$ rpki-client -vvf rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft File: 68C2C435D736FC21F07F0FD09824C8408E615E50.mft (raw, json) Hash identifier: +oZSCLY9nf8MVrCqku9O86Isx/Lb8pFctl2ZEAxzH+U= Subject key identifier: 7F:A0:69:9B:70:92:F9:EC:61:FE:55:1A:AC:94:EC:68:63:16:E3:A1 Authority key identifier: 68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 Certificate issuer: /CN=68C2C435D736FC21F07F0FD09824C8408E615E50 Certificate serial: 1F89FE18787CC9E8B0E5E525BA1B5BE90BA5A875 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft Manifest number: 31 Signing time: Sat 13 Jun 2026 08:39:30 +0000 Manifest this update: Sat 13 Jun 2026 08:34:30 +0000 Manifest next update: Sun 14 Jun 2026 09:06:30 +0000 Files and hashes: 1: 68C2C435D736FC21F07F0FD09824C8408E615E50.crl (hash: SA0fXnbU34n+WD45RL8DcJ+jcuSZtHh/LMAcTmzFT40=) 2: 323430323a346465303a3a2f33322d3438203d3e20323135393933.roa (hash: hn8g2szDRcwiFI4NluomCU2oCcAtBWUgOMXavAqk71Y=) 3: 323430323a346465303a3a2f33322d3438203d3e20313331363331.roa (hash: OfflDa5KhbNli0ingnwLTuILzm6N60MY2kq1CLNfkuU=) 4: 323430323a346465303a3a2f33322d3438203d3e20313432303436.roa (hash: utFWN+nIe6ybPW2ARjXAofwG1zRBUaKHEqvyyRToBOU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.crl rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 14 Jun 2026 09:06:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1f:89:fe:18:78:7c:c9:e8:b0:e5:e5:25:ba:1b:5b:e9:0b:a5:a8:75 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=68C2C435D736FC21F07F0FD09824C8408E615E50 Validity Not Before: Jun 13 08:34:30 2026 GMT Not After : Jun 14 09:06:30 2026 GMT Subject: CN=7FA0699B7092F9EC61FE551AAC94EC686316E3A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:b6:75:a7:16:dd:a2:d3:1b:d2:b1:ff:5e:18: 8a:04:b3:04:03:16:d8:2b:41:80:dd:de:5e:e6:0a: b6:f9:83:22:58:f7:14:7f:62:0a:56:14:b2:fa:86: 0a:34:7c:40:96:be:06:b8:35:66:bd:de:c0:21:41: d6:08:6d:38:14:d1:23:49:bf:7d:85:2c:7b:f5:9b: 32:16:c7:60:6b:a4:69:c6:5a:cd:d2:3e:5b:bb:50: 63:59:f0:6a:ec:7b:e4:3d:fe:dd:27:e9:14:5b:b6: dc:62:6e:7e:c4:4f:a5:07:48:f4:7d:3f:1f:be:73: 89:e7:4f:f3:fd:4b:38:df:b4:f5:bc:14:96:9e:94: 7f:56:4e:dd:9e:3f:4f:66:09:24:0a:4f:74:da:21: 79:02:8d:8a:e7:85:c3:46:9a:d0:0a:af:4e:24:66: b3:24:c8:a9:9b:5b:37:f8:23:c8:28:3f:96:d8:c2: 15:c0:dd:7d:ab:56:2a:a8:dd:6d:f3:ff:cd:2a:4e: bf:a8:2b:59:50:6c:78:08:1f:69:b0:d3:40:cc:0a: 56:26:46:0f:d2:42:63:e4:f7:d8:86:42:50:d8:0d: 59:26:c1:a0:0f:22:48:8b:14:55:39:81:83:74:5e: 98:5e:25:8c:3e:20:7d:fb:bf:fb:45:30:c1:d0:7a: 66:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7F:A0:69:9B:70:92:F9:EC:61:FE:55:1A:AC:94:EC:68:63:16:E3:A1 X509v3 Authority Key Identifier: keyid:68:C2:C4:35:D7:36:FC:21:F0:7F:0F:D0:98:24:C8:40:8E:61:5E:50 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/68C2C435D736FC21F07F0FD09824C8408E615E50.