$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TW1033/THcKx8Jx2lspFcoBuVmI0EFPQHw.mft File: THcKx8Jx2lspFcoBuVmI0EFPQHw.mft (raw, json) Hash identifier: Sp6dZZgUSEy0bYjl3PIYDUMFr8a9iyah5vXCzUMhMgI= Subject key identifier: 05:B6:3B:0E:8F:CE:1C:53:61:B2:2F:B8:74:17:DD:A6:E5:B2:8D:4F Authority key identifier: 4C:77:0A:C7:C2:71:DA:5B:29:15:CA:01:B9:59:88:D0:41:4F:40:7C Certificate issuer: /CN=4C770AC7C271DA5B2915CA01B95988D0414F407C Certificate serial: E6 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/THcKx8Jx2lspFcoBuVmI0EFPQHw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TW1033/THcKx8Jx2lspFcoBuVmI0EFPQHw.mft Manifest number: E2 Signing time: Thu 26 Mar 2026 08:59:32 +0000 Manifest this update: Thu 26 Mar 2026 08:59:32 +0000 Manifest next update: Thu 26 Mar 2026 14:59:32 +0000 Files and hashes: 1: BERQJ4SepOAwCHhrmQcXKMV6QAQ.roa (hash: xwBrwphP0dOcpDUF5PRZlihDX54NlAP4Th/uwoNWRpc=) 2: THcKx8Jx2lspFcoBuVmI0EFPQHw.crl (hash: wloqhjMqCM75Qxwt5LEvhG4fOXn9rMPGOnWSztdx6oc=) 3: qoAaFseApoYSt0Zi4KthZ1NyXu8.roa (hash: /k1L5O+d1APsTmlT54/61etHCnGdgGGXuj1TwFsFp0w=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TW1033/THcKx8Jx2lspFcoBuVmI0EFPQHw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TW1033/THcKx8Jx2lspFcoBuVmI0EFPQHw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/THcKx8Jx2lspFcoBuVmI0EFPQHw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0dL1XCbbKFIKeZb_cu0BBCAHmKI.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/0dL1XCbbKFIKeZb_cu0BBCAHmKI.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 14:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 230 (0xe6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4C770AC7C271DA5B2915CA01B95988D0414F407C Validity Not Before: Mar 26 08:59:32 2026 GMT Not After : Feb 10 15:30:20 2027 GMT Subject: CN=05B63B0E8FCE1C5361B22FB87417DDA6E5B28D4F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:ba:4c:b1:da:c5:51:53:77:f2:82:05:38:0b: c2:c9:3e:79:2c:2c:49:53:6f:eb:ed:95:f9:b9:ec: c0:b4:49:b1:31:da:b3:7f:dc:05:af:24:3a:72:f9: 61:41:6f:dd:03:f1:74:5c:ec:bc:97:0b:c4:d2:be: 61:02:f5:5f:50:cb:ec:ec:48:08:91:13:27:0b:42: 95:ed:95:ae:30:a6:10:25:0f:1d:96:91:f5:db:0d: 40:78:58:fd:7f:c4:31:d3:ed:d2:f5:96:43:7c:16: 6f:4f:05:80:99:6d:1e:2f:49:fd:78:2c:99:42:51: b4:ee:9a:b6:b9:95:ca:ef:11:e0:4d:8b:60:40:da: 0d:57:aa:cd:e2:d0:54:43:35:3f:c0:cc:b2:ea:54: 35:7c:74:51:14:bf:f6:1f:82:a7:ef:3a:0b:ca:47: b7:06:6e:1d:10:db:54:66:a3:68:f7:6d:97:f3:2c: a4:a8:27:f2:f4:a4:f6:13:6f:6e:1a:a8:1d:cc:1a: 4a:52:e4:55:94:47:5d:66:dd:9c:9c:97:fc:89:56: a9:a2:32:e7:51:7e:ad:12:34:79:6b:22:44:72:9d: e8:99:f5:85:17:67:28:6c:be:3c:04:56:94:7d:fe: 68:6a:9b:c6:53:b7:d6:39:9d:7c:df:45:41:b4:a5: 46:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:B6:3B:0E:8F:CE:1C:53:61:B2:2F:B8:74:17:DD:A6:E5:B2:8D:4F