$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft File: ftgwlnECe35vya4nucaMnE4pxXU.mft (raw, json) Hash identifier: lFUXoLKQ214NP0rCRhqHiyh81GMSJqCfkYn0VgZVzPw= Subject key identifier: 66:A9:74:07:81:77:DC:FD:04:3F:D9:68:DE:DF:E1:B1:80:12:D4:2F Authority key identifier: 7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 Certificate issuer: /CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Certificate serial: 056E Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft Manifest number: 0568 Signing time: Thu 26 Mar 2026 13:58:36 +0000 Manifest this update: Thu 26 Mar 2026 13:58:36 +0000 Manifest next update: Thu 26 Mar 2026 19:58:36 +0000 Files and hashes: 1: YpjaZC5LJccyTWPtUV5W8y7mQGY.roa (hash: eUalxOIeDjSTxJCisxHcY9I9f8YtwI2myu3jsK0kajc=) 2: ftgwlnECe35vya4nucaMnE4pxXU.crl (hash: T5f/KlZggA8wKhIFTHVZCy2qS1QqIff8uBzRL8KyAXk=) 3: iCkkndkB1R7qDlnU5hlkXI5uiCw.roa (hash: YZBdfebh6s1B6Biq68yu8yDii8XEt7a+stEGQfzarEQ=) 4: mKdR6--Ct0FenOYAQquVe1RtECw.roa (hash: xDLu6qxNzNW8m67vaBbUTurxrLTvcboUKmV8uB7NENk=) 5: td3jCjzHIYCL0-HvpN4nhdz2tvg.roa (hash: rBvJqif2TLaa20JqvQMoW3jO03c53tQSeUOcr0H7L0I=) 6: uNVqEJogHZSaPrKSieumrfhC8bk.roa (hash: dR9jkjn7FRhIqoQ74x6PlkHXiKpeC16K+bmQtEzwsc0=) 7: zWE-TE2amDOnjAMsPX6eFXUA-m4.roa (hash: DqCV7q/facD9tax0P/ph0uxpmehV8sHVuAE9yxMfhKM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 19:58:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1390 (0x56e) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7ED8309671027B7E6FC9AE27B9C68C9C4E29C575 Validity Not Before: Mar 26 13:58:36 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=66A974078177DCFD043FD968DEDFE1B18012D42F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:25:2e:ce:01:3c:ee:31:ae:3d:11:9f:9c:1d: 2c:de:41:17:95:93:07:18:4b:f2:b5:7c:6d:99:11: 32:65:a7:b4:4c:d4:9c:5c:95:33:3f:41:56:f8:40: 75:39:d9:67:03:42:b5:3f:a8:3c:89:a0:f6:db:57: 34:6f:92:8d:6b:1d:38:b3:e2:58:1f:9d:02:05:1d: 40:a0:25:bc:00:bb:2f:ed:17:eb:bd:6b:3a:98:83: 02:d4:c8:37:39:bf:88:25:c2:b3:c9:51:43:ef:74: 5b:ce:74:f8:6f:85:79:7e:b5:a0:73:bc:45:16:ca: 5d:fb:4b:98:54:18:71:70:d2:f0:60:b5:d5:2f:a6: cb:c0:4b:c9:37:05:0a:fa:02:09:06:99:f7:53:c7: 81:f0:7c:1c:56:ba:76:e1:0a:6a:49:5e:49:32:3e: 01:c3:8e:db:b7:69:30:a0:af:b7:17:d0:f6:47:22: 20:bf:7b:3c:90:ad:3e:35:8d:58:de:73:c7:55:88: f1:60:00:98:90:ff:a4:e8:bd:62:12:14:de:ae:3a: 55:24:a8:d2:3d:f8:2e:6d:b0:23:91:7a:95:72:9a: 7a:ca:32:d1:e4:46:b1:67:77:bc:63:43:53:d9:08: 3b:86:bb:be:d3:a8:e9:b4:3d:1e:e4:da:7e:19:cf: 8c:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:A9:74:07:81:77:DC:FD:04:3F:D9:68:DE:DF:E1:B1:80:12:D4:2F X509v3 Authority Key Identifier: