$ rpki-client -vvf rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft File: 0291B733B1EED1AF7E817D958CE6F13A585F0695.mft (raw, json) Hash identifier: aSsEg/7WZzDI1byFE1Sd3aupss+HsnYXpA6E1p3IDm4= Subject key identifier: 74:12:6E:8B:51:7D:2B:FC:BE:A1:92:79:B4:51:03:39:23:48:24:25 Authority key identifier: 02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 Certificate issuer: /CN=0291B733B1EED1AF7E817D958CE6F13A585F0695 Certificate serial: 18F09626A7791D92BF00F8035DE1AA51C1E88EB1 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft Manifest number: 2F Signing time: Fri 12 Jun 2026 15:42:13 +0000 Manifest this update: Fri 12 Jun 2026 15:37:13 +0000 Manifest next update: Sat 13 Jun 2026 16:19:13 +0000 Files and hashes: 1: 3231302e37392e3135302e302f32332d3234203d3e203138303431.roa (hash: XF9vSkheKC1NRFUS3alvj8iCKGl0+/ZaB+X31yisdf0=) 2: 3231302e37392e3135312e302f32342d3234203d3e20323031323137.roa (hash: WRpRpWc9nNYJzvwhsCMAvWKmyMgtn7Z1UBftNahQj4c=) 3: 0291B733B1EED1AF7E817D958CE6F13A585F0695.crl (hash: bk/eCfxSL0/7bVSvzNcf7bFyKMgmgG+/xV1SBAT+uQ4=) 4: 323430313a353561303a3a2f33322d3332203d3e203138303431.roa (hash: CrzulhqYuNBjNzDQRC8BOsQxP+QuAw4ZbCFe65kH3fw=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.crl rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 13 Jun 2026 16:19:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 18:f0:96:26:a7:79:1d:92:bf:00:f8:03:5d:e1:aa:51:c1:e8:8e:b1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0291B733B1EED1AF7E817D958CE6F13A585F0695 Validity Not Before: Jun 12 15:37:13 2026 GMT Not After : Jun 13 16:19:13 2026 GMT Subject: CN=74126E8B517D2BFCBEA19279B451033923482425 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:43:d1:44:aa:8e:cb:64:e3:25:50:2d:a0:87: 8b:19:c4:13:d7:39:17:3f:34:75:d2:fb:c0:0b:7e: d6:a9:c6:a5:96:4d:37:55:45:e6:72:34:03:ae:43: 62:ea:fa:9b:0f:eb:b3:de:b6:ea:2f:f6:06:81:9e: f9:50:c3:d3:48:a7:9f:46:2c:db:af:1e:49:ac:74: 15:64:f7:85:4c:d5:11:8f:0f:5e:eb:23:37:9d:a9: c2:ca:12:c8:fa:17:5e:27:32:7f:83:0a:ce:cf:85: b6:8c:3c:27:5d:d2:14:da:fc:82:89:e6:78:3f:e4: 16:23:fb:ee:35:2c:46:fb:ed:2e:56:8e:63:57:66: 24:b4:93:d2:76:97:78:c6:63:3f:30:e5:5b:f1:13: 60:50:89:e4:81:b1:65:d7:33:12:74:3e:74:5b:9c: 89:4e:84:0b:d1:be:8a:21:43:8f:47:fc:0c:0b:4d: 41:0e:3f:6a:bb:88:65:a4:6d:43:85:28:74:22:ae: 0f:85:6a:01:ff:48:65:5c:be:f9:0d:84:04:fb:39: b6:6f:db:f7:97:5c:e8:54:46:0a:9e:a0:48:10:e5: ab:a1:b8:a5:56:81:01:cb:4a:cd:cf:d5:dd:2f:4b: 38:a2:db:dc:bc:3f:c2:a0:02:0b:e8:df:8d:0c:87: 02:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:12:6E:8B:51:7D:2B:FC:BE:A1:92:79:B4:51:03:39:23:48:24:25 X509v3 Authority Key Identifier: keyid:02:91:B7:33:B1:EE:D1:AF:7E:81:7D:95:8C:E6:F1:3A:58:5F:06:95 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/0291B733B1EED1AF7E817D958CE6F13A585F0695.