$ rpki-client -vvf rpkica.twnic.tw/rpki/GRONEXT/0/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.mft File: 2164D19A626FF5A4327CAFC8B83F9397B8A1487E.mft (raw, json) Hash identifier: rxpKIlRds2UwruKzV7dc27KHAXSnn/S6+R3r7s0Or1w= Subject key identifier: 42:4E:28:BD:39:95:64:77:9F:2E:5A:F0:0C:4E:97:9F:E4:C5:DA:DB Authority key identifier: 21:64:D1:9A:62:6F:F5:A4:32:7C:AF:C8:B8:3F:93:97:B8:A1:48:7E Certificate issuer: /CN=2164D19A626FF5A4327CAFC8B83F9397B8A1487E Certificate serial: 1B29D76513381535F96DACFC6BA643B7068C0A5D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.cer Subject info access: rsync://rpkica.twnic.tw/rpki/GRONEXT/0/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.mft Manifest number: 2D Signing time: Fri 12 Jun 2026 14:51:59 +0000 Manifest this update: Fri 12 Jun 2026 14:46:59 +0000 Manifest next update: Sat 13 Jun 2026 18:35:59 +0000 Files and hashes: 1: 3130332e3134362e3231302e302f32332d3234203d3e20313331363637.roa (hash: totaPLv4w3h/keOS204h6s1sWAndNPLEGS0TWucTSQY=) 2: 2164D19A626FF5A4327CAFC8B83F9397B8A1487E.crl (hash: TNqxWmmiNv4fVYhU0x0wxUlAp8DceoEnkrQ0fDdbeqM=) 3: 323430353a613034303a3a2f33322d3336203d3e20313331363637.roa (hash: w3hpJj+HoeJno1FTJaaLoGf0DFxePbcn5GPTViDGefQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/GRONEXT/0/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.crl rsync://rpkica.twnic.tw/rpki/GRONEXT/0/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 18:35:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1b:29:d7:65:13:38:15:35:f9:6d:ac:fc:6b:a6:43:b7:06:8c:0a:5d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2164D19A626FF5A4327CAFC8B83F9397B8A1487E Validity Not Before: Jun 12 14:46:59 2026 GMT Not After : Jun 13 18:35:59 2026 GMT Subject: CN=424E28BD399564779F2E5AF00C4E979FE4C5DADB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:c1:23:01:35:db:a2:17:2b:31:f7:41:29:ce: f2:9b:1c:ad:c2:55:1b:8e:ed:9b:33:48:66:26:18: 5b:b5:8d:17:4c:85:2e:f5:67:a8:62:11:b8:d6:ba: b8:46:60:67:ea:ff:06:ea:53:4c:57:74:14:a8:97: 74:8b:e7:84:56:6e:5e:ce:7d:84:97:d8:63:42:f1: 9e:b0:72:dc:da:72:c4:39:a7:47:a9:45:81:51:a4: 36:18:b3:0e:50:3b:2b:11:97:5a:08:ea:a1:d3:cc: ba:e1:4e:ff:91:ad:5c:bc:1e:05:68:49:9f:e7:fa: 71:19:12:41:53:95:39:13:a6:4e:c0:82:17:de:b3: 8c:d5:e9:66:fe:ca:85:45:9f:17:54:5c:cc:7b:eb: dc:23:71:b6:52:c1:b7:b2:61:e3:e7:4b:40:42:57: 0e:bd:0b:a9:32:17:78:e6:4b:23:28:40:5f:d6:cf: 90:8b:e8:3e:17:49:ce:d9:fa:8f:48:6d:40:3a:fe: c6:dc:bb:16:ff:02:6a:6b:26:f9:db:0a:7e:61:79: d2:7e:46:1c:cb:92:99:f1:60:dc:f2:31:88:63:c1: 43:44:3a:da:31:f8:1a:64:31:94:fc:40:cf:7c:b4: 08:3c:6a:b3:44:58:d7:9f:b0:47:09:e1:d3:da:a0: 74:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:4E:28:BD:39:95:64:77:9F:2E:5A:F0:0C:4E:97:9F:E4:C5:DA:DB X509v3 Authority Key Identifier: keyid:21:64:D1:9A:62:6F:F5:A4:32:7C:AF:C8:B8:3F:93:97:B8:A1:48:7E X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/GRONEXT/0/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/GRONEXT/0/2164D19A626FF5A4327CAFC8B83F9397B8A1487E.