$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft File: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft (raw, json) Hash identifier: nQeTmG4fk9Hez0th/8xSbdZN01Q/HQ7pWnPFPJuHaII= Subject key identifier: 5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08 Authority key identifier: BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7 Certificate issuer: /CN=BBF8E5352240971787806A3E53A8904859A9F0E7 Certificate serial: 0225 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft Manifest number: 0222 Signing time: Thu 26 Mar 2026 16:28:22 +0000 Manifest this update: Thu 26 Mar 2026 16:28:22 +0000 Manifest next update: Sat 28 Mar 2026 16:28:22 +0000 Files and hashes: 1: nxPOB_142Cw5aIl7fWRINXa_Loc.roa (hash: oZQg3Mac5DRiFP+QaVGaZceQPEXpPsPnqOS7dI/2mA4=) 2: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl (hash: omD7Ann8So5C1PMwGVX9mPJum/NRV+ic6Yuck6LlfiE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 09:59:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 549 (0x225) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBF8E5352240971787806A3E53A8904859A9F0E7 Validity Not Before: Mar 26 16:28:22 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5F2EA8F6BC2A32CE1819AD42C2E60E2DB6EDB008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0c:a3:25:d5:73:fe:23:56:af:9f:31:3d:98: 9c:39:b9:09:f9:35:63:31:52:3d:49:d4:d4:a8:e8: 4e:93:97:6f:59:a1:fc:73:d5:e2:fd:e7:17:f0:da: 95:a1:9c:24:cf:bb:13:2b:9e:52:3e:52:31:25:ea: ce:28:a9:b3:20:9f:63:91:81:ae:e4:db:31:6a:ee: 83:db:1a:c0:08:c9:83:bd:78:f2:cc:9f:c1:98:57: bc:64:9e:43:11:9b:4b:48:bf:f8:41:7e:af:15:b3: 18:c4:be:35:21:e7:68:9e:9d:ee:3c:6d:d5:3e:1d: 2e:ae:7a:48:9a:8d:b3:be:d6:05:9d:86:e2:83:48: a6:e8:56:c6:04:6f:2f:25:9c:17:a1:f6:50:9a:29: 7c:35:13:d2:ad:b3:37:7d:e9:80:63:11:e4:fd:b0: 76:6a:3c:2e:9a:ba:d1:78:b0:7a:20:5f:83:37:64: 5b:51:de:28:73:e2:9d:2b:ae:56:9b:7f:89:a1:5a: 6d:05:ec:69:f7:01:eb:8d:b0:9a:37:ff:63:38:8e: 8b:e7:a8:8a:16:0f:84:c5:85:59:b6:a0:c6:94:c5: 41:5e:39:d6:26:28:ea:63:90:f9:4b:7b:f2:6b:f6: 81:9b:bf:f0:a7:c7:d2:3b:4e:6d:a6:9a:1c:11:93: f1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08 X509v3 Authority Key Identifier: keyid:BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:31:de:05:c8:02:c0:95:e6:35:3e:2b:83:a7:20:42:57:18: a2:73:ec:d3:32:69:d8:8c:68:b8:25:a1:47:3a:c9:85:de:fc: d8:cd:d3:c4:09:72:0c:01:6c:02:63:1d:39:34:2e:ab:f8:54: 5a:a8:6d:86:67:c0:df:e7:66:e4:3c:70:59:01:c1:b9:53:78: 33:01:63:51:91:f1:1f:2e:84:d2:10:7a:41:82:54:f6:fd:76: b7:82:9c:57:22:4b:59:fe:b5:29:06:95:c6:8c:30:58:af:78: ec:02:3b:70:51:86:96:2e:68:f8:e4:30:9c:34:25:e1:8e:48: ba:d2:13:fa:bf:94:6d:06:ca:e1:ce:a2:af:13:d8:ce:4c:b7: 50:85:e4:ac:4b:9e:7a:cc:78:ec:bb:43:ed:12:df:ba:6d:26: d3:a5:8f:41:36:d0:7b:72:fa:1f:74:0a:cc:d1:d8:be:ff:1c: 77:3e:28:3d:be:00:e0:4a:14:0a:f1:b2:5f:08:31:bc:18:d2: ed:5c:45:fa:b4:17:c2:b4:f7:e7:bf:9a:4f:98:78:05:ef:bb: 3a:16:db:00:54:3d:fa:31:0e:e2:eb:de:ea:10:d3:b3:6e:dc: 94:fb:bd:16:a0:55:1f:f5:97:d9:eb:b5:c3:00:18:c8:5b:5b: f6:b1:d1:2f -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAiUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJG OEU1MzUyMjQwOTcxNzg3ODA2QTNFNTNBODkwNDg1OUE5RjBFNzAeFw0yNjAzMjYx NjI4MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVGMkVBOEY2QkMyQTMy Q0UxODE5QUQ0MkMyRTYwRTJEQjZFREIwMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoDKMl1XP+I1avnzE9mJw5uQn5NWMxUj1J1NSo6E6Tl29Zofxz 1eL95xfw2pWhnCTPuxMrnlI+UjEl6s4oqbMgn2ORga7k2zFq7oPbGsAIyYO9ePLM n8GYV7xknkMRm0tIv/hBfq8VsxjEvjUh52iene48bdU+HS6uekiajbO+1gWdhuKD SKboVsYEby8lnBeh9lCaKXw1E9Ktszd96YBjEeT9sHZqPC6autF4sHogX4M3ZFtR 3ihz4p0rrlabf4mhWm0F7Gn3AeuNsJo3/2M4jovnqIoWD4TFhVm2oMaUxUFeOdYm KOpjkPlLe/Jr9oGbv/Cnx9I7Tm2mmhwRk/FfAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUXy6o9rwqMs4YGa1CwuYOLbbtsAgwHwYDVR0jBBgwFoAUu/jlNSJAlxeHgGo+ U6iQSFmp8OcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tIL3Vf amxOU0pBbHhlSGdHby1VNmlRU0ZtcDhPYy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev dV9qbE5TSkFseGVIZ0dvLVU2aVFTRm1wOE9jLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0tIL3VfamxOU0pBbHhlSGdHby1VNmlRU0Zt cDhPYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB6Md4FyALA leY1PiuDpyBCVxiic+zTMmnYjGi4JaFHOsmF3vzYzdPECXIMAWwCYx05NC6r+FRa qG2GZ8Df52bkPHBZAcG5U3gzAWNRkfEfLoTSEHpBglT2/Xa3gpxXIktZ/rUpBpXG jDBYr3jsAjtwUYaWLmj45DCcNCXhjki60hP6v5RtBsrhzqKvE9jOTLdQheSsS556 zHjsu0PtEt+6bSbTpY9BNtB7cvofdArM0di+/xx3Pig9vgDgShQK8bJfCDG8GNLt XEX6tBfCtPfnv5pPmHgF77s6FtsAVD36MQ7i697qENOzbtyU+70WoFUf9ZfZ67XD ABjIW1v2sdEv -----END CERTIFICATE-----Generated at Fri Mar 27 08:32:24 2026 by rpki-client