$ rpki-client -vvf rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft File: 35C866BE000DEAB870C97BED72D0A7807B829E4D.mft (raw, json) Hash identifier: vUGKCNnWVj00m1YU23bXxwULpZ2rp7lepazIAdbpexc= Subject key identifier: 23:BC:58:67:7F:D2:95:85:F2:1A:E1:77:1A:8C:FE:3D:47:A2:7C:EA Authority key identifier: 35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D Certificate issuer: /CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Certificate serial: 041C666DFB0DBDA0017C91878CF8813B62507CAF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft Manifest number: 2F Signing time: Fri 12 Jun 2026 15:27:03 +0000 Manifest this update: Fri 12 Jun 2026 15:22:03 +0000 Manifest next update: Sat 13 Jun 2026 17:17:03 +0000 Files and hashes: 1: 35C866BE000DEAB870C97BED72D0A7807B829E4D.crl (hash: EfC8o6Nda3hzYziG8kb9VEdXU/aZfEYs9cRe0Jl4EAw=) 2: 323430363a326663303a3a2f33322d3332203d3e20313334383233.roa (hash: T6rxUJGmT1hptwoFyjautezkOkglfrNk05IrJlVztRE=) 3: 3232332e32362e342e302f32332d3234203d3e20313532313739.roa (hash: 1KuxfqT20KEMU13K1PoNgkxwUh6tXjO/u8vuBPBbPvM=) 4: 3130332e3135322e3232302e302f32332d3234203d3e20313338393937.roa (hash: J/22PWUGVzLaEIWqIEkco35k7PiKuvioKGMBglelLtk=) 5: 3230322e3134382e3231302e302f32332d3234203d3e20313532313739.roa (hash: w66ZmETlDQxyi38rji0gzk1176tFqIfyztFJ3VNSIbg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 17:17:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 04:1c:66:6d:fb:0d:bd:a0:01:7c:91:87:8c:f8:81:3b:62:50:7c:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35C866BE000DEAB870C97BED72D0A7807B829E4D Validity Not Before: Jun 12 15:22:03 2026 GMT Not After : Jun 13 17:17:03 2026 GMT Subject: CN=23BC58677FD29585F21AE1771A8CFE3D47A27CEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ea:9f:4a:a6:30:6d:9a:c9:99:4b:6f:02:8d: bd:60:6d:22:b6:9a:af:60:6d:28:40:15:cb:e8:59: f2:9c:b0:59:7f:33:d4:6f:7a:31:5f:02:bf:f1:ed: 15:13:a9:e5:34:f5:67:69:e7:e9:31:54:2f:f2:a6: ac:af:39:0f:02:2b:91:99:87:3f:75:db:9e:f2:e4: 1c:47:1a:d5:bd:02:82:b5:0a:97:8e:8e:22:17:20: 46:78:24:ae:7e:81:53:17:69:2b:08:cd:21:23:b9: 23:bc:d5:d3:48:f0:72:31:20:50:5c:b2:97:c4:b8: 52:1e:81:c7:24:fc:51:1d:d0:7f:fd:05:c0:63:89: 7c:b2:df:54:de:bb:b0:11:2d:6d:cb:e9:6c:fe:26: 66:f5:29:b6:73:f2:f3:fe:59:4a:d0:ee:61:91:71: d9:3d:ca:11:0c:27:18:a8:51:05:5d:0c:df:b8:ca: c4:2d:76:91:80:a1:da:6f:6a:a0:dc:33:be:cb:c6: e0:5d:47:50:32:dd:a2:b6:7e:26:74:8d:8a:e7:9d: bd:38:67:1d:0c:30:55:63:c3:52:92:c3:e4:d4:4b: e5:f7:79:e0:82:81:12:1e:a8:9b:f1:72:fc:fa:98: 2f:2e:18:d0:3b:ab:51:5f:1d:4b:28:21:6e:5b:6d: 99:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:BC:58:67:7F:D2:95:85:F2:1A:E1:77:1A:8C:FE:3D:47:A2:7C:EA X509v3 Authority Key Identifier: keyid:35:C8:66:BE:00:0D:EA:B8:70:C9:7B:ED:72:D0:A7:80:7B:82:9E:4D X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/35C866BE000DEAB870C97BED72D0A7807B829E4D.