$ rpki-client -vvf rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.mft File: 589DA145B1A822538BB2E68D892E6742B34F0701.mft (raw, json) Hash identifier: Lqq532CRB6sy43nOjuJ2qeQOXat8vj+0hrwy6eYpZg4= Subject key identifier: 9B:BA:B9:CF:59:41:07:15:87:8C:EC:C2:9F:62:6A:BB:21:E4:61:0F Authority key identifier: 58:9D:A1:45:B1:A8:22:53:8B:B2:E6:8D:89:2E:67:42:B3:4F:07:01 Certificate issuer: /CN=589DA145B1A822538BB2E68D892E6742B34F0701 Certificate serial: 0EF77D20DCFADE1C91697AA714DC044B21100117 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/589DA145B1A822538BB2E68D892E6742B34F0701.cer Subject info access: rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.mft Manifest number: 2E Signing time: Sat 13 Jun 2026 10:54:48 +0000 Manifest this update: Sat 13 Jun 2026 10:49:48 +0000 Manifest next update: Sun 14 Jun 2026 11:53:48 +0000 Files and hashes: 1: 589DA145B1A822538BB2E68D892E6742B34F0701.crl (hash: t2iqG4micR25/5JZ6/QfO5tPGJLwuAZezo13138mTEE=) 2: 3136312e3234382e3132382e302f32332d3234203d3e20313331363435.roa (hash: A2tEu7HgD7mnKwNZUDnZPRv7DPPNtScV1zkEjUfoaE8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.crl rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/589DA145B1A822538BB2E68D892E6742B34F0701.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 11:53:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 0e:f7:7d:20:dc:fa:de:1c:91:69:7a:a7:14:dc:04:4b:21:10:01:17 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=589DA145B1A822538BB2E68D892E6742B34F0701 Validity Not Before: Jun 13 10:49:48 2026 GMT Not After : Jun 14 11:53:48 2026 GMT Subject: CN=9BBAB9CF59410715878CECC29F626ABB21E4610F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:6d:35:17:48:aa:22:09:f2:89:ef:1d:62:d1: 25:46:bd:8a:c5:ba:b3:4b:75:f9:ec:65:c3:2c:f3: 59:13:03:95:43:8d:35:f4:32:9f:00:ef:da:b1:e7: a3:c4:76:c6:e0:ec:c1:ea:3b:cd:ff:3a:be:24:97: 32:65:6f:81:d2:b2:9d:0b:a8:4e:59:b3:33:86:dc: cb:b3:c5:88:71:63:4f:d1:ce:cf:4d:dc:5a:b2:2f: cd:f9:fd:91:23:70:a0:e0:f7:d3:89:9c:ca:ce:f3: ab:4f:f0:a7:b0:b1:18:1e:5f:52:4e:ef:48:32:99: 3b:dd:e3:23:12:7e:6a:20:38:46:cd:7b:9f:62:23: 5c:51:f7:25:41:a4:2e:05:e1:16:66:5d:15:bd:88: ff:79:f6:36:d8:34:1f:f9:06:0a:db:9a:7a:a7:d0: 14:67:a9:4f:01:fc:f4:1e:80:4a:bc:24:1d:c0:00: 98:5a:68:98:15:bc:62:5e:83:4c:51:04:70:c6:69: 65:5d:b5:5f:ca:e3:aa:63:1f:92:bc:fe:7f:85:cc: bd:cc:f1:23:7b:bb:43:21:3b:4d:0d:f0:a9:07:9b: a3:9d:a9:28:bc:ef:57:b8:56:aa:3e:46:cd:56:4c: 01:b8:ed:a2:1d:78:54:b7:56:dd:cb:00:4e:2e:12: 55:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9B:BA:B9:CF:59:41:07:15:87:8C:EC:C2:9F:62:6A:BB:21:E4:61:0F X509v3 Authority Key Identifier: keyid:58:9D:A1:45:B1:A8:22:53:8B:B2:E6:8D:89:2E:67:42:B3:4F:07:01 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/589DA145B1A822538BB2E68D892E6742B34F0701.