$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft File: o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft (raw, json) Hash identifier: qTLv/hhVkXSnRDfoo15sFWL5QNnpyxzkYlqgMsRmjHM= Subject key identifier: C6:47:62:16:5F:C5:DB:2F:F3:75:AB:7D:B8:5F:AA:4C:C6:FA:CA:A4 Authority key identifier: A3:7C:6E:E2:B0:ED:0A:F8:32:11:02:E3:4E:14:B6:A9:76:F7:98:9D Certificate issuer: /CN=A37C6EE2B0ED0AF8321102E34E14B6A976F7989D Certificate serial: 0D89 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft Manifest number: 0D89 Signing time: Sat 28 Feb 2026 22:52:47 +0000 Manifest this update: Sat 28 Feb 2026 22:52:47 +0000 Manifest next update: Mon 02 Mar 2026 22:52:47 +0000 Files and hashes: 1: o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl (hash: pAH8CsKT+Kw5Cw9Hu01bUHZ+iAJJ4Uv2AQC35aDZVc0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 07:54:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3465 (0xd89) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A37C6EE2B0ED0AF8321102E34E14B6A976F7989D Validity Not Before: Feb 28 22:52:47 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C64762165FC5DB2FF375AB7DB85FAA4CC6FACAA4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:e3:a5:d7:31:58:2c:8a:00:dd:62:3e:01:76: 96:df:6b:ad:d8:e6:ef:af:02:c0:9c:7e:ed:04:96: de:0d:6f:57:85:e2:17:42:93:f6:d7:fc:24:3e:a6: 79:62:7e:db:57:d1:d3:c2:8f:1e:ee:93:94:df:43: cb:4c:16:33:01:2f:d4:e9:06:7e:ff:e1:2f:70:53: 78:95:19:bc:98:ba:21:f8:bf:c1:fe:5c:90:3b:6b: 31:f6:0f:2b:07:e3:8a:79:1b:13:8f:9a:29:8e:b7: ab:66:d2:72:0c:3a:d0:87:b4:b0:31:72:ad:5c:ce: bc:a2:75:fc:5f:61:03:b9:4e:bf:6d:a6:54:e5:ac: 05:ab:2b:a2:ef:7d:27:0c:29:b8:f7:5d:bc:6e:bc: 87:54:f3:61:ad:c8:99:07:25:ee:24:e8:2a:69:77: 4d:4f:49:b2:c7:15:2b:cb:00:85:2a:1f:f9:19:08: 70:15:f2:5e:dc:fd:54:09:d7:c6:29:d5:d2:78:aa: fd:6c:e7:8b:70:13:98:d3:0a:3e:4b:19:e8:88:78: eb:4a:91:11:02:f9:aa:86:60:c4:87:ea:b2:5c:56: e0:f5:3f:07:83:23:86:e9:17:78:6e:5c:4e:3a:2c: 2e:bf:37:ac:9e:ba:13:a6:3f:c1:08:8a:be:22:f1: c0:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:47:62:16:5F:C5:DB:2F:F3:75:AB:7D:B8:5F:AA:4C:C6:FA:CA:A4 X509v3 Authority Key Identifier: keyid:A3:7C:6E:E2:B0:ED:0A:F8:32:11:02:E3:4E:14:B6:A9:76:F7:98:9D X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/o3xu4rDtCvgyEQLjThS2qXb3mJ0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IBM/o3xu4rDtCvgyEQLjThS2qXb3mJ0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:98:18:9a:79:03:1c:c8:79:fa:22:00:d8:2b:f9:50:28:fd: be:13:85:14:9b:dd:9d:b2:73:d6:fd:cb:35:d9:55:bf:b4:19: f6:4d:f8:53:2b:5a:97:d0:ad:fc:a6:ff:ec:30:98:39:ab:8f: 46:88:34:bc:9e:10:bf:80:d0:eb:4b:56:54:f9:34:16:32:96: 55:8e:a4:7d:1b:9d:32:ed:74:f3:7d:66:0a:55:7a:9f:a6:5e: fd:8e:aa:40:4c:ad:56:1e:64:92:f9:0b:af:31:dc:2f:6c:dd: 84:60:fb:3e:72:b2:18:04:cb:a9:c9:da:71:50:a5:2e:89:c2: d5:5a:ec:74:92:3d:de:0d:80:ae:53:16:6f:ce:e0:8c:9e:d3: b9:52:99:b7:d5:d2:58:a8:27:b7:98:a5:60:2f:4b:5a:ef:26: 70:02:72:29:62:29:cd:45:01:d1:ba:89:c0:32:0d:4f:7d:e1: 90:64:6c:b2:8e:a2:5d:3b:34:45:a4:8e:12:7b:32:52:1f:d2: 23:d6:75:48:6e:29:5f:c8:00:e3:c0:05:60:b7:a6:0c:d2:14: 23:19:b1:28:f3:67:10:5c:40:f7:c4:5f:3c:29:13:da:4a:94: fc:30:f6:c8:f5:29:49:26:38:89:01:fa:37:e1:24:9f:49:87: 5b:7d:37:3b -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICDYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTM3 QzZFRTJCMEVEMEFGODMyMTEwMkUzNEUxNEI2QTk3NkY3OTg5RDAeFw0yNjAyMjgy MjUyNDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM2NDc2MjE2NUZDNURC MkZGMzc1QUI3REI4NUZBQTRDQzZGQUNBQTQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCj46XXMVgsigDdYj4Bdpbfa63Y5u+vAsCcfu0Elt4Nb1eF4hdC k/bX/CQ+pnlifttX0dPCjx7uk5TfQ8tMFjMBL9TpBn7/4S9wU3iVGbyYuiH4v8H+ XJA7azH2DysH44p5GxOPmimOt6tm0nIMOtCHtLAxcq1czryidfxfYQO5Tr9tplTl rAWrK6LvfScMKbj3XbxuvIdU82GtyJkHJe4k6Cppd01PSbLHFSvLAIUqH/kZCHAV 8l7c/VQJ18Yp1dJ4qv1s54twE5jTCj5LGeiIeOtKkREC+aqGYMSH6rJcVuD1PweD I4bpF3huXE46LC6/N6yeuhOmP8EIir4i8cDZAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUxkdiFl/F2y/zdat9uF+qTMb6yqQwHwYDVR0jBBgwFoAUo3xu4rDtCvgyEQLj ThS2qXb3mJ0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSUJNL28z eHU0ckR0Q3ZneUVRTGpUaFMycVhiM21KMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bzN4dTRyRHRDdmd5RVFMalRoUzJxWGIzbUowLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSUJNL28zeHU0ckR0Q3ZneUVRTGpUaFMycVhi M21KMC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAGmBiaeQMc yHn6IgDYK/lQKP2+E4UUm92dsnPW/cs12VW/tBn2TfhTK1qX0K38pv/sMJg5q49G iDS8nhC/gNDrS1ZU+TQWMpZVjqR9G50y7XTzfWYKVXqfpl79jqpATK1WHmSS+Quv MdwvbN2EYPs+crIYBMupydpxUKUuicLVWux0kj3eDYCuUxZvzuCMntO5Upm31dJY qCe3mKVgL0ta7yZwAnIpYinNRQHRuonAMg1PfeGQZGyyjqJdOzRFpI4SezJSH9Ij 1nVIbilfyADjwAVgt6YM0hQjGbEo82cQXED3xF88KRPaSpT8MPbI9SlJJjiJAfo3 4SSfSYdbfTc7 -----END CERTIFICATE-----Generated at Mon Mar 2 07:24:49 2026 by rpki-client