$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft File: TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft (raw, json) Hash identifier: sg5h99mgHaUm8CQMntUN6Wj96tcoHWfUkt4mypxaMiE= Subject key identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C Authority key identifier: 4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F Certificate issuer: /CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Certificate serial: 0E01 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft Manifest number: 0DF6 Signing time: Thu 26 Mar 2026 12:28:32 +0000 Manifest this update: Thu 26 Mar 2026 12:28:32 +0000 Manifest next update: Sat 28 Mar 2026 12:28:32 +0000 Files and hashes: 1: TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl (hash: hD7cMj1x73hyDUlAlDueKrtyaLTs85/5npAHZWgz68U=) 2: snAHs0ITH_XYDtljaq1F5MNbFhg.roa (hash: Ftw6S66K0ExrjZcPVKbM0s5z5qkQPI1+3FZoM1zFe7U=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 23:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3585 (0xe01) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C47DF748EC0FF16912283CEC10EC10ED32D244F Validity Not Before: Mar 26 12:28:32 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=D7E8B480C4C7274DFF97F4BDEB57C33F8491C09C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:b8:fd:0e:fe:75:76:0d:6a:27:8d:10:c0:ba: 72:e2:63:52:46:07:b4:a7:77:ff:17:c3:8a:fe:4a: ee:dd:00:b3:78:cc:46:fb:ca:d8:37:66:71:3b:b2: e7:b8:8d:a7:5c:c8:56:6a:90:a2:62:43:21:22:0f: b9:56:83:12:e6:78:7a:e2:fd:87:17:49:4d:be:6f: 1e:e7:24:68:e5:6b:5a:c6:43:4a:e1:48:66:43:ed: 24:26:55:b6:34:61:d9:79:21:8e:74:55:d9:aa:77: a7:0c:3d:b8:a5:8f:9a:d3:f7:2d:c4:db:eb:47:bd: d0:6a:fa:85:b5:c1:0a:19:cf:54:8d:54:76:f4:63: 0d:7f:b8:2a:ad:12:e6:ae:de:e1:a2:ba:be:23:57: e8:1d:3e:82:7c:96:d4:58:44:86:86:29:f2:ba:61: 45:83:ec:63:62:d1:4f:65:cf:b5:7f:1d:94:fc:4b: ef:22:65:f0:c4:d0:4a:7a:00:16:2f:ed:df:48:83: 1e:17:ed:b4:68:aa:74:5c:8e:7a:4d:77:64:37:5a: 30:36:85:57:8a:65:dd:8e:01:30:07:89:04:db:66: c0:45:b4:f4:51:21:e7:2e:ec:9d:38:37:a5:a0:20: 04:ca:b3:82:69:34:91:2e:b7:4c:98:c2:5f:e8:0d: 58:dd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:E8:B4:80:C4:C7:27:4D:FF:97:F4:BD:EB:57:C3:3F:84:91:C0:9C X509v3 Authority Key Identifier: keyid:4C:47:DF:74:8E:C0:FF:16:91:22:83:CE:C1:0E:C1:0E:D3:2D:24:4F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TEffdI7A_xaRIoPOwQ7BDtMtJE8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GSNET/TEffdI7A_xaRIoPOwQ7BDtMtJE8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:91:cc:1b:71:6e:e2:34:bb:fd:bc:50:79:82:39:ed:80:26: 7e:93:aa:fb:ea:b8:56:4f:1e:fd:f1:ba:9a:ca:22:95:dc:c0: b9:a9:79:5f:ef:55:a9:f3:af:51:ab:30:cf:85:38:83:6b:e8: bb:98:c7:59:45:a6:09:d7:35:39:ac:9a:e6:e3:17:3d:15:6b: 7d:61:8b:11:3e:0a:da:cc:68:58:cd:59:47:89:6b:c2:ed:cb: be:e3:a9:a0:33:75:68:a7:4d:29:13:fd:87:2c:53:a8:af:64: 79:f6:38:64:34:7e:5e:80:97:14:44:e0:0a:e1:55:1d:5c:f5: 4b:b3:f1:40:11:c1:39:f8:23:c3:90:92:d8:eb:af:54:84:9f: a2:8f:e9:16:d9:bb:49:7b:0c:45:a0:e8:5b:71:a4:19:ea:ee: 64:40:ba:77:86:b3:00:0f:f1:9d:b3:bc:43:63:c0:84:de:b3: a9:30:36:d1:7f:3c:50:ae:7a:e0:ca:0b:26:5a:5c:5a:70:b7: c2:f3:da:5a:52:b6:c4:64:17:8d:65:43:a3:b6:fa:3c:ba:f7: a6:5b:51:ed:11:07:67:da:59:5d:25:60:a2:18:dd:b8:95:4d: 42:38:c4:6d:eb:21:e1:81:3b:7c:c9:24:97:7a:14:ad:a8:cc: 3c:0b:3e:a6 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDgEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEM0 N0RGNzQ4RUMwRkYxNjkxMjI4M0NFQzEwRUMxMEVEMzJEMjQ0RjAeFw0yNjAzMjYx MjI4MzJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEQ3RThCNDgwQzRDNzI3 NERGRjk3RjRCREVCNTdDMzNGODQ5MUMwOUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNuP0O/nV2DWonjRDAunLiY1JGB7Snd/8Xw4r+Su7dALN4zEb7 ytg3ZnE7sue4jadcyFZqkKJiQyEiD7lWgxLmeHri/YcXSU2+bx7nJGjla1rGQ0rh SGZD7SQmVbY0Ydl5IY50Vdmqd6cMPbilj5rT9y3E2+tHvdBq+oW1wQoZz1SNVHb0 Yw1/uCqtEuau3uGiur4jV+gdPoJ8ltRYRIaGKfK6YUWD7GNi0U9lz7V/HZT8S+8i ZfDE0Ep6ABYv7d9Igx4X7bRoqnRcjnpNd2Q3WjA2hVeKZd2OATAHiQTbZsBFtPRR Iecu7J04N6WgIATKs4JpNJEut0yYwl/oDVjdAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU1+i0gMTHJ03/l/S961fDP4SRwJwwHwYDVR0jBBgwFoAUTEffdI7A/xaRIoPO wQ7BDtMtJE8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR1NORVQv VEVmZmRJN0FfeGFSSW9QT3dRN0JEdE10SkU4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9URWZmZEk3QV94YVJJb1BPd1E3QkR0TXRKRTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HU05FVC9URWZmZEk3QV94YVJJb1BPd1E3 QkR0TXRKRTgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAcZHM G3Fu4jS7/bxQeYI57YAmfpOq++q4Vk8e/fG6msoildzAual5X+9VqfOvUaswz4U4 g2vou5jHWUWmCdc1Oaya5uMXPRVrfWGLET4K2sxoWM1ZR4lrwu3LvuOpoDN1aKdN KRP9hyxTqK9kefY4ZDR+XoCXFETgCuFVHVz1S7PxQBHBOfgjw5CS2OuvVISfoo/p Ftm7SXsMRaDoW3GkGeruZEC6d4azAA/xnbO8Q2PAhN6zqTA20X88UK564MoLJlpc WnC3wvPaWlK2xGQXjWVDo7b6PLr3pltR7REHZ9pZXSVgohjduJVNQjjEbesh4YE7 fMkkl3oUrajMPAs+pg== -----END CERTIFICATE-----Generated at Thu Mar 26 23:24:49 2026 by rpki-client