$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft File: KUthydo1hCdBgvogr4Ym4a6oHzI.mft (raw, json) Hash identifier: iZkNWs3K1snw4yBCIbxCM1eheaiTjEzLIoDoRTYmSZU= Subject key identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF Authority key identifier: 29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 Certificate issuer: /CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Certificate serial: 47 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft Manifest number: 45 Signing time: Mon 20 Oct 2025 12:24:44 +0000 Manifest this update: Mon 20 Oct 2025 12:24:44 +0000 Manifest next update: Mon 20 Oct 2025 18:24:44 +0000 Files and hashes: 1: KUthydo1hCdBgvogr4Ym4a6oHzI.crl (hash: mff+eevMW2kudce0v4UDBK0UJz1lA0oejmC3s/akbf4=) 2: vX2zurKcZq6uHugr79Vj7CluX8U.roa (hash: GdVPCwO2JcoPshr3Z+ad1hPe/GxgIs2qP3IuU8IWvC8=) 3: zyeCTH0u4dPBpS48vPaM1qbh0ZQ.roa (hash: 4WOxoLw0W96yUmxJv3ac7DDaLuuI/40+Ms3ofP7ccYE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 18:24:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 71 (0x47) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Validity Not Before: Oct 20 12:24:44 2025 GMT Not After : Oct 7 15:30:20 2026 GMT Subject: CN=F9171C46A9290B996E7083C2123E3BA4532C4EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:57:1d:e2:25:7a:e7:4c:1b:a5:3d:69:90: 57:e6:08:f1:fe:0f:74:cd:35:79:17:aa:5e:f5:40: cd:15:26:32:57:c1:20:f8:7f:67:2c:dd:3a:8d:62: 58:52:09:3d:2f:25:b6:68:52:b9:f2:94:86:6e:c8: 3f:14:d5:a8:da:78:ae:c9:30:59:e7:c7:11:30:c3: 1b:e1:26:1e:d2:9b:c3:95:d4:62:d4:06:17:1f:84: b1:c1:29:a3:d6:9b:7e:2e:b0:bb:b7:39:90:c4:f2: 12:97:2b:24:46:3d:7c:8b:00:6b:dd:42:43:2a:e9: e9:d4:f9:91:d8:9b:d2:77:19:2b:b7:e9:e9:f9:7c: 20:1a:15:51:da:5a:f7:d6:51:ea:c7:d2:c2:46:c4: dd:76:42:75:b5:40:ed:04:e1:62:da:89:f5:25:46: be:6d:50:2e:fd:52:5b:15:6e:a4:1d:03:85:12:cd: cb:25:45:9a:9b:87:0e:35:c3:e5:49:b5:07:92:d5: 34:3b:ca:8d:36:25:2f:30:fb:b6:88:7b:3e:e2:36: f2:9d:07:3f:19:31:f7:b5:3f:ac:47:85:a8:04:52: 11:f4:1d:d7:8d:09:54:ce:dd:d5:ea:87:79:8d:4d: 56:c5:fd:6f:29:1d:82:dc:c9:7e:a7:f4:7c:ae:47: f5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF X509v3 Authority Key Identifier: keyid:29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:6e:70:e2:0f:13:5c:c7:d4:92:27:9e:81:9a:fa:fa:17:dc: a3:9a:7d:6f:c8:1e:85:45:76:5e:46:77:90:39:7e:03:ea:53: 44:a2:37:55:67:cb:4f:d6:76:ca:cd:b8:36:06:ea:59:14:67: e3:06:70:14:bc:94:96:24:97:e5:9f:1a:3e:4d:d8:03:09:b5: c4:72:38:a5:e2:ae:79:1a:b2:ac:27:cc:d0:09:b7:64:e1:4b: 9b:dc:a2:72:c9:0f:8f:be:de:d6:e8:81:32:92:88:e1:5d:ff: 5e:1d:17:ac:3e:2c:8f:2e:92:bd:98:6f:16:79:a4:d2:1e:ca: 27:68:fc:93:c0:48:a2:0a:b8:01:7a:31:1f:8a:d4:01:10:2d: 27:f6:fc:5a:ff:0f:00:8a:6c:b1:0a:23:10:e9:70:bf:48:f0: ea:7d:55:23:0f:3e:43:e7:96:4b:7c:9f:33:57:53:b1:3a:36: 14:3c:5c:df:5a:7b:2f:cc:e8:1b:14:1b:c7:67:9e:cb:c9:90: 25:c7:dc:be:86:fc:ce:c9:25:6f:ee:f8:dd:57:45:2a:ec:ac: 8b:27:9a:89:aa:ae:ce:6e:51:53:97:6e:82:c5:ff:04:90:33: df:ea:a4:e2:ee:c4:20:48:84:f3:1d:d8:c8:37:bd:c7:2a:f4: a0:91:d2:91 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIBRzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyOTRC NjFDOURBMzU4NDI3NDE4MkZBMjBBRjg2MjZFMUFFQTgxRjMyMB4XDTI1MTAyMDEy MjQ0NFoXDTI2MTAwNzE1MzAyMFowMzExMC8GA1UEAxMoRjkxNzFDNDZBOTI5MEI5 OTZFNzA4M0MyMTIzRTNCQTQ1MzJDNEVCRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALRDVx3iJXrnTBulPWmQV+YI8f4PdM01eReqXvVAzRUmMlfBIPh/ ZyzdOo1iWFIJPS8ltmhSufKUhm7IPxTVqNp4rskwWefHETDDG+EmHtKbw5XUYtQG Fx+EscEpo9abfi6wu7c5kMTyEpcrJEY9fIsAa91CQyrp6dT5kdib0ncZK7fp6fl8 IBoVUdpa99ZR6sfSwkbE3XZCdbVA7QThYtqJ9SVGvm1QLv1SWxVupB0DhRLNyyVF mpuHDjXD5Um1B5LVNDvKjTYlLzD7toh7PuI28p0HPxkx97U/rEeFqARSEfQd140J VM7d1eqHeY1NVsX9bykdgtzJfqf0fK5H9ccCAwEAAaOCAgcwggIDMB0GA1UdDgQW BBT5FxxGqSkLmW5wg8ISPjukUyxOvzAfBgNVHSMEGDAWgBQpS2HJ2jWEJ0GC+iCv hibhrqgfMjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9LS0dBTUUv S1V0aHlkbzFoQ2RCZ3ZvZ3I0WW00YTZvSHpJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9LVXRoeWRvMWhDZEJndm9ncjRZbTRhNm9IekkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9LS0dBTUUvS1V0aHlkbzFoQ2RCZ3ZvZ3I0 WW00YTZvSHpJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBABJu cOIPE1zH1JInnoGa+voX3KOafW/IHoVFdl5Gd5A5fgPqU0SiN1Vny0/WdsrNuDYG 6lkUZ+MGcBS8lJYkl+WfGj5N2AMJtcRyOKXirnkasqwnzNAJt2ThS5vconLJD4++ 3tbogTKSiOFd/14dF6w+LI8ukr2YbxZ5pNIeyido/JPASKIKuAF6MR+K1AEQLSf2 /Fr/DwCKbLEKIxDpcL9I8Op9VSMPPkPnlkt8nzNXU7E6NhQ8XN9aey/M6BsUG8dn nsvJkCXH3L6G/M7JJW/u+N1XRSrsrIsnmomqrs5uUVOXboLF/wSQM9/qpOLuxCBI hPMd2Mg3vccq9KCR0pE= -----END CERTIFICATE-----Generated at Mon Oct 20 17:52:30 2025 by rpki-client