$ rpki-client -vvf rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft File: A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft (raw, json) Hash identifier: pIon1aO/xUKMJPQrio1wjO7n4MulP4RiieR2bkOWOfY= Subject key identifier: 68:8A:59:B3:80:C7:88:3F:69:DD:5D:36:05:7F:12:38:66:BC:DD:35 Authority key identifier: A7:82:7E:4E:53:BA:51:7B:BC:5C:79:8C:F0:D3:AF:87:03:75:C0:B0 Certificate issuer: /CN=A7827E4E53BA517BBC5C798CF0D3AF870375C0B0 Certificate serial: 6FC7F7821B2521837B9EDEA06FAE0805E12DCB64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft Manifest number: 33 Signing time: Fri 12 Jun 2026 23:13:21 +0000 Manifest this update: Fri 12 Jun 2026 23:08:21 +0000 Manifest next update: Sun 14 Jun 2026 01:36:21 +0000 Files and hashes: 1: 3130332e3137372e33322e302f32342d3234203d3e20323134343332.roa (hash: 2YaoD0V9MTmYaytjBdN3g/2JltFPIOscJRsxuw7e/EQ=) 2: 3130332e3232372e3232342e302f32332d3234203d3e20313438393936.roa (hash: Pe+GfCAU9CJUhyX0GcmCiKMiXy/uVxymKcKinAclsuQ=) 3: 3130332e3232372e3232342e302f32342d3234203d3e20313438393936.roa (hash: qkqrj9/N2V1M+ri4JRAjh2Xtl5l0eXftPC6OL0jPaCQ=) 4: 3130332e3137372e33322e302f32332d3234203d3e203338303432.roa (hash: xPDyINdFmufQbNbHGWy0zvLscglHenPHYxlwfT+v00s=) 5: A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl (hash: 5V3rsTsZfNoPj9kFAOeR5iBOzlMgtg7GUQlKudfOwkM=) 6: 3130332e3232372e3232342e302f32332d3234203d3e20313334383233.roa (hash: GuzN1ophfvX5EgHLKpJRkwlqpD4JGNW35OZ+ZCoqD78=) 7: 3130332e3232372e3232352e302f32342d3234203d3e20313438393936.roa (hash: 3Fs3YXCHVhPim686QjSLVypvleRfB5cNa4r0sVni22s=) 8: 3130332e3137372e33322e302f32342d3234203d3e20323133363037.roa (hash: cQkjcrDW6Cw958N6gtJjxyd/adphXQyJjpPcfgZ5xG4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6f:c7:f7:82:1b:25:21:83:7b:9e:de:a0:6f:ae:08:05:e1:2d:cb:64 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7827E4E53BA517BBC5C798CF0D3AF870375C0B0 Validity Not Before: Jun 12 23:08:21 2026 GMT Not After : Jun 14 01:36:21 2026 GMT Subject: CN=688A59B380C7883F69DD5D36057F123866BCDD35 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:10:7c:f4:cd:4c:c7:9b:88:05:de:4f:0f:f4: f3:b1:02:42:af:5e:b4:ec:0f:45:ef:78:b1:2b:27: 75:2d:86:77:9d:ee:c2:0b:ad:c3:f1:50:70:c3:3c: 03:4d:c6:09:c5:d4:0a:e8:0e:bf:17:04:df:7d:fa: a2:0b:e9:e6:24:4b:50:8b:d2:e0:e8:48:f4:09:5c: ea:97:77:32:61:a5:20:67:6a:94:c2:5f:33:e2:b5: eb:85:8f:c4:43:b8:c0:23:a8:e2:e5:c5:b5:02:08: c2:b0:dc:52:7c:3e:b8:dd:e7:2b:fd:05:a9:a8:fb: 5c:00:35:42:81:32:a4:4b:6d:4c:81:de:07:dc:0a: 64:bc:1d:cd:28:88:90:7c:30:6f:7e:84:7d:7c:6b: c3:41:10:d1:ce:2d:62:b4:a3:10:84:f5:dc:fe:69: b3:6d:17:86:6f:46:37:e9:40:7a:8a:5b:8d:e5:05: 0f:db:d4:10:cc:eb:51:2b:2c:74:b6:fe:2c:2d:35: 79:86:98:83:ec:68:01:bb:b9:f3:87:e0:79:0a:f6: 5a:08:7d:23:84:9c:e0:52:a0:b0:68:23:44:cd:4e: d3:0e:32:40:73:c9:5d:d0:73:a2:de:df:ed:b3:4d: 58:1f:57:bc:86:40:14:a8:b6:b7:17:3d:f4:ee:4e: 59:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:8A:59:B3:80:C7:88:3F:69:DD:5D:36:05:7F:12:38:66:BC:DD:35 X509v3 Authority Key Identifier: keyid:A7:82:7E:4E:53:BA:51:7B:BC:5C:79:8C:F0:D3:AF:87:03:75:C0:B0 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/IMCRS/0/A7827E4E53BA517BBC5C798CF0D3AF870375C0B0.