$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft File: cGQhJf35AjZbJAykAigCEy_cHBU.mft (raw, json) Hash identifier: OOUjLukheRZwkgLav9KIXzVGFpPNVROxA6gu+o2bBsI= Subject key identifier: 83:51:27:D7:B9:08:A0:C8:B5:1C:CB:C3:92:DD:2B:E1:4C:3C:44:24 Authority key identifier: 70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15 Certificate issuer: /CN=70642125FDF902365B240CA4022802132FDC1C15 Certificate serial: 0160 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft Manifest number: 015C Signing time: Sun 19 Apr 2026 08:33:46 +0000 Manifest this update: Sun 19 Apr 2026 08:33:46 +0000 Manifest next update: Sun 19 Apr 2026 14:33:46 +0000 Files and hashes: 1: -1XVPannxNhE0gN6nt3WaVnbJzY.roa (hash: HckFBq6bNh0Ty5m0qi4KgS81TTmfyriYDAa0HhLToXs=) 2: GWJGOfhpsfrJd0kw5QzE4IUzcYc.roa (hash: S/LrahTF1ecL3rlxDi1WrfdvhV+9F5uRIbwg43rBxkg=) 3: cGQhJf35AjZbJAykAigCEy_cHBU.crl (hash: ZFJhVVLQtrq+N/HhiX8Gy3TP0NaJ1zlToJJqZVkJ8oM=) 4: qiVREO8yx4XRDKb3jtJiGN7C9lU.roa (hash: 6+rIhtnl5zgQPi3KWYUxtuPLFfq5UCLqmQ3T0RLII/A=) 5: sIR8g5rQFVdHVOwJRmeSXyTm15M.roa (hash: bN4TXRPC8WF2qSqbM7O6KTJe4r3PiqwWhD78/z0GAj4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 13:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 352 (0x160) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70642125FDF902365B240CA4022802132FDC1C15 Validity Not Before: Apr 19 08:33:46 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=835127D7B908A0C8B51CCBC392DD2BE14C3C4424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:69:84:cc:fb:6a:46:8a:78:66:41:5a:0e:e0: 63:19:8d:37:40:e3:99:ed:d5:19:66:10:53:4f:27: dd:19:5e:3a:65:79:74:d5:a5:0c:89:0a:e9:4e:0b: 61:0a:39:39:53:5a:82:c4:9b:74:a8:9b:30:1d:f1: 43:62:50:a0:c1:cd:1e:44:17:be:2e:31:25:45:e0: 98:56:c9:4e:97:2f:96:62:e6:46:2a:93:b5:43:aa: 55:2c:e3:85:c8:39:0b:12:de:ff:5a:6b:03:67:cb: f4:85:2a:0c:13:8d:6d:70:db:1d:d1:55:9f:d6:a3: 3a:8f:81:14:0e:56:d9:fe:03:e9:78:21:1b:42:e9: b9:36:25:32:fe:e0:5b:d5:fd:d2:70:8f:61:d3:5d: 95:fb:9c:3c:0e:e0:6c:a2:ea:42:e8:89:2e:e2:08: 91:51:16:05:8b:e0:1d:e7:5e:bb:cb:7e:ae:3e:ef: a7:8e:b2:c5:fb:fc:34:b1:10:2d:4e:8a:15:38:88: 21:ea:2d:c4:02:40:57:a6:07:65:43:33:5f:3b:50: 78:8f:4d:28:61:25:bc:48:9e:aa:09:3a:7d:cb:1b: 37:f7:af:74:bd:da:29:22:bb:cf:8f:ad:00:91:40: 52:dd:5f:77:29:38:f5:ab:2c:f5:f7:10:bc:66:ca: 23:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:51:27:D7:B9:08:A0:C8:B5:1C:CB:C3:92:DD:2B:E1:4C:3C:44:24 X509v3 Authority Key