$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft File: eVqR7UCqoVuavKIcIFs27HSUn8g.mft (raw, json) Hash identifier: tkhTGQNDVbjjLSad3EjfyCRQnBHhnC1IrVLy+KQaRSY= Subject key identifier: 36:0F:99:CB:59:D9:46:09:BC:F8:35:D3:0D:15:41:BD:FA:5C:04:C3 Authority key identifier: 79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 Certificate issuer: /CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Certificate serial: 0DF0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft Manifest number: 0DB7 Signing time: Sun 01 Mar 2026 14:54:17 +0000 Manifest this update: Sun 01 Mar 2026 14:54:17 +0000 Manifest next update: Tue 03 Mar 2026 14:54:17 +0000 Files and hashes: 1: 0lNmgdKNyQzK1YWH2IiTtkVBJpw.roa (hash: EFFixv4NWVFVAKKEs5tkYmFVD8maspWaD14gCZKFpVM=) 2: 7S7e62bEKmwRevYuUM8wpzIoIgg.roa (hash: S6yLfLdfpAiHyfEhnHNfXx2RN90/77nYlzGqQO9hQ8U=) 3: DbTR_42PxRdDjcfvOR5JRwqUvhY.roa (hash: jza32B/YvCCfpjBcKH45DbMdz+IvlEGkrRwOsSZcIkQ=) 4: JuDMIb01Y3YH5IEOMTVTmwmQzxg.roa (hash: ljCSLW9BBFTkLDa2P48eRhMcw4Qi43KcrLlic5mkWDI=) 5: MG5wPdJRdC7MVj4Zbjj5r-zzPsA.roa (hash: oGvwgoEKgK9g4aM/tlO8vSaVH2LIsoorQYL1VF1JGGY=) 6: _40La91SdSDUNpi13LuUPWFDMfA.roa (hash: crACswso246NZQXS0mCcLTzq/nfSkzs3LBj99oTSlkk=) 7: eVqR7UCqoVuavKIcIFs27HSUn8g.crl (hash: 7izF55y2Mz16jBmyb3PJqA5J13wVIZvtgv8d0779RbM=) 8: puT1b2Iu_TbWo3ohvhl5H8VPBkQ.roa (hash: IvmrZkmchOWAZ4kDbMXu/dO/7xTr50Vh5Zdz9ILC+RU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 07:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3568 (0xdf0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=795A91ED40AAA15B9ABCA21C205B36EC74949FC8 Validity Not Before: Mar 1 14:54:17 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=360F99CB59D94609BCF835D30D1541BDFA5C04C3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:44:5b:7b:6f:7e:7f:a2:4a:ea:41:67:ba:30: 6f:53:e1:42:8f:44:78:86:83:b2:06:a5:48:d8:13: 6f:a8:9e:ef:d1:53:5b:b9:29:82:de:c1:d2:08:04: 3a:ad:66:03:16:a8:98:41:f1:15:5a:3b:a6:c5:e6: e4:bb:64:6b:a8:64:d7:d7:93:fb:cd:b2:f2:29:5b: b4:af:58:25:25:7e:38:3f:99:e1:87:bd:83:b0:4d: ae:b4:9e:45:8d:7d:1e:76:f3:98:5e:96:77:b8:fd: 72:bd:5c:dc:8c:13:8b:46:2d:35:a0:5d:a5:18:36: 13:d2:98:ab:8e:f4:e1:e5:33:5f:75:14:b7:0e:c9: db:14:30:a4:83:7f:8a:59:bc:56:30:9c:05:be:33: d3:9f:3c:63:50:87:9b:61:89:8f:3e:c9:d6:38:b5: c8:67:15:55:1a:b9:2c:54:16:90:e1:62:4b:e9:a4: ef:1d:b5:32:da:eb:81:9d:79:ac:fb:28:4d:ce:20: cc:76:cb:b4:fe:fd:c2:02:da:3c:ec:bd:9d:89:a3: 02:14:8c:c1:de:2c:fa:60:5e:58:b4:de:29:c0:40: 0d:65:04:6f:61:02:39:1a:7d:80:12:71:43:61:dc: 91:13:40:ff:cf:8a:3d:cc:e7:a4:93:59:b8:23:fb: e1:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:0F:99:CB:59:D9:46:09:BC:F8:35:D3:0D:15:41:BD:FA:5C:04:C3 X509v3 Authority Key Identifier: keyid:79:5A:91:ED:40:AA:A1:5B:9A:BC:A2:1C:20:5B:36:EC:74:94:9F:C8 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/eVqR7UCqoVuavKIcIFs27HSUn8g.