$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft File: m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft (raw, json) Hash identifier: /zrMn8gGrwMqri8uS93LNtUjgdCo27cQgp51VwGoTB0= Subject key identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 Authority key identifier: 9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 Certificate issuer: /CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Certificate serial: 0488 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft Manifest number: 0470 Signing time: Thu 26 Mar 2026 11:28:43 +0000 Manifest this update: Thu 26 Mar 2026 11:28:43 +0000 Manifest next update: Sat 28 Mar 2026 11:28:43 +0000 Files and hashes: 1: m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl (hash: 170OtF0QIC1pM7VIHgbaqxivWj9LzFTXbsBs5dSmyfs=) 2: u6i0tW_ykJ-pICROUPFsj8xP22o.roa (hash: TULF4uEKwnvOpgQTfGdGBxkB1FmLvsOohXS1SsP5bQg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 18:29:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1160 (0x488) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9B60696D68773AE2E532F0CD5D10FDC0C8273EA5 Validity Not Before: Mar 26 11:28:43 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=801E850C34B9F9E15E20E5068C97FB8B15063164 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a7:3a:8c:1b:ac:d4:ce:3b:dc:a0:83:31:ba:30: fc:30:4b:d2:0c:75:5a:7c:4f:8e:50:b9:ad:4b:e9: 60:4f:d5:8f:51:ca:c9:f3:40:d9:d1:d2:ee:b8:83: 83:49:b0:2c:a1:74:b6:63:c3:6b:0b:36:af:21:bd: 2f:01:68:ba:e4:c3:ec:a0:0e:7e:ba:cc:c8:9c:6b: e9:4b:db:e5:64:0f:58:f4:ad:31:27:56:ed:f1:ca: ec:06:4e:0a:8c:f0:24:eb:80:08:cc:7d:09:e2:55: b4:01:20:88:fc:ef:21:30:2a:20:49:49:11:4f:7f: 23:26:b2:14:86:3e:c1:89:b8:9a:4f:46:46:f4:53: 54:9f:40:bf:50:3f:c0:11:6a:52:a5:e9:fd:12:b6: c4:0e:2a:c6:15:1d:9f:41:5d:2e:f9:af:f1:c2:d4: 66:02:47:87:cb:c9:31:b8:01:ec:ab:f9:a1:d2:27: c2:96:49:67:15:04:a6:c1:14:13:f2:b2:4c:1b:68: f0:67:33:53:d1:43:96:a4:e5:d5:84:4d:9e:62:cc: cc:e3:6c:b3:67:70:6b:fb:dd:f0:1d:e6:fd:2b:af: 9b:d3:66:eb:28:78:75:c2:58:78:21:77:ad:54:dd: 26:83:b7:25:9c:3b:98:62:0b:e1:44:ab:d2:b3:e7: 1c:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 80:1E:85:0C:34:B9:F9:E1:5E:20:E5:06:8C:97:FB:8B:15:06:31:64 X509v3 Authority Key Identifier: keyid:9B:60:69:6D:68:77:3A:E2:E5:32:F0:CD:5D:10:FD:C0:C8:27:3E:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m2BpbWh3OuLlMvDNXRD9wMgnPqU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TGM/m2BpbWh3OuLlMvDNXRD9wMgnPqU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:2a:14:71:12:bb:ab:26:16:fc:ca:78:8e:54:19:a8:a2:66: 7b:83:67:35:8f:1b:64:be:1d:c8:82:5e:b0:4b:39:cd:49:29: 78:e7:87:13:21:26:62:0d:be:89:ea:d7:37:23:69:a1:a9:e6: f8:2d:02:96:fe:b5:2e:ba:3d:52:8e:4c:cf:84:82:34:fb:27: 9f:a3:71:cf:1d:4e:89:23:a3:dc:c0:f2:85:63:f9:d7:ed:88: 95:e3:2e:7c:fd:a2:ec:a7:15:6d:d2:59:86:9a:1f:22:7a:48: 5f:0b:c6:27:53:87:6f:8c:d9:fe:d4:ee:31:dc:98:1c:3d:c7: 44:2c:96:c3:1b:b6:4f:e1:c2:66:3a:50:5e:b8:d0:ab:65:1e: 5e:57:7a:4d:50:9a:22:d9:10:e7:58:06:7c:44:1e:36:ed:59: 4c:53:4f:81:be:6c:dd:46:34:1f:c4:3e:1a:17:cd:09:7e:7d: 6f:ca:81:6f:bb:42:54:02:d0:6e:70:13:85:22:3e:5f:1f:8b: fd:58:bf:91:dd:82:8c:43:0e:31:00:8f:7a:3d:3f:87:5a:73: 57:2d:b1:3f:b5:b0:9a:12:4f:53:64:35:d1:c1:37:f8:d9:19: ce:63:ee:f8:04:0a:be:0d:17:76:12:99:b8:d9:72:8d:a0:2b: 52:d7:f9:bb -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICBIgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUI2 MDY5NkQ2ODc3M0FFMkU1MzJGMENENUQxMEZEQzBDODI3M0VBNTAeFw0yNjAzMjYx MTI4NDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDgwMUU4NTBDMzRCOUY5 RTE1RTIwRTUwNjhDOTdGQjhCMTUwNjMxNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCnOowbrNTOO9yggzG6MPwwS9IMdVp8T45Qua1L6WBP1Y9Rysnz QNnR0u64g4NJsCyhdLZjw2sLNq8hvS8BaLrkw+ygDn66zMica+lL2+VkD1j0rTEn Vu3xyuwGTgqM8CTrgAjMfQniVbQBIIj87yEwKiBJSRFPfyMmshSGPsGJuJpPRkb0 U1SfQL9QP8ARalKl6f0StsQOKsYVHZ9BXS75r/HC1GYCR4fLyTG4Aeyr+aHSJ8KW SWcVBKbBFBPyskwbaPBnM1PRQ5ak5dWETZ5izMzjbLNncGv73fAd5v0rr5vTZuso eHXCWHghd61U3SaDtyWcO5hiC+FEq9Kz5xxzAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUgB6FDDS5+eFeIOUGjJf7ixUGMWQwHwYDVR0jBBgwFoAUm2BpbWh3OuLlMvDN XRD9wMgnPqUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20y QnBiV2gzT3VMbE12RE5YUkQ5d01nblBxVS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev bTJCcGJXaDNPdUxsTXZETlhSRDl3TWduUHFVLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVEdNL20yQnBiV2gzT3VMbE12RE5YUkQ5d01n blBxVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBoKhRxErur Jhb8yniOVBmoomZ7g2c1jxtkvh3Igl6wSznNSSl454cTISZiDb6J6tc3I2mhqeb4 LQKW/rUuuj1SjkzPhII0+yefo3HPHU6JI6PcwPKFY/nX7YiV4y58/aLspxVt0lmG mh8iekhfC8YnU4dvjNn+1O4x3JgcPcdELJbDG7ZP4cJmOlBeuNCrZR5eV3pNUJoi 2RDnWAZ8RB427VlMU0+BvmzdRjQfxD4aF80Jfn1vyoFvu0JUAtBucBOFIj5fH4v9 WL+R3YKMQw4xAI96PT+HWnNXLbE/tbCaEk9TZDXRwTf42RnOY+74BAq+DRd2Epm4 2XKNoCtS1/m7 -----END CERTIFICATE-----Generated at Thu Mar 26 14:52:10 2026 by rpki-client