$ rpki-client -vvf rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft File: 8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft (raw, json) Hash identifier: Cv0TH03JPVCjxPSzXicxnKy5tqYTJSkd3u7iefYUUio= Subject key identifier: 1D:C3:E7:2D:24:79:A2:65:03:F6:97:90:1F:8A:DA:9E:AF:CC:65:62 Authority key identifier: 86:81:A4:AE:9D:1E:38:75:36:C2:E0:B9:1C:79:A8:76:CF:7D:E4:E4 Certificate issuer: /CN=8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4 Certificate serial: 08BE51988D44D94BE32A6CC55BC50C3F226700E7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft Manifest number: 2D Signing time: Fri 12 Jun 2026 15:37:13 +0000 Manifest this update: Fri 12 Jun 2026 15:32:13 +0000 Manifest next update: Sat 13 Jun 2026 19:34:13 +0000 Files and hashes: 1: 323430323a6361303a3a2f33322d3438203d3e20313331363831.roa (hash: S/vvxrC76LtkDDAr3Lwj+sG9Po2jPNI3vSVyXNzI5B0=) 2: 8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.crl (hash: tWrRh9Hx7ONCwmjIv7G4pvAAoD7MmVgfHLWLVeeuzGo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.crl rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 19:34:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 08:be:51:98:8d:44:d9:4b:e3:2a:6c:c5:5b:c5:0c:3f:22:67:00:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4 Validity Not Before: Jun 12 15:32:13 2026 GMT Not After : Jun 13 19:34:13 2026 GMT Subject: CN=1DC3E72D2479A26503F697901F8ADA9EAFCC6562 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:9f:3d:09:6c:87:ec:14:45:76:1e:0c:03:e9: 48:1c:22:c9:18:b6:51:b6:0d:5d:d4:be:eb:48:cd: 8e:79:8e:1a:8c:31:21:f8:8f:c6:0c:7d:5d:f7:7e: 96:16:2d:a9:ba:52:06:4f:61:f4:bc:cf:e4:59:2f: 18:fb:d5:37:98:83:83:5b:e5:42:65:8c:3c:bb:0f: 54:2b:da:29:a6:02:33:44:c3:4b:98:db:90:c7:88: 66:e0:13:53:64:83:01:29:25:09:a3:b3:24:ea:1e: ed:5a:45:6d:03:3a:04:a5:f7:5e:23:f0:f0:c4:d4: e8:31:85:5e:f0:b1:0c:f3:4d:02:4f:69:96:23:3c: 61:c8:9f:d3:e4:30:e9:a1:9c:1f:98:cf:38:8f:fc: 08:24:c4:fd:be:5f:2a:57:86:81:48:10:67:a2:62: f4:7e:5a:29:bb:7a:66:61:ab:b4:06:d8:a7:b6:9a: cf:5d:10:df:e8:27:6e:b4:9b:4e:a1:dd:8e:21:99: 22:36:3d:1a:68:0c:8e:5c:e0:31:6d:78:a6:35:3a: a6:b1:86:51:e0:f3:ae:1e:2a:a2:c6:ea:40:3f:2a: a3:ad:0d:4c:48:97:54:83:86:77:c4:da:f9:72:02: 79:5b:a7:3f:18:0c:a8:1b:7c:e7:c0:4f:4d:1b:79: 37:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:C3:E7:2D:24:79:A2:65:03:F6:97:90:1F:8A:DA:9E:AF:CC:65:62 X509v3 Authority Key Identifier: keyid:86:81:A4:AE:9D:1E:38:75:36:C2:E0:B9:1C:79:A8:76:CF:7D:E4:E4 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/QISDA/0/8681A4AE9D1E387536C2E0B91C79A876CF7DE4E4.