$ rpki-client -vvf rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft File: B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft (raw, json) Hash identifier: K5gKndk5SzstroKN9NErBmPa+b270jKvz6O8w8oFvJc= Subject key identifier: 22:A8:28:89:BD:A5:7D:AF:EE:E6:EA:72:BF:08:01:F4:80:6B:C4:41 Authority key identifier: B7:2C:12:A5:51:5B:F3:3E:A3:5A:CD:6C:99:11:C9:AC:6D:E9:EA:05 Certificate issuer: /CN=B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05 Certificate serial: 73A4892BAD9165481FAD84CBA3AF25FA0921140D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft Manifest number: 03 Signing time: Tue 12 May 2026 11:25:32 +0000 Manifest this update: Tue 12 May 2026 11:20:32 +0000 Manifest next update: Wed 13 May 2026 15:18:32 +0000 Files and hashes: 1: 3135372e31352e37302e302f32332d3233203d3e20313530373639.roa (hash: RIJKr3g2uIwf5iqGFGjqViDDGGsabsMlFTzqof1niUM=) 2: B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.crl (hash: FJdeYTRDpvLsaXAWJ6fFZm1YNvZ0UNEhMTLdoQ1KzfI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.crl rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:18:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 73:a4:89:2b:ad:91:65:48:1f:ad:84:cb:a3:af:25:fa:09:21:14:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05 Validity Not Before: May 12 11:20:32 2026 GMT Not After : May 13 15:18:32 2026 GMT Subject: CN=22A82889BDA57DAFEEE6EA72BF0801F4806BC441 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:ef:13:5d:13:7c:fb:46:02:a5:dc:2d:ca:ec: 95:55:2b:c0:60:4c:ee:d2:cc:e3:e3:d8:68:0e:5c: 18:25:9a:1d:36:a0:09:b9:55:47:0a:de:31:ba:dd: e5:d2:34:fe:6b:c4:73:66:d5:df:0f:00:1c:07:55: 77:0f:24:27:63:2a:24:c5:74:1e:64:e5:ef:94:33: b6:2f:80:5b:19:58:7d:b4:4a:62:f4:98:8c:64:3f: ef:23:45:d5:32:d6:6b:ca:e5:af:09:08:f3:84:db: 0f:47:61:ee:b6:d7:69:7e:a6:bf:e6:a1:22:0e:06: 84:05:00:b4:51:38:32:14:70:b7:01:57:ae:f4:d7: be:f0:7e:1f:17:62:b2:99:6a:9b:cd:b0:bc:ff:8b: 90:e3:2d:fd:cd:e1:68:ac:a5:9c:69:94:45:f4:aa: a1:12:3e:03:81:e2:2e:5e:1c:37:1a:8e:ac:7d:85: a4:ce:3d:36:69:db:fd:fa:eb:4f:f2:1f:05:a2:4c: df:bf:68:05:6c:5b:83:81:7d:85:1d:12:6b:c5:93: 91:a2:66:5b:7c:ce:91:66:f0:3c:e1:0a:5a:9a:39: 05:bc:78:81:62:40:2d:51:90:1c:e8:fc:ec:37:10: 29:82:fc:c0:ec:32:86:51:fa:17:f1:44:51:01:47: 43:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:A8:28:89:BD:A5:7D:AF:EE:E6:EA:72:BF:08:01:F4:80:6B:C4:41 X509v3 Authority Key Identifier: keyid:B7:2C:12:A5:51:5B:F3:3E:A3:5A:CD:6C:99:11:C9:AC:6D:E9:EA:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ASPIRAPPS/1/B72C12A5515BF33EA35ACD6C9911C9AC6DE9EA05.