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/KKH/1/589DA145B1A822538BB2E68D892E6742B34F0701.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 94:34:d8:fc:2e:40:e5:de:50:13:6a:5b:43:af:25:16:88:2e: a2:74:7a:c8:b9:f2:30:25:66:fa:ab:1b:40:8d:75:f0:5f:75: d4:b6:e8:52:c8:e1:d6:53:61:52:f7:ca:34:d9:f7:0b:db:df: e4:a3:0e:7b:9d:5c:60:6c:20:93:2e:54:f8:ad:39:cd:e1:b0: 3a:93:4b:ad:f1:36:2e:89:57:45:2e:04:f8:6c:96:7a:5d:f0: b3:a5:34:8d:6f:6c:4a:27:e3:8a:ce:be:b5:b0:a4:9f:17:bd: 7f:ec:4e:06:8f:1f:ac:8b:46:7c:1c:0d:dc:ab:dd:2f:8d:02: a7:45:7a:23:63:97:2c:09:32:a2:f0:6a:eb:4f:3f:78:a0:8b: 12:7f:4b:8d:8f:18:79:ab:88:7a:74:92:f3:26:fe:ea:bf:a9: c5:c2:2f:d9:7f:16:e1:d9:53:ec:cc:6b:15:06:35:ea:87:6e: c3:c1:41:08:99:ee:2f:2b:22:0b:74:2a:6a:61:39:b7:f0:d2: 3f:e5:52:02:04:0d:e6:58:ee:1c:56:d6:da:7e:c9:46:e7:e2: 4e:02:68:52:b8:44:70:b2:79:8b:37:d0:9c:21:cf:e7:9d:35: 68:7b:d0:a7:c5:b0:a2:93:fe:8b:ae:e3:df:6c:37:69:da:4d: bd:f3:67:21 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUDvd9INz63hyRaXqnFNwESyEQARcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTg5REExNDVCMUE4MjI1MzhCQjJFNjhEODkyRTY3NDJC MzRGMDcwMTAeFw0yNjA2MTMxMDQ5NDhaFw0yNjA2MTQxMTUzNDhaMDMxMTAvBgNV BAMTKDlCQkFCOUNGNTk0MTA3MTU4NzhDRUNDMjlGNjI2QUJCMjFFNDYxMEYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDVbTUXSKoiCfKJ7x1i0SVGvYrF urNLdfnsZcMs81kTA5VDjTX0Mp8A79qx56PEdsbg7MHqO83/Or4klzJlb4HSsp0L qE5ZszOG3MuzxYhxY0/Rzs9N3FqyL835/ZEjcKDg99OJnMrO86tP8KewsRgeX1JO 70gymTvd4yMSfmogOEbNe59iI1xR9yVBpC4F4RZmXRW9iP959jbYNB/5Bgrbmnqn 0BRnqU8B/PQegEq8JB3AAJhaaJgVvGJeg0xRBHDGaWVdtV/K46pjH5K8/n+FzL3M 8SN7u0MhO00N8KkHm6OdqSi871e4Vqo+Rs1WTAG47aIdeFS3Vt3LAE4uElXNAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUm7q5z1lBBxWHjOzCn2JquyHkYQ8wHwYDVR0j BBgwFoAUWJ2hRbGoIlOLsuaNiS5nQrNPBwEwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0tILzEv NTg5REExNDVCMUE4MjI1MzhCQjJFNjhEODkyRTY3NDJCMzRGMDcwMS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMC81ODlEQTE0NUIxQTgyMjUzOEJCMkU2OEQ4OTJFNjc0 MkIzNEYwNzAxLmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvS0tILzEvNTg5REExNDVCMUE4MjI1MzhC QjJFNjhEODkyRTY3NDJCMzRGMDcwMS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAJQ02PwuQOXeUBNqW0Ov JRaILqJ0esi58jAlZvqrG0CNdfBfddS26FLI4dZTYVL3yjTZ9wvb3+SjDnudXGBs IJMuVPitOc3hsDqTS63xNi6JV0UuBPhslnpd8LOlNI1vbEon44rOvrWwpJ8XvX/s TgaPH6yLRnwcDdyr3S+NAqdFeiNjlywJMqLwautPP3igixJ/S42PGHmriHp0kvMm /uq/qcXCL9l/FuHZU+zMaxUGNeqHbsPBQQiZ7i8rIgt0KmphObfw0j/lUgIEDeZY 7hxW1tp+yUbn4k4CaFK4RHCyeYs30Jwhz+edNWh70KfFsKKT/ouu499sN2naTb3z ZyE= -----END CERTIFICATE-----Generated at Sat Jun 13 22:50:41 2026 by rpki-client