
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft
File: fhfZI6oLxrCgi1oYe-6crejVDq8.mft (raw, json)
Hash identifier: uFBT/rgVg5N2QVCAAhDQLuHp0vSKJ90mXbuJcN2xx/w=
Subject key identifier: 8F:29:38:B7:7D:18:33:41:E7:8D:06:34:73:36:86:AF:C3:EB:0C:E6
Authority key identifier: 7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
Certificate issuer: /CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Certificate serial: 0477
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft
Manifest number: 0451
Signing time: Tue 24 Mar 2026 22:59:08 +0000
Manifest this update: Tue 24 Mar 2026 22:59:08 +0000
Manifest next update: Thu 26 Mar 2026 22:59:08 +0000
Files and hashes: 1: 4kC2bULq9anW24g_vx8krkcsdBo.roa (hash: 7HlPeNFEe2YJl9Kvh28TwPAzDY//LorhcGKITfQzFow=)
2: FUXuk2vn6bIce9bKUsjgcU3uKuA.roa (hash: AlEHns3LLEzjhg4CMpFq+KVvLFXubOBq1MABYszcBx4=)
3: PgVkuGprgrCL_lIQLtvy1rg57HI.roa (hash: v2btXmztzeindLO4HUVlTjMIniSPk8SEhiWvT+5Vo2Y=)
4: fhfZI6oLxrCgi1oYe-6crejVDq8.crl (hash: FpX0y4IWzW4y+Pl8vTobRzT15EsI7RePED3vDJxQ3Hw=)
5: jLKa0XsGBSbaFXh3TxEn76E0l1Y.roa (hash: h68/GTheWe8r+L492QZjNMqxMSvq1YkR6jBkOn/d0Sc=)
6: rEDBPd9QydLPmNdugYc-Cw9E9d8.roa (hash: Is2DH/5MAbpAg0nOVvIxsesK1GhINut4G7201Gjsppg=)
Validation: OK
Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft
rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires: Thu 26 Mar 2026 13:59:18 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1143 (0x477)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=7E17D923AA0BC6B0A08B5A187BEE9CADE8D50EAF
Validity
Not Before: Mar 24 22:59:08 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=8F2938B77D183341E78D0634733686AFC3EB0CE6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d2:bd:d5:fc:40:18:6f:d9:55:36:f2:f7:b3:9e:
f6:07:fb:50:4b:28:74:dc:2c:5d:cc:06:a6:36:f1:
fa:ed:3d:1d:3c:8a:57:57:5d:df:96:18:8d:1e:d0:
b2:57:60:65:65:00:b7:8f:51:d5:2b:df:db:5c:0b:
b5:9e:f8:45:58:da:2b:15:8a:2e:ef:0b:c1:69:ea:
4f:de:47:eb:f4:14:63:52:fc:bd:d0:6f:76:d9:9c:
01:94:50:df:fc:0c:d8:fc:18:53:63:9f:d4:99:d9:
47:52:1c:95:46:57:dc:eb:3a:e0:33:b4:ac:cd:8c:
e0:83:58:de:d9:b6:1f:0a:7c:7f:87:4d:d9:7c:2c:
9b:b7:69:6b:17:75:fd:fd:f4:a0:c5:a3:e9:85:0a:
93:f8:c0:3a:00:65:05:81:22:d7:3a:94:c1:8e:3d:
50:cb:62:84:24:69:5c:3d:ec:eb:52:37:4e:65:d5:
aa:e3:b1:38:2b:93:77:54:9d:89:50:f0:91:9a:44:
d7:27:8f:83:5f:ef:b2:54:af:b2:59:57:59:92:64:
d3:c4:17:7c:d4:b6:55:ae:78:8d:2f:f3:33:84:c8:
fe:b2:36:73:9d:41:01:ca:30:bb:02:87:58:b4:09:
c7:9c:09:22:5d:f5:bb:ed:ae:ba:e0:17:f9:df:d3:
c0:23
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
8F:29:38:B7:7D:18:33:41:E7:8D:06:34:73:36:86:AF:C3:EB:0C:E6
X509v3 Authority Key Identifier:
keyid:7E:17:D9:23:AA:0B:C6:B0:A0:8B:5A:18:7B:EE:9C:AD:E8:D5:0E:AF
