$ rpki-client -vvf rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft File: CA678C886D87F023B9297877BF550E88E90AE169.mft (raw, json) Hash identifier: hlhCqwyp+fXPfmjfRlemcaNJ6vv5Kf15szqA3auC1UA= Subject key identifier: 43:5C:14:53:16:3F:B9:45:79:28:82:E7:5A:0D:D9:E8:06:77:5F:CB Authority key identifier: CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 Certificate issuer: /CN=CA678C886D87F023B9297877BF550E88E90AE169 Certificate serial: 69FD2B1B80EBA21AC0C40183B9A883A63B0EA161 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject info access: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft Manifest number: 04 Signing time: Tue 12 May 2026 11:25:31 +0000 Manifest this update: Tue 12 May 2026 11:20:31 +0000 Manifest next update: Wed 13 May 2026 15:17:31 +0000 Files and hashes: 1: 34392e3231332e33342e302f32332d3234203d3e203231383539.roa (hash: fJnxPhgLX/rch2cog18IcRNcikXmBfffJ21WF3oWCTE=) 2: CA678C886D87F023B9297877BF550E88E90AE169.crl (hash: DwUdZonbwLPMoFVh/03ln4mlHgRvVHrBlty1YdaJqGo=) 3: 34392e3231332e33342e302f32332d3234203d3e2037353336.roa (hash: UiYvDw3Nz5+XLnUJ6ot0sHBwCYvrMQN4qa4YEtJyIAc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/1/DA632505767413A1409A3E33B99D256CDFB1901D.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/2mMlBXZ0E6FAmj4zuZ0lbN-xkB0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 15:17:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 69:fd:2b:1b:80:eb:a2:1a:c0:c4:01:83:b9:a8:83:a6:3b:0e:a1:61 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CA678C886D87F023B9297877BF550E88E90AE169 Validity Not Before: May 12 11:20:31 2026 GMT Not After : May 13 15:17:31 2026 GMT Subject: CN=435C1453163FB945792882E75A0DD9E806775FCB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:c3:c4:f6:64:0e:17:72:26:16:5e:28:36:28: d6:8f:f9:5b:9e:b4:a7:27:fb:32:68:6a:ce:f3:87: 66:47:44:2a:a6:6a:ac:af:b5:04:dd:f8:78:22:bc: 3d:e3:eb:a1:3e:d8:24:3d:e9:19:94:63:9d:86:e4: 19:5c:79:6a:4b:c1:a1:87:d0:83:78:1a:3c:a6:6c: 89:f9:2b:77:df:16:bf:a7:0a:ef:45:32:54:1b:16: ca:69:3b:8d:39:b1:ea:57:52:44:7a:61:ff:0e:88: 0a:0e:7c:9c:b8:a4:8b:69:cb:7d:26:1f:f2:55:06: 81:f1:ce:59:8d:c5:6a:76:1b:36:73:c7:86:b2:79: 67:9e:ef:30:bc:e8:95:c6:c1:59:de:9d:1c:19:41: 5b:9f:42:40:dd:8a:d4:ae:e4:65:88:d4:ff:75:f7: f8:01:c6:55:0a:2f:72:45:e1:ab:c3:54:63:0a:fc: 50:28:cd:27:99:7f:70:28:ae:14:c7:b3:da:c6:d3: ca:cf:32:af:56:dc:e9:b0:57:8b:d5:dd:e8:a0:a5: 26:14:52:a9:ed:ce:76:c0:27:5b:a7:a1:f2:de:0b: fc:a3:05:fe:ce:5d:9b:0d:3a:0c:94:89:7b:82:a1: 0e:09:b9:e7:86:43:25:7c:c0:90:1e:9a:3c:25:59: 5d:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:5C:14:53:16:3F:B9:45:79:28:82:E7:5A:0D:D9:E8:06:77:5F:CB X509v3 Authority Key Identifier: keyid:CA:67:8C:88:6D:87:F0:23:B9:29:78:77:BF:55:0E:88:E9:0A:E1:69 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/1/CA678C886D87F023B9297877BF550E88E90AE169.