$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft File: KUthydo1hCdBgvogr4Ym4a6oHzI.mft (raw, json) Hash identifier: arZ3EDHNsZ8bnWuu0xlMdyhg7LEWEsbheOOKSVOfZ6E= Subject key identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF Authority key identifier: 29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 Certificate issuer: /CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Certificate serial: 0379 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft Manifest number: 0377 Signing time: Thu 26 Mar 2026 18:29:20 +0000 Manifest this update: Thu 26 Mar 2026 18:29:20 +0000 Manifest next update: Fri 27 Mar 2026 00:29:20 +0000 Files and hashes: 1: KUthydo1hCdBgvogr4Ym4a6oHzI.crl (hash: Mt98sObtP/fPaC1O2/WN3zBAKpTBQCp2Je4yH94MX4E=) 2: vX2zurKcZq6uHugr79Vj7CluX8U.roa (hash: GdVPCwO2JcoPshr3Z+ad1hPe/GxgIs2qP3IuU8IWvC8=) 3: zyeCTH0u4dPBpS48vPaM1qbh0ZQ.roa (hash: 4WOxoLw0W96yUmxJv3ac7DDaLuuI/40+Ms3ofP7ccYE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 00:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 889 (0x379) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Validity Not Before: Mar 26 18:29:20 2026 GMT Not After : Oct 7 15:30:20 2026 GMT Subject: CN=F9171C46A9290B996E7083C2123E3BA4532C4EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:57:1d:e2:25:7a:e7:4c:1b:a5:3d:69:90: 57:e6:08:f1:fe:0f:74:cd:35:79:17:aa:5e:f5:40: cd:15:26:32:57:c1:20:f8:7f:67:2c:dd:3a:8d:62: 58:52:09:3d:2f:25:b6:68:52:b9:f2:94:86:6e:c8: 3f:14:d5:a8:da:78:ae:c9:30:59:e7:c7:11:30:c3: 1b:e1:26:1e:d2:9b:c3:95:d4:62:d4:06:17:1f:84: b1:c1:29:a3:d6:9b:7e:2e:b0:bb:b7:39:90:c4:f2: 12:97:2b:24:46:3d:7c:8b:00:6b:dd:42:43:2a:e9: e9:d4:f9:91:d8:9b:d2:77:19:2b:b7:e9:e9:f9:7c: 20:1a:15:51:da:5a:f7:d6:51:ea:c7:d2:c2:46:c4: dd:76:42:75:b5:40:ed:04:e1:62:da:89:f5:25:46: be:6d:50:2e:fd:52:5b:15:6e:a4:1d:03:85:12:cd: cb:25:45:9a:9b:87:0e:35:c3:e5:49:b5:07:92:d5: 34:3b:ca:8d:36:25:2f:30:fb:b6:88:7b:3e:e2:36: f2:9d:07:3f:19:31:f7:b5:3f:ac:47:85:a8:04:52: 11:f4:1d:d7:8d:09:54:ce:dd:d5:ea:87:79:8d:4d: 56:c5:fd:6f:29:1d:82:dc:c9:7e:a7:f4:7c:ae:47: f5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF X509v3 Authority Key Identifier: keyid:29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 45:9e:76:7c:cd:df:b4:74:93:19:01:73:aa:06:13:29:2d:57: 8e:0a:6d:e6:e2:d7:60:f3:69:33:af:69:06:38:7e:e4:ab:56: c4:3a:1d:d4:93:7c:6d:1f:cb:ca:96:60:93:10:89:0d:05:c6: 0d:45:02:83:89:72:82:3e:48:68:13:3e:ea:5d:44:51:b4:04: 0a:8e:49:9c:36:86:ed:0b:88:21:75:43:59:9b:07:d8:ba:f1: 42:1d:63:fe:6d:d3:a5:68:b9:b0:8f:cc:8b:ee:f6:31:4d:ae: e5:23:c3:08:2f:ed:1d:84:ef:ef:fe:7b:27:54:c5:49:db:bb: 7b:88:04:ad:db:38:20:2c:e9:b7:ca:ee:63:d8:60:2c:a6:ac: a8:e0:a2:da:3f:1c:f4:28:2e:33:b4:fe:62:c3:2b:06:b3:81: 9f:7f:f4:23:24:e2:20:05:ef:87:4d:6c:3a:e2:c4:34:65:9d: db:d9:df:10:90:6b:ea:f1:17:fe:57:74:00:61:1d:25:57:32: ea:14:cd:da:4b:fb:1a:03:d4:ce:00:ea:41:f7:6e:b9:f4:dc: fa:7a:5b:53:12:85:df:f1:f7:0b:b1:56:9a:fc:35:9e:44:d5: 3a:a3:63:bb:97:c9:2f:0a:90:f1:c7:ca:28:04:12:5d:ce:43: 86:8e:9a:d8 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICA3kwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk0 QjYxQzlEQTM1ODQyNzQxODJGQTIwQUY4NjI2RTFBRUE4MUYzMjAeFw0yNjAzMjYx ODI5MjBaFw0yNjEwMDcxNTMwMjBaMDMxMTAvBgNVBAMTKEY5MTcxQzQ2QTkyOTBC OTk2RTcwODNDMjEyM0UzQkE0NTMyQzRFQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Q1cd4iV650wbpT1pkFfmCPH+D3TNNXkXql71QM0VJjJXwSD4 f2cs3TqNYlhSCT0vJbZoUrnylIZuyD8U1ajaeK7JMFnnxxEwwxvhJh7Sm8OV1GLU BhcfhLHBKaPWm34usLu3OZDE8hKXKyRGPXyLAGvdQkMq6enU+ZHYm9J3GSu36en5 fCAaFVHaWvfWUerH0sJGxN12QnW1QO0E4WLaifUlRr5tUC79UlsVbqQdA4USzcsl RZqbhw41w+VJtQeS1TQ7yo02JS8w+7aIez7iNvKdBz8ZMfe1P6xHhagEUhH0HdeN CVTO3dXqh3mNTVbF/W8pHYLcyX6n9HyuR/XHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQU+RccRqkpC5lucIPCEj47pFMsTr8wHwYDVR0jBBgwFoAUKUthydo1hCdBgvog r4Ym4a6oHzIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tHQU1F L0tVdGh5ZG8xaENkQmd2b2dyNFltNGE2b0h6SS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvS1V0aHlkbzFoQ2RCZ3ZvZ3I0WW00YTZvSHpJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tHQU1FL0tVdGh5ZG8xaENkQmd2b2dy NFltNGE2b0h6SS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBF nnZ8zd+0dJMZAXOqBhMpLVeOCm3m4tdg82kzr2kGOH7kq1bEOh3Uk3xtH8vKlmCT EIkNBcYNRQKDiXKCPkhoEz7qXURRtAQKjkmcNobtC4ghdUNZmwfYuvFCHWP+bdOl aLmwj8yL7vYxTa7lI8MIL+0dhO/v/nsnVMVJ27t7iASt2zggLOm3yu5j2GAspqyo 4KLaPxz0KC4ztP5iwysGs4Gff/QjJOIgBe+HTWw64sQ0ZZ3b2d8QkGvq8Rf+V3QA YR0lVzLqFM3aS/saA9TOAOpB92659Nz6eltTEoXf8fcLsVaa/DWeRNU6o2O7l8kv CpDxx8ooBBJdzkOGjprY -----END CERTIFICATE-----Generated at Thu Mar 26 23:21:42 2026 by rpki-client