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ZAT/0/0291B733B1EED1AF7E817D958CE6F13A585F0695.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 33:23:d1:ef:3f:88:0a:9a:7d:8a:41:3b:cc:ba:e2:06:d4:4b: 1a:24:8d:9c:8b:33:49:e9:fa:8f:5e:71:06:17:8e:18:42:af: 50:93:3c:23:b2:3e:d2:2a:c1:d8:78:c5:e8:ac:5f:58:1e:10: 75:c6:f4:9b:8b:c2:63:7b:d0:0b:54:53:23:aa:fa:b6:04:e8: 15:5c:14:5d:7c:0d:9b:e0:71:ce:db:75:97:32:92:28:f6:70: 14:b8:7d:04:13:fe:2a:ea:26:3a:c2:7d:37:c3:91:41:88:44: ac:85:6e:0e:e3:d3:b2:b2:96:0d:d8:1b:54:1d:56:8a:b1:a0: 22:4c:84:a4:2a:75:21:7f:c1:1d:84:d9:46:b3:dd:1b:10:7c: 6f:91:4e:5e:a7:c0:ad:f7:16:b9:50:8a:1d:94:2e:50:f0:d4: 19:48:9b:7d:b0:08:54:b1:65:51:01:ec:b2:cb:bf:f2:4d:f1: e9:fb:5e:0e:22:86:f8:1a:7b:4e:d8:6a:a7:f3:66:6e:00:c5: 38:c3:62:a7:ec:2e:b9:b0:d6:50:37:15:ff:fb:cf:08:6c:49: 89:cd:7d:a6:34:e2:50:66:e6:d9:8e:a1:99:2e:ec:4d:0d:59: 3d:42:22:6f:78:4e:cb:c6:78:d6:81:44:c4:e7:2b:2a:2b:35: 14:4b:dc:63 -----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIUGPCWJqd5HZK/APgDXeGqUcHojrEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoMDI5MUI3MzNCMUVFRDFBRjdFODE3RDk1OENFNkYxM0E1 ODVGMDY5NTAeFw0yNjA2MTIxNTM3MTNaFw0yNjA2MTMxNjE5MTNaMDMxMTAvBgNV BAMTKDc0MTI2RThCNTE3RDJCRkNCRUExOTI3OUI0NTEwMzM5MjM0ODI0MjUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQChQ9FEqo7LZOMlUC2gh4sZxBPX ORc/NHXS+8ALftapxqWWTTdVReZyNAOuQ2Lq+psP67Petuov9gaBnvlQw9NIp59G LNuvHkmsdBVk94VM1RGPD17rIzedqcLKEsj6F14nMn+DCs7PhbaMPCdd0hTa/IKJ 5ng/5BYj++41LEb77S5WjmNXZiS0k9J2l3jGYz8w5VvxE2BQieSBsWXXMxJ0PnRb nIlOhAvRvoohQ49H/AwLTUEOP2q7iGWkbUOFKHQirg+FagH/SGVcvvkNhAT7ObZv 2/eXXOhURgqeoEgQ5auhuKVWgQHLSs3P1d0vSzii29y8P8KgAgvo340MhwJvAgMB AAGjggHoMIIB5DAdBgNVHQ4EFgQUdBJui1F9K/y+oZJ5tFEDOSNIJCUwHwYDVR0j BBgwFoAUApG3M7Hu0a9+gX2VjObxOlhfBpUwDgYDVR0PAQH/BAQDAgeAMGAGA1Ud HwRZMFcwVaBToFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWkFULzAv MDI5MUI3MzNCMUVFRDFBRjdFODE3RDk1OENFNkYxM0E1ODVGMDY5NS5jcmwwbwYI KwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50d25pYy50 dy9ycGtpL1RXTklDQ0EvMS8wMjkxQjczM0IxRUVEMUFGN0U4MTdEOTU4Q0U2RjEz QTU4NUYwNjk1LmNlcjBrBggrBgEFBQcBCwRfMF0wWwYIKwYBBQUHMAuGT3JzeW5j Oi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvWkFULzAvMDI5MUI3MzNCMUVFRDFBRjdF ODE3RDk1OENFNkYxM0E1ODVGMDY5NS5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEF BQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUF BwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBADMj0e8/iAqafYpBO8y6 4gbUSxokjZyLM0np+o9ecQYXjhhCr1CTPCOyPtIqwdh4xeisX1geEHXG9JuLwmN7 0AtUUyOq+rYE6BVcFF18DZvgcc7bdZcykij2cBS4fQQT/irqJjrCfTfDkUGIRKyF bg7j07Kylg3YG1QdVoqxoCJMhKQqdSF/wR2E2Uaz3RsQfG+RTl6nwK33FrlQih2U LlDw1BlIm32wCFSxZVEB7LLLv/JN8en7Xg4ihvgae07YaqfzZm4AxTjDYqfsLrmw 1lA3Ff/7zwhsSYnNfaY04lBm5tmOoZku7E0NWT1CIm94TsvGeNaBRMTnKyorNRRL 3GM= -----END CERTIFICATE-----Generated at Sat Jun 13 09:05:21 2026 by rpki-client