keyid:7E:D8:30:96:71:02:7B:7E:6F:C9:AE:27:B9:C6:8C:9C:4E:29:C5:75 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ftgwlnECe35vya4nucaMnE4pxXU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GAMBESON/ftgwlnECe35vya4nucaMnE4pxXU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 16:36:d8:01:97:19:6c:3e:66:84:14:40:e6:e8:96:50:8e:cf: 69:76:af:6c:be:e3:95:73:c7:27:5b:78:14:d1:9b:92:35:71: 65:08:71:aa:d9:67:e4:4d:0e:73:9a:f7:f2:05:8f:7b:63:03: 6b:22:a2:2f:6a:48:5b:73:20:ea:f6:83:ad:c2:ab:f0:d9:17: e1:81:41:14:72:ae:89:0e:d7:b6:4a:21:09:7f:a6:d3:3d:b7: 22:73:9f:91:e1:e6:33:b9:5f:b7:a9:a5:10:aa:d7:d9:11:0b: 9f:78:cc:23:d7:e1:03:ef:c1:ac:d4:ec:32:19:4a:2c:d1:4a: cc:cf:62:b0:3e:92:dc:90:bd:1b:18:4b:83:85:68:d7:c3:98: 0c:b4:f4:48:6c:9a:e4:e8:09:2e:8f:0f:d8:21:7b:ce:1c:4b: 6b:c9:60:2a:15:af:01:81:a2:0f:ff:4f:c7:04:da:3d:b2:36: d2:91:2a:73:2c:c2:7f:fe:86:3d:74:6c:7d:fd:0b:72:a8:2e: bf:15:33:28:08:01:22:6d:dd:e0:03:48:a5:da:b2:06:dc:68: e1:f7:98:62:f1:5e:bb:48:8f:9f:83:bd:88:e5:1a:c7:de:e0: 1f:df:14:3a:0c:4f:44:5b:04:19:7d:0f:ab:fa:a0:5e:50:a2: a9:92:4f:26 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICBW4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0VE ODMwOTY3MTAyN0I3RTZGQzlBRTI3QjlDNjhDOUM0RTI5QzU3NTAeFw0yNjAzMjYx MzU4MzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY2QTk3NDA3ODE3N0RD RkQwNDNGRDk2OERFREZFMUIxODAxMkQ0MkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOJS7OATzuMa49EZ+cHSzeQReVkwcYS/K1fG2ZETJlp7RM1Jxc lTM/QVb4QHU52WcDQrU/qDyJoPbbVzRvko1rHTiz4lgfnQIFHUCgJbwAuy/tF+u9 azqYgwLUyDc5v4glwrPJUUPvdFvOdPhvhXl+taBzvEUWyl37S5hUGHFw0vBgtdUv psvAS8k3BQr6AgkGmfdTx4HwfBxWunbhCmpJXkkyPgHDjtu3aTCgr7cX0PZHIiC/ ezyQrT41jVjec8dViPFgAJiQ/6TovWISFN6uOlUkqNI9+C5tsCORepVymnrKMtHk RrFnd7xjQ1PZCDuGu77TqOm0PR7k2n4Zz4xJAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUZql0B4F33P0EP9lo3t/hsYAS1C8wHwYDVR0jBBgwFoAUftgwlnECe35vya4n ucaMnE4pxXUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0FNQkVT T04vZnRnd2xuRUNlMzV2eWE0bnVjYU1uRTRweFhVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9mdGd3bG5FQ2UzNXZ5YTRudWNhTW5FNHB4WFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HQU1CRVNPTi9mdGd3bG5FQ2UzNXZ5 YTRudWNhTW5FNHB4WFUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAFjbYAZcZbD5mhBRA5uiWUI7PaXavbL7jlXPHJ1t4FNGbkjVxZQhxqtln5E0O c5r38gWPe2MDayKiL2pIW3Mg6vaDrcKr8NkX4YFBFHKuiQ7XtkohCX+m0z23InOf keHmM7lft6mlEKrX2RELn3jMI9fhA+/BrNTsMhlKLNFKzM9isD6S3JC9GxhLg4Vo 18OYDLT0SGya5OgJLo8P2CF7zhxLa8lgKhWvAYGiD/9PxwTaPbI20pEqcyzCf/6G PXRsff0LcqguvxUzKAgBIm3d4ANIpdqyBtxo4feYYvFeu0iPn4O9iOUax97gH98U OgxPRFsEGX0Pq/qgXlCiqZJPJg== -----END CERTIFICATE-----Generated at Thu Mar 26 19:23:03 2026 by rpki-client