$ rpki-client -vvf rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft File: CA678C886D87F023B9297877BF550E88E90AE169.mft (raw, json) Hash identifier: UxzDuSJODSbu3NeHrZM6BBvakFPnhrgCh2rjRoIRIfc= Subject key identifier: CE:2F:C5:F3:63:62:DC:24:53:96:93:05:A7:2C:EC:96:CF:94:E8:95 Authority key identifier: CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 Certificate issuer: /CN=CA678C886D87F023B9297877BF550E88E90AE169 Certificate serial: 7C6AC39FB37AC1A7DBF202E2FCD2C0EEC8B628A8 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft Manifest number: 2E Signing time: Fri 12 Jun 2026 20:58:05 +0000 Manifest this update: Fri 12 Jun 2026 20:53:05 +0000 Manifest next update: Sat 13 Jun 2026 23:27:05 +0000 Files and hashes: 1: CA678C886D87F023B9297877BF550E88E90AE169.crl (hash: hrBjXDnyn2lOCLIF8JSAfzL43b/Wi3+tIFT4I1R1WWU=) 2: 34392e3231332e33342e302f32332d3234203d3e203231383539.roa (hash: fJnxPhgLX/rch2cog18IcRNcikXmBfffJ21WF3oWCTE=) 3: 34392e3231332e33342e302f32332d3234203d3e2037353336.roa (hash: UiYvDw3Nz5+XLnUJ6ot0sHBwCYvrMQN4qa4YEtJyIAc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 23:27:05 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 7c:6a:c3:9f:b3:7a:c1:a7:db:f2:02:e2:fc:d2:c0:ee:c8:b6:28:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA678C886D87F023B9297877BF550E88E90AE169 Validity Not Before: Jun 12 20:53:05 2026 GMT Not After : Jun 13 23:27:05 2026 GMT Subject: CN=CE2FC5F36362DC2453969305A72CEC96CF94E895 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:0f:d2:d5:5a:15:73:7c:41:cb:d1:8b:3f:83: 01:d4:44:f4:fd:43:bd:a1:35:41:ba:da:c1:bb:ca: 74:40:9f:76:ec:1f:93:7e:b1:98:34:12:d8:1c:20: 4e:d8:79:c3:db:70:64:4d:25:23:3b:74:5e:f3:c7: 16:3a:f4:c4:e7:ab:1c:d8:de:c3:c7:05:47:a6:39: 20:80:7d:0e:b4:7b:31:5b:8b:f9:8a:6a:3e:72:af: a7:b8:aa:8c:64:48:64:7d:4f:5a:83:37:33:98:61: ca:ac:2c:1e:d4:70:e5:e4:26:e8:e2:2c:83:01:80: 0a:01:52:ae:28:10:17:62:86:64:e5:89:ee:b0:d2: 71:af:91:a0:55:87:f3:e4:ec:87:d2:ce:35:fd:0d: 09:00:cb:32:ea:09:ad:bc:67:a0:b4:fd:5e:94:43: b9:f3:4e:c1:05:81:b1:ac:5f:08:48:05:1e:9b:25: 4c:70:b8:fe:3e:3b:50:d2:98:63:cb:6d:cf:ad:b9: bc:09:c1:ca:24:e2:91:d2:1d:ef:d7:82:00:96:0b: 23:e8:50:f6:d1:d6:8f:34:7e:97:08:7d:7a:72:20: 58:11:ff:36:b3:ea:93:0c:b2:d8:74:b2:eb:a1:57: 70:4b:09:42:b0:df:42:13:be:5e:63:02:30:e0:be: 8f:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:2F:C5:F3:63:62:DC:24:53:96:93:05:A7:2C:EC:96:CF:94:E8:95 X509v3 Authority Key Identifier: