$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft File: KzuJrTLzuVt68WX0yKTNCOdU1as.mft (raw, json) Hash identifier: NbNfXmUNpRGBBCBU91sRz9N15bESFUMG1sNY6wr8jZQ= Subject key identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 Authority key identifier: 2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB Certificate issuer: /CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Certificate serial: 041B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft Manifest number: 0411 Signing time: Sat 23 Aug 2025 21:13:50 +0000 Manifest this update: Sat 23 Aug 2025 21:13:50 +0000 Manifest next update: Mon 25 Aug 2025 21:13:50 +0000 Files and hashes: 1: Agj8rVwTiiTb80wmHrbGEyLB5NU.roa (hash: e3rWMC/Ublr7SxYZSTIDAsdXqPgUqh53/wujZLS/c2M=) 2: KzuJrTLzuVt68WX0yKTNCOdU1as.crl (hash: qjcwULdePHt2qiSu/577voViuLgLJQYIBc16+8M9Ey0=) 3: eE_Na3RqzG5Gch0eoq7FpEiKrvA.roa (hash: g5BIhfu3yzJWkfYmX/o8swbnnbhBZQEVR70QMUX/eBE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 04:14:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1051 (0x41b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Validity Not Before: Aug 23 21:13:50 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DD86409E426F9916CBB6874B07529843D30A48F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:db:89:0b:c5:2c:92:c4:78:96:00:84:64:de: f8:f0:1c:8b:c3:c8:de:56:c3:da:d5:95:d5:f7:c0: 53:aa:d0:a7:3a:75:06:5b:87:0d:f8:b8:55:00:71: b0:30:1c:28:0b:04:b3:7f:53:1b:50:40:0c:14:47: 59:2d:28:9a:c5:ad:cd:af:15:29:eb:49:01:7a:4a: 65:f5:bd:d3:be:12:c8:f7:76:8e:f6:f3:ef:31:98: 26:94:48:0f:7b:30:61:8c:71:08:8e:fb:54:7a:38: fa:16:d6:69:0f:73:4e:0e:7a:a7:88:32:21:95:fc: 1c:7b:64:ff:9c:31:e1:c9:fc:1b:93:7c:ff:bf:52: 47:38:4c:2c:85:96:31:47:c1:27:0d:3c:70:77:da: 14:05:55:d1:e1:93:e1:69:e3:85:ed:17:59:d5:63: 58:8b:a9:a2:34:59:17:ef:96:b7:90:ed:eb:6a:a0: 43:28:c2:bc:73:52:71:95:67:5e:2e:6b:6f:f1:39: 93:2e:d8:fb:2a:6d:b8:60:7f:3b:fb:5f:7b:65:5e: 22:65:45:06:be:5b:6f:0d:0a:e5:b1:68:80:69:c8: 44:a0:7a:43:1c:eb:b7:f6:5c:89:70:bc:f6:5d:b9: 81:0b:f2:a7:9a:cd:04:93:99:24:f6:e6:96:c0:a3: 3b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 X509v3 Authority Key Identifier: keyid:2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 79:0f:f0:4f:c6:d0:89:0c:f5:2f:62:2c:cd:a7:1e:4d:c1:b2: 1b:f5:63:3f:a2:8f:cf:07:33:58:e4:8b:71:83:40:6b:02:be: 3c:7c:5d:fe:34:2e:75:f8:c0:0b:1e:4c:77:6b:96:bd:c6:59: a7:51:7e:c0:45:95:5a:cd:da:d9:91:59:11:b8:24:36:e3:b7: 35:0b:25:54:d2:b7:b2:e4:67:8e:12:11:00:2f:4c:aa:aa:3d: 68:3b:1c:f8:2c:f6:0b:c8:cf:81:7a:8f:4d:a9:7e:32:1e:b4: 6e:f6:87:56:df:f1:b1:5e:a5:5d:5d:93:e9:4c:66:87:05:68: 6b:02:cc:95:53:7c:d7:6b:cf:5a:5f:5d:1a:42:32:3c:84:77: c2:27:53:6f:99:62:55:87:53:03:45:75:10:e7:25:6a:5a:2a: d3:bd:03:76:9d:48:b3:0c:2c:f3:e2:fc:0f:8b:04:a3:fd:9c: 7f:ba:59:0b:5b:42:85:e7:da:4f:6a:23:93:8c:01:86:3f:cb: c2:5f:01:1c:fa:ba:83:2c:03:78:30:92:7a:72:26:c9:71:a4: f9:e7:24:02:0f:63:b3:27:af:c8:f2:1d:aa:4a:9a:5e:d6:75: 12:38:b4:a1:b3:c9:6e:92:33:4f:20:07:ae:a7:dd:7f:30:0e: ce:ea:5c:00 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBBswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIz Qjg5QUQzMkYzQjk1QjdBRjE2NUY0QzhBNENEMDhFNzU0RDVBQjAeFw0yNTA4MjMy MTEzNTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEREODY0MDlFNDI2Rjk5 MTZDQkI2ODc0QjA3NTI5ODQzRDMwQTQ4RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo24kLxSySxHiWAIRk3vjwHIvDyN5Ww9rVldX3wFOq0Kc6dQZb hw34uFUAcbAwHCgLBLN/UxtQQAwUR1ktKJrFrc2vFSnrSQF6SmX1vdO+Esj3do72 8+8xmCaUSA97MGGMcQiO+1R6OPoW1mkPc04OeqeIMiGV/Bx7ZP+cMeHJ/BuTfP+/ Ukc4TCyFljFHwScNPHB32hQFVdHhk+Fp44XtF1nVY1iLqaI0WRfvlreQ7etqoEMo wrxzUnGVZ14ua2/xOZMu2Psqbbhgfzv7X3tlXiJlRQa+W28NCuWxaIBpyESgekMc 67f2XIlwvPZduYEL8qeazQSTmST25pbAozuVAgMBAAGjggINMIICCTAdBgNVHQ4E FgQU3YZAnkJvmRbLtodLB1KYQ9MKSPEwHwYDVR0jBBgwFoAUKzuJrTLzuVt68WX0 yKTNCOdU1aswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUND VUJFL0t6dUpyVEx6dVZ0NjhXWDB5S1ROQ09kVTFhcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvS3p1SnJUTHp1VnQ2OFdYMHlLVE5DT2RVMWFzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUNDVUJFL0t6dUpyVEx6dVZ0 NjhXWDB5S1ROQ09kVTFhcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQB5D/BPxtCJDPUvYizNpx5NwbIb9WM/oo/PBzNY5Itxg0BrAr48fF3+NC51 +MALHkx3a5a9xlmnUX7ARZVazdrZkVkRuCQ247c1CyVU0rey5GeOEhEAL0yqqj1o Oxz4LPYLyM+Beo9NqX4yHrRu9odW3/GxXqVdXZPpTGaHBWhrAsyVU3zXa89aX10a QjI8hHfCJ1NvmWJVh1MDRXUQ5yVqWirTvQN2nUizDCzz4vwPiwSj/Zx/ulkLW0KF 59pPaiOTjAGGP8vCXwEc+rqDLAN4MJJ6cibJcaT55yQCD2OzJ6/I8h2qSppe1nUS OLShs8lukjNPIAeup91/MA7O6lwA -----END CERTIFICATE-----Generated at Sun Aug 24 03:39:31 2025 by rpki-client