$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft File: faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft (raw, json) Hash identifier: y9KOFO0SdC+Qe17dFKLwRCvw/t0zOeUtPZrcGEU7uZM= Subject key identifier: 1D:67:BE:08:D6:17:3D:57:35:E8:21:23:4F:80:9B:5F:7B:83:B1:B6 Authority key identifier: 7D:A2:CB:7F:59:43:C8:A4:1C:0E:2B:D3:0C:5E:1F:4A:9F:84:C3:74 Certificate issuer: /CN=7DA2CB7F5943C8A41C0E2BD30C5E1F4A9F84C374 Certificate serial: 01B9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/faLLf1lDyKQcDivTDF4fSp-Ew3Q.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft Manifest number: 01B8 Signing time: Sat 28 Mar 2026 10:59:06 +0000 Manifest this update: Sat 28 Mar 2026 10:59:06 +0000 Manifest next update: Sat 28 Mar 2026 16:59:06 +0000 Files and hashes: 1: YPnhMYTTuH2SgqQt_jT5abvU5_I.roa (hash: UmX7HJBrzyrOQ5GcuWvDGD0yzeseArr+5fx4h5KscqA=) 2: faLLf1lDyKQcDivTDF4fSp-Ew3Q.crl (hash: uLVLkL9tjt5txzP1Cf5gczpRvH254XpIiSWBYFxx30A=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/faLLf1lDyKQcDivTDF4fSp-Ew3Q.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 16:59:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 441 (0x1b9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7DA2CB7F5943C8A41C0E2BD30C5E1F4A9F84C374 Validity Not Before: Mar 28 10:59:06 2026 GMT Not After : Nov 12 15:30:20 2026 GMT Subject: CN=1D67BE08D6173D5735E821234F809B5F7B83B1B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:b9:d2:64:d7:8c:38:5c:e6:8f:80:29:6f:57: 72:47:b6:48:a6:26:8b:af:ae:7e:ee:90:d2:74:b2: 16:eb:c6:68:f1:52:98:2f:fa:fe:d2:2a:1f:8c:9c: c2:0d:23:a8:87:93:2b:f7:c7:f9:91:32:b4:52:71: ab:80:58:53:67:2e:fa:83:49:1d:81:a3:44:29:21: 47:a4:22:03:99:2c:69:f5:c7:f3:3f:4e:02:a7:c1: e7:68:c7:5e:47:d7:17:90:fc:c6:d0:d1:86:fb:b6: cc:f5:86:08:44:dd:a6:eb:24:1c:f0:61:79:9b:06: ae:01:92:7d:f3:2e:3b:af:1f:9e:38:ae:84:e8:5a: 08:51:15:a1:c8:73:b7:cc:fd:c6:9c:7c:d2:d9:e6: dc:dc:6c:78:28:1b:c1:80:ba:b4:9b:c9:47:39:ca: 34:68:01:d7:43:10:50:c4:c6:da:a8:b8:89:89:dc: 88:e9:27:03:e2:04:0c:d0:b8:b4:77:d2:60:e8:33: 23:80:03:f4:dc:a4:ac:c2:56:63:d2:6f:62:1a:1c: 78:e8:b9:d8:dc:7c:91:32:81:c4:88:ef:fb:bb:88: b5:68:72:7d:fe:92:e3:dd:76:6c:17:36:a5:dd:24: 16:74:8c:c5:28:10:de:f2:ec:84:97:1a:de:8e:df: 55:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1D:67:BE:08:D6:17:3D:57:35:E8:21:23:4F:80:9B:5F:7B:83:B1:B6 X509v3 Authority Key Identifier: keyid:7D:A2:CB:7F:59:43:C8:A4:1C:0E:2B:D3:0C:5E:1F:4A:9F:84:C3:74 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/faLLf1lDyKQcDivTDF4fSp-Ew3Q.