$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft File: FZ1fiXJ28N7IV-fi3t1kmHbopII.mft (raw, json) Hash identifier: TLk976mOVc9gVf8EUMUKZMd3Rln9tAsHhj0dnpfvP7o= Subject key identifier: EC:ED:EF:DA:3A:35:A5:E8:26:6A:8B:49:47:B1:72:84:A2:57:03:1B Authority key identifier: 15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 Certificate issuer: /CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Certificate serial: 0FBF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft Manifest number: 0FAA Signing time: Wed 25 Mar 2026 15:57:52 +0000 Manifest this update: Wed 25 Mar 2026 15:57:51 +0000 Manifest next update: Fri 27 Mar 2026 15:57:51 +0000 Files and hashes: 1: 7VGRnxKysULr-dNQQ62GgbCVAso.roa (hash: wiome8vdAkP2NVL4H8iDOBcR50Q4nvjy8Rp0exzjqoU=) 2: FZ1fiXJ28N7IV-fi3t1kmHbopII.crl (hash: 4ESdyP+vSLBBXLWve0OKcI3i9I/tL5gc3rxVW9F7RCI=) 3: XJd-znpiotONwpw2gXcuco5ARFQ.roa (hash: sTOnIvCd4RIPms6cv16koF9sF7sTRjGK0YAyj+W7iNg=) 4: _IQ76khn0eZnlWoN5Y8WkMsAUOI.roa (hash: vOGSGQpmBJoTUnERx4ebB+yM9pGNPNEB1BDRF36w4v8=) 5: mDQjt_emyadAlttOVDShKh1l_w0.roa (hash: zTtzqfvR/HuPjUJQKLdzAjzv3aTDx46mFFGsqZw9h0U=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 03:59:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4031 (0xfbf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=159D5F897276F0DEC857E7E2DEDD649876E8A482 Validity Not Before: Mar 25 15:57:51 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=ECEDEFDA3A35A5E8266A8B4947B17284A257031B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:ff:4d:0f:f3:d7:59:03:e4:c9:59:01:5d:3d: cd:75:8e:8e:e3:31:40:83:d7:72:54:47:51:d0:ec: af:4b:cd:75:2e:f5:d0:5d:29:80:d5:62:ce:1b:a2: ed:ec:db:24:2f:1e:07:39:75:b3:fb:2e:c0:80:41: b2:cf:52:44:14:76:d7:6d:e7:30:f4:ce:85:4b:95: 29:43:bd:a1:28:84:49:6b:66:0a:5f:0b:71:29:7b: 2e:54:86:93:61:27:e1:ac:8b:97:73:27:65:8a:fc: 95:0c:fc:4f:e0:1f:31:ee:90:d2:e1:03:f2:3e:9d: ea:18:27:5e:61:cd:63:a0:e9:7d:17:71:2f:22:f9: 35:5d:36:ec:08:e1:aa:55:cb:64:13:4a:1e:de:e5: e0:d9:ed:78:b9:29:64:32:fc:a5:3a:60:65:83:5d: 25:7b:b5:61:42:dd:01:2c:57:8a:65:f1:1c:42:9d: ab:40:22:dd:72:1d:fb:99:f5:2e:75:a3:6a:b8:7e: cf:55:95:cf:f6:c2:6c:8c:58:6f:f4:77:f4:7e:bb: 20:b9:0e:98:ec:c5:27:da:43:ed:b1:bb:40:8d:01: ec:ca:98:f4:b0:a8:42:6c:46:92:7b:ea:86:3b:0b: e9:22:be:2e:64:d8:46:02:d4:69:30:7d:72:2f:20: e2:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EC:ED:EF:DA:3A:35:A5:E8:26:6A:8B:49:47:B1:72:84:A2:57:03:1B X509v3 Authority Key Identifier: keyid:15:9D:5F:89:72:76:F0:DE:C8:57:E7:E2:DE:DD:64:98:76:E8:A4:82 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FZ1fiXJ28N7IV-fi3t1kmHbopII.