$ rpki-client -vvf rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft File: F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft (raw, json) Hash identifier: u2p7+FVZIRFRZKai7W4dDgmDlEn8X9jl46GKSxLy95A= Subject key identifier: 4B:5F:5A:A4:AA:54:C8:84:DC:22:A4:BE:9F:14:5F:8D:C5:A2:C6:AC Authority key identifier: F1:F9:1D:03:CF:9C:05:D5:D5:B1:A7:B5:82:34:67:72:75:AD:A1:A8 Certificate issuer: /CN=F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8 Certificate serial: 2AD0E1A651E0063B2103C1019DE8B2BDE2A27FCB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft Manifest number: 05 Signing time: Tue 12 May 2026 12:25:56 +0000 Manifest this update: Tue 12 May 2026 12:20:56 +0000 Manifest next update: Wed 13 May 2026 15:43:56 +0000 Files and hashes: 1: 323430303a663532303a3a2f33322d3332203d3e2038303735.roa (hash: bcCWlKGdFRzkYWjpAxFiDRBiMFMYz6fz3Mvlqay5uQg=) 2: F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.crl (hash: lbJXGS5KGugfjjOLMSwsK9VHuI9QV4u3Q5gsHH9Gfgk=) 3: 3130332e3133312e3134392e302f32342d3234203d3e2038303735.roa (hash: ZWTKysskCJyx9iPE3iawI12a+vW95iu4X9ux8OHhK+s=) 4: 3130332e3133312e3134382e302f32342d3234203d3e2038303735.roa (hash: ngU9yGwnv4zDeMAuwTOcnfYW07w9n6079RMDCBEl224=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.crl rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:43:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2a:d0:e1:a6:51:e0:06:3b:21:03:c1:01:9d:e8:b2:bd:e2:a2:7f:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8 Validity Not Before: May 12 12:20:56 2026 GMT Not After : May 13 15:43:56 2026 GMT Subject: CN=4B5F5AA4AA54C884DC22A4BE9F145F8DC5A2C6AC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:1e:c3:4f:77:d8:c0:f2:62:87:f6:91:82:2e: 85:a8:c3:86:02:40:cc:04:21:fe:5f:c5:42:81:98: fd:ed:55:1e:c9:59:52:57:45:85:05:d1:90:6f:f3: b2:d3:3e:7c:22:65:73:d1:16:16:3d:1e:86:42:07: 39:3c:9d:a6:ff:cf:92:fe:5f:b7:2c:a3:34:f4:40: eb:e6:dd:53:12:3f:0a:3f:15:96:2c:0a:0f:ec:5c: 48:97:bf:15:f2:5d:31:00:35:61:cb:eb:99:e1:6d: e3:29:7c:99:16:18:5a:c4:74:bf:df:e6:36:64:5d: 1f:b6:fa:08:fd:68:ca:8f:89:96:63:83:f2:86:d9: 7e:ff:2a:21:d7:23:49:92:f5:3c:5e:a5:49:42:33: 9a:49:43:61:98:9c:7b:93:09:6f:46:27:96:ec:85: bd:ab:c7:e8:18:7f:7b:df:56:44:98:c6:d4:7d:b0: 24:19:33:5b:c5:a6:7f:88:e6:cd:11:dd:24:18:e3: 22:ab:3a:9e:05:a2:e7:1d:42:46:54:33:3d:99:91: 40:7f:87:50:dd:af:0c:f6:86:70:07:f1:80:38:51: 3e:9a:9d:53:32:5a:b8:ba:df:cb:af:cc:82:3d:77: ef:b4:fb:33:f8:2e:08:90:b6:af:5b:3b:d1:b7:96: 55:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:5F:5A:A4:AA:54:C8:84:DC:22:A4:BE:9F:14:5F:8D:C5:A2:C6:AC X509v3 Authority Key Identifier: keyid:F1:F9:1D:03:CF:9C:05:D5:D5:B1:A7:B5:82:34:67:72:75:AD:A1:A8 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/ONEDEGREE/0/F1F91D03CF9C05D5D5B1A7B58234677275ADA1A8.