$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft File: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft (raw, json) Hash identifier: uqC+IwbztdQ3L4F4RcPjoxAkTS8K2bHgLPqezTTeM2Q= Subject key identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Certificate serial: 024C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft Manifest number: 023F Signing time: Sat 28 Feb 2026 21:53:25 +0000 Manifest this update: Sat 28 Feb 2026 21:53:25 +0000 Manifest next update: Mon 02 Mar 2026 21:53:25 +0000 Files and hashes: 1: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl (hash: Y6DocrEi1bNsglL0VqoSKvYEAT5AOoAhVODAohpnEi4=) 2: Cg7tohmMh5saCNIzU2ngrmhS4hQ.roa (hash: xLFhUUQSzCZzSuN6C34hcq+pSFhdqgsCF6lBLi1RME0=) 3: UKiAu9DBouIS6MzSfFnTOhCKjk8.roa (hash: HUOCS7o68Oz0egV5TPUT3GtLtUMosl436IdLe3HoVt8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 01:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 588 (0x24c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Validity Not Before: Feb 28 21:53:25 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=721BD71397601F82691E128A2782C35B4FC3AC40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:85:dd:8e:40:a6:72:e5:c1:f7:b8:37:1b:68: c8:64:1b:d0:2a:24:ac:4d:57:74:67:03:07:e8:a4: 6b:2b:d7:0b:62:1b:78:1f:73:05:95:f3:23:86:27: 5f:9b:ab:4a:67:34:ea:8a:1d:12:78:76:b0:df:78: 86:eb:a3:a8:31:65:3c:48:08:da:6c:06:fe:5c:6a: 59:16:be:af:39:2d:60:6a:ad:be:7e:15:e4:0c:81: cf:e8:05:89:05:3e:cd:f7:7d:9a:9b:c0:02:55:4c: f1:4a:ef:73:ff:0d:d8:16:f2:58:b4:a5:b7:5f:d3: f6:a1:18:77:ce:48:4a:7c:ee:bf:cf:a8:34:82:a8: b5:a0:d3:1f:6d:86:8b:9c:b2:0b:2e:4d:f0:60:4f: 3f:b7:c4:91:cb:07:70:f1:dd:82:da:5d:b8:a5:21: 1a:9f:5e:7c:87:30:4a:0a:a2:c7:4f:61:d0:b7:43: de:db:c8:20:05:7d:e6:ce:b8:17:3f:85:cd:b9:0f: de:cf:7c:ce:63:7a:25:28:3e:81:5d:85:cf:eb:7d: 48:e1:44:22:52:cb:32:95:aa:70:a3:42:df:98:23: 4d:ca:fe:70:4c:d0:9a:24:ff:b9:23:f4:6c:7c:b4: 42:39:a5:82:b2:11:58:a7:e7:6c:3c:c8:ad:1d:24: c7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 X509v3 Authority Key Identifier: keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9d:fe:f7:91:d9:f0:28:c3:78:16:5f:c2:98:2e:59:d8:d6:30: 27:6c:34:43:2a:c5:e0:4c:5c:0c:17:f0:a2:82:54:89:d2:c4: ab:2e:8c:78:d4:02:4e:52:1f:ad:81:d6:ca:ba:6f:c8:86:eb: 0e:e6:ce:73:41:2b:21:71:c9:8c:9f:a8:f5:c5:6f:5b:af:27: cf:8a:cd:65:a5:34:00:76:c3:31:8f:5e:de:fd:e4:0f:b9:d1: 6c:56:02:f3:da:0e:d0:f8:69:9e:69:cd:13:63:1a:76:b8:51: 05:93:10:d0:67:02:65:a7:5f:fb:a6:8a:b7:55:8c:ae:1c:eb: 6c:7f:5a:2f:80:3d:f6:ac:76:6d:13:15:6c:03:e8:3c:bc:43: 84:4d:d5:94:1b:88:9e:42:61:c8:9b:bc:61:f8:30:01:88:09: 9b:8e:27:51:c8:cd:2d:fe:22:b0:b0:60:e8:09:ba:97:f2:64: 31:13:03:f2:14:bf:de:79:62:b2:2d:89:64:b4:e7:41:12:c2: 02:c6:7b:50:cc:6c:d5:92:0b:2b:74:34:d8:e9:82:60:3f:75: 94:e4:e7:41:78:57:88:ae:da:3d:02:74:dc:d0:6b:6e:65:63: 67:96:f3:82:ce:fc:0e:76:93:45:df:48:ad:c7:30:4c:4d:99: 2d:13:96:df -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAkwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDk2 NkI1NTkwOTMyNDE4MEE4OEE0NUUxRjY4M0NGNEQyRUQ5QkNBNTAeFw0yNjAyMjgy MTUzMjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcyMUJENzEzOTc2MDFG ODI2OTFFMTI4QTI3ODJDMzVCNEZDM0FDNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdhd2OQKZy5cH3uDcbaMhkG9AqJKxNV3RnAwfopGsr1wtiG3gf cwWV8yOGJ1+bq0pnNOqKHRJ4drDfeIbro6gxZTxICNpsBv5calkWvq85LWBqrb5+ FeQMgc/oBYkFPs33fZqbwAJVTPFK73P/DdgW8li0pbdf0/ahGHfOSEp87r/PqDSC qLWg0x9thoucsgsuTfBgTz+3xJHLB3Dx3YLaXbilIRqfXnyHMEoKosdPYdC3Q97b yCAFfebOuBc/hc25D97PfM5jeiUoPoFdhc/rfUjhRCJSyzKVqnCjQt+YI03K/nBM 0Jok/7kj9Gx8tEI5pYKyEVin52w8yK0dJMenAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUchvXE5dgH4JpHhKKJ4LDW0/DrEAwHwYDVR0jBBgwFoAU2Wa1WQkyQYCoikXh 9oPPTS7ZvKUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v MldhMVdRa3lRWUNvaWtYaDlvUFBUUzdadktVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8yV2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8yV2ExV1FreVFZQ29pa1hoOW9Q UFRTN1p2S1UubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAnf73 kdnwKMN4Fl/CmC5Z2NYwJ2w0QyrF4ExcDBfwooJUidLEqy6MeNQCTlIfrYHWyrpv yIbrDubOc0ErIXHJjJ+o9cVvW68nz4rNZaU0AHbDMY9e3v3kD7nRbFYC89oO0Php nmnNE2MadrhRBZMQ0GcCZadf+6aKt1WMrhzrbH9aL4A99qx2bRMVbAPoPLxDhE3V lBuInkJhyJu8YfgwAYgJm44nUcjNLf4isLBg6Am6l/JkMRMD8hS/3nlisi2JZLTn QRLCAsZ7UMxs1ZILK3Q02OmCYD91lOTnQXhXiK7aPQJ03NBrbmVjZ5bzgs78DnaT Rd9IrccwTE2ZLROW3w== -----END CERTIFICATE-----Generated at Mon Mar 2 00:14:47 2026 by rpki-client