$ rpki-client -vvf rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft File: DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft (raw, json) Hash identifier: IBhv5Na5u2TGWAl7TuCsKoz25aYK19I2zUU2YFZFY9c= Subject key identifier: 16:63:6D:BB:7D:7A:53:FD:A3:09:F3:0A:47:C7:0C:6F:82:71:80:90 Authority key identifier: DB:E0:6A:5F:C5:A5:E2:89:AC:EB:48:7B:50:C5:EC:D3:B6:DE:23:4C Certificate issuer: /CN=DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C Certificate serial: 029424728654C6285636276C76C541C327AEE131 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.cer Subject info access: rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft Manifest number: 0F Signing time: Tue 12 May 2026 04:00:01 +0000 Manifest this update: Tue 12 May 2026 03:55:01 +0000 Manifest next update: Wed 13 May 2026 05:11:01 +0000 Files and hashes: 1: 3134342e37392e3233372e302f32342d3234203d3e20313532363132.roa (hash: aqUYGYZZ4SIzEA/BLO0DH4FickVrqbLzNS8KzmVfkyA=) 2: 3134342e37392e3233362e302f32342d3332203d3e203138303430.roa (hash: 1FIFjMBcizShdvw6u5phvDGtZhnMBusqAuzpJLq+G90=) 3: 3134342e37392e3233372e302f32342d3332203d3e20313532363132.roa (hash: y2jSoNJLs5+nwOx7mIkDPFacP932HoFtwivGyzUzSlg=) 4: 3134342e37392e3233362e302f32332d3234203d3e203138303430.roa (hash: mOpy66eNRndunzE6G06U+/veEB8DXbUp/i9Rna0dvIY=) 5: DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.crl (hash: DWv05bSna/wHIU/Jk6hFEQ7OBGafUeSOsdjLgxx5xIc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.crl rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 01:16:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 02:94:24:72:86:54:c6:28:56:36:27:6c:76:c5:41:c3:27:ae:e1:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C Validity Not Before: May 12 03:55:01 2026 GMT Not After : May 13 05:11:01 2026 GMT Subject: CN=16636DBB7D7A53FDA309F30A47C70C6F82718090 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:cf:2a:d0:e2:7e:ce:32:92:19:4d:f2:6f:0f: b9:f3:27:82:3e:4d:d0:1f:e0:d8:9a:6d:54:a9:d7: 7f:e0:3f:56:f7:46:bb:06:fb:13:23:40:1c:c7:33: e7:70:c9:d5:14:96:67:f6:fc:b7:99:03:b3:6d:06: 92:56:2a:4a:ea:83:1b:ec:fc:dc:27:a7:9e:ea:22: e4:ce:39:a8:cf:a3:78:30:ff:5b:cb:a6:f2:08:b4: 55:87:1e:14:02:04:1d:e9:49:68:b1:d8:be:50:99: c6:54:08:62:24:f6:18:78:59:e0:2a:17:0f:0e:25: 60:ae:f5:b6:c6:04:1d:6c:59:42:cf:9a:e0:54:87: 77:85:d9:58:2c:9a:cf:da:14:fb:5e:b2:d6:03:30: e2:3b:a5:8e:84:75:c7:5e:41:76:f4:f6:2d:e7:79: bf:15:2d:25:90:d6:a8:44:e1:10:a5:53:9e:ef:a5: 21:bc:b8:50:76:26:86:23:db:68:22:67:a9:e1:ae: dd:68:68:79:2c:28:ee:45:bd:da:45:f5:6b:f3:96: fd:19:82:1a:02:f6:70:59:a3:db:5d:c4:c2:c8:c6: 56:b9:90:c5:7e:90:c8:45:3c:52:ff:5d:b5:4e:dd: ef:99:c3:9f:78:54:d4:d3:ea:40:77:02:1a:f3:c2: 71:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 16:63:6D:BB:7D:7A:53:FD:A3:09:F3:0A:47:C7:0C:6F:82:71:80:90 X509v3 Authority Key Identifier: keyid:DB:E0:6A:5F:C5:A5:E2:89:AC:EB:48:7B:50:C5:EC:D3:B6:DE:23:4C X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/AOTERNET/1/DBE06A5FC5A5E289ACEB487B50C5ECD3B6DE234C.