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CENTROID/eVqR7UCqoVuavKIcIFs27HSUn8g.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:25:a1:42:6f:0d:5f:bd:38:fb:31:92:5c:84:12:eb:1d:a2: 85:22:f0:0c:33:0b:35:64:05:04:67:ae:f4:03:e0:a5:2d:25: 30:53:4d:91:59:01:8d:c1:d3:b1:f5:55:6c:77:d0:77:1c:f1: 00:21:fd:9a:d8:8f:5a:67:7a:84:33:cb:c9:bf:56:c6:0f:15: 44:dc:0a:2d:be:a8:67:5e:cf:29:f5:09:c1:fb:09:cf:a1:70: 4e:1f:80:6e:96:5a:9c:e7:cf:4e:59:e1:84:bc:3f:57:79:99: 54:a1:91:ce:ba:b2:6d:ee:eb:a9:57:62:56:46:c9:92:17:33: fa:a6:cc:76:a2:5e:e5:3e:78:5b:db:d9:86:dc:f6:43:57:89: 48:1b:46:dc:8c:1e:31:71:5b:0e:a1:61:eb:d2:ba:d7:9d:7a: a1:7d:d7:22:25:38:08:bb:fe:fc:f3:4d:18:84:14:84:20:09: 48:a8:bf:1c:50:41:b4:73:97:0c:c7:47:23:3d:16:82:33:d8: ce:1f:e6:ec:45:e5:37:fd:3e:74:17:c0:fc:df:1f:04:e7:ff: 1c:bd:8e:59:3b:97:7b:31:5a:51:cb:07:6f:74:14:4e:6d:1e: 07:e7:c9:1d:5e:43:a0:01:72:59:9a:cc:8b:c4:ef:7c:90:93: ad:5d:3f:09 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDfAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzk1 QTkxRUQ0MEFBQTE1QjlBQkNBMjFDMjA1QjM2RUM3NDk0OUZDODAeFw0yNjAzMDEx NDU0MTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2MEY5OUNCNTlEOTQ2 MDlCQ0Y4MzVEMzBEMTU0MUJERkE1QzA0QzMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIRFt7b35/okrqQWe6MG9T4UKPRHiGg7IGpUjYE2+onu/RU1u5 KYLewdIIBDqtZgMWqJhB8RVaO6bF5uS7ZGuoZNfXk/vNsvIpW7SvWCUlfjg/meGH vYOwTa60nkWNfR5285helne4/XK9XNyME4tGLTWgXaUYNhPSmKuO9OHlM191FLcO ydsUMKSDf4pZvFYwnAW+M9OfPGNQh5thiY8+ydY4tchnFVUauSxUFpDhYkvppO8d tTLa64Gdeaz7KE3OIMx2y7T+/cIC2jzsvZ2JowIUjMHeLPpgXli03inAQA1lBG9h AjkafYAScUNh3JETQP/Pij3M56STWbgj++GnAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUNg+Zy1nZRgm8+DXTDRVBvfpcBMMwHwYDVR0jBBgwFoAUeVqR7UCqoVuavKIc IFs27HSUn8gwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0VOVFJP SUQvZVZxUjdVQ3FvVnVhdktJY0lGczI3SFNVbjhnLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9lVnFSN1VDcW9WdWF2S0ljSUZzMjdIU1VuOGcuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DRU5UUk9JRC9lVnFSN1VDcW9WdWF2 S0ljSUZzMjdIU1VuOGcubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAViWhQm8NX704+zGSXIQS6x2ihSLwDDMLNWQFBGeu9APgpS0lMFNNkVkBjcHT sfVVbHfQdxzxACH9mtiPWmd6hDPLyb9Wxg8VRNwKLb6oZ17PKfUJwfsJz6FwTh+A bpZanOfPTlnhhLw/V3mZVKGRzrqybe7rqVdiVkbJkhcz+qbMdqJe5T54W9vZhtz2 Q1eJSBtG3IweMXFbDqFh69K61516oX3XIiU4CLv+/PNNGIQUhCAJSKi/HFBBtHOX DMdHIz0WgjPYzh/m7EXlN/0+dBfA/N8fBOf/HL2OWTuXezFaUcsHb3QUTm0eB+fJ HV5DoAFyWZrMi8TvfJCTrV0/CQ== -----END CERTIFICATE-----Generated at Mon Mar 2 07:21:10 2026 by rpki-client