$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft File: RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft (raw, json) Hash identifier: 0qGa01pT2P6/5q4gWtfUMZkdiCAKzrnziywCwyBM3EU= Subject key identifier: EB:A3:97:2C:CF:2A:C1:97:E5:86:C0:AD:8B:74:0D:C3:6C:79:B1:B3 Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B Certificate serial: 0E24 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft Manifest number: 0E02 Signing time: Fri 17 Apr 2026 23:34:42 +0000 Manifest this update: Fri 17 Apr 2026 23:34:42 +0000 Manifest next update: Sun 19 Apr 2026 23:34:42 +0000 Files and hashes: 1: FYcm3-BAzLarrqeCYV2whY0U-zo.roa (hash: BaTk+IlRTMk3VliwXqlPH52YkxVtp5DBAOqd4jq6OiU=) 2: RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl (hash: seu6d5S7cezK4LeWAfWHbIJ0lMM1Y7nsaIviJRoEDFY=) 3: TsN0H5pD6Qm0_O0vCqm-6LmqAwg.roa (hash: QK6bO3POqwYLqN6of1UT1LdwgPFXVK0OJbizi519XWY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 08:34:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3620 (0xe24) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B Validity Not Before: Apr 17 23:34:42 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EBA3972CCF2AC197E586C0AD8B740DC36C79B1B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1c:70:15:e8:47:0b:5c:cf:90:8c:df:cd:69: 20:52:4c:f0:94:21:ba:af:0c:c8:7d:b3:9b:43:3f: a9:ba:1e:ea:bc:53:ef:72:c0:4f:fc:bb:b9:9a:63: 79:52:fb:a7:80:e8:c1:45:c6:9f:2b:43:84:a0:c5: 20:e4:5a:c2:1f:e2:2f:06:cf:d2:d6:16:05:26:af: e6:d6:76:af:7b:84:98:e9:6d:b6:84:92:6e:0b:b1: f7:2a:ab:94:42:e0:f3:c1:28:a4:7d:ce:c5:f8:f3: 9f:b6:1e:78:f0:7f:9b:f2:1d:4e:23:b0:22:0b:cf: 90:b5:e3:4f:ab:e9:1e:9b:c3:da:13:ce:3b:20:c2: 56:9c:d7:48:31:f2:1c:f3:95:6e:63:09:be:69:92: fa:07:ca:5d:c5:72:72:26:72:b5:f9:f5:4b:ac:40: b1:5a:53:c3:7b:be:8c:5e:cd:fb:81:9a:aa:3f:f3: de:98:2d:3e:77:8f:d9:20:67:13:31:1f:47:ad:a1: 87:11:a7:34:8c:72:b1:03:28:9b:b8:7d:4b:28:ed: 0c:37:e8:ea:75:bb:56:19:d8:b9:76:70:39:cc:11: 35:de:13:3d:c1:36:5b:5b:5e:7f:8f:7e:b9:4e:b7: a4:aa:a5:25:16:70:65:b2:40:fa:01:44:f0:f8:7c: 9d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A3:97:2C:CF:2A:C1:97:E5:86:C0:AD:8B:74:0D:C3:6C:79:B1:B3 X509v3 Authority Key Identifier: keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 65:b8:94:cc:73:11:ce:40:e3:fd:28:10:08:14:f0:95:8e:5d: 9d:28:a5:a7:d0:fc:fd:c1:ff:68:ed:61:11:c4:fc:ef:66:95: de:a0:3b:78:50:dc:bb:01:31:26:4b:be:23:4e:40:44:5b:e9: 50:bf:d2:44:bb:f5:c0:95:76:fc:9b:d1:d9:7b:37:0f:ae:c8: 29:4c:e4:34:0b:fc:33:22:26:99:8a:78:82:08:48:d2:3f:d6: ea:51:d3:4b:57:0b:3f:44:3f:db:a2:6a:93:0e:e6:4a:a2:de: 86:be:62:c4:16:5d:9e:5e:df:b6:38:89:92:24:e2:55:59:e3: 6d:d5:80:2c:1f:ab:c9:5a:95:63:a5:42:49:56:c1:c2:74:e5: 20:db:70:84:a0:cc:ad:1c:b8:01:cb:60:ca:b3:30:35:e9:e3: 34:2a:08:7e:5f:84:2e:7e:db:66:e9:44:0c:26:ff:d3:b5:18: 68:2f:19:09:2e:40:4d:df:a5:5b:c0:e6:05:2d:a2:05:c1:8b: 94:f8:d7:b7:00:c9:62:51:85:af:1d:97:6d:1d:b4:bd:32:95: 18:86:6c:f8:2f:16:c8:26:99:83:d7:88:05:5b:a9:00:91:33: a8:ff:b4:6d:8d:00:e5:e7:f3:58:70:b5:fe:a0:d2:4d:30:76: 9d:70:70:e0 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDiQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDY0 MEQ5ODhFQzgxNDZCQTQzMDU5NjAxMjEyMkQxQTFDRkMxQzM2QjAeFw0yNjA0MTcy MzM0NDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVCQTM5NzJDQ0YyQUMx OTdFNTg2QzBBRDhCNzQwREMzNkM3OUIxQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqHHAV6EcLXM+QjN/NaSBSTPCUIbqvDMh9s5tDP6m6Huq8U+9y wE/8u7maY3lS+6eA6MFFxp8rQ4SgxSDkWsIf4i8Gz9LWFgUmr+bWdq97hJjpbbaE km4Lsfcqq5RC4PPBKKR9zsX485+2Hnjwf5vyHU4jsCILz5C140+r6R6bw9oTzjsg wlac10gx8hzzlW5jCb5pkvoHyl3FcnImcrX59UusQLFaU8N7voxezfuBmqo/896Y LT53j9kgZxMxH0etoYcRpzSMcrEDKJu4fUso7Qw36Op1u1YZ2Ll2cDnMETXeEz3B NltbXn+PfrlOt6SqpSUWcGWyQPoBRPD4fJ0nAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQU66OXLM8qwZflhsCti3QNw2x5sbMwHwYDVR0jBBgwFoAURkDZiOyBRrpDBZYB ISLRoc/Bw2swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVS L1JrRFppT3lCUnJwREJaWUJJU0xSb2NfQncycy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUmtEWmlPeUJScnBEQlpZQklTTFJvY19CdzJzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVSL1JrRFppT3lCUnJwREJaWUJJ U0xSb2NfQncycy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBl uJTMcxHOQOP9KBAIFPCVjl2dKKWn0Pz9wf9o7WERxPzvZpXeoDt4UNy7ATEmS74j TkBEW+lQv9JEu/XAlXb8m9HZezcPrsgpTOQ0C/wzIiaZiniCCEjSP9bqUdNLVws/ RD/bomqTDuZKot6GvmLEFl2eXt+2OImSJOJVWeNt1YAsH6vJWpVjpUJJVsHCdOUg 23CEoMytHLgBy2DKszA16eM0Kgh+X4Qufttm6UQMJv/TtRhoLxkJLkBN36VbwOYF LaIFwYuU+Ne3AMliUYWvHZdtHbS9MpUYhmz4LxbIJpmD14gFW6kAkTOo/7RtjQDl 5/NYcLX+oNJNMHadcHDg -----END CERTIFICATE-----Generated at Sun Apr 19 08:13:21 2026 by rpki-client