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GMICLOUD/faLLf1lDyKQcDivTDF4fSp-Ew3Q.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 84:7f:6a:d1:92:a5:cc:6f:58:5d:de:67:9c:68:31:d9:21:a0: 82:c2:13:bc:08:50:56:90:1c:cd:8d:05:ed:7c:2b:d7:cd:98: c1:d7:eb:02:e0:30:cd:84:aa:f3:dd:cc:db:4c:1c:b6:ad:b5: 68:ed:65:f8:1c:1f:ce:eb:77:cb:c8:ad:15:bc:5e:59:10:99: d3:d6:c7:27:29:11:c1:cc:52:bc:41:83:07:c4:77:0e:14:09: 98:c4:bc:ba:76:d1:61:84:a3:0f:f1:95:7c:91:96:98:a0:b5: 66:ab:91:7f:99:32:ef:bd:19:f4:b1:fb:22:b8:a8:eb:f2:fc: 9f:50:08:c5:11:a3:0d:51:d7:ff:b0:6c:80:14:56:8f:40:e1: b6:52:85:ed:8e:e2:86:42:24:49:98:68:da:4b:69:0d:99:94: ec:68:15:b3:6a:ca:50:21:3e:51:9c:83:74:79:20:15:ce:c2: b3:69:59:3b:ab:3b:8f:b7:be:7e:92:44:87:43:2b:2f:cf:de: f6:e4:5f:cd:41:63:0b:97:55:75:d2:e6:4b:49:af:8b:47:67: 04:c4:92:01:19:12:6a:71:06:d4:cf:0f:ba:a5:a5:cc:2f:ac: 84:d4:e9:36:aa:87:0b:3a:ab:6f:3d:d0:49:5d:80:68:28:e1: 9c:f6:0e:3f -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAbkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0RB MkNCN0Y1OTQzQzhBNDFDMEUyQkQzMEM1RTFGNEE5Rjg0QzM3NDAeFw0yNjAzMjgx MDU5MDZaFw0yNjExMTIxNTMwMjBaMDMxMTAvBgNVBAMTKDFENjdCRTA4RDYxNzNE NTczNUU4MjEyMzRGODA5QjVGN0I4M0IxQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDTudJk14w4XOaPgClvV3JHtkimJouvrn7ukNJ0shbrxmjxUpgv +v7SKh+MnMINI6iHkyv3x/mRMrRScauAWFNnLvqDSR2Bo0QpIUekIgOZLGn1x/M/ TgKnwedox15H1xeQ/MbQ0Yb7tsz1hghE3abrJBzwYXmbBq4Bkn3zLjuvH544roTo WghRFaHIc7fM/cacfNLZ5tzcbHgoG8GAurSbyUc5yjRoAddDEFDExtqouImJ3Ijp JwPiBAzQuLR30mDoMyOAA/TcpKzCVmPSb2IaHHjoudjcfJEygcSI7/u7iLVocn3+ kuPddmwXNqXdJBZ0jMUoEN7y7ISXGt6O31UrAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUHWe+CNYXPVc16CEjT4CbX3uDsbYwHwYDVR0jBBgwFoAUfaLLf1lDyKQcDivT DF4fSp+Ew3QwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR01JQ0xP VUQvZmFMTGYxbER5S1FjRGl2VERGNGZTcC1FdzNRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9mYUxMZjFsRHlLUWNEaXZUREY0ZlNwLUV3M1EuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HTUlDTE9VRC9mYUxMZjFsRHlLUWNE aXZUREY0ZlNwLUV3M1EubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAhH9q0ZKlzG9YXd5nnGgx2SGggsITvAhQVpAczY0F7Xwr182YwdfrAuAwzYSq 893M20wctq21aO1l+Bwfzut3y8itFbxeWRCZ09bHJykRwcxSvEGDB8R3DhQJmMS8 unbRYYSjD/GVfJGWmKC1ZquRf5ky770Z9LH7Irio6/L8n1AIxRGjDVHX/7BsgBRW j0DhtlKF7Y7ihkIkSZho2ktpDZmU7GgVs2rKUCE+UZyDdHkgFc7Cs2lZO6s7j7e+ fpJEh0MrL8/e9uRfzUFjC5dVddLmS0mvi0dnBMSSARkSanEG1M8PuqWlzC+shNTp NqqHCzqrbz3QSV2AaCjhnPYOPw== -----END CERTIFICATE-----Generated at Sat Mar 28 14:50:48 2026 by rpki-client