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 28:c1:e2:8e:3e:f6:c3:1f:d8:cb:15:67:89:8e:8a:b3:33:86: 46:3a:c3:d2:b4:43:c4:75:0b:c4:58:71:3a:d7:31:e1:5b:db: db:9c:24:74:8a:9b:59:99:0d:b7:22:20:8c:2f:78:51:ca:39: 98:38:5e:60:2a:67:fa:d9:d4:f9:32:8b:8c:60:28:bd:f9:ca: 62:30:50:e4:93:bb:fe:0a:3d:6b:d8:25:a3:35:51:01:11:c8: de:94:8c:af:68:d3:bd:7d:2c:9b:c0:0e:93:fc:00:f8:2f:ca: 12:b1:77:50:be:dd:8f:39:11:ae:6b:30:32:c6:3a:a6:78:22: 90:df:b2:41:63:f1:4a:b7:f3:23:38:f3:78:56:3e:27:b6:39: 81:a2:d3:8b:ef:24:a2:fd:e6:58:7a:c7:0d:75:e4:2f:f5:3d: 05:34:4c:46:42:0e:7e:83:03:ca:42:88:6a:fb:f8:2c:76:bb: 12:de:4c:27:b0:cc:a9:7a:6b:c4:9b:32:19:38:0c:3e:6c:c7: dc:65:ca:8a:68:b1:e0:00:34:2b:50:ae:23:20:4b:63:ed:cd: e5:18:a1:51:ed:02:7c:22:e7:51:b4:71:a5:00:1a:5c:df:19: 32:00:b9:be:7e:71:9f:ab:25:aa:dc:a3:be:71:d0:a9:d2:29: c9:6c:de:9a -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUc6SJK62RZUgfrYTLo68l+gkhFA0wDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQjcyQzEyQTU1MTVCRjMzRUEzNUFDRDZDOTkxMUM5QUM2 REU5RUEwNTAeFw0yNjA1MTIxMTIwMzJaFw0yNjA1MTMxNTE4MzJaMDMxMTAvBgNV BAMTKDIyQTgyODg5QkRBNTdEQUZFRUU2RUE3MkJGMDgwMUY0ODA2QkM0NDEwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCc7xNdE3z7RgKl3C3K7JVVK8Bg TO7SzOPj2GgOXBglmh02oAm5VUcK3jG63eXSNP5rxHNm1d8PABwHVXcPJCdjKiTF dB5k5e+UM7YvgFsZWH20SmL0mIxkP+8jRdUy1mvK5a8JCPOE2w9HYe6212l+pr/m oSIOBoQFALRRODIUcLcBV670177wfh8XYrKZapvNsLz/i5DjLf3N4WispZxplEX0 qqESPgOB4i5eHDcajqx9haTOPTZp2/3660/yHwWiTN+/aAVsW4OBfYUdEmvFk5Gi Zlt8zpFm8DzhClqaOQW8eIFiQC1RkBzo/Ow3ECmC/MDsMoZR+hfxRFEBR0OBAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUIqgoib2lfa/u5upyvwgB9IBrxEEwHwYDVR0j BBgwFoAUtywSpVFb8z6jWs1smRHJrG3p6gUwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQVNQSVJB UFBTLzEvQjcyQzEyQTU1MTVCRjMzRUEzNUFDRDZDOTkxMUM5QUM2REU5RUEwNS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMC9CNzJDMTJBNTUxNUJGMzNFQTM1QUNENkM5 OTExQzlBQzZERTlFQTA1LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvQVNQSVJBUFBTLzEvQjcyQzEy QTU1MTVCRjMzRUEzNUFDRDZDOTkxMUM5QUM2REU5RUEwNS5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBACjB 4o4+9sMf2MsVZ4mOirMzhkY6w9K0Q8R1C8RYcTrXMeFb29ucJHSKm1mZDbciIIwv eFHKOZg4XmAqZ/rZ1Pkyi4xgKL35ymIwUOSTu/4KPWvYJaM1UQERyN6UjK9o0719 LJvADpP8APgvyhKxd1C+3Y85Ea5rMDLGOqZ4IpDfskFj8Uq38yM483hWPie2OYGi 04vvJKL95lh6xw115C/1PQU0TEZCDn6DA8pCiGr7+Cx2uxLeTCewzKl6a8SbMhk4 DD5sx9xlyoposeAANCtQriMgS2PtzeUYoVHtAnwi51G0caUAGlzfGTIAub5+cZ+r Jarco75x0KnSKcls3po= -----END CERTIFICATE-----Generated at Wed May 13 07:46:42 2026 by rpki-client