$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft File: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft (raw, json) Hash identifier: BXIAFKHW3eFXUVGCmVrmSeUdRHEimg6BdgtHMXUyu9o= Subject key identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 Authority key identifier: 5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 Certificate issuer: /CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Certificate serial: 0DD4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft Manifest number: 0DD3 Signing time: Thu 16 Apr 2026 14:33:51 +0000 Manifest this update: Thu 16 Apr 2026 14:33:51 +0000 Manifest next update: Sat 18 Apr 2026 14:33:51 +0000 Files and hashes: 1: W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl (hash: pGFyY+xuAKjxgWLtYbUSom2ADAbJ8VUoCVXf8u11Xyk=) 2: jYK9sRjioZu5WmxmYOTOOekw9iw.roa (hash: m1oxKMTrSx93Hy9w65bCGnMM3swSjPK2DJ8kMfojqoc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 17 Apr 2026 11:03:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3540 (0xdd4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=5B926DBB074CF4FF1A1FA320211F59D695CED279 Validity Not Before: Apr 16 14:33:51 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=3E8675F5553B5C3EF6E9EE78294BC6B8A6B459D9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:a4:6d:10:39:89:15:32:d8:c6:b6:a8:fc:76: 5e:55:ad:f7:01:1e:a9:c9:51:66:84:80:5c:fe:e9: 88:6a:07:4d:fb:11:28:d0:2c:5d:b8:ab:d6:56:6a: b0:bd:c7:80:00:f7:2f:55:1a:b5:84:78:e5:d8:95: 87:c6:57:0c:6c:ca:a8:10:3b:e4:80:d8:ae:10:b6: 91:88:2f:35:7b:64:68:4e:04:bf:b1:52:95:7f:49: 50:6f:bb:69:31:7e:a2:fa:a7:79:b8:88:85:51:ee: a2:b5:30:19:bb:fa:ec:67:0a:65:08:21:f6:76:d3: f2:76:16:64:12:06:c2:83:8a:ac:50:9b:e7:70:97: a9:4e:47:fd:ff:21:3d:23:57:d8:ba:58:05:14:0e: ae:42:cf:d5:6b:82:5e:45:12:32:5d:90:31:d8:58: 4a:db:8b:f1:9a:9c:ff:f0:d7:fa:42:65:a0:d2:c5: 25:e7:0b:81:49:ba:d0:cf:30:0b:3e:7e:fa:40:34: 4c:fb:a7:19:97:97:ed:18:1e:b4:30:70:35:e5:16: 49:6b:ef:1b:c3:7b:f4:c0:c6:6a:9c:5c:68:a3:66: 6c:60:59:98:67:2e:36:03:a7:d6:d0:23:bd:65:7a: 5a:ae:82:c0:f7:07:bb:af:b5:20:84:53:fe:a1:17: 01:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:86:75:F5:55:3B:5C:3E:F6:E9:EE:78:29:4B:C6:B8:A6:B4:59:D9 X509v3 Authority Key Identifier: keyid:5B:92:6D:BB:07:4C:F4:FF:1A:1F:A3:20:21:1F:59:D6:95:CE:D2:79 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NHRI/W5JtuwdM9P8aH6MgIR9Z1pXO0nk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 18:1c:d5:5e:3b:de:55:de:6f:a6:35:34:71:5f:39:08:da:90: d7:b3:51:5f:b3:e7:22:c5:bf:82:12:cd:f5:a9:6d:84:a1:36: b8:22:11:b4:3e:b3:65:39:86:9a:e9:09:6b:12:24:90:48:ba: e5:1a:df:90:bc:1e:ad:ea:22:0c:41:f2:eb:89:18:c6:5e:2b: 41:21:25:e8:ed:fb:a6:79:cb:83:10:f0:0d:48:91:62:f5:ba: 82:72:fa:7b:e0:7e:26:62:f5:0c:bf:a3:b0:8f:be:de:88:6d: 24:ae:c0:09:9d:18:27:ce:61:97:b7:de:a7:16:63:9a:28:7e: be:85:8d:66:62:a2:b5:62:fd:b8:45:78:0e:d7:bf:a5:09:fb: 2e:fa:71:fe:b4:7f:25:9b:36:7f:bd:12:b2:1c:10:76:0f:4f: 31:bd:df:0e:9c:68:28:e1:81:e2:9d:d1:d0:f8:11:86:87:7b: 6a:21:c9:27:46:62:85:d7:54:a2:d9:ee:3a:03:0f:58:bd:0a: ea:bb:68:f9:6c:64:8f:e1:8d:09:4f:90:21:1e:a6:e8:64:5c: 03:8d:57:0a:c7:b6:6e:13:0c:d5:87:e9:32:da:d4:9f:95:64: 4a:56:a0:00:87:fa:1d:f6:88:6d:fb:b1:79:96:82:e4:0b:99: f1:3e:ae:e6 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDdQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNUI5 MjZEQkIwNzRDRjRGRjFBMUZBMzIwMjExRjU5RDY5NUNFRDI3OTAeFw0yNjA0MTYx NDMzNTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDNFODY3NUY1NTUzQjVD M0VGNkU5RUU3ODI5NEJDNkI4QTZCNDU5RDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCopG0QOYkVMtjGtqj8dl5VrfcBHqnJUWaEgFz+6YhqB037ESjQ LF24q9ZWarC9x4AA9y9VGrWEeOXYlYfGVwxsyqgQO+SA2K4QtpGILzV7ZGhOBL+x UpV/SVBvu2kxfqL6p3m4iIVR7qK1MBm7+uxnCmUIIfZ20/J2FmQSBsKDiqxQm+dw l6lOR/3/IT0jV9i6WAUUDq5Cz9Vrgl5FEjJdkDHYWErbi/GanP/w1/pCZaDSxSXn C4FJutDPMAs+fvpANEz7pxmXl+0YHrQwcDXlFklr7xvDe/TAxmqcXGijZmxgWZhn LjYDp9bQI71lelqugsD3B7uvtSCEU/6hFwEVAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUPoZ19VU7XD726e54KUvGuKa0WdkwHwYDVR0jBBgwFoAUW5JtuwdM9P8aH6Mg IR9Z1pXO0nkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkhSSS9X NUp0dXdkTTlQOGFINk1nSVI5WjFwWE8wbmsuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1c1SnR1d2RNOVA4YUg2TWdJUjlaMXBYTzBuay5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05IUkkvVzVKdHV3ZE05UDhhSDZNZ0lSOVox cFhPMG5rLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBABgc1V47 3lXeb6Y1NHFfOQjakNezUV+z5yLFv4ISzfWpbYShNrgiEbQ+s2U5hprpCWsSJJBI uuUa35C8Hq3qIgxB8uuJGMZeK0EhJejt+6Z5y4MQ8A1IkWL1uoJy+nvgfiZi9Qy/ o7CPvt6IbSSuwAmdGCfOYZe33qcWY5oofr6FjWZiorVi/bhFeA7Xv6UJ+y76cf60 fyWbNn+9ErIcEHYPTzG93w6caCjhgeKd0dD4EYaHe2ohySdGYoXXVKLZ7joDD1i9 Cuq7aPlsZI/hjQlPkCEepuhkXAONVwrHtm4TDNWH6TLa1J+VZEpWoACH+h32iG37 sXmWguQLmfE+ruY= -----END CERTIFICATE-----Generated at Fri Apr 17 07:53:27 2026 by rpki-client