$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft File: cGQhJf35AjZbJAykAigCEy_cHBU.mft (raw, json) Hash identifier: glSq3SeKm28ITXWe0TD50lSTrtMIQ3TsOuMBRBBl3z0= Subject key identifier: 83:51:27:D7:B9:08:A0:C8:B5:1C:CB:C3:92:DD:2B:E1:4C:3C:44:24 Authority key identifier: 70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15 Certificate issuer: /CN=70642125FDF902365B240CA4022802132FDC1C15 Certificate serial: E3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft Manifest number: DF Signing time: Thu 26 Mar 2026 17:58:25 +0000 Manifest this update: Thu 26 Mar 2026 17:58:25 +0000 Manifest next update: Thu 26 Mar 2026 23:58:25 +0000 Files and hashes: 1: -1XVPannxNhE0gN6nt3WaVnbJzY.roa (hash: HckFBq6bNh0Ty5m0qi4KgS81TTmfyriYDAa0HhLToXs=) 2: GWJGOfhpsfrJd0kw5QzE4IUzcYc.roa (hash: S/LrahTF1ecL3rlxDi1WrfdvhV+9F5uRIbwg43rBxkg=) 3: cGQhJf35AjZbJAykAigCEy_cHBU.crl (hash: Pf00ore57gOQbQKfcVs/abhkAZ9Ra03qNCQoq34mvA4=) 4: qiVREO8yx4XRDKb3jtJiGN7C9lU.roa (hash: 6+rIhtnl5zgQPi3KWYUxtuPLFfq5UCLqmQ3T0RLII/A=) 5: sIR8g5rQFVdHVOwJRmeSXyTm15M.roa (hash: bN4TXRPC8WF2qSqbM7O6KTJe4r3PiqwWhD78/z0GAj4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 23:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 227 (0xe3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70642125FDF902365B240CA4022802132FDC1C15 Validity Not Before: Mar 26 17:58:25 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=835127D7B908A0C8B51CCBC392DD2BE14C3C4424 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:69:84:cc:fb:6a:46:8a:78:66:41:5a:0e:e0: 63:19:8d:37:40:e3:99:ed:d5:19:66:10:53:4f:27: dd:19:5e:3a:65:79:74:d5:a5:0c:89:0a:e9:4e:0b: 61:0a:39:39:53:5a:82:c4:9b:74:a8:9b:30:1d:f1: 43:62:50:a0:c1:cd:1e:44:17:be:2e:31:25:45:e0: 98:56:c9:4e:97:2f:96:62:e6:46:2a:93:b5:43:aa: 55:2c:e3:85:c8:39:0b:12:de:ff:5a:6b:03:67:cb: f4:85:2a:0c:13:8d:6d:70:db:1d:d1:55:9f:d6:a3: 3a:8f:81:14:0e:56:d9:fe:03:e9:78:21:1b:42:e9: b9:36:25:32:fe:e0:5b:d5:fd:d2:70:8f:61:d3:5d: 95:fb:9c:3c:0e:e0:6c:a2:ea:42:e8:89:2e:e2:08: 91:51:16:05:8b:e0:1d:e7:5e:bb:cb:7e:ae:3e:ef: a7:8e:b2:c5:fb:fc:34:b1:10:2d:4e:8a:15:38:88: 21:ea:2d:c4:02:40:57:a6:07:65:43:33:5f:3b:50: 78:8f:4d:28:61:25:bc:48:9e:aa:09:3a:7d:cb:1b: 37:f7:af:74:bd:da:29:22:bb:cf:8f:ad:00:91:40: 52:dd:5f:77:29:38:f5:ab:2c:f5:f7:10:bc:66:ca: 23:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:51:27:D7:B9:08:A0:C8:B5:1C:CB:C3:92:DD:2B:E1:4C:3C:44:24 X509v3 Authority Key Identifier: keyid:70:64:21:25:FD:F9:02:36:5B:24:0C:A4:02:28:02:13:2F:DC:1C:15 