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IDT/0/35C866BE000DEAB870C97BED72D0A7807B829E4D.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 00:3f:e9:64:5a:a0:e4:69:6e:1c:12:20:12:cb:11:6d:79:b8: e2:c6:28:ec:b7:b8:0b:99:c4:53:bb:7b:4c:d1:73:a8:67:90: 29:fa:cc:36:b4:fd:de:6f:f0:ed:3a:ae:33:0b:52:ee:6b:9d: 9d:50:eb:63:13:23:c2:44:8b:6a:9b:1f:4f:12:ec:17:12:02: 14:54:91:d5:bc:cf:de:4a:10:00:0f:9c:d5:0a:15:8d:02:76: 35:64:c1:bd:e4:51:d2:7c:fb:e6:e2:f0:ed:8e:a5:84:c3:15: 81:8c:e3:97:c0:75:09:87:f2:73:6b:d7:28:2c:56:0a:11:cd: 5b:05:4b:24:1f:e8:86:0b:e7:aa:df:93:e7:7f:c5:f7:bb:2c: 26:dc:da:92:00:fc:bb:98:60:6e:bc:59:73:5e:71:ef:ec:ef: 77:5c:5d:81:a9:d7:cd:a8:4f:c5:dc:aa:44:0d:00:be:35:bf: 19:13:84:7b:c5:3c:70:d4:f5:1d:16:f4:c1:87:d9:2f:fd:63: 91:d7:e0:42:e8:c8:67:ee:4a:79:45:b6:d4:3b:87:5e:43:01: 7f:d9:5d:68:21:bc:69:9c:d0:f0:ea:b8:06:06:f2:6b:e2:30: 02:fa:70:ab:f6:18:0f:7b:9e:42:02:af:98:2e:f0:a9:94:ce: 63:d5:6c:bf -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUBBxmbfsNvaABfJGHjPiBO2JQfK8wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3 QjgyOUU0RDAeFw0yNjA2MTIxNTIyMDNaFw0yNjA2MTMxNzE3MDNaMDMxMTAvBgNV BAMTKDIzQkM1ODY3N0ZEMjk1ODVGMjFBRTE3NzFBOENGRTNENDdBMjdDRUEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS6p9KpjBtmsmZS28Cjb1gbSK2 mq9gbShAFcvoWfKcsFl/M9RvejFfAr/x7RUTqeU09Wdp5+kxVC/ypqyvOQ8CK5GZ hz91257y5BxHGtW9AoK1CpeOjiIXIEZ4JK5+gVMXaSsIzSEjuSO81dNI8HIxIFBc spfEuFIegcck/FEd0H/9BcBjiXyy31Teu7ARLW3L6Wz+Jmb1KbZz8vP+WUrQ7mGR cdk9yhEMJxioUQVdDN+4ysQtdpGAodpvaqDcM77LxuBdR1Ay3aK2fiZ0jYrnnb04 Zx0MMFVjw1KSw+TUS+X3eeCCgRIeqJvxcvz6mC8uGNA7q1FfHUsoIW5bbZlbAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUI7xYZ3/SlYXyGuF3Goz+PUeifOowHwYDVR0j BBgwFoAUNchmvgAN6rhwyXvtctCngHuCnk0wDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAv MzVDODY2QkUwMDBERUFCODcwQzk3QkVENzJEMEE3ODA3QjgyOUU0RC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8zNUM4NjZCRTAwMERFQUI4NzBDOTdCRUQ3MkQwQTc4 MDdCODI5RTRELmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSURULzAvMzVDODY2QkUwMDBERUFCODcw Qzk3QkVENzJEMEE3ODA3QjgyOUU0RC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAAA/6WRaoORpbhwSIBLL EW15uOLGKOy3uAuZxFO7e0zRc6hnkCn6zDa0/d5v8O06rjMLUu5rnZ1Q62MTI8JE i2qbH08S7BcSAhRUkdW8z95KEAAPnNUKFY0CdjVkwb3kUdJ8++bi8O2OpYTDFYGM 45fAdQmH8nNr1ygsVgoRzVsFSyQf6IYL56rfk+d/xfe7LCbc2pIA/LuYYG68WXNe ce/s73dcXYGp182oT8XcqkQNAL41vxkThHvFPHDU9R0W9MGH2S/9Y5HX4ELoyGfu SnlFttQ7h15DAX/ZXWghvGmc0PDquAYG8mviMAL6cKv2GA97nkICr5gu8KmUzmPV bL8= -----END CERTIFICATE-----Generated at Sat Jun 13 09:05:58 2026 by rpki-client