X509v3 Authority Key Identifier: keyid:4C:77:0A:C7:C2:71:DA:5B:29:15:CA:01:B9:59:88:D0:41:4F:40:7C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TW1033/THcKx8Jx2lspFcoBuVmI0EFPQHw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/THcKx8Jx2lspFcoBuVmI0EFPQHw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TW1033/THcKx8Jx2lspFcoBuVmI0EFPQHw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:49:af:f4:eb:bf:93:8a:34:da:e9:8b:18:47:d7:99:19:65: 50:57:72:6c:f4:a0:6c:a2:34:a7:6b:c0:0f:eb:31:1e:21:1d: ec:46:6f:8c:43:e4:8c:84:70:54:cf:ff:4b:3b:8d:10:00:18: 97:4f:f1:3d:e0:da:3f:e9:0b:cd:89:c3:49:5c:8a:93:ff:ee: 78:7e:0f:4c:7e:3b:f7:64:7d:1d:5f:e3:7c:52:de:24:56:2d: 21:f4:20:6c:3b:b1:f5:70:a0:73:2d:97:1a:04:e8:58:8d:84: 64:75:b6:34:28:5f:ae:cb:10:6a:1f:57:36:e6:95:15:dc:39: 6c:cf:f7:83:ed:6b:65:94:c4:72:76:bb:18:ad:a8:7b:02:d3: 67:c1:ef:f2:38:5b:37:b1:ba:2a:e5:0b:4a:c4:e8:5a:83:af: 1b:aa:6d:d7:4c:2c:8e:d2:aa:c0:5a:0e:a4:8b:43:d2:35:cc: e9:24:ce:aa:0e:aa:53:9c:8f:5d:50:53:38:ec:17:f6:2e:f0: 7a:f0:11:ae:33:c1:30:5e:4a:bb:96:d0:04:50:66:b5:71:b8: 80:cf:b4:96:0e:c2:f7:e5:6d:d1:0b:6e:c1:8a:36:0f:74:5d: 87:05:82:9a:70:dd:26:06:68:8e:e1:4e:7b:6b:55:16:95:46: 96:34:9b:ef -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICAOYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEM3 NzBBQzdDMjcxREE1QjI5MTVDQTAxQjk1OTg4RDA0MTRGNDA3QzAeFw0yNjAzMjYw ODU5MzJaFw0yNzAyMTAxNTMwMjBaMDMxMTAvBgNVBAMTKDA1QjYzQjBFOEZDRTFD NTM2MUIyMkZCODc0MTdEREE2RTVCMjhENEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDuukyx2sVRU3fyggU4C8LJPnksLElTb+vtlfm57MC0SbEx2rN/ 3AWvJDpy+WFBb90D8XRc7LyXC8TSvmEC9V9Qy+zsSAiREycLQpXtla4wphAlDx2W kfXbDUB4WP1/xDHT7dL1lkN8Fm9PBYCZbR4vSf14LJlCUbTumra5lcrvEeBNi2BA 2g1Xqs3i0FRDNT/AzLLqVDV8dFEUv/YfgqfvOgvKR7cGbh0Q21Rmo2j3bZfzLKSo J/L0pPYTb24aqB3MGkpS5FWUR11m3Zycl/yJVqmiMudRfq0SNHlrIkRyneiZ9YUX ZyhsvjwEVpR9/mhqm8ZTt9Y5nXzfRUG0pUbpAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUBbY7Do/OHFNhsi+4dBfdpuWyjU8wHwYDVR0jBBgwFoAUTHcKx8Jx2lspFcoB uVmI0EFPQHwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFcxMDMz L1RIY0t4OEp4MmxzcEZjb0J1Vm1JMEVGUFFIdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVEhjS3g4SngybHNwRmNvQnVWbUkwRUZQUUh3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFcxMDMzL1RIY0t4OEp4MmxzcEZjb0J1 Vm1JMEVGUFFIdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAV Sa/067+TijTa6YsYR9eZGWVQV3Js9KBsojSna8AP6zEeIR3sRm+MQ+SMhHBUz/9L O40QABiXT/E94No/6QvNicNJXIqT/+54fg9Mfjv3ZH0dX+N8Ut4kVi0h9CBsO7H1 cKBzLZcaBOhYjYRkdbY0KF+uyxBqH1c25pUV3Dlsz/eD7WtllMRydrsYrah7AtNn we/yOFs3sboq5QtKxOhag68bqm3XTCyO0qrAWg6ki0PSNczpJM6qDqpTnI9dUFM4 7Bf2LvB68BGuM8EwXkq7ltAEUGa1cbiAz7SWDsL35W3RC27BijYPdF2HBYKacN0m BmiO4U57a1UWlUaWNJvv -----END CERTIFICATE-----Generated at Thu Mar 26 14:54:56 2026 by rpki-client