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/SHIYIYI/0/CA678C886D87F023B9297877BF550E88E90AE169.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 70:02:37:bc:fe:f2:0f:fa:f4:ec:1a:40:ca:0f:53:68:b4:5f: bf:92:e1:13:cb:32:c7:1a:2e:98:2b:1b:05:df:9e:d2:8c:ee: c0:da:ac:57:e3:20:4f:c1:4c:cf:bb:2f:d2:4e:d5:fb:39:c3: f1:0a:34:ac:39:8c:5e:5e:60:54:dd:4a:77:25:6c:56:e6:34: d5:12:ad:fc:0e:5c:68:f6:93:c5:1e:70:ab:26:d4:eb:13:6d: 92:7b:01:28:bd:95:4d:a0:7a:b7:d6:cc:44:3a:be:7f:a8:22: 96:d9:e1:56:5c:f4:e9:93:ae:a9:6e:92:16:e7:03:82:64:ad: 0b:24:23:75:31:ce:7f:76:9a:03:e5:12:e9:f0:64:8a:fa:8b: 73:c5:4e:e9:86:26:e5:8e:c4:d9:c8:54:cc:5e:35:8b:dc:4a: 00:03:0b:92:54:9e:1a:a8:c5:09:85:de:0e:1d:d3:fb:f7:5a: 5c:4c:1c:fb:73:53:07:0c:d2:31:6f:fd:21:56:38:d6:a3:ea: 87:93:43:08:cf:c5:a7:90:9b:fd:6e:63:73:6c:be:93:08:50: 6d:04:4b:b0:d2:16:fa:fa:61:91:c7:60:a7:d9:d2:10:da:ee: f5:d1:53:5f:f7:ca:9a:44:7e:0f:7d:db:d6:d1:7f:85:0b:d6: 9b:b6:7a:b0 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIUaf0rG4DrohrAxAGDuaiDpjsOoWEwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1NTBFODhF OTBBRTE2OTAeFw0yNjA1MTIxMTIwMzFaFw0yNjA1MTMxNTE3MzFaMDMxMTAvBgNV BAMTKDQzNUMxNDUzMTYzRkI5NDU3OTI4ODJFNzVBMEREOUU4MDY3NzVGQ0IwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC5w8T2ZA4XciYWXig2KNaP+Vue tKcn+zJoas7zh2ZHRCqmaqyvtQTd+HgivD3j66E+2CQ96RmUY52G5BlceWpLwaGH 0IN4GjymbIn5K3ffFr+nCu9FMlQbFsppO405sepXUkR6Yf8OiAoOfJy4pItpy30m H/JVBoHxzlmNxWp2GzZzx4ayeWee7zC86JXGwVnenRwZQVufQkDditSu5GWI1P91 9/gBxlUKL3JF4avDVGMK/FAozSeZf3AorhTHs9rG08rPMq9W3OmwV4vV3eigpSYU UqntznbAJ1unofLeC/yjBf7OXZsNOgyUiXuCoQ4JueeGQyV8wJAemjwlWV1fAgMB AAGjggHwMIIB7DAdBgNVHQ4EFgQUQ1wUUxY/uUV5KILnWg3Z6AZ3X8swHwYDVR0j BBgwFoAUymeMiG2H8CO5KXh3v1UOiOkK4WkwDgYDVR0PAQH/BAQDAgeAMGQGA1Ud HwRdMFswWaBXoFWGU3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvU0hJWUlZ SS8wL0NBNjc4Qzg4NkQ4N0YwMjNCOTI5Nzg3N0JGNTUwRTg4RTkwQUUxNjkuY3Js MG8GCCsGAQUFBwEBBGMwYTBfBggrBgEFBQcwAoZTcnN5bmM6Ly9ycGtpY2EudHdu aWMudHcvcnBraS9UV05JQ0NBLzEvQ0E2NzhDODg2RDg3RjAyM0I5Mjk3ODc3QkY1 NTBFODhFOTBBRTE2OS5jZXIwbwYIKwYBBQUHAQsEYzBhMF8GCCsGAQUFBzALhlNy c3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1NISVlJWUkvMC9DQTY3OEM4ODZE ODdGMDIzQjkyOTc4NzdCRjU1MEU4OEU5MEFFMTY5Lm1mdDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcAI3vP7y D/r07BpAyg9TaLRfv5LhE8syxxoumCsbBd+e0ozuwNqsV+MgT8FMz7sv0k7V+znD 8Qo0rDmMXl5gVN1KdyVsVuY01RKt/A5caPaTxR5wqybU6xNtknsBKL2VTaB6t9bM RDq+f6giltnhVlz06ZOuqW6SFucDgmStCyQjdTHOf3aaA+US6fBkivqLc8VO6YYm 5Y7E2chUzF41i9xKAAMLklSeGqjFCYXeDh3T+/daXEwc+3NTBwzSMW/9IVY41qPq h5NDCM/Fp5Cb/W5jc2y+kwhQbQRLsNIW+vphkcdgp9nSENru9dFTX/fKmkR+D33b 1tF/hQvWm7Z6sA== -----END CERTIFICATE-----Generated at Wed May 13 07:46:31 2026 by rpki-client