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fhfZI6oLxrCgi1oYe-6crejVDq8.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ISHISH/fhfZI6oLxrCgi1oYe-6crejVDq8.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0e:53:a1:f8:d0:07:1f:4e:cc:61:98:79:64:35:c0:ad:93:86:
2f:0c:e7:90:cf:9b:23:47:3a:50:31:87:ef:c3:a4:22:4b:69:
5b:4d:7e:59:d4:01:67:de:4e:e6:41:18:cf:79:14:27:41:64:
9e:11:ff:58:10:3e:09:4d:cc:11:7d:19:2f:dd:68:7a:06:20:
1b:de:31:49:28:49:41:7f:5d:56:36:c9:77:c3:90:f1:6d:6f:
c0:3c:75:9a:29:dc:dd:df:2a:7b:45:76:e5:a6:bf:13:89:d6:
e8:c1:de:8b:21:7b:ba:40:5a:6a:21:e3:0c:3c:a2:5e:10:af:
89:e2:0d:25:44:af:9f:36:35:ce:b4:61:78:a8:83:46:c0:d2:
33:8a:67:92:a3:12:02:93:33:fa:3b:fb:5e:a7:79:5b:42:2b:
8e:e1:d7:54:f2:02:ce:0f:db:9e:13:b9:0d:21:6f:ed:58:cf:
1d:7e:20:96:fb:54:38:31:01:41:e8:2f:aa:1a:29:15:5c:38:
ba:e1:e3:25:98:44:dd:12:25:1d:b9:85:1a:e5:4a:4d:a6:14:
46:70:c6:0a:d8:78:2f:50:ae:65:37:f7:a1:67:d2:d6:7d:5d:
7e:2a:ea:b4:9d:b3:5f:5d:19:e3:2d:38:11:24:57:3a:e3:e3:
c8:92:59:e8
-----BEGIN CERTIFICATE-----
MIIE6zCCA9OgAwIBAgICBHcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Ux
N0Q5MjNBQTBCQzZCMEEwOEI1QTE4N0JFRTlDQURFOEQ1MEVBRjAeFw0yNjAzMjQy
MjU5MDhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDhGMjkzOEI3N0QxODMz
NDFFNzhEMDYzNDczMzY4NkFGQzNFQjBDRTYwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDSvdX8QBhv2VU28veznvYH+1BLKHTcLF3MBqY28frtPR08ildX
Xd+WGI0e0LJXYGVlALePUdUr39tcC7We+EVY2isVii7vC8Fp6k/eR+v0FGNS/L3Q
b3bZnAGUUN/8DNj8GFNjn9SZ2UdSHJVGV9zrOuAztKzNjOCDWN7Zth8KfH+HTdl8
LJu3aWsXdf399KDFo+mFCpP4wDoAZQWBItc6lMGOPVDLYoQkaVw97OtSN05l1arj
sTgrk3dUnYlQ8JGaRNcnj4Nf77JUr7JZV1mSZNPEF3zUtlWueI0v8zOEyP6yNnOd
QQHKMLsCh1i0CcecCSJd9bvtrrrgF/nf08AjAgMBAAGjggIHMIICAzAdBgNVHQ4E
FgQUjyk4t30YM0HnjQY0czaGr8PrDOYwHwYDVR0jBBgwFoAUfhfZI6oLxrCgi1oY
e+6crejVDq8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg
T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNI
L2ZoZlpJNm9MeHJDZ2kxb1llLTZjcmVqVkRxOC5jcmwwYAYIKwYBBQUHAQEEVDBS
MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD
Q0EvZmhmWkk2b0x4ckNnaTFvWWUtNmNyZWpWRHE4LmNlcjAOBgNVHQ8BAf8EBAMC
B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj
YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSVNISVNIL2ZoZlpJNm9MeHJDZ2kxb1ll
LTZjcmVqVkRxOC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50
dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF
BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAO
U6H40AcfTsxhmHlkNcCtk4YvDOeQz5sjRzpQMYfvw6QiS2lbTX5Z1AFn3k7mQRjP
eRQnQWSeEf9YED4JTcwRfRkv3Wh6BiAb3jFJKElBf11WNsl3w5DxbW/APHWaKdzd
3yp7RXblpr8Tidbowd6LIXu6QFpqIeMMPKJeEK+J4g0lRK+fNjXOtGF4qINGwNIz
imeSoxICkzP6O/tep3lbQiuO4ddU8gLOD9ueE7kNIW/tWM8dfiCW+1Q4MQFB6C+q
GikVXDi64eMlmETdEiUduYUa5UpNphRGcMYK2HgvUK5lN/ehZ9LWfV1+Kuq0nbNf
XRnjLTgRJFc64+PIklno
-----END CERTIFICATE-----
Generated at Thu Mar 26 12:57:22 2026 by rpki-client