$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft File: HU149WdQx1mJUzZtRZoStli3_zg.mft (raw, json) Hash identifier: /iNQclGEe7mYFG+AXOL4AxAd30Bo0thI07LJ10kDL3A= Subject key identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38 Certificate serial: 04BB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft Manifest number: 04A1 Signing time: Sat 28 Feb 2026 22:54:51 +0000 Manifest this update: Sat 28 Feb 2026 22:54:51 +0000 Manifest next update: Mon 02 Mar 2026 22:54:51 +0000 Files and hashes: 1: HU149WdQx1mJUzZtRZoStli3_zg.crl (hash: eZAEQ1oEedd/3hUMBUpkiXws6ZFd5x3Rmmd8/h8+BLY=) 2: omWRiv2Gjisn3BVIJtTaANX3ws0.roa (hash: j1Y9xYKC1MfKu476TBxz5Csc97AgZ8hNxzkedBq00Lk=) 3: xffnP06jJW7rSltNb65_-9irA5Q.roa (hash: kE0fcYJla5JIculNAoaQpgueYiICgCqWDlwl9rqHMeg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 12:24:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1211 (0x4bb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38 Validity Not Before: Feb 28 22:54:51 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B8DE83E99D5444D590FD0C6AE8B9FE4B64A2518F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:c9:c6:04:db:89:a0:26:63:3a:2b:b0:b1: cb:1c:eb:9b:97:90:d0:6f:7b:8b:5e:c6:e8:9f:1d: 53:45:b9:65:57:60:84:31:de:84:07:4e:2a:27:6e: ed:e8:85:8f:29:23:09:4d:4e:2f:f9:bf:6b:ca:a6: 6c:54:03:ef:ca:e0:fb:c1:88:46:3a:3b:ca:0b:95: 89:8b:eb:08:7d:03:06:00:c1:66:2b:c3:91:4f:d9: 73:a5:03:6f:89:30:84:d5:10:58:7f:0a:0a:2f:a8: c4:a3:61:21:5d:eb:05:3a:23:47:40:4a:1d:8b:6d: 11:c4:42:c2:94:81:ab:f2:d7:d1:a5:8e:e7:d2:4a: e4:d6:ea:7f:c4:dc:fe:9e:78:a1:36:8f:0c:a6:19: 32:29:89:fd:b6:5b:ea:64:cc:05:88:2f:4a:53:a5: cc:24:6c:f5:f0:64:f8:fb:f9:53:d1:b5:78:96:bb: 04:5e:b6:8b:ac:cf:5f:03:12:dd:08:dd:88:db:74: 1d:88:5f:36:32:e0:ae:f1:b4:fe:84:b3:f7:ae:d1: 7a:81:82:23:fa:09:4a:a7:c6:f4:d0:79:17:95:d1: 78:5b:43:c0:24:9c:6e:63:1b:1d:37:7b:8b:b6:42: 57:a4:e3:05:30:cd:d4:2b:27:62:38:52:42:a5:7d: 20:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F X509v3 Authority Key Identifier: keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9a:11:45:d7:0f:30:b0:4a:ee:01:97:77:22:c8:f2:83:0b:90: 0c:67:55:c2:16:e5:72:06:ca:81:b4:ab:4f:17:1b:b3:2c:4e: db:60:a5:22:25:77:a1:21:f6:cf:1c:5f:d6:ab:54:85:6a:92: 21:51:8d:e8:06:7c:f2:aa:09:f8:94:0c:ea:b7:81:eb:1f:6a: 59:3f:c2:07:c6:92:7f:ca:a5:09:f3:e4:83:91:06:8c:3f:ae: cc:e8:91:46:13:29:90:38:a7:1f:65:9c:ef:f0:6b:1b:45:2b: 30:e1:41:19:81:ca:5d:49:cf:1d:be:29:87:24:ca:e8:90:f1: 9f:f9:d7:d2:42:a9:f7:7c:16:b6:75:3f:76:de:03:ea:df:c2: 69:6c:b4:aa:c5:e0:77:61:70:bb:74:05:35:cd:b0:65:b7:dd: de:22:ef:df:63:00:db:5b:3e:a9:90:40:ed:0f:e3:e8:c7:37: 9e:8e:ab:c1:83:58:3c:fa:61:f7:ee:13:85:39:db:ad:1d:f3: 23:49:1a:46:3f:9e:7b:4d:65:f5:7e:71:30:3b:b8:cb:73:78: 2a:93:20:3d:d4:48:48:1f:ad:e5:56:6e:98:d2:9d:bc:cd:5a: 11:19:6d:3d:d8:88:08:32:f1:fa:cf:82:32:b0:a1:9f:ae:30: 3d:f3:dc:18 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICBLswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ0 RDc4RjU2NzUwQzc1OTg5NTMzNjZENDU5QTEyQjY1OEI3RkYzODAeFw0yNjAyMjgy MjU0NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI4REU4M0U5OUQ1NDQ0 RDU5MEZEMEM2QUU4QjlGRTRCNjRBMjUxOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBr8nGBNuJoCZjOiuwscsc65uXkNBve4texuifHVNFuWVXYIQx 3oQHTionbu3ohY8pIwlNTi/5v2vKpmxUA+/K4PvBiEY6O8oLlYmL6wh9AwYAwWYr w5FP2XOlA2+JMITVEFh/CgovqMSjYSFd6wU6I0dASh2LbRHEQsKUgavy19GljufS SuTW6n/E3P6eeKE2jwymGTIpif22W+pkzAWIL0pTpcwkbPXwZPj7+VPRtXiWuwRe tousz18DEt0I3YjbdB2IXzYy4K7xtP6Es/eu0XqBgiP6CUqnxvTQeReV0XhbQ8Ak nG5jGx03e4u2Qlek4wUwzdQrJ2I4UkKlfSBLAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUuN6D6Z1URNWQ/Qxq6Ln+S2SiUY8wHwYDVR0jBBgwFoAUHU149WdQx1mJUzZt RZoStli3/zgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxB WC9IVTE0OVdkUXgxbUpVelp0UlpvU3RsaTNfemcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FQlVMQVgvSFUxNDlXZFF4MW1KVXpa dFJab1N0bGkzX3pnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AJoRRdcPMLBK7gGXdyLI8oMLkAxnVcIW5XIGyoG0q08XG7MsTttgpSIld6Eh9s8c X9arVIVqkiFRjegGfPKqCfiUDOq3gesfalk/wgfGkn/KpQnz5IORBow/rszokUYT KZA4px9lnO/waxtFKzDhQRmByl1Jzx2+KYckyuiQ8Z/519JCqfd8FrZ1P3beA+rf wmlstKrF4HdhcLt0BTXNsGW33d4i799jANtbPqmQQO0P4+jHN56Oq8GDWDz6Yffu E4U5260d8yNJGkY/nntNZfV+cTA7uMtzeCqTID3USEgfreVWbpjSnbzNWhEZbT3Y iAgy8frPgjKwoZ+uMD3z3Bg= -----END CERTIFICATE-----Generated at Mon Mar 2 09:15:03 2026 by rpki-client