$ rpki-client -vvf rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft File: 432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft (raw, json) Hash identifier: y+cWOfPENRAv673RuNV+OG6oKSF3PDY4vlSev2eYFEI= Subject key identifier: F5:53:56:C3:55:D3:D9:1D:FA:2A:07:E1:DB:3A:F3:D4:AC:80:88:0B Authority key identifier: 43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8 Certificate issuer: /CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8 Certificate serial: 79C60B9F289DF5BC8C3BDDFA494A2A38FC667142 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft Manifest number: 2F Signing time: Fri 12 Jun 2026 19:32:53 +0000 Manifest this update: Fri 12 Jun 2026 19:27:53 +0000 Manifest next update: Sat 13 Jun 2026 19:52:53 +0000 Files and hashes: 1: 3231312e37392e39382e302f32332d3234203d3e20313530323838.roa (hash: hyBqf6CtEwkG2N35ylu9mRRCVoEzfqPS3BAfelnzHEQ=) 2: 3231312e37392e39382e302f32332d3234203d3e203231383539.roa (hash: I1jX/SnnFc+gmcZStVqiSrnNdoqyaCZ0ExujTfgAaX0=) 3: 3231312e37392e39382e302f32332d3234203d3e2037343833.roa (hash: CV931fhtw0I4Ug+ZdjJ2kNYqIh93pZBX4rG+jxT2d9s=) 4: 432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl (hash: 0ZFDR0Us0MjReZ1U3ULO5e8+L6lrtnF+P8ZnqFhpmyw=) 5: 3130332e3133382e3139342e302f32332d3234203d3e2037343833.roa (hash: zbX9ASNL5w9sJWWX7Nf2PDDJj816BJvv/iDAe1HP1Zg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 19:52:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 79:c6:0b:9f:28:9d:f5:bc:8c:3b:dd:fa:49:4a:2a:38:fc:66:71:42 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=432716EE054CEBDC62FC02DDE8C62AFC5333A2A8 Validity Not Before: Jun 12 19:27:53 2026 GMT Not After : Jun 13 19:52:53 2026 GMT Subject: CN=F55356C355D3D91DFA2A07E1DB3AF3D4AC80880B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:eb:94:46:38:0d:7e:86:36:08:da:fb:ee:c7: 5e:49:a2:45:c4:2d:c1:7f:08:59:96:52:6c:df:2a: 0e:bb:50:26:56:38:91:b5:3d:aa:82:30:d2:40:06: fd:25:2d:0c:15:e8:eb:5b:9d:e5:e5:61:0e:9f:f2: 67:65:eb:59:29:c7:d9:99:f1:82:98:39:23:d4:e7: c2:b4:f9:01:76:5a:36:16:35:d7:4b:52:46:fc:9b: fc:2c:64:de:de:2b:52:8d:ca:f6:3b:bf:c4:e3:0f: a4:74:51:09:8b:0b:b1:47:57:51:c5:8f:e6:96:9a: 19:61:d8:9c:6d:22:df:20:93:fc:1d:4a:e2:45:24: 50:cd:0a:fc:12:9d:5c:5b:4d:11:73:74:2b:87:dc: 67:a9:4b:9c:75:cf:b5:f4:ea:b8:bb:46:83:cf:35: c9:d0:db:9c:c9:14:63:ee:00:f6:fb:2f:32:c9:04: db:cc:44:3b:e0:e6:92:f8:d1:88:af:5f:b4:a0:d2: a5:ac:67:5e:83:23:52:27:14:97:d3:75:e3:55:69: 72:35:8d:39:5d:64:6f:80:8e:c0:86:77:8c:d6:3f: 5f:8a:10:2b:0b:1b:4c:7f:34:2e:22:46:28:07:3b: 3d:73:47:ca:1f:8f:7c:72:8a:bb:92:6a:3a:ee:0e: 0b:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:53:56:C3:55:D3:D9:1D:FA:2A:07:E1:DB:3A:F3:D4:AC:80:88:0B