$ rpki-client -vvf rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.mft File: 3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.mft (raw, json) Hash identifier: pa5LgJVYgyy7zk/bJMBTeyh+vy54KWKf7m97G1v0k1I= Subject key identifier: 9D:BD:F5:A1:50:64:89:C9:0C:8A:A5:E3:9B:BE:81:D1:9A:73:37:FB Authority key identifier: 3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF Certificate issuer: /CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Certificate serial: 1FA1C516B9E7B8BF0E73B18538F2ABF5330F245E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.mft Manifest number: 42 Signing time: Sat 13 Jun 2026 03:53:55 +0000 Manifest this update: Sat 13 Jun 2026 03:48:55 +0000 Manifest next update: Sun 14 Jun 2026 04:43:55 +0000 Files and hashes: 1: 32372e3130352e302e302f31362d3234203d3e203138313832.roa (hash: LmAW7PeQcegNvt2M9HNQbyVlYetXrEvSkZVhVCt+ooY=) 2: 33392e312e34302e302f32322d3234203d3e2039393232.roa (hash: z5CRvkmrV5KJFcdljtPbVmXZST0Ame/3ck3rEFg8aGM=) 3: 33392e312e302e302f31362d3234203d3e203138313832.roa (hash: CffvCFfDEQybZwp62g5aXFZex+pvcH1gSZG/H/2FRO0=) 4: 33392e312e36342e302f32302d3234203d3e2039393232.roa (hash: juMnZBysyILQxgKPuDDStLHZSQ2rmujkQS4MrnwwJ/s=) 5: 33392e312e34352e302f32342d3234203d3e2039393232.roa (hash: ryqYKYb9ZEnNDprKt9KNFJe6hMX8qggWXnAtJIFQzic=) 6: 33392e312e39362e302f32302d3234203d3e203138343139.roa (hash: W4A9R2ruP8BpTxaCGm9udnAE3yQmyw/+pOzjhpIfz0Y=) 7: 33392e312e302e302f32302d3234203d3e2039393232.roa (hash: XsN+8OXikSiKwT554Z/8JtJMRKlDNFZ1zHxkg1sQLrI=) 8: 33392e312e34372e302f32342d3234203d3e2039393232.roa (hash: Drtv5JpDCKBUTLlwm2QdYijdfjd//4f1UxcFzmvf4Yg=) 9: 36312e36342e36342e302f31382d3234203d3e203138313832.roa (hash: ZufTl96QJSTGjjHHnlV902JYYFFNTIDFxh070LDkULs=) 10: 33392e312e33322e302f32312d3234203d3e2039393232.roa (hash: VNQcRXeOE/j/rdkFQwcA1LclvGgGVBSj6YxVH+Y+B5E=) 11: 3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl (hash: QUZLjdBpdNto1S79tya2zqHA3SlVspqfq5tbzEmp5V4=) 12: 36312e36322e302e302f31362d3234203d3e203138313832.roa (hash: ifIFQrYUhM297jse0mQ1w+HqkUSGHCWju3weIN7aUQs=) 13: 33392e312e31362e302f32302d3234203d3e2039393232.roa (hash: o5tck8QLFY02tn9jNvUElQeuTpHy+ammIuF39TN/Cn4=) 14: 32372e3130352e38322e302f32342d3234203d3e203332373837.roa (hash: 1sg7Wk2e/ZdonH5PhiuzAv6jLByDCAyoVpPFtRuPk6A=) 15: 3231392e38342e302e302f31362d3234203d3e203138313832.roa (hash: 8fiqTkiu9MOMh1suF5MiCOJuDwIsVQ34W7YS4b6Ylb8=) 16: 33392e312e34362e302f32342d3234203d3e2039393232.roa (hash: onwq6khytNt8j9JeiESYQPMZkrctbzkf2UmQhqWpjYw=) 