$ rpki-client -vvf rpkica.twnic.tw/rpki/III/0/86E5C9C6D878819F10BEC976A116DB8148A15794.mft File: 86E5C9C6D878819F10BEC976A116DB8148A15794.mft (raw, json) Hash identifier: JE+vvM0Q6Aspfn1wPICocNeZR3oD6XLVab6TLU4fBbc= Subject key identifier: 6F:3F:E5:97:BA:F5:5F:D5:E3:3C:66:98:3C:2C:82:49:CA:66:68:33 Authority key identifier: 86:E5:C9:C6:D8:78:81:9F:10:BE:C9:76:A1:16:DB:81:48:A1:57:94 Certificate issuer: /CN=86E5C9C6D878819F10BEC976A116DB8148A15794 Certificate serial: 17D94F710E5D0FCF9832AD1D7E73B6D839057FAF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/86E5C9C6D878819F10BEC976A116DB8148A15794.cer Subject info access: rsync://rpkica.twnic.tw/rpki/III/0/86E5C9C6D878819F10BEC976A116DB8148A15794.mft Manifest number: 2D Signing time: Fri 12 Jun 2026 18:07:37 +0000 Manifest this update: Fri 12 Jun 2026 18:02:37 +0000 Manifest next update: Sat 13 Jun 2026 21:36:37 +0000 Files and hashes: 1: 86E5C9C6D878819F10BEC976A116DB8148A15794.crl (hash: WzemfM+o+FAUT5iCcQ53MJjPvMysGVnWcyhyGWS3JKg=) 2: 3134302e39322e302e302f31362d3234203d3e2031363539.roa (hash: rvl3iJZidfPVj8QIpPoFpRfFHf2uQD3RRvMQXspZm6A=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/III/0/86E5C9C6D878819F10BEC976A116DB8148A15794.crl rsync://rpkica.twnic.tw/rpki/III/0/86E5C9C6D878819F10BEC976A116DB8148A15794.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/86E5C9C6D878819F10BEC976A116DB8148A15794.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 21:36:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 17:d9:4f:71:0e:5d:0f:cf:98:32:ad:1d:7e:73:b6:d8:39:05:7f:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=86E5C9C6D878819F10BEC976A116DB8148A15794 Validity Not Before: Jun 12 18:02:37 2026 GMT Not After : Jun 13 21:36:37 2026 GMT Subject: CN=6F3FE597BAF55FD5E33C66983C2C8249CA666833 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e8:6f:08:99:98:27:38:13:76:af:c8:bb:f0: a6:e4:b4:dc:1f:00:17:88:58:27:6a:da:ca:4f:b1: b9:d4:79:ed:30:8b:93:58:a5:52:ea:f4:99:45:32: 4f:72:10:68:a7:9f:b3:31:fa:a9:1f:a0:3f:cc:a3: 31:5a:3c:ee:c6:40:6d:a5:91:31:c3:6e:42:5f:01: 4f:45:1f:72:9a:3c:13:38:e8:b6:2d:40:24:13:76: 09:27:85:73:ae:bd:d5:82:40:d9:34:dd:21:ea:86: 16:9e:7e:61:69:85:c2:1d:24:62:32:53:55:a0:0f: 43:f9:5c:f4:b7:cc:76:c5:d3:5c:dd:34:ec:ae:ee: 3f:c6:ac:12:1b:5e:2d:b7:70:fa:c8:02:9d:2e:83: ba:2a:0b:d2:30:ae:2c:ee:7e:4e:48:41:54:19:1d: c2:ce:71:b6:f9:a1:1b:29:06:04:c5:4d:09:69:29: ea:85:80:9c:55:27:ac:da:e6:7e:4d:e6:06:fd:8b: 26:fa:ea:24:65:c9:de:84:7a:dc:3a:22:c0:8a:a8: 7a:5c:61:0b:29:f0:94:d7:d8:98:91:86:30:77:27: fa:74:95:20:35:0b:9e:9a:b3:19:f8:57:0e:4e:8f: f8:60:05:9d:bf:6b:a9:fd:35:ce:78:2a:1a:84:83: 75:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:3F:E5:97:BA:F5:5F:D5:E3:3C:66:98:3C:2C:82:49:CA:66:68:33 X509v3 Authority Key Identifier: keyid:86:E5:C9:C6:D8:78:81:9F:10:BE:C9:76:A1:16:DB:81:48:A1:57:94 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/III/0/86E5C9C6D878819F10BEC976A116DB8148A15794.