Identifier: keyid:70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:0c:6b:a0:68:db:d4:97:a5:c3:53:42:59:ad:94:a8:32:56: 18:3b:09:2f:0f:5c:6b:f6:a3:b5:d0:bd:fa:c9:25:c3:b0:11: 0d:a4:1d:6d:b0:5a:4e:80:f6:6b:5c:5f:5d:c8:e1:42:33:b2: a0:37:b1:34:94:6c:01:12:24:72:f9:5e:fa:b4:62:20:d5:cf: 74:ef:f4:e4:c9:cc:38:f3:cf:d7:bb:a6:dc:fc:15:0f:b9:8f: 9b:27:c1:b5:25:6e:7c:a6:aa:51:21:8f:2f:c9:29:71:57:c2: d9:e4:43:1c:c9:68:c4:e8:fe:23:f1:c6:e8:07:99:8d:3d:e4: 8d:84:ee:e2:8e:86:44:14:66:e5:7e:37:d8:e7:c1:68:97:36: c0:c5:dc:15:d1:4d:37:07:57:04:0a:80:c1:b3:cd:76:09:6e: 35:4f:ea:86:c4:85:f5:94:e3:c5:b4:28:8a:d9:d7:1c:07:54: 58:9d:43:2b:f3:14:da:a0:eb:c6:dd:7c:aa:e0:45:e4:f6:f1: 0f:4a:0f:c9:b4:d4:35:23:57:79:68:42:00:10:9d:14:be:35: 20:f5:ad:9b:e5:76:40:60:3e:aa:d9:b1:52:4e:54:f8:94:9f: e4:15:ba:e6:bb:c6:58:ab:54:9b:a3:60:75:3c:d6:01:b3:de: 22:5d:e1:b8 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAWAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA2 NDIxMjVGREY5MDIzNjVCMjQwQ0E0MDIyODAyMTMyRkRDMUMxNTAeFw0yNjA0MTkw ODMzNDZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgzNTEyN0Q3QjkwOEEw QzhCNTFDQ0JDMzkyREQyQkUxNEMzQzQ0MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMaYTM+2pGinhmQVoO4GMZjTdA45nt1RlmEFNPJ90ZXjpleXTV pQyJCulOC2EKOTlTWoLEm3SomzAd8UNiUKDBzR5EF74uMSVF4JhWyU6XL5Zi5kYq k7VDqlUs44XIOQsS3v9aawNny/SFKgwTjW1w2x3RVZ/WozqPgRQOVtn+A+l4IRtC 6bk2JTL+4FvV/dJwj2HTXZX7nDwO4Gyi6kLoiS7iCJFRFgWL4B3nXrvLfq4+76eO ssX7/DSxEC1OihU4iCHqLcQCQFemB2VDM187UHiPTShhJbxInqoJOn3LGzf3r3S9 2ikiu8+PrQCRQFLdX3cpOPWrLPX3ELxmyiNPAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUg1En17kIoMi1HMvDkt0r4Uw8RCQwHwYDVR0jBBgwFoAUcGQhJf35AjZbJAyk AigCEy/cHBUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURC QVNFL2NHUWhKZjM1QWpaYkpBeWtBaWdDRXlfY0hCVS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvY0dRaEpmMzVBalpiSkF5a0FpZ0NFeV9jSEJVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURCQVNFL2NHUWhKZjM1QWpa YkpBeWtBaWdDRXlfY0hCVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQB8DGugaNvUl6XDU0JZrZSoMlYYOwkvD1xr9qO10L36ySXDsBENpB1tsFpO gPZrXF9dyOFCM7KgN7E0lGwBEiRy+V76tGIg1c907/Tkycw488/Xu6bc/BUPuY+b J8G1JW58pqpRIY8vySlxV8LZ5EMcyWjE6P4j8cboB5mNPeSNhO7ijoZEFGblfjfY 58FolzbAxdwV0U03B1cECoDBs812CW41T+qGxIX1lOPFtCiK2dccB1RYnUMr8xTa oOvG3Xyq4EXk9vEPSg/JtNQ1I1d5aEIAEJ0UvjUg9a2b5XZAYD6q2bFSTlT4lJ/k Fbrmu8ZYq1Sbo2B1PNYBs94iXeG4 -----END CERTIFICATE-----Generated at Sun Apr 19 12:40:56 2026 by rpki-client