keyid:CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 7d:44:0e:04:27:f9:e3:89:f0:9b:f3:07:29:73:3e:dc:d4:c2: 1a:3c:76:63:15:40:6c:0d:a1:82:4f:c8:4c:6b:10:07:f5:3b: 84:73:4d:8e:4b:3b:c8:91:a0:f3:7d:c3:29:6e:7e:40:59:03: b5:45:54:39:b0:e0:28:5d:95:9c:79:52:11:ac:aa:b8:ae:57: 87:07:c9:d4:87:e5:e5:f4:72:4f:86:e7:bc:42:34:b3:1a:eb: 13:01:5f:81:d9:07:75:6b:47:3e:73:0f:76:b1:ae:c3:17:32: ab:e5:e2:a7:7e:a0:3d:d8:55:88:a1:57:7d:70:be:65:6c:bb: 5f:d2:db:e7:d8:ce:ce:0c:75:9f:12:86:d8:f3:a3:50:0c:38: 84:f9:a4:17:25:fe:4f:5b:e0:6a:92:39:38:e3:ed:c1:90:d4: 43:f6:6e:e0:4e:da:8e:6b:3e:3f:d7:65:42:84:77:ed:f0:84: ed:ae:fa:97:c8:e9:c3:16:a0:31:d2:87:78:42:cc:77:e6:fb: 58:9f:bd:5f:ca:c4:4b:2b:12:a7:49:f2:78:71:63:88:dd:19: 93:cc:e6:7e:bb:dc:01:1b:42:c6:f7:bc:66:ad:5c:0e:84:b3: 70:7e:7c:54:a5:42:94:96:d4:19:93:ae:22:42:45:3e:6e:4d: 22:89:b9:6c -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUfGrDn7N6wafb8gLi/NLA7si2KKgwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1NTBFODhF OTBBRTE2OTAeFw0yNjA2MTIyMDUzMDVaFw0yNjA2MTMyMzI3MDVaMDMxMTAvBgNV BAMTKENFMkZDNUYzNjM2MkRDMjQ1Mzk2OTMwNUE3MkNFQzk2Q0Y5NEU4OTUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDOD9LVWhVzfEHL0Ys/gwHURPT9 Q72hNUG62sG7ynRAn3bsH5N+sZg0EtgcIE7YecPbcGRNJSM7dF7zxxY69MTnqxzY 3sPHBUemOSCAfQ60ezFbi/mKaj5yr6e4qoxkSGR9T1qDNzOYYcqsLB7UcOXkJuji LIMBgAoBUq4oEBdihmTlie6w0nGvkaBVh/Pk7IfSzjX9DQkAyzLqCa28Z6C0/V6U Q7nzTsEFgbGsXwhIBR6bJUxwuP4+O1DSmGPLbc+tubwJwcok4pHSHe/XggCWCyPo UPbR1o80fpcIfXpyIFgR/zaz6pMMsth0suuhV3BLCUKw30ITvl5jAjDgvo8BAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUzi/F82Ni3CRTlpMFpyzsls+U6JUwHwYDVR0j BBgwFoAUymeMiG2H8CO5KXh3v1UOiOkK4WkwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0hJWUlZ SS8wL0NBNjc4Qzg4NkQ4N0YwMjNCOTI5Nzg3N0JGNTUwRTg4RTkwQUUxNjkuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1 NTBFODhFOTBBRTE2OS5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NISVlJWUkvMC9DQTY3OEM4ODZE ODdGMDIzQjkyOTc4NzdCRjU1MEU4OEU5MEFFMTY5Lm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAfUQOBCf5 44nwm/MHKXM+3NTCGjx2YxVAbA2hgk/ITGsQB/U7hHNNjks7yJGg833DKW5+QFkD tUVUObDgKF2VnHlSEayquK5XhwfJ1Ifl5fRyT4bnvEI0sxrrEwFfgdkHdWtHPnMP drGuwxcyq+Xip36gPdhViKFXfXC+ZWy7X9Lb59jOzgx1nxKG2POjUAw4hPmkFyX+ T1vgapI5OOPtwZDUQ/Zu4E7ajms+P9dlQoR37fCE7a76l8jpwxagMdKHeELMd+b7 WJ+9X8rESysSp0nyeHFjiN0Zk8zmfrvcARtCxve8Zq1cDoSzcH58VKVClJbUGZOu IkJFPm5NIom5bA== -----END CERTIFICATE-----Generated at Sat Jun 13 09:09:42 2026 by rpki-client