X509v3 Authority Key Identifier: keyid:43:27:16:EE:05:4C:EB:DC:62:FC:02:DD:E8:C6:2A:FC:53:33:A2:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/NORDATW/0/432716EE054CEBDC62FC02DDE8C62AFC5333A2A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5f:41:98:a4:24:5e:a4:9a:73:49:4f:fb:00:28:7d:f5:b9:5d: 40:07:f8:52:94:e3:6d:1e:88:c9:e4:66:5d:79:9e:c9:a2:d4: 22:a2:80:f3:2b:96:ab:37:37:cc:8d:f4:b8:f2:cc:fd:08:19: 43:ba:f9:80:4a:d9:89:64:15:23:6d:46:a0:9b:82:33:6e:fa: 0c:e9:b2:2e:65:9b:ee:0c:b7:4a:d4:a4:89:90:23:98:56:6c: e0:46:0c:48:c1:51:b7:cd:c3:f6:31:05:e3:a3:fb:10:2a:72: 14:08:66:2c:ce:5b:ed:4e:ac:e2:a6:73:d7:7e:3c:8b:0d:61: 3c:56:f1:77:b0:a4:16:71:61:03:21:d8:e1:b5:d5:af:5e:c8: 7a:4c:bb:9f:31:16:f3:6b:36:41:95:21:57:34:6b:1b:f7:75: 2b:b3:56:2b:b3:cd:50:77:8b:4b:2a:66:74:75:5e:d3:93:1e: 2e:83:78:1f:5d:4c:77:ca:55:ee:23:b5:94:de:1a:57:43:6d: 2c:aa:41:ac:ab:97:8e:44:40:e2:dc:e2:b2:55:ef:5b:d2:04: b2:7d:22:07:8c:ed:5d:43:34:16:4b:97:87:b2:85:76:ba:8b: 3c:a0:26:4b:cb:e1:9a:a2:97:17:20:94:42:e5:6e:78:46:e5: be:a1:60:ea -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUecYLnyid9byMO936SUoqOPxmcUIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThDNjJBRkM1 MzMzQTJBODAeFw0yNjA2MTIxOTI3NTNaFw0yNjA2MTMxOTUyNTNaMDMxMTAvBgNV BAMTKEY1NTM1NkMzNTVEM0Q5MURGQTJBMDdFMURCM0FGM0Q0QUM4MDg4MEIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu65RGOA1+hjYI2vvux15JokXE LcF/CFmWUmzfKg67UCZWOJG1PaqCMNJABv0lLQwV6OtbneXlYQ6f8mdl61kpx9mZ 8YKYOSPU58K0+QF2WjYWNddLUkb8m/wsZN7eK1KNyvY7v8TjD6R0UQmLC7FHV1HF j+aWmhlh2JxtIt8gk/wdSuJFJFDNCvwSnVxbTRFzdCuH3GepS5x1z7X06ri7RoPP NcnQ25zJFGPuAPb7LzLJBNvMRDvg5pL40YivX7Sg0qWsZ16DI1InFJfTdeNVaXI1 jTldZG+AjsCGd4zWP1+KECsLG0x/NC4iRigHOz1zR8ofj3xyiruSajruDgtxAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQU9VNWw1XT2R36Kgfh2zrz1KyAiAswHwYDVR0j BBgwFoAUQycW7gVM69xi/ALd6MYq/FMzoqgwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvTk9SREFU Vy8wLzQzMjcxNkVFMDU0Q0VCREM2MkZDMDJEREU4QzYyQUZDNTMzM0EyQTguY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvNDMyNzE2RUUwNTRDRUJEQzYyRkMwMkRERThD NjJBRkM1MzMzQTJBOC5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL05PUkRBVFcvMC80MzI3MTZFRTA1 NENFQkRDNjJGQzAyRERFOEM2MkFGQzUzMzNBMkE4Lm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAX0GYpCRe pJpzSU/7ACh99bldQAf4UpTjbR6IyeRmXXmeyaLUIqKA8yuWqzc3zI30uPLM/QgZ Q7r5gErZiWQVI21GoJuCM276DOmyLmWb7gy3StSkiZAjmFZs4EYMSMFRt83D9jEF 46P7ECpyFAhmLM5b7U6s4qZz1348iw1hPFbxd7CkFnFhAyHY4bXVr17Ieky7nzEW 82s2QZUhVzRrG/d1K7NWK7PNUHeLSypmdHVe05MeLoN4H11Md8pV7iO1lN4aV0Nt LKpBrKuXjkRA4tzislXvW9IEsn0iB4ztXUM0FkuXh7KFdrqLPKAmS8vhmqKXFyCU QuVueEblvqFg6g== -----END CERTIFICATE-----Generated at Sat Jun 13 09:06:14 2026 by rpki-client