17: 33392e312e34342e302f32342d3234203d3e2039393232.roa (hash: dh03y3MeArVsb+oESUBRNDxrsrn5jbUmgM4ZXBS0tXU=) 18: 33392e312e34382e302f32302d3234203d3e2039393232.roa (hash: TTEoeJ1Nt73LCduyQM6y6wzx3+jdUSQumP9bhes2+UY=) 19: 3231392e38352e302e302f31362d3234203d3e203138313832.roa (hash: TkTwJY6tgXdxY0w+yf0JfiJDrdGZLKSEjlzpI3ieJUU=) 20: 36312e35362e3132382e302f31392d3234203d3e203138313832.roa (hash: Wz4YbIAlDY3Rql9HeEh2BYj6+M1ftVPyXgPvQ2mi8EE=) 21: 323430343a38303a3a2f32382d3438203d3e203138313832.roa (hash: gD1x4xXT4Z6eEJ+bwB2oDJNQCUbNjWpPyKuQClgUoNQ=) 22: 32372e3130352e3230362e302f32342d3234203d3e203435343734.roa (hash: 9Cuads8Xj/H3SUpgMMXmElqrysGMLgLQcPn8+WPxZaA=) 23: 36312e36342e3132382e302f31372d3234203d3e203138313832.roa (hash: AP04YgE4U4X0DbCKpFBdjCNZlauxNQuycSDnxfq2LBo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 00:20:21 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:a1:c5:16:b9:e7:b8:bf:0e:73:b1:85:38:f2:ab:f5:33:0f:24:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF Validity Not Before: Jun 13 03:48:55 2026 GMT Not After : Jun 14 04:43:55 2026 GMT Subject: CN=9DBDF5A1506489C90C8AA5E39BBE81D19A7337FB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:09:90:f7:7e:29:5d:a5:a5:62:b3:1e:1c:79: 73:03:2b:76:5e:b9:82:19:12:2b:84:37:3b:f0:9a: c4:44:f8:5b:00:97:57:66:79:24:67:f0:7c:d1:b7: e6:10:4a:27:af:8f:c0:7f:6e:6e:a6:cb:ed:1e:57: 67:45:8b:33:84:72:21:00:79:28:88:aa:04:20:cd: b0:93:3c:ed:7b:68:c8:c0:28:fe:20:b5:99:7c:2c: e3:90:00:81:ad:a1:85:30:b5:9b:c4:f7:d7:08:bb: 1a:34:7a:d3:62:35:28:63:6f:e3:25:63:8c:06:4d: 91:36:8f:37:35:05:9c:8f:eb:80:69:7c:64:ab:b6: 0c:45:fb:fb:81:2f:b8:9d:74:ee:c7:e0:c6:f0:29: f6:2f:b4:97:4b:11:ec:4b:5c:db:eb:75:97:d5:03: 3e:f5:da:0f:e3:d8:15:00:85:58:b3:b2:86:ba:61: c0:d8:21:73:ab:f1:c0:87:2e:b2:40:e8:ba:ee:4e: d7:46:05:d4:f7:05:3a:94:cb:1f:d6:1f:23:c1:ab: d5:12:a6:73:f0:e2:09:16:90:d3:e7:08:66:dd:f4: 37:09:c2:27:32:02:20:fd:d4:9b:ab:38:a3:d3:3f: 0a:8d:93:5c:ea:17:40:33:52:39:d4:fb:01:08:f0: 9b:ef Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9D:BD:F5:A1:50:64:89:C9:0C:8A:A5:E3:9B:BE:81:D1:9A:73:37:FB X509v3 Authority Key Identifier: keyid:3F:6D:33:C9:B3:9C:FC:95:0A:2D:3D:BC:78:13:1E:1A:AF:8C:C8:EF X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SONET/0/3F6D33C9B39CFC950A2D3DBC78131E1AAF8CC8EF.