$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft File: 3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft (raw, json) Hash identifier: Qi5QXDT1b2CojEHZnzgFn2F2gaqBJ+VrNhY6u7qw+mw= Subject key identifier: 14:0D:94:13:D8:96:A1:2C:05:A4:53:2F:32:C6:6F:65:F1:0D:B6:A9 Authority key identifier: DC:D4:56:A0:9D:54:14:0D:BC:42:D3:2B:09:D6:E7:77:8B:58:AA:EF Certificate issuer: /CN=DCD456A09D54140DBC42D32B09D6E7778B58AAEF Certificate serial: 0590 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft Manifest number: 058E Signing time: Thu 26 Mar 2026 08:58:41 +0000 Manifest this update: Thu 26 Mar 2026 08:58:41 +0000 Manifest next update: Thu 26 Mar 2026 14:58:41 +0000 Files and hashes: 1: 3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl (hash: JyG9krvHvRCcoIHttBAm/3f9b1qsX06uk8b4iIKjEFw=) 2: EOtjY12nXNnenB16AIWc3Jh3NF4.roa (hash: Dd6iulKgytlJlVAbqdWg8yiBukB823mXx4bredXWnlI=) 3: h3gM3umksJIYEAeAEiPCdJFIFto.roa (hash: P0RBcokTOeWzNU9SKVJvXJAAZk3Gv4yQBEr42Kf75Ew=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 14:58:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1424 (0x590) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DCD456A09D54140DBC42D32B09D6E7778B58AAEF Validity Not Before: Mar 26 08:58:41 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=140D9413D896A12C05A4532F32C66F65F10DB6A9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:ff:73:ee:5a:a6:e3:54:27:2b:18:34:ac:07: 9a:f9:21:e7:2e:7f:37:1f:4a:b7:05:b9:a0:ef:f3: 85:f7:6d:92:2e:9a:e9:57:b8:9a:f1:86:ea:5d:82: 6d:48:90:71:57:0b:2c:2a:06:4a:8c:aa:df:bd:ae: 9e:9b:78:1b:f1:d0:4f:c1:3a:24:50:d6:19:ed:5b: 8d:0b:0c:18:fe:f2:1e:9e:49:a5:c8:ce:fe:b1:4e: 7e:98:f6:a9:3f:6b:f2:4d:ee:9e:16:85:48:28:c3: f8:6d:12:a4:7e:17:7d:33:2e:3f:0d:01:6f:4e:52: f7:67:8c:17:1c:46:29:e3:91:6b:14:86:88:64:42: 75:7b:a0:47:b7:c6:1e:1c:96:c2:d4:b4:41:f2:73: 5a:7f:45:cb:8b:18:1b:ac:c2:51:7f:56:85:d8:3d: b5:a6:dd:d6:94:47:6d:a3:36:c0:62:66:e8:67:27: b8:18:f6:c7:89:51:62:7f:53:af:70:5b:b9:97:ca: 41:e0:4b:c1:d6:2a:b2:f2:66:ed:0a:2a:de:de:32: 01:d9:b1:e0:a8:7a:27:5a:82:82:ac:1d:dd:99:d8: 68:09:58:61:ed:cb:cf:17:de:a6:fc:31:36:be:bf: cf:6f:2b:61:15:a7:cd:78:80:d6:76:26:c3:df:02: e3:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 14:0D:94:13:D8:96:A1:2C:05:A4:53:2F:32:C6:6F:65:F1:0D:B6:A9 X509v3 Authority Key Identifier: keyid:DC:D4:56:A0:9D:54:14:0D:BC:42:D3:2B:09:D6:E7:77:8B:58:AA:EF