Thu 18 Jun 2026 01:44:26 +0000 Files and hashes: 1: BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl (hash: yHsUMPKFA+MCB2xrPmUlu9Qc+JjDPD5TcYEEC+Yjfx0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Jun 2026 18:58:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0f:ba:9e:79:3f:68:b7:1c:69:a3:b6:cb:15:5c:4e:c9:5a:06:8e:76 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0 Validity Not Before: Jun 17 00:26:26 2026 GMT Not After : Jun 18 01:44:26 2026 GMT Subject: CN=574F614714E4C0C5F61EEFFF4B42B523287519EE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:16:f1:b0:a8:e9:f7:f6:c5:70:26:b6:29:32: f6:d7:99:5a:28:88:7c:c9:7f:0b:08:76:07:1b:26: 6a:dd:a4:f2:f3:da:c5:9b:92:c0:e2:ab:c1:2a:cc: 1c:54:80:d9:e3:bf:b0:d9:fb:01:da:67:6b:58:35: 11:b8:08:7e:b3:2b:7b:b4:a0:18:54:09:cd:35:ad: 7b:2a:1e:ed:68:af:e8:99:41:b1:dc:b0:4b:ea:78: 89:2e:be:21:b6:4d:1e:f8:ee:c8:5f:b8:d1:96:c3: d8:f1:5e:92:4a:74:d3:80:d9:1b:7d:33:12:fc:8d: 14:67:75:c4:aa:8b:96:70:e2:24:41:63:3a:fe:02: 1d:26:d1:10:45:b8:74:c8:2b:55:9e:1b:98:5f:37: e9:40:55:96:d3:0e:d3:f6:d3:4e:d7:ff:c8:93:71: 66:e7:54:10:26:d4:98:f1:f2:2c:6b:e3:3c:ee:42: a7:af:dd:0d:56:69:69:54:54:df:81:fb:4b:24:db: 4d:57:21:4a:61:7e:c4:a7:0c:5c:05:51:8a:11:e7: a3:66:a0:f0:29:52:03:6e:bc:a6:c2:dc:39:6d:c9: d0:87:5a:5d:47:39:5a:f0:4b:b0:51:d4:dc:ac:e5: 39:08:34:48:b2:a5:aa:cd:96:25:1b:ec:f2:02:fe: c1:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:4F:61:47:14:E4:C0:C5:F6:1E:EF:FF:4B:42:B5:23:28:75:19:EE X509v3 Authority Key Identifier: keyid:BA:A9:E1:B5:C5:6A:E2:AB:15:73:F4:DD:34:EE:67:94:3A:E5:D4:D0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GAMBESON/0/BAA9E1B5C56AE2AB1573F4DD34EE67943AE5D4D0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption a9:fb:5b:96:cc:22:92:fb:49:b7:13:d9:6a:36:94:e1:f8:38: f8:c9:d1:ed:8b:74:3b:0d:dd:9b:1a:00:7c:c0:75:d6:ff:0d: 73:a7:8a:aa:b2:3e:78:20:9c:a8:ee:d2:aa:f2:bd:29:2e:cd: c0:00:e8:62:67:9c:3b:91:17:ce:73:48:e6:62:42:ff:1e:a6: db:69:43:2a:80:cc:a8:79:b8:8a:5c:bc:98:58:d5:12:08:e6: ec:b4:3b:ed:de:68:47:b7:20:0f:bc:3d:bf:9e:87:3e:7e:7c: 92:d9:30:17:60:12:af:f4:28:6a:92:14:d7:15:c4:ae:f3:39: a8:e2:19:c5:88:84:32:dc:f9:e3:30:fe:cf:0f:45:71:57:51: 3f:d5:d1:24:82:dc:9e:e5:e2:89:9e:77:28:4f:41:73:65:67: 62:51:08:42:e9:76:28:68:bf:46:16:c9:dc:89:3a:dc:fd:d0: 6d:76:ef:fd:50:ce:96:79:a4:83:df:43:61:88:f4:4e:81:3f: fa:80:38:e5:0a:78:8e:91:02:6f:96:73:4a:cd:0a:3f:16:58: 97:9d:c1:06:56:24:5d:63:9a:63:6d:3b:50:66:63:c0:dd:86: 62:ba:7e:a3:1d:ae:56:04:c7:18:61:d9:79:7f:68:7b:d9:71: f5:6b:b1:f8 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUD7qeeT9otxxpo7bLFVxOyVoGjnYwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQkFBOUUxQjVDNTZBRTJBQjE1NzNGNEREMzRFRTY3OTQz QUU1RDREMDAeFw0yNjA2MTcwMDI2MjZaFw0yNjA2MTgwMTQ0MjZaMDMxMTAvBgNV BAMTKDU3NEY2MTQ3MTRFNEMwQzVGNjFFRUZGRjRCNDJCNTIzMjg3NTE5RUUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqFvGwqOn39sVwJrYpMvbXmVoo iHzJfwsIdgcbJmrdpPLz2sWbksDiq8EqzBxUgNnjv7DZ+wHaZ2tYNRG4CH6zK3u0 oBhUCc01rXsqHu1or+iZQbHcsEvqeIkuviG2TR747shfuNGWw9jxXpJKdNOA2Rt9 MxL8jRRndcSqi5Zw4iRBYzr+Ah0m0RBFuHTIK1WeG5hfN+lAVZbTDtP2007X/8iT cWbnVBAm1Jjx8ixr4zzuQqev3Q1WaWlUVN+B+0sk201XIUphfsSnDFwFUYoR56Nm oPApUgNuvKbC3DltydCHWl1HOVrwS7BR1Nys5TkINEiyparNliUb7PIC/sHnAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUV09hRxTkwMX2Hu//S0K1Iyh1Ge4wHwYDVR0j BBgwFoAUuqnhtcVq4qsVc/TdNO5nlDrl1NAwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR0FNQkVT T04vMC9CQUE5RTFCNUM1NkFFMkFCMTU3M0Y0REQzNEVFNjc5NDNBRTVENEQwLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8xL0JBQTlFMUI1QzU2QUUyQUIxNTczRjRERDM0 RUU2Nzk0M0FFNUQ0RDAuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZU cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9HQU1CRVNPTi8wL0JBQTlFMUI1 QzU2QUUyQUIxNTczRjRERDM0RUU2Nzk0M0FFNUQ0RDAubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCp+1uW zCKS+0m3E9lqNpTh+Dj4ydHti3Q7Dd2bGgB8wHXW/w1zp4qqsj54IJyo7tKq8r0p Ls3AAOhiZ5w7kRfOc0jmYkL/HqbbaUMqgMyoebiKXLyYWNUSCObstDvt3mhHtyAP vD2/noc+fnyS2TAXYBKv9ChqkhTXFcSu8zmo4hnFiIQy3PnjMP7PD0VxV1E/1dEk gtye5eKJnncoT0FzZWdiUQhC6XYoaL9GFsnciTrc/dBtdu/9UM6WeaSD30NhiPRO gT/6gDjlCniOkQJvlnNKzQo/FliXncEGViRdY5pjbTtQZmPA3YZiun6jHa5WBMcY Ydl5f2h72XH1a7H4 -----END CERTIFICATE-----Generated at Wed Jun 17 12:18:14 2026 by rpki-client