$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft File: 1PDdD0-4AQJdWG75mcXu4C18IFk.mft (raw, json) Hash identifier: gW7XLdqSQh9UP8+nDLFuV3y4JAH3yZ4lE/aRdjM4uw8= Subject key identifier: 36:66:64:52:32:0A:BA:DC:BA:A3:52:9D:6F:65:14:9C:19:94:8C:EB Authority key identifier: D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 Certificate issuer: /CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Certificate serial: 1130 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft Manifest number: 10AE Signing time: Sat 18 Apr 2026 01:34:22 +0000 Manifest this update: Sat 18 Apr 2026 01:34:22 +0000 Manifest next update: Mon 20 Apr 2026 01:34:22 +0000 Files and hashes: 1: 0WRaL5_FL0gREwobExy15IkSfjA.roa (hash: n65rFFtHkeOKbRbhFbsz1Sk1noQJHr7pgfMgN+cU/rk=) 2: 1PDdD0-4AQJdWG75mcXu4C18IFk.crl (hash: R0YQA/y1WypbbR6kYwLCo3Y0N8VIaurfY+bR6DG+ZFY=) 3: 1jFpDd7FByPDlxi0v_Ye1XbccM0.roa (hash: bX2rPkkl4cDArjbEYpul9oKgoBim6XcI0EM/d1T+m6g=) 4: 8k4zt9X75sdh9In_XuIC82OWo60.roa (hash: KtYJIyyKIP2ktitfxIibaxrlLK7W6Tk8qDZtemfO1cQ=) 5: DzkoBlao-oVj2bWXVEkN_8OapUI.roa (hash: bhN7kmPGBcdSR0I5FOSNDkTsOluKIN26NLrZzakfKC0=) 6: EL2WUu51Cpa2oHHntqxjhLYtaIU.roa (hash: 54aMr+QHa8bJ/gG4iZIiTF+sV6Q4vXRoy1ggNK+CR2k=) 7: Fg2blGCLPGT2sXYpGmQ0_XlU_y0.roa (hash: ILW8pVIdBCYN/Uxl0hWLWnXhsaSTQrt7JNTRVIynH0Y=) 8: HUa4sb_EelFLN_3kCMr8Ck2qrpQ.roa (hash: GZOiQH8JNnEvuUYCkmePFQXlEyLDaT6cJ5U70187DD8=) 9: J8jYdpuZmu7g-aExTjRS-H9_27o.roa (hash: 3Y1myIgZSkwi3mgspkEgZC3IS/wYma4N5MlzmKkGoGY=) 10: WpeYrOZGp-e43klrVKAC_ZgaMoE.roa (hash: 7pRNDAN8ksiqJu+SUl4zL0Yc6OuTm/bf18WPldPMaK8=) 11: ZH0eUG-WO8sOtJ_vbEo_RxHW0Ck.roa (hash: z8gLBb/4pn2mXS2IkEQAmbOdzPc3uyL2Qmrbt1B+XTI=) 12: c5T9FONk2kLvjD5v6En2a3SVkRE.roa (hash: aVb9IwSS74n6tVO7RufPji8gr7GooYp0eUZHxAtjJ2U=) 13: fR5NBPPnsDfJ3Z8PJWMCit2bpus.roa (hash: ZQKIG3DEyi25at8K+4pswQDmQetrvuRV6Ag1ndsbTws=) 14: i4FIaLZLUt8RBiWa5_651zVlU98.roa (hash: g6y3tsltvIR6+TX0LHurwfpYpXrR99UGSKWkl8LV/9k=) 15: n1wU49JlmCtERJNjFTWrwI3SnX4.roa (hash: Tn5EYtlR1jRydHa0x9uEoUzDLPD1I1B2JQAQa/PRxLQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 13:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4400 (0x1130) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D4F0DD0F4FB801025D586EF999C5EEE02D7C2059 Validity Not Before: Apr 18 01:34:22 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=36666452320ABADCBAA3529D6F65149C19948CEB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:b7:3f:e0:8a:04:50:cd:e1:bd:8f:d1:d2:18: a7:fa:59:dc:58:40:b0:51:8e:7c:c4:b9:db:b4:75: 20:9f:0b:49:4e:ba:d6:9c:77:37:78:c6:19:f8:50: 87:2d:2c:10:c3:b1:5e:29:b4:b5:b6:3d:c6:a1:f1: e3:56:05:b7:ef:d3:b2:a3:dd:c0:db:27:86:74:dd: 5b:ad:28:4a:20:75:87:63:29:28:1a:42:ee:15:b0: 44:9c:11:e3:b6:43:6b:ec:56:c5:36:d5:5a:a8:56: 5b:64:e1:2f:b9:fe:13:75:ee:5a:5b:21:86:1c:21: d4:65:cd:c4:43:ed:80:e4:88:1c:ce:1f:80:7c:29: e3:fd:9b:a1:1a:f2:95:b9:8d:ba:31:c2:24:0e:da: f2:4d:d3:51:15:cd:bc:c0:3a:89:0d:10:2f:32:86: 46:e1:1e:6f:30:96:90:f8:52:63:1e:8e:6b:b3:e0: fd:61:d3:70:30:d6:5c:d7:99:57:eb:9f:34:bf:54: 