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 4c:e4:5b:92:03:ba:e0:da:f8:02:e7:6b:9a:01:de:b8:5b:72: 1e:e6:0e:b1:95:f7:05:ee:b6:2e:2b:9f:0e:71:29:47:69:f8: 12:23:f6:c6:42:29:91:a2:d6:af:34:07:03:6e:17:1d:ae:68: 55:30:0a:70:1b:84:04:16:49:4d:2a:ad:3b:50:7e:51:56:3c: cb:57:33:48:d2:f7:4b:f3:a9:19:4b:98:fd:f1:87:12:06:fc: 34:89:dc:4e:a9:79:35:30:ec:58:99:71:24:89:10:f3:3a:67: b3:84:99:99:ab:3c:cb:da:46:0a:ee:10:fe:a0:35:88:e5:33: 0e:7d:91:e4:18:0b:b9:5f:03:e2:16:e0:73:dc:37:98:01:4c: b7:b4:a2:80:82:9d:bd:07:d6:c4:e4:13:87:dc:af:07:52:e1: 04:c7:e5:af:c6:8e:4c:a0:9a:ba:bb:b3:84:9e:15:d4:2c:0c: 4a:9b:1b:43:ba:ed:6c:67:cb:22:1b:fa:94:9a:41:2b:79:1e: 8c:4c:a5:b0:36:28:0c:71:ea:9c:1b:6f:eb:14:c3:9e:41:51: 91:b5:e6:2f:d9:a4:72:ce:36:e0:83:f5:7e:49:ff:f0:b5:96: 32:fd:1b:3d:20:a3:4c:6d:7e:c8:41:79:5b:60:60:b3:40:23: e6:7f:fa:31 -----BEGIN CERTIFICATE----- MIIE4jCCA8qgAwIBAgIUH6HFFrnnuL8Oc7GFOPKr9TMPJF4wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoM0Y2RDMzQzlCMzlDRkM5NTBBMkQzREJDNzgxMzFFMUFB RjhDQzhFRjAeFw0yNjA2MTMwMzQ4NTVaFw0yNjA2MTQwNDQzNTVaMDMxMTAvBgNV BAMTKDlEQkRGNUExNTA2NDg5QzkwQzhBQTVFMzlCQkU4MUQxOUE3MzM3RkIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCQCZD3fildpaVisx4ceXMDK3Ze uYIZEiuENzvwmsRE+FsAl1dmeSRn8HzRt+YQSievj8B/bm6my+0eV2dFizOEciEA eSiIqgQgzbCTPO17aMjAKP4gtZl8LOOQAIGtoYUwtZvE99cIuxo0etNiNShjb+Ml Y4wGTZE2jzc1BZyP64BpfGSrtgxF+/uBL7iddO7H4MbwKfYvtJdLEexLXNvrdZfV Az712g/j2BUAhVizsoa6YcDYIXOr8cCHLrJA6LruTtdGBdT3BTqUyx/WHyPBq9US pnPw4gkWkNPnCGbd9DcJwicyAiD91JurOKPTPwqNk1zqF0AzUjnU+wEI8JvvAgMB AAGjggHsMIIB6DAdBgNVHQ4EFgQUnb31oVBkickMiqXjm76B0ZpzN/swHwYDVR0j BBgwFoAUP20zybOc/JUKLT28eBMeGq+MyO8wDgYDVR0PAQH/BAQDAgeAMGIGA1Ud HwRbMFkwV6BVoFOGUXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU09ORVQv MC8zRjZEMzNDOUIzOUNGQzk1MEEyRDNEQkM3ODEzMUUxQUFGOENDOEVGLmNybDBv BggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS8xLzNGNkQzM0M5QjM5Q0ZDOTUwQTJEM0RCQzc4MTMx RTFBQUY4Q0M4RUYuY2VyMG0GCCsGAQUFBwELBGEwXzBdBggrBgEFBQcwC4ZRcnN5 bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9TT05FVC8wLzNGNkQzM0M5QjM5Q0ZD OTUwQTJEM0RCQzc4MTMxRTFBQUY4Q0M4RUYubWZ0MBgGA1UdIAEB/wQOMAwwCgYI KwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADAVBggr BgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBM5FuSA7rg2vgC 52uaAd64W3Ie5g6xlfcF7rYuK58OcSlHafgSI/bGQimRotavNAcDbhcdrmhVMApw G4QEFklNKq07UH5RVjzLVzNI0vdL86kZS5j98YcSBvw0idxOqXk1MOxYmXEkiRDz OmezhJmZqzzL2kYK7hD+oDWI5TMOfZHkGAu5XwPiFuBz3DeYAUy3tKKAgp29B9bE 5BOH3K8HUuEEx+Wvxo5MoJq6u7OEnhXULAxKmxtDuu1sZ8siG/qUmkEreR6MTKWw NigMceqcG2/rFMOeQVGRteYv2aRyzjbgg/V+Sf/wtZYy/Rs9IKNMbX7IQXlbYGCz QCPmf/ox -----END CERTIFICATE-----Generated at Sat Jun 13 09:05:24 2026 by rpki-client