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 30:99:76:17:84:7a:5c:ad:f5:19:44:b5:8a:93:7a:35:7d:d2: a7:23:69:ea:3b:21:a1:16:36:bf:ae:91:55:44:61:a5:da:cd: ec:59:17:a7:b2:de:1c:e7:cd:e7:74:65:a8:69:a9:14:f1:3b: dc:d3:10:bf:d8:1b:6a:fe:f3:ae:a5:58:38:ae:d3:32:a3:6e: 65:0f:f8:bb:c6:67:25:c5:63:fa:46:4a:b1:b2:5a:ef:c9:22: 5a:c6:1b:2f:57:ca:7f:1a:30:1f:c1:65:44:71:14:df:dc:5a: cb:69:6c:fa:b2:97:45:3a:c7:77:c6:1b:f6:ad:dd:c2:e6:4a: e8:d8:a1:2d:36:50:36:02:e7:83:36:f1:1c:29:ad:71:06:5f: 04:9f:93:9b:86:4c:91:3b:13:a0:6a:f9:d2:e3:8d:91:91:cc: a4:5c:43:c5:19:1e:75:51:b2:ea:8e:5b:84:a9:ab:25:99:df: eb:d3:3d:f3:ad:40:6d:88:84:b9:96:2e:be:ca:58:d6:3f:3a: 31:c2:54:9d:aa:64:14:dc:98:84:05:9e:37:90:b5:be:40:67: c2:f2:f7:8b:69:a9:35:bc:2c:bd:d6:e0:29:72:92:be:38:f8: 15:b8:09:d4:10:54:da:bf:e9:cc:8e:c4:d3:bd:99:a2:79:ca: a6:1b:1e:c8 -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIUApQkcoZUxihWNidsdsVBwyeu4TEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoREJFMDZBNUZDNUE1RTI4OUFDRUI0ODdCNTBDNUVDRDNC NkRFMjM0QzAeFw0yNjA1MTIwMzU1MDFaFw0yNjA1MTMwNTExMDFaMDMxMTAvBgNV BAMTKDE2NjM2REJCN0Q3QTUzRkRBMzA5RjMwQTQ3QzcwQzZGODI3MTgwOTAwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZzyrQ4n7OMpIZTfJvD7nzJ4I+ TdAf4NiabVSp13/gP1b3RrsG+xMjQBzHM+dwydUUlmf2/LeZA7NtBpJWKkrqgxvs /Nwnp57qIuTOOajPo3gw/1vLpvIItFWHHhQCBB3pSWix2L5QmcZUCGIk9hh4WeAq Fw8OJWCu9bbGBB1sWULPmuBUh3eF2Vgsms/aFPtestYDMOI7pY6EdcdeQXb09i3n eb8VLSWQ1qhE4RClU57vpSG8uFB2JoYj22giZ6nhrt1oaHksKO5FvdpF9Wvzlv0Z ghoC9nBZo9tdxMLIxla5kMV+kMhFPFL/XbVO3e+Zw594VNTT6kB3AhrzwnHLAgMB AAGjggHyMIIB7jAdBgNVHQ4EFgQUFmNtu316U/2jCfMKR8cMb4JxgJAwHwYDVR0j BBgwFoAU2+BqX8Wl4oms60h7UMXs07beI0wwDgYDVR0PAQH/BAQDAgeAMGUGA1Ud HwReMFwwWqBYoFaGVHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQU9URVJO RVQvMS9EQkUwNkE1RkM1QTVFMjg5QUNFQjQ4N0I1MEM1RUNEM0I2REUyMzRDLmNy bDBvBggrBgEFBQcBAQRjMGEwXwYIKwYBBQUHMAKGU3JzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS8wL0RCRTA2QTVGQzVBNUUyODlBQ0VCNDg3QjUw QzVFQ0QzQjZERTIzNEMuY2VyMHAGCCsGAQUFBwELBGQwYjBgBggrBgEFBQcwC4ZU cnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9BT1RFUk5FVC8xL0RCRTA2QTVG QzVBNUUyODlBQ0VCNDg3QjUwQzVFQ0QzQjZERTIzNEMubWZ0MBgGA1UdIAEB/wQO MAwwCgYIKwYBBQUHDgIwIQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIF ADAVBggrBgEFBQcBCAEB/wQGMASgAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAwmXYX hHpcrfUZRLWKk3o1fdKnI2nqOyGhFja/rpFVRGGl2s3sWRenst4c583ndGWoaakU 8Tvc0xC/2Btq/vOupVg4rtMyo25lD/i7xmclxWP6RkqxslrvySJaxhsvV8p/GjAf wWVEcRTf3FrLaWz6spdFOsd3xhv2rd3C5kro2KEtNlA2AueDNvEcKa1xBl8En5Ob hkyROxOgavnS442RkcykXEPFGR51UbLqjluEqaslmd/r0z3zrUBtiIS5li6+yljW PzoxwlSdqmQU3JiEBZ43kLW+QGfC8veLaak1vCy91uApcpK+OPgVuAnUEFTav+nM jsTTvZmiecqmGx7I -----END CERTIFICATE-----Generated at Tue May 12 23:55:45 2026 by rpki-client