02:af:ff:b5:ff:52:ff:d9:f7:d7:02:5b:31:b2:ea: 66:61:6c:fb:90:5e:55:4e:43:0b:dd:8c:d9:aa:77: 55:16:f5:7e:a8:8a:bf:6d:dd:52:db:77:e8:1a:1e: 75:31:2a:57:a9:da:6d:c7:4f:09:28:09:35:46:40: d5:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:66:64:52:32:0A:BA:DC:BA:A3:52:9D:6F:65:14:9C:19:94:8C:EB X509v3 Authority Key Identifier: keyid:D4:F0:DD:0F:4F:B8:01:02:5D:58:6E:F9:99:C5:EE:E0:2D:7C:20:59 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1PDdD0-4AQJdWG75mcXu4C18IFk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DWT/1PDdD0-4AQJdWG75mcXu4C18IFk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:20:0e:6a:7b:7e:85:cc:33:fa:9d:8b:02:31:ac:f3:c0:37: d9:9c:f6:8c:c4:73:7a:b6:c2:2a:98:af:ec:c1:c2:08:9f:46: 86:a5:93:d0:7c:c9:9e:62:68:be:cf:3b:de:f6:a1:11:fa:ca: 9f:44:91:03:ef:c2:5b:0d:4d:2d:6f:fd:a9:a1:3c:d8:78:df: 9b:32:0d:4c:24:b7:15:27:b1:71:f7:bc:b7:93:c0:29:84:9c: e8:bf:91:58:d6:bb:24:7a:59:ea:e6:37:7e:6b:54:fb:fd:f0: 96:d5:d6:14:74:73:5c:ea:f5:f5:0c:25:d9:ca:91:af:ed:b4: f4:e6:fb:17:27:64:67:cb:ed:ed:14:7f:2b:fc:a8:b5:e3:f6: e7:e0:4e:b9:42:84:93:31:f2:95:1a:6b:47:33:c5:d6:d4:92: 40:cb:6d:fc:a7:d0:02:6b:03:92:fb:8d:c9:70:1b:da:2f:3f: a4:d4:f9:02:92:a0:42:19:8d:1a:26:7e:bc:37:e5:6a:3f:85: 35:ae:39:f4:6a:cc:d6:dd:c4:e6:d4:7d:af:29:02:db:2b:32: 92:e6:64:3e:22:97:f0:68:bb:03:92:05:38:2c:27:2b:68:b1: 2a:5c:74:ab:3b:0a:ad:93:22:89:e3:fc:dc:a1:9e:60:a3:fe: 91:6c:ac:1f -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICETAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDRG MEREMEY0RkI4MDEwMjVENTg2RUY5OTlDNUVFRTAyRDdDMjA1OTAeFw0yNjA0MTgw MTM0MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDM2NjY2NDUyMzIwQUJB RENCQUEzNTI5RDZGNjUxNDlDMTk5NDhDRUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDItz/gigRQzeG9j9HSGKf6WdxYQLBRjnzEudu0dSCfC0lOutac dzd4xhn4UIctLBDDsV4ptLW2Pcah8eNWBbfv07Kj3cDbJ4Z03VutKEogdYdjKSga Qu4VsEScEeO2Q2vsVsU21VqoVltk4S+5/hN17lpbIYYcIdRlzcRD7YDkiBzOH4B8 KeP9m6Ea8pW5jboxwiQO2vJN01EVzbzAOokNEC8yhkbhHm8wlpD4UmMejmuz4P1h 03Aw1lzXmVfrnzS/VAKv/7X/Uv/Z99cCWzGy6mZhbPuQXlVOQwvdjNmqd1UW9X6o ir9t3VLbd+gaHnUxKlep2m3HTwkoCTVGQNVzAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUNmZkUjIKuty6o1Kdb2UUnBmUjOswHwYDVR0jBBgwFoAU1PDdD0+4AQJdWG75 mcXu4C18IFkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQ RGREMC00QVFKZFdHNzVtY1h1NEMxOElGay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev MVBEZEQwLTRBUUpkV0c3NW1jWHU0QzE4SUZrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvRFdULzFQRGREMC00QVFKZFdHNzVtY1h1NEMx OElGay5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAFIA5qe36F zDP6nYsCMazzwDfZnPaMxHN6tsIqmK/swcIIn0aGpZPQfMmeYmi+zzve9qER+sqf RJED78JbDU0tb/2poTzYeN+bMg1MJLcVJ7Fx97y3k8AphJzov5FY1rskelnq5jd+ a1T7/fCW1dYUdHNc6vX1DCXZypGv7bT05vsXJ2Rny+3tFH8r/Ki14/bn4E65QoST MfKVGmtHM8XW1JJAy238p9ACawOS+43JcBvaLz+k1PkCkqBCGY0aJn68N+VqP4U1 rjn0aszW3cTm1H2vKQLbKzKS5mQ+IpfwaLsDkgU4LCcraLEqXHSrOwqtkyKJ4/zc oZ5go/6RbKwf -----END CERTIFICATE-----Generated at Sun Apr 19 09:56:49 2026 by rpki-client