X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/3NRWoJ1UFA28QtMrCdbnd4tYqu8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RUIKE/3NRWoJ1UFA28QtMrCdbnd4tYqu8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8e:75:5e:8b:d3:53:6e:e2:e4:86:73:a0:4d:55:d3:c4:32:96: bd:e3:30:fd:78:e1:73:87:a7:6f:d2:4c:c1:eb:0b:86:d9:f4: 5f:5e:20:57:18:a9:0c:58:52:43:63:df:23:22:79:8e:6e:a0: 9b:80:5a:cc:84:6d:36:fc:de:a4:a9:ea:5e:b8:52:5b:70:1b: 41:00:41:bc:bf:26:b2:bb:aa:83:5c:be:1c:53:1d:d2:87:9b: b4:ff:c7:4f:df:41:bb:d0:63:53:bf:98:69:e2:57:85:74:58: 3d:7c:2d:6a:fe:82:2e:9a:c2:a7:fc:8f:01:62:b1:e6:a9:a7: 19:44:a7:48:bb:01:bd:4f:fa:d6:d6:b9:ac:1a:1a:86:b1:48: 17:72:28:46:63:7e:20:2a:17:14:b6:ae:4a:6a:a4:8c:69:4e: 57:61:41:53:53:ec:6d:28:12:26:f5:6e:f2:de:90:c4:69:8c: 36:a7:fb:99:e2:a5:a4:51:07:12:2d:29:31:c7:4e:2c:09:c1: 6d:2b:d3:13:e2:a4:14:76:03:3e:28:03:65:d0:58:8a:1d:2d: cb:95:62:6b:c8:ed:9b:74:ed:69:3a:3a:e0:f2:d7:db:c3:34: 9f:0e:7c:bc:c6:63:28:83:5a:50:df:bf:ad:5b:8c:0d:40:da: 57:a8:91:80 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICBZAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRENE NDU2QTA5RDU0MTQwREJDNDJEMzJCMDlENkU3Nzc4QjU4QUFFRjAeFw0yNjAzMjYw ODU4NDFaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE0MEQ5NDEzRDg5NkEx MkMwNUE0NTMyRjMyQzY2RjY1RjEwREI2QTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDU/3PuWqbjVCcrGDSsB5r5IecufzcfSrcFuaDv84X3bZIumulX uJrxhupdgm1IkHFXCywqBkqMqt+9rp6beBvx0E/BOiRQ1hntW40LDBj+8h6eSaXI zv6xTn6Y9qk/a/JN7p4WhUgow/htEqR+F30zLj8NAW9OUvdnjBccRinjkWsUhohk QnV7oEe3xh4clsLUtEHyc1p/RcuLGBuswlF/VoXYPbWm3daUR22jNsBiZuhnJ7gY 9seJUWJ/U69wW7mXykHgS8HWKrLyZu0KKt7eMgHZseCoeidagoKsHd2Z2GgJWGHt y88X3qb8MTa+v89vK2EVp814gNZ2JsPfAuNdAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUFA2UE9iWoSwFpFMvMsZvZfENtqkwHwYDVR0jBBgwFoAU3NRWoJ1UFA28QtMr Cdbnd4tYqu8wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUlVJS0Uv M05SV29KMVVGQTI4UXRNckNkYm5kNHRZcXU4LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zTlJXb0oxVUZBMjhRdE1yQ2RibmQ0dFlxdTguY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9SVUlLRS8zTlJXb0oxVUZBMjhRdE1yQ2Ri bmQ0dFlxdTgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAjnVe i9NTbuLkhnOgTVXTxDKWveMw/Xjhc4enb9JMwesLhtn0X14gVxipDFhSQ2PfIyJ5 jm6gm4BazIRtNvzepKnqXrhSW3AbQQBBvL8msruqg1y+HFMd0oebtP/HT99Bu9Bj U7+YaeJXhXRYPXwtav6CLprCp/yPAWKx5qmnGUSnSLsBvU/61ta5rBoahrFIF3Io RmN+ICoXFLauSmqkjGlOV2FBU1PsbSgSJvVu8t6QxGmMNqf7meKlpFEHEi0pMcdO LAnBbSvTE+KkFHYDPigDZdBYih0ty5Via8jtm3TtaTo64PLX28M0nw58vMZjKINa UN+/rVuMDUDaV6iRgA== -----END CERTIFICATE-----Generated at Thu Mar 26 14:11:42 2026 by rpki-client