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TW1033/0/68C2C435D736FC21F07F0FD09824C8408E615E50.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 79:8f:42:03:b5:21:f0:21:ec:76:7b:40:6e:63:20:fb:1e:ed: 26:fd:99:f8:d3:6d:d2:b9:a3:6a:94:63:24:8a:24:6f:9b:e3: a5:34:7a:16:80:26:55:47:ce:95:6d:45:10:09:e8:2a:9a:e8: 15:ea:de:47:99:1c:37:c1:b0:19:f4:4b:e7:cd:52:f8:bd:71: e2:c5:8f:f5:e5:17:37:78:67:ec:1f:5f:d0:87:2d:63:dc:cf: b9:34:78:74:df:5b:82:96:de:93:bb:30:7e:1b:14:13:5b:ac: e4:a1:55:b3:12:08:3e:bd:0f:ea:28:9a:98:f5:27:79:00:1b: 98:d6:43:46:26:60:8d:c5:50:6b:0b:5e:83:38:63:e7:ff:1e: 5c:d8:6d:a4:90:19:80:76:7f:51:1f:bc:85:ec:0c:83:1a:43: b9:af:2a:48:39:c7:d3:fd:66:96:a9:eb:3b:7a:82:95:87:9b: 57:ee:83:34:28:8f:67:01:38:60:70:f0:4a:a1:69:34:b8:80: 49:28:5d:14:b8:c1:d3:0f:35:cb:78:aa:92:d7:4b:e2:49:03: 4e:75:98:2e:bf:52:21:ff:ca:0d:87:a7:51:df:be:28:65:87: 10:2d:93:8f:62:c3:0f:30:e3:0c:8a:98:df:05:08:3d:64:df: ef:58:3f:a7 -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIUH4n+GHh8yeiw5eUluhtb6QulqHUwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNjhDMkM0MzVENzM2RkMyMUYwN0YwRkQwOTgyNEM4NDA4 RTYxNUU1MDAeFw0yNjA2MTMwODM0MzBaFw0yNjA2MTQwOTA2MzBaMDMxMTAvBgNV BAMTKDdGQTA2OTlCNzA5MkY5RUM2MUZFNTUxQUFDOTRFQzY4NjMxNkUzQTEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCetnWnFt2i0xvSsf9eGIoEswQD FtgrQYDd3l7mCrb5gyJY9xR/YgpWFLL6hgo0fECWvga4NWa93sAhQdYIbTgU0SNJ v32FLHv1mzIWx2BrpGnGWs3SPlu7UGNZ8Grse+Q9/t0n6RRbttxibn7ET6UHSPR9 Px++c4nnT/P9SzjftPW8FJaelH9WTt2eP09mCSQKT3TaIXkCjYrnhcNGmtAKr04k ZrMkyKmbWzf4I8goP5bYwhXA3X2rViqo3W3z/80qTr+oK1lQbHgIH2mw00DMClYm Rg/SQmPk99iGQlDYDVkmwaAPIkiLFFU5gYN0XpheJYw+IH37v/tFMMHQemarAgMB AAGjggHuMIIB6jAdBgNVHQ4EFgQUf6Bpm3CS+exh/lUarJTsaGMW46EwHwYDVR0j BBgwFoAUaMLENdc2/CHwfw/QmCTIQI5hXlAwDgYDVR0PAQH/BAQDAgeAMGMGA1Ud HwRcMFowWKBWoFSGUnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMz LzAvNjhDMkM0MzVENzM2RkMyMUYwN0YwRkQwOTgyNEM4NDA4RTYxNUU1MC5jcmww bwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25p Yy50dy9ycGtpL1RXTklDQ0EvMS82OEMyQzQzNUQ3MzZGQzIxRjA3RjBGRDA5ODI0 Qzg0MDhFNjE1RTUwLmNlcjBuBggrBgEFBQcBCwRiMGAwXgYIKwYBBQUHMAuGUnJz eW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFcxMDMzLzAvNjhDMkM0MzVENzM2 RkMyMUYwN0YwRkQwOTgyNEM4NDA4RTYxNUU1MC5tZnQwGAYDVR0gAQH/BA4wDDAK BggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUG CCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAHmPQgO1IfAh 7HZ7QG5jIPse7Sb9mfjTbdK5o2qUYySKJG+b46U0ehaAJlVHzpVtRRAJ6Cqa6BXq 3keZHDfBsBn0S+fNUvi9ceLFj/XlFzd4Z+wfX9CHLWPcz7k0eHTfW4KW3pO7MH4b FBNbrOShVbMSCD69D+oompj1J3kAG5jWQ0YmYI3FUGsLXoM4Y+f/HlzYbaSQGYB2 f1EfvIXsDIMaQ7mvKkg5x9P9Zpap6zt6gpWHm1fugzQoj2cBOGBw8EqhaTS4gEko XRS4wdMPNct4qpLXS+JJA051mC6/UiH/yg2Hp1HfvihlhxAtk49iww8w4wyKmN8F CD1k3+9YP6c= -----END CERTIFICATE-----Generated at Sat Jun 13 21:18:31 2026 by rpki-client