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 87:c2:ab:4b:0d:f6:cd:cd:d9:78:54:2e:b3:dc:05:f1:56:5f: 15:1b:b7:5a:1a:c1:1f:4b:cf:97:95:c8:f8:08:fe:ae:37:54: bb:53:68:68:28:95:1a:64:f8:8c:c1:ee:41:14:63:d5:2d:a4: cc:56:ba:eb:9f:96:df:cd:d5:09:cf:47:19:16:26:44:2b:a5: 56:bc:eb:6f:0e:3c:49:97:8f:ad:0e:34:96:0e:25:36:e0:81: 37:9a:58:ea:13:e2:d8:cd:f8:8b:10:f4:1c:ad:5b:16:74:19: 0f:1d:aa:59:bf:fa:4c:e3:14:a3:e6:e0:58:cb:c4:93:8b:57: 65:6d:c2:9e:33:9b:9a:b6:73:b6:76:09:a5:04:ce:de:30:7b: 92:f6:2c:e2:42:a7:62:3e:19:f3:bd:f9:1a:d9:e0:75:56:44: 1f:53:66:26:e8:6f:6f:f1:84:16:90:b5:17:1e:28:f5:b8:40: 50:96:98:0c:58:3a:31:53:f3:fd:fa:23:f2:4d:76:00:66:0f: 8c:74:1c:f4:5a:d6:93:a0:17:84:ac:33:06:cd:74:4f:a5:02: 6b:46:eb:bf:b3:63:5f:bc:25:38:62:ad:64:9c:ab:b7:49:d7: 4a:46:8c:a7:0a:73:34:c6:39:58:3c:1c:6e:21:5a:61:8f:11: ff:87:96:ea -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUKtDhplHgBjshA8EBneiyveKif8swDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjFGOTFEMDNDRjlDMDVENUQ1QjFBN0I1ODIzNDY3NzI3 NUFEQTFBODAeFw0yNjA1MTIxMjIwNTZaFw0yNjA1MTMxNTQzNTZaMDMxMTAvBgNV BAMTKDRCNUY1QUE0QUE1NEM4ODREQzIyQTRCRTlGMTQ1RjhEQzVBMkM2QUMwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDDHsNPd9jA8mKH9pGCLoWow4YC QMwEIf5fxUKBmP3tVR7JWVJXRYUF0ZBv87LTPnwiZXPRFhY9HoZCBzk8nab/z5L+ X7csozT0QOvm3VMSPwo/FZYsCg/sXEiXvxXyXTEANWHL65nhbeMpfJkWGFrEdL/f 5jZkXR+2+gj9aMqPiZZjg/KG2X7/KiHXI0mS9TxepUlCM5pJQ2GYnHuTCW9GJ5bs hb2rx+gYf3vfVkSYxtR9sCQZM1vFpn+I5s0R3SQY4yKrOp4FoucdQkZUMz2ZkUB/ h1Ddrwz2hnAH8YA4UT6anVMyWri638uvzII9d++0+zP4LgiQtq9bO9G3llVjAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUS19apKpUyITcIqS+nxRfjcWixqwwHwYDVR0j BBgwFoAU8fkdA8+cBdXVsae1gjRncnWtoagwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT05FREVH UkVFLzAvRjFGOTFEMDNDRjlDMDVENUQ1QjFBN0I1ODIzNDY3NzI3NUFEQTFBOC5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMS9GMUY5MUQwM0NGOUMwNUQ1RDVCMUE3QjU4 MjM0Njc3Mjc1QURBMUE4LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvT05FREVHUkVFLzAvRjFGOTFE MDNDRjlDMDVENUQ1QjFBN0I1ODIzNDY3NzI3NUFEQTFBOC5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAIfC q0sN9s3N2XhULrPcBfFWXxUbt1oawR9Lz5eVyPgI/q43VLtTaGgolRpk+IzB7kEU Y9UtpMxWuuuflt/N1QnPRxkWJkQrpVa8628OPEmXj60ONJYOJTbggTeaWOoT4tjN +IsQ9BytWxZ0GQ8dqlm/+kzjFKPm4FjLxJOLV2Vtwp4zm5q2c7Z2CaUEzt4we5L2 LOJCp2I+GfO9+RrZ4HVWRB9TZibob2/xhBaQtRceKPW4QFCWmAxYOjFT8/36I/JN dgBmD4x0HPRa1pOgF4SsMwbNdE+lAmtG67+zY1+8JThirWScq7dJ10pGjKcKczTG OVg8HG4hWmGPEf+Hluo= -----END CERTIFICATE-----Generated at Wed May 13 04:00:12 2026 by rpki-client