$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft File: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft (raw, json) Hash identifier: nFGGnGh9iJaE808z6GzkoD5/FXwcIiF+nJoNHA8eees= Subject key identifier: 77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A Authority key identifier: D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 Certificate issuer: /CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Certificate serial: 02F2 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft Manifest number: 02E9 Signing time: Thu 26 Mar 2026 09:59:26 +0000 Manifest this update: Thu 26 Mar 2026 09:59:26 +0000 Manifest next update: Sat 28 Mar 2026 09:59:26 +0000 Files and hashes: 1: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl (hash: P3CkCCMP0fD+DNjp7aeO41k3sttYkuyjJFqQ2Na0oFg=) 2: P1ZKyfvag6UsPC4dNJOSlY3e4jI.roa (hash: 1vRlxS13uFPFd7r4WDxgL7pRnrmfLKWCBZB3Vu33Hnc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 18:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 754 (0x2f2) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Validity Not Before: Mar 26 09:59:26 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=770707B2FDD87DCEE7497AC682964243F898389A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:28:b9:82:cf:c5:d4:72:69:c6:f5:70:48:14: 0a:c1:74:e9:f2:9a:34:17:2b:3b:04:30:4a:0c:da: 27:91:c6:e5:6f:35:35:03:da:31:3c:e1:53:24:31: c5:97:ee:50:f9:02:71:04:88:08:11:9c:6e:b8:e8: d9:e6:8c:93:54:a2:d9:0a:3e:ed:37:ca:07:85:14: 3a:90:de:5b:6a:0f:21:d3:f8:a0:22:02:51:c5:58: f2:35:7a:16:0f:b0:c3:4d:ed:2f:41:9b:ec:b0:30: 47:14:ad:f6:0f:ac:97:42:6f:f7:6c:c0:60:56:2b: 7a:0b:91:e0:a2:6f:82:6d:4d:59:02:59:88:01:50: b2:28:e5:97:cd:a3:8c:09:68:0d:84:d7:b4:30:2b: 82:3b:68:5e:13:3d:c9:6f:6d:bd:c3:8c:0d:3e:6f: bd:61:6c:7e:97:65:0a:5e:01:7d:66:47:26:37:af: 1a:44:61:0c:43:93:00:e2:38:1f:c5:d6:37:42:49: a9:cd:bb:30:1e:a8:1c:b5:3a:f7:96:bb:e2:07:fc: a9:0b:e0:01:de:9f:e3:51:dd:57:71:bd:15:81:71: da:60:5b:a7:2e:0e:e5:2d:04:60:d7:c6:39:44:95: 84:a1:47:85:7c:dd:08:2c:5c:9d:93:45:78:7e:e1: 2e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A X509v3 Authority Key Identifier: keyid:D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:76:4e:9b:70:20:90:d0:d7:71:83:d7:30:ab:83:55:9a:52: b7:92:eb:72:43:03:d1:55:53:cf:e3:20:21:6f:0c:8f:6b:11: 61:d2:c5:19:02:55:23:85:cd:f3:d2:fa:dc:98:82:bb:4f:ec: 55:4b:10:b5:fd:f1:e3:d9:0a:9f:9b:13:a8:64:8e:af:23:96: 98:1a:d4:cc:19:31:4d:b6:63:0f:91:ac:a7:fa:c4:ad:29:c6: 31:c5:3f:10:fd:23:e0:b5:61:b8:2b:c7:22:7b:16:a6:75:ef: 08:c5:7c:37:f9:5d:73:db:49:17:b4:2e:cd:5f:6e:5a:ee:91: 0e:2a:3d:64:e6:42:66:a8:e6:02:90:cc:db:d6:7a:8a:52:05: a3:ae:2e:e5:84:9b:83:e7:d5:09:37:a9:82:93:3a:f6:c1:44: 51:d1:f5:68:fc:62:2e:4f:0b:4e:a5:5c:d0:ec:ce:ca:d4:71: 69:42:d7:30:2c:d1:0a:dc:88:b7:ce:42:ae:d1:6e:28:17:0e: c0:c7:de:1a:93:2e:d2:47:9e:1e:f9:2a:f8:78:04:b1:a4:ea: 95:c9:ee:81:c2:f4:fe:70:1c:31:6e:d1:3d:a5:d0:94:18:0b: fd:8d:1e:5a:81:bf:df:00:e8:2d:59:38:5c:94:82:9d:1f:65: e7:59:79:73 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAvIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDMz MEJDNEUxMzdCMTUxMkUyRTQ1MDY4MDZCODcwQTRFQUE4NjBENzAeFw0yNjAzMjYw OTU5MjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc3MDcwN0IyRkREODdE Q0VFNzQ5N0FDNjgyOTY0MjQzRjg5ODM4OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIKLmCz8XUcmnG9XBIFArBdOnymjQXKzsEMEoM2ieRxuVvNTUD 2jE84VMkMcWX7lD5AnEEiAgRnG646NnmjJNUotkKPu03ygeFFDqQ3ltqDyHT+KAi AlHFWPI1ehYPsMNN7S9Bm+ywMEcUrfYPrJdCb/dswGBWK3oLkeCib4JtTVkCWYgB ULIo5ZfNo4wJaA2E17QwK4I7aF4TPclvbb3DjA0+b71hbH6XZQpeAX1mRyY3rxpE YQxDkwDiOB/F1jdCSanNuzAeqBy1OveWu+IH/KkL4AHen+NR3VdxvRWBcdpgW6cu DuUtBGDXxjlElYShR4V83QgsXJ2TRXh+4S6hAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUdwcHsv3Yfc7nSXrGgpZCQ/iYOJowHwYDVR0jBBgwFoAU0zC8ThN7FRLi5FBo BrhwpOqoYNcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJB U0lTLzB6QzhUaE43RlJMaTVGQm9Ccmh3cE9xb1lOYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMHpDOFRoTjdGUkxpNUZCb0JyaHdwT3FvWU5jLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJBU0lTLzB6QzhUaE43RlJM aTVGQm9Ccmh3cE9xb1lOYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCvdk6bcCCQ0Ndxg9cwq4NVmlK3kutyQwPRVVPP4yAhbwyPaxFh0sUZAlUj hc3z0vrcmIK7T+xVSxC1/fHj2QqfmxOoZI6vI5aYGtTMGTFNtmMPkayn+sStKcYx xT8Q/SPgtWG4K8ciexamde8IxXw3+V1z20kXtC7NX25a7pEOKj1k5kJmqOYCkMzb 1nqKUgWjri7lhJuD59UJN6mCkzr2wURR0fVo/GIuTwtOpVzQ7M7K1HFpQtcwLNEK 3Ii3zkKu0W4oFw7Ax94aky7SR54e+Sr4eASxpOqVye6BwvT+cBwxbtE9pdCUGAv9 jR5agb/fAOgtWThclIKdH2XnWXlz -----END CERTIFICATE-----Generated at Thu Mar 26 16:34:21 2026 by rpki-client