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cGQhJf35AjZbJAykAigCEy_cHBU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CLOUDBASE/cGQhJf35AjZbJAykAigCEy_cHBU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1d:8e:4e:34:45:98:a8:7f:97:d7:71:a5:12:93:21:41:87:f4: 0f:42:f5:ce:03:1c:57:fe:68:d0:eb:b2:53:f1:78:a7:2a:72: a5:ed:7a:da:6e:8f:7a:16:a3:2f:26:c6:79:a5:05:ba:2b:2d: 05:42:d1:a3:65:9d:64:7a:0a:89:95:10:5b:cc:4f:f6:d8:52: 72:6e:e0:76:df:e8:c5:51:81:be:3f:5a:4b:5d:cb:0a:b2:5e: 93:46:3d:af:da:1f:32:4d:4f:cf:4a:9b:16:92:cd:f3:5c:2b: 02:f5:a8:f8:10:a8:a2:ee:95:25:36:e6:2e:8c:d4:71:ff:cb: 26:45:9b:eb:04:5d:37:05:db:6f:6f:bf:85:e6:bb:d0:d0:d6: fd:8f:9d:d9:36:63:f0:ac:5a:86:00:ec:c6:38:87:ff:11:de: a1:fa:a1:92:4c:cd:62:e7:a6:42:8e:81:c4:b5:c1:da:a7:76: d9:cd:f2:c2:ca:d4:8c:a2:96:82:b4:c6:0b:cb:71:6f:9f:73: c9:8b:19:d9:5a:a6:11:28:13:9f:cd:e9:6d:d7:6a:83:e5:cd: 53:7b:c3:e4:f3:08:ce:3a:f2:57:68:d9:19:7f:9a:1c:d5:57: 2d:4c:7e:ba:49:04:a0:51:48:08:8f:2b:4c:34:1c:8c:14:c5: 79:a5:78:33 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAOMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA2 NDIxMjVGREY5MDIzNjVCMjQwQ0E0MDIyODAyMTMyRkRDMUMxNTAeFw0yNjAzMjYx NzU4MjVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgzNTEyN0Q3QjkwOEEw QzhCNTFDQ0JDMzkyREQyQkUxNEMzQzQ0MjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMaYTM+2pGinhmQVoO4GMZjTdA45nt1RlmEFNPJ90ZXjpleXTV pQyJCulOC2EKOTlTWoLEm3SomzAd8UNiUKDBzR5EF74uMSVF4JhWyU6XL5Zi5kYq k7VDqlUs44XIOQsS3v9aawNny/SFKgwTjW1w2x3RVZ/WozqPgRQOVtn+A+l4IRtC 6bk2JTL+4FvV/dJwj2HTXZX7nDwO4Gyi6kLoiS7iCJFRFgWL4B3nXrvLfq4+76eO ssX7/DSxEC1OihU4iCHqLcQCQFemB2VDM187UHiPTShhJbxInqoJOn3LGzf3r3S9 2ikiu8+PrQCRQFLdX3cpOPWrLPX3ELxmyiNPAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUg1En17kIoMi1HMvDkt0r4Uw8RCQwHwYDVR0jBBgwFoAUcGQhJf35AjZbJAyk AigCEy/cHBUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURC QVNFL2NHUWhKZjM1QWpaYkpBeWtBaWdDRXlfY0hCVS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvY0dRaEpmMzVBalpiSkF5a0FpZ0NFeV9jSEJVLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0xPVURCQVNFL2NHUWhKZjM1QWpa YkpBeWtBaWdDRXlfY0hCVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAdjk40RZiof5fXcaUSkyFBh/QPQvXOAxxX/mjQ67JT8XinKnKl7Xrabo96 FqMvJsZ5pQW6Ky0FQtGjZZ1kegqJlRBbzE/22FJybuB23+jFUYG+P1pLXcsKsl6T Rj2v2h8yTU/PSpsWks3zXCsC9aj4EKii7pUlNuYujNRx/8smRZvrBF03Bdtvb7+F 5rvQ0Nb9j53ZNmPwrFqGAOzGOIf/Ed6h+qGSTM1i56ZCjoHEtcHap3bZzfLCytSM opaCtMYLy3Fvn3PJixnZWqYRKBOfzelt12qD5c1Te8Pk8wjOOvJXaNkZf5oc1Vct TH66SQSgUUgIjytMNByMFMV5pXgz -----END CERTIFICATE-----Generated at Thu Mar 26 23:14:38 2026 by rpki-client