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/86E5C9C6D878819F10BEC976A116DB8148A15794.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/III/0/86E5C9C6D878819F10BEC976A116DB8148A15794.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 48:9e:77:15:96:a8:bb:c2:63:52:5e:a7:a5:78:16:c7:35:a1: 13:d5:07:5e:aa:64:08:ea:2e:be:7e:99:41:21:c8:8b:1a:fa: 26:7d:b5:77:fe:57:9a:ef:55:9a:c9:c0:33:11:e9:d1:7e:03: ea:a7:d1:9d:17:3e:f8:e1:cb:59:ad:60:c5:35:88:83:d3:0a: 48:9e:95:ac:e6:85:46:58:2d:e4:4a:8b:75:14:66:02:ac:c1: bd:c4:23:be:98:10:d0:c7:de:31:17:69:6c:23:7e:57:76:38: 40:a3:40:6d:32:91:8e:bf:a2:7f:92:09:03:60:3a:8f:a9:16: 34:97:e3:d7:82:6f:a8:db:ae:4a:4d:7b:d2:1d:e2:20:ee:97: 8a:54:df:37:98:84:b8:88:a7:60:30:4c:38:00:7f:63:c7:a8: 3f:b8:ef:a9:51:f6:90:84:5a:28:04:18:27:b2:1d:e0:a5:b1: 49:fb:98:99:ca:33:3a:73:45:98:84:ac:82:e8:84:ca:71:a1: f6:62:44:3e:c5:c4:93:e8:55:af:77:12:3f:f4:7b:ad:0b:69: 40:0b:98:d0:39:30:3f:a6:8e:52:b1:5e:1a:44:c9:0a:33:59: 96:0e:8d:39:23:44:75:2f:3a:6c:06:19:95:55:1e:da:ab:5c: 37:c3:62:80 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUF9lPcQ5dD8+YMq0dfnO22DkFf68wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODZFNUM5QzZEODc4ODE5RjEwQkVDOTc2QTExNkRCODE0 OEExNTc5NDAeFw0yNjA2MTIxODAyMzdaFw0yNjA2MTMyMTM2MzdaMDMxMTAvBgNV BAMTKDZGM0ZFNTk3QkFGNTVGRDVFMzNDNjY5ODNDMkM4MjQ5Q0E2NjY4MzMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDp6G8ImZgnOBN2r8i78KbktNwf ABeIWCdq2spPsbnUee0wi5NYpVLq9JlFMk9yEGinn7Mx+qkfoD/MozFaPO7GQG2l kTHDbkJfAU9FH3KaPBM46LYtQCQTdgknhXOuvdWCQNk03SHqhhaefmFphcIdJGIy U1WgD0P5XPS3zHbF01zdNOyu7j/GrBIbXi23cPrIAp0ug7oqC9Iwrizufk5IQVQZ HcLOcbb5oRspBgTFTQlpKeqFgJxVJ6za5n5N5gb9iyb66iRlyd6Eetw6IsCKqHpc YQsp8JTX2JiRhjB3J/p0lSA1C56asxn4Vw5Oj/hgBZ2/a6n9Nc54KhqEg3WPAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUbz/ll7r1X9XjPGaYPCyCScpmaDMwHwYDVR0j BBgwFoAUhuXJxth4gZ8Qvsl2oRbbgUihV5QwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSUlJLzAv ODZFNUM5QzZEODc4ODE5RjEwQkVDOTc2QTExNkRCODE0OEExNTc5NC5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMC84NkU1QzlDNkQ4Nzg4MTlGMTBCRUM5NzZBMTE2REI4 MTQ4QTE1Nzk0LmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSUlJLzAvODZFNUM5QzZEODc4ODE5RjEw QkVDOTc2QTExNkRCODE0OEExNTc5NC5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAEiedxWWqLvCY1Jep6V4 Fsc1oRPVB16qZAjqLr5+mUEhyIsa+iZ9tXf+V5rvVZrJwDMR6dF+A+qn0Z0XPvjh y1mtYMU1iIPTCkielazmhUZYLeRKi3UUZgKswb3EI76YENDH3jEXaWwjfld2OECj QG0ykY6/on+SCQNgOo+pFjSX49eCb6jbrkpNe9Id4iDul4pU3zeYhLiIp2AwTDgA f2PHqD+476lR9pCEWigEGCeyHeClsUn7mJnKMzpzRZiErILohMpxofZiRD7FxJPo Va93Ej/0e60LaUALmNA5MD+mjlKxXhpEyQozWZYOjTkjRHUvOmwGGZVVHtqrXDfD YoA= -----END CERTIFICATE-----Generated at Sat Jun 13 13:38:44 2026 by rpki-client