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 1c:e7:38:3b:2f:59:d8:6a:ca:3a:ee:31:20:cb:37:22:d0:7c: 33:6a:31:ce:5d:00:42:2c:99:d8:e1:23:a8:9f:1d:59:2d:3c: 30:53:92:2a:ce:25:a7:db:83:04:52:75:ce:c3:a8:94:3d:d5: d9:55:9c:1b:d0:e8:68:36:09:91:33:45:ed:cc:c7:5a:8a:58: 46:11:b2:ce:c6:41:f8:1f:77:ef:44:a8:21:b7:eb:d6:e1:73: 47:98:7e:76:c4:72:6c:64:1c:ef:04:6d:32:dd:6d:2b:66:68: 8b:63:dd:5a:57:fd:e8:e1:5d:26:cf:a1:de:86:e2:6e:f3:9f: 0a:8c:e0:f4:78:d0:18:2e:6d:74:bd:69:a7:0d:d6:d8:dd:fc: 49:ad:24:95:11:63:b9:84:04:ff:ab:19:7c:c2:b5:b4:99:f0: 9d:02:0f:3d:dc:7f:89:d5:3a:2f:e9:eb:39:8a:9b:a9:a8:23: 57:11:d4:f4:f5:00:55:0e:70:92:91:13:27:44:b8:2c:ee:78: 28:d7:73:f2:b0:b2:34:56:dc:9c:70:37:42:0a:36:f8:a4:3d: 0b:ed:6e:f6:1b:1a:21:93:db:ff:34:7e:1a:78:df:22:72:db: 4a:9f:38:ba:d1:37:c1:92:e6:68:95:b7:21:95:da:df:3f:1d: 4d:10:2a:6f -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUb8f3ghslIYN7nt6gb64IBeEty2QwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTc4MjdFNEU1M0JBNTE3QkJDNUM3OThDRjBEM0FGODcw Mzc1QzBCMDAeFw0yNjA2MTIyMzA4MjFaFw0yNjA2MTQwMTM2MjFaMDMxMTAvBgNV BAMTKDY4OEE1OUIzODBDNzg4M0Y2OURENUQzNjA1N0YxMjM4NjZCQ0REMzUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDKEHz0zUzHm4gF3k8P9POxAkKv XrTsD0XveLErJ3Uthned7sILrcPxUHDDPANNxgnF1AroDr8XBN99+qIL6eYkS1CL 0uDoSPQJXOqXdzJhpSBnapTCXzPiteuFj8RDuMAjqOLlxbUCCMKw3FJ8Prjd5yv9 Bamo+1wANUKBMqRLbUyB3gfcCmS8Hc0oiJB8MG9+hH18a8NBENHOLWK0oxCE9dz+ abNtF4ZvRjfpQHqKW43lBQ/b1BDM61ErLHS2/iwtNXmGmIPsaAG7ufOH4HkK9loI fSOEnOBSoLBoI0TNTtMOMkBzyV3Qc6Le3+2zTVgfV7yGQBSotrcXPfTuTlkJAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUaIpZs4DHiD9p3V02BX8SOGa83TUwHwYDVR0j BBgwFoAUp4J+TlO6UXu8XHmM8NOvhwN1wLAwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvSU1DUlMv MC9BNzgyN0U0RTUzQkE1MTdCQkM1Qzc5OENGMEQzQUY4NzAzNzVDMEIwLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xL0E3ODI3RTRFNTNCQTUxN0JCQzVDNzk4Q0YwRDNB Rjg3MDM3NUMwQjAuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9JTUNSUy8wL0E3ODI3RTRFNTNCQTUx N0JCQzVDNzk4Q0YwRDNBRjg3MDM3NUMwQjAubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAc5zg7L1nYaso6 7jEgyzci0HwzajHOXQBCLJnY4SOonx1ZLTwwU5IqziWn24MEUnXOw6iUPdXZVZwb 0OhoNgmRM0XtzMdailhGEbLOxkH4H3fvRKght+vW4XNHmH52xHJsZBzvBG0y3W0r ZmiLY91aV/3o4V0mz6HehuJu858KjOD0eNAYLm10vWmnDdbY3fxJrSSVEWO5hAT/ qxl8wrW0mfCdAg893H+J1Tov6es5ipupqCNXEdT09QBVDnCSkRMnRLgs7ngo13Py sLI0VtyccDdCCjb4pD0L7W72Gxohk9v/NH4aeN8icttKnzi60TfBkuZolbchldrf Px1NECpv -----END CERTIFICATE-----Generated at Sat Jun 13 10:18:04 2026 by rpki-client