$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft File: Z3gr2kgldGOtzabXLy7kG1_ZShE.mft (raw, json) Hash identifier: a8ATpVhLlYTBoy2F5YhnfdFTQmNq6Pnjrr0uh/BVqcw= Subject key identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 Authority key identifier: 67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 Certificate issuer: /CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Certificate serial: 1071 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft Manifest number: 105A Signing time: Mon 02 Mar 2026 10:55:21 +0000 Manifest this update: Mon 02 Mar 2026 10:55:21 +0000 Manifest next update: Wed 04 Mar 2026 10:55:21 +0000 Files and hashes: 1: 1kRYpZuKM6z78NbnhHv79fJRmBI.roa (hash: 9taA7wtcMFAaeCJDfa+2OmXrTuwrPed79pzeqLGoU3o=) 2: Z3gr2kgldGOtzabXLy7kG1_ZShE.crl (hash: k2EIK+HDrC0brpNGwlTS72YEyfWR8WVOGb/jXDhZHx0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 16:55:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4209 (0x1071) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Validity Not Before: Mar 2 10:55:21 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1E0E70F63546DF8BC7C14185082C052D16A84AC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:1f:19:fd:a1:a0:86:7a:d0:8f:91:43:cd: 92:06:58:14:7b:3c:94:a0:fa:89:07:a3:1a:b0:d0: 77:e4:d0:30:88:d9:18:04:e3:6e:98:ef:b6:a5:6d: 37:86:70:7d:a7:b3:a3:af:aa:af:b3:c8:64:65:4b: 6f:ff:01:33:c9:19:29:ec:68:ea:da:e7:6e:4e:63: bc:ea:c3:f7:6b:ef:55:9e:06:02:00:94:3f:27:5f: 6c:7e:82:c5:36:5a:77:6c:35:12:bc:bf:aa:3d:99: fa:00:ab:c1:be:4b:4f:5f:31:38:c7:6d:0e:01:5d: 2e:aa:cd:47:49:83:4e:6e:40:82:21:f5:f9:70:3e: 97:b5:e1:89:3c:ba:be:4f:94:b3:5d:3a:0d:05:61: 80:67:5e:f2:31:91:5d:eb:8a:79:23:cf:36:ec:5e: 7b:dd:96:f5:3d:8d:85:1a:32:9d:76:48:42:33:74: 54:38:b2:31:d0:b4:5b:df:f1:c2:86:18:7c:55:20: ff:00:cf:9e:58:39:a0:fd:3c:c2:0f:06:26:a7:2c: f3:e1:be:58:c3:30:34:21:c4:63:9e:f9:84:0f:7b: 9b:b2:39:7f:4b:11:ba:48:b6:96:6d:79:69:ba:df: 15:46:48:b1:75:00:86:47:f9:e7:66:f2:02:ce:d2: 32:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 X509v3 Authority Key Identifier: keyid:67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:45:91:3c:4b:e7:37:f1:9d:a8:e9:ac:7b:36:03:67:6e:1b: 42:89:cb:44:bf:64:d9:53:5c:db:81:71:d4:ce:c3:b8:2b:c1: 1a:6f:c9:df:9c:01:5c:31:f9:22:04:33:76:4c:1b:9f:72:9b: 2c:69:60:19:56:83:25:18:75:7d:ce:cd:25:9a:52:b5:dd:fc: bc:a8:1c:18:d5:29:31:a2:db:55:09:be:44:ad:b9:e2:45:21: 63:d6:d5:20:02:11:d2:db:41:1e:3e:af:b9:c7:75:60:1f:85: 0c:03:1f:5d:a9:ce:5a:2d:2e:21:f4:92:eb:b9:15:65:bd:c3: 2c:54:1d:2c:be:0e:4f:33:3d:fc:a8:f2:b4:0f:6e:4f:8d:eb: ed:c5:93:6b:ad:38:3b:e9:c2:86:73:d8:ef:fa:cc:1a:27:fd: 75:aa:21:52:60:f0:34:03:3d:25:ef:33:aa:52:2f:7a:ae:25: 4a:81:df:dd:4f:8c:0c:ee:b2:64:10:4d:81:82:09:ad:16:5f: 42:38:4b:b7:c5:9d:fb:88:68:c4:1b:3d:4d:64:e9:42:85:1b: dd:73:87:48:b7:b1:b9:99:13:83:18:7b:6b:62:00:d7:a4:67: 85:91:b3:ed:ab:5e:e7:33:cc:65:1a:1c:c3:45:50:b5:99:9e: 9f:e5:ee:0f -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICEHEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjc3 ODJCREE0ODI1NzQ2M0FEQ0RBNkQ3MkYyRUU0MUI1RkQ5NEExMTAeFw0yNjAzMDIx MDU1MjFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDFFMEU3MEY2MzU0NkRG OEJDN0MxNDE4NTA4MkMwNTJEMTZBODRBQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+HB8Z/aGghnrQj5FDzZIGWBR7PJSg+okHoxqw0Hfk0DCI2RgE 426Y77albTeGcH2ns6Ovqq+zyGRlS2//ATPJGSnsaOra525OY7zqw/dr71WeBgIA lD8nX2x+gsU2WndsNRK8v6o9mfoAq8G+S09fMTjHbQ4BXS6qzUdJg05uQIIh9flw Ppe14Yk8ur5PlLNdOg0FYYBnXvIxkV3rinkjzzbsXnvdlvU9jYUaMp12SEIzdFQ4 sjHQtFvf8cKGGHxVIP8Az55YOaD9PMIPBianLPPhvljDMDQhxGOe+YQPe5uyOX9L EbpItpZteWm63xVGSLF1AIZH+edm8gLO0jKdAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUHg5w9jVG34vHwUGFCCwFLRaoSsQwHwYDVR0jBBgwFoAUZ3gr2kgldGOtzabX Ly7kG1/ZShEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DTE9V RC9aM2dyMmtnbGRHT3R6YWJYTHk3a0cxX1pTaEUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ozZ3Iya2dsZEdPdHphYlhMeTdrRzFfWlNoRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lNQ0xPVUQvWjNncjJrZ2xkR090emFi WEx5N2tHMV9aU2hFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AFBFkTxL5zfxnajprHs2A2duG0KJy0S/ZNlTXNuBcdTOw7grwRpvyd+cAVwx+SIE M3ZMG59ymyxpYBlWgyUYdX3OzSWaUrXd/LyoHBjVKTGi21UJvkStueJFIWPW1SAC EdLbQR4+r7nHdWAfhQwDH12pzlotLiH0kuu5FWW9wyxUHSy+Dk8zPfyo8rQPbk+N 6+3Fk2utODvpwoZz2O/6zBon/XWqIVJg8DQDPSXvM6pSL3quJUqB391PjAzusmQQ TYGCCa0WX0I4S7fFnfuIaMQbPU1k6UKFG91zh0i3sbmZE4MYe2tiANekZ4WRs+2r XuczzGUaHMNFULWZnp/l7g8= -----END CERTIFICATE-----Generated at Mon Mar 2 16:08:09 2026 by rpki-client