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NORDATW/FZ1fiXJ28N7IV-fi3t1kmHbopII.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 3b:96:57:51:2c:66:4b:12:fb:69:ca:ef:34:7a:8a:f1:e7:94: a8:16:62:f3:69:e0:64:33:4d:84:f6:0e:75:2e:ff:f1:c0:c5: bf:c8:16:96:17:d5:df:a2:95:31:62:84:25:6d:6b:a2:07:e8: 6b:a8:bc:fe:d5:f0:d4:08:43:5c:c8:c7:5c:02:ae:f9:c5:cd: 66:79:e9:bd:64:f3:25:02:ea:66:b7:d2:16:c1:f5:8f:9b:46: 50:cc:c5:12:b2:69:62:a4:24:da:f4:14:ff:e3:8c:3e:9e:de: 94:a7:b5:dc:e1:00:85:01:1d:82:cc:9f:e1:ff:77:5e:ee:e2: 26:9b:a4:9a:36:f6:d9:72:17:4d:fb:f4:b0:13:fa:35:7b:2e: d8:96:e9:59:da:38:1f:01:0d:9f:f8:85:ac:b1:52:b6:36:1f: 42:bd:f0:4d:88:6b:ca:3e:2a:e8:fb:3a:13:0c:c7:22:39:37: 71:13:81:1c:91:25:64:e4:2a:78:d7:00:fb:58:9a:36:45:16: eb:9a:dc:30:ac:f6:0c:f3:70:ee:fd:6c:07:10:48:ab:6b:30: 83:02:8e:0c:4e:05:6b:9d:87:11:46:26:16:47:7e:54:6c:d4: d0:7b:0c:55:17:99:d4:a6:90:22:fa:b9:c7:c4:59:47:16:30: 0a:2f:8c:ad -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICD78wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTU5 RDVGODk3Mjc2RjBERUM4NTdFN0UyREVERDY0OTg3NkU4QTQ4MjAeFw0yNjAzMjUx NTU3NTFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVDRURFRkRBM0EzNUE1 RTgyNjZBOEI0OTQ3QjE3Mjg0QTI1NzAzMUIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV/00P89dZA+TJWQFdPc11jo7jMUCD13JUR1HQ7K9LzXUu9dBd KYDVYs4bou3s2yQvHgc5dbP7LsCAQbLPUkQUdtdt5zD0zoVLlSlDvaEohElrZgpf C3Epey5UhpNhJ+Gsi5dzJ2WK/JUM/E/gHzHukNLhA/I+neoYJ15hzWOg6X0XcS8i +TVdNuwI4apVy2QTSh7e5eDZ7Xi5KWQy/KU6YGWDXSV7tWFC3QEsV4pl8RxCnatA It1yHfuZ9S51o2q4fs9Vlc/2wmyMWG/0d/R+uyC5DpjsxSfaQ+2xu0CNAezKmPSw qEJsRpJ76oY7C+kivi5k2EYC1GkwfXIvIOKlAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQU7O3v2jo1pegmaotJR7FyhKJXAxswHwYDVR0jBBgwFoAUFZ1fiXJ28N7IV+fi 3t1kmHbopIIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTk9SREFU Vy9GWjFmaVhKMjhON0lWLWZpM3Qxa21IYm9wSUkuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0ZaMWZpWEoyOE43SVYtZmkzdDFrbUhib3BJSS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05PUkRBVFcvRloxZmlYSjI4TjdJVi1m aTN0MWttSGJvcElJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB ADuWV1EsZksS+2nK7zR6ivHnlKgWYvNp4GQzTYT2DnUu//HAxb/IFpYX1d+ilTFi hCVta6IH6GuovP7V8NQIQ1zIx1wCrvnFzWZ56b1k8yUC6ma30hbB9Y+bRlDMxRKy aWKkJNr0FP/jjD6e3pSntdzhAIUBHYLMn+H/d17u4iabpJo29tlyF0379LAT+jV7 LtiW6VnaOB8BDZ/4hayxUrY2H0K98E2Ia8o+Kuj7OhMMxyI5N3ETgRyRJWTkKnjX APtYmjZFFuua3DCs9gzzcO79bAcQSKtrMIMCjgxOBWudhxFGJhZHflRs1NB7DFUX mdSmkCL6ucfEWUcWMAovjK0= -----END CERTIFICATE-----Generated at Fri Mar 27 00:56:04 2026 by rpki-client