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 01:32:0a:f2:32:93:4d:f2:45:21:a3:17:a6:a5:62:dc:22:45: 63:bc:a0:45:05:f1:b6:c5:83:42:fb:e4:1d:70:e5:29:36:7d: 55:fe:da:04:bc:13:cc:af:d6:48:a6:12:e7:8a:b5:7f:b1:cc: 42:58:8e:1e:80:1a:f9:3d:8b:2f:b4:de:57:70:a7:2c:e5:97: 5c:6e:e9:01:1c:b2:3b:98:31:7d:7a:c8:3a:50:f1:7f:58:c3: be:41:39:cd:f2:09:de:88:f6:4a:6c:14:aa:ad:c5:df:8b:5e: e5:bf:4a:96:a3:99:9b:6e:f2:6f:4f:0b:47:7a:bb:5d:91:40: bd:33:b4:dd:ce:cd:f2:4b:6e:86:90:9e:1c:c8:ac:d6:75:60: 12:39:3a:47:45:81:ba:38:54:6c:3d:c2:a5:bf:cd:72:10:b6: ab:e8:6e:ba:6d:d2:2e:8b:88:ea:4b:ec:17:81:0a:ea:ff:3e: 36:43:c6:f9:a5:45:46:09:e3:c2:bb:c5:e9:f4:0a:8f:c7:35: 6d:14:3c:dd:10:ba:e8:d0:47:93:1b:8c:85:11:e0:0b:39:3b: 4c:f5:24:08:e7:de:6b:72:be:43:0e:03:4b:ab:78:d6:4f:fd: 89:f5:ab:01:df:90:8c:33:8d:4d:9c:63:48:ce:59:4d:03:8b: bf:7c:62:b4 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUGynXZRM4FTX5baz8a6ZDtwaMCl0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMjE2NEQxOUE2MjZGRjVBNDMyN0NBRkM4QjgzRjkzOTdC OEExNDg3RTAeFw0yNjA2MTIxNDQ2NTlaFw0yNjA2MTMxODM1NTlaMDMxMTAvBgNV BAMTKDQyNEUyOEJEMzk5NTY0Nzc5RjJFNUFGMDBDNEU5NzlGRTRDNURBREIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDqwSMBNduiFysx90EpzvKbHK3C VRuO7ZszSGYmGFu1jRdMhS71Z6hiEbjWurhGYGfq/wbqU0xXdBSol3SL54RWbl7O fYSX2GNC8Z6wctzacsQ5p0epRYFRpDYYsw5QOysRl1oI6qHTzLrhTv+RrVy8HgVo SZ/n+nEZEkFTlTkTpk7Aghfes4zV6Wb+yoVFnxdUXMx769wjcbZSwbeyYePnS0BC Vw69C6kyF3jmSyMoQF/Wz5CL6D4XSc7Z+o9IbUA6/sbcuxb/AmprJvnbCn5hedJ+ RhzLkpnxYNzyMYhjwUNEOtox+BpkMZT8QM98tAg8arNEWNefsEcJ4dPaoHT9AgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUQk4ovTmVZHefLlrwDE6Xn+TF2tswHwYDVR0j BBgwFoAUIWTRmmJv9aQyfK/IuD+Tl7ihSH4wDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvR1JPTkVY VC8wLzIxNjREMTlBNjI2RkY1QTQzMjdDQUZDOEI4M0Y5Mzk3QjhBMTQ4N0UuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvMjE2NEQxOUE2MjZGRjVBNDMyN0NBRkM4Qjgz RjkzOTdCOEExNDg3RS5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL0dST05FWFQvMC8yMTY0RDE5QTYy NkZGNUE0MzI3Q0FGQzhCODNGOTM5N0I4QTE0ODdFLm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAATIK8jKT TfJFIaMXpqVi3CJFY7ygRQXxtsWDQvvkHXDlKTZ9Vf7aBLwTzK/WSKYS54q1f7HM QliOHoAa+T2LL7TeV3CnLOWXXG7pARyyO5gxfXrIOlDxf1jDvkE5zfIJ3oj2SmwU qq3F34te5b9KlqOZm27yb08LR3q7XZFAvTO03c7N8ktuhpCeHMis1nVgEjk6R0WB ujhUbD3Cpb/NchC2q+huum3SLouI6kvsF4EK6v8+NkPG+aVFRgnjwrvF6fQKj8c1 bRQ83RC66NBHkxuMhRHgCzk7TPUkCOfea3K+Qw4DS6t41k/9ifWrAd+QjDONTZxj SM5ZTQOLv3xitA== -----END CERTIFICATE-----Generated at Sat Jun 13 10:17:08 2026 by rpki-client