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7a:63:e8:7d:d7:91:dd:96:71:e5:70:02:77:ad:1e:a4:e7:20: d6:79:ce:d6:17:0b:ae:7e:af:b3:73:06:74:c5:f8:43:40:79: 3b:73:51:03:94:0f:d9:dd:d3:09:3c:4b:13:9b:b1:aa:71:b7: 33:b5:cf:17:ba:94:ce:a1:bc:4a:be:0b:5d:1a:a9:82:3f:18: 23:20:33:bf:85:d1:56:db:42:bb:dc:2a:2f:fb:89:7d:15:5d: 06:73:5f:07:d0:f1:da:93:b9:5d:03:85:40:9d:c3:92:c0:ea: d6:d9:f8:86:31:4c:5c:3e:32:09:01:25:a2:17:79:d2:86:a7: 90:ae:55:bd:04:c8:7b:50:46:f2:a5:72:48:76:4f:f4:c6:a4: c4:0e:41:f2:ca:fe:36:61:b0:5f:d1:6b:d3:a0:44:9d:e5:c6: f3:38:84:7a:39:a1:a6:26:73:1b:95:5d:68:fd:47:e9:18:6f: 14:30:2f:ca:3f:17:10:16:bc:91:aa:6e:0f:fe:78:a6:c4:3a: e7:84:91:bd:d2:9d:c7:b8:73:43:05:dc:06:1e:2d:ee:cd:69: 58:6b:2a:80:a1:72:27:ff:2e:95:9b:69:1e:be:d6:f3:5e:3f: 60:e2:e9:ca:a8:e2:38:a4:b8:cd:f8:14:ab:34:a3:68:d7:2c: 50:70:cf:53 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUCL5RmI1E2UvjKmzFW8UMPyJnAOcwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoODY4MUE0QUU5RDFFMzg3NTM2QzJFMEI5MUM3OUE4NzZD RjdERTRFNDAeFw0yNjA2MTIxNTMyMTNaFw0yNjA2MTMxOTM0MTNaMDMxMTAvBgNV BAMTKDFEQzNFNzJEMjQ3OUEyNjUwM0Y2OTc5MDFGOEFEQTlFQUZDQzY1NjIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQConz0JbIfsFEV2HgwD6UgcIskY tlG2DV3UvutIzY55jhqMMSH4j8YMfV33fpYWLam6UgZPYfS8z+RZLxj71TeYg4Nb 5UJljDy7D1Qr2immAjNEw0uY25DHiGbgE1NkgwEpJQmjsyTqHu1aRW0DOgSl914j 8PDE1OgxhV7wsQzzTQJPaZYjPGHIn9PkMOmhnB+YzziP/AgkxP2+XypXhoFIEGei YvR+Wim7emZhq7QG2Ke2ms9dEN/oJ260m06h3Y4hmSI2PRpoDI5c4DFteKY1Oqax hlHg864eKqLG6kA/KqOtDUxIl1SDhnfE2vlyAnlbpz8YDKgbfOfAT00beTdfAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUHcPnLSR5omUD9peQH4ranq/MZWIwHwYDVR0j BBgwFoAUhoGkrp0eOHU2wuC5HHmods995OQwDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvUUlTREEv MC84NjgxQTRBRTlEMUUzODc1MzZDMkUwQjkxQzc5QTg3NkNGN0RFNEU0LmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzg2ODFBNEFFOUQxRTM4NzUzNkMyRTBCOTFDNzlB ODc2Q0Y3REU0RTQuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9RSVNEQS8wLzg2ODFBNEFFOUQxRTM4 NzUzNkMyRTBCOTFDNzlBODc2Q0Y3REU0RTQubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB6Y+h915HdlnHl cAJ3rR6k5yDWec7WFwuufq+zcwZ0xfhDQHk7c1EDlA/Z3dMJPEsTm7Gqcbcztc8X upTOobxKvgtdGqmCPxgjIDO/hdFW20K73Cov+4l9FV0Gc18H0PHak7ldA4VAncOS wOrW2fiGMUxcPjIJASWiF3nShqeQrlW9BMh7UEbypXJIdk/0xqTEDkHyyv42YbBf 0WvToESd5cbzOIR6OaGmJnMblV1o/UfpGG8UMC/KPxcQFryRqm4P/nimxDrnhJG9 0p3HuHNDBdwGHi3uzWlYayqAoXIn/y6Vm2kevtbzXj9g4unKqOI4pLjN+BSrNKNo 1yxQcM9T -----END CERTIFICATE-----Generated at Sat Jun 13 12:55:19 2026 by rpki-client