$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft File: KzuJrTLzuVt68WX0yKTNCOdU1as.mft (raw, json) Hash identifier: N4YIfDwuyE+hSiJOhKSgaCt9gHbE4M8CELwWbRU1Qfk= Subject key identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 Authority key identifier: 2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB Certificate issuer: /CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Certificate serial: 04AF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft Manifest number: 04A3 Signing time: Thu 26 Mar 2026 12:58:20 +0000 Manifest this update: Thu 26 Mar 2026 12:58:20 +0000 Manifest next update: Sat 28 Mar 2026 12:58:20 +0000 Files and hashes: 1: Agj8rVwTiiTb80wmHrbGEyLB5NU.roa (hash: e3rWMC/Ublr7SxYZSTIDAsdXqPgUqh53/wujZLS/c2M=) 2: KzuJrTLzuVt68WX0yKTNCOdU1as.crl (hash: heE50s0L4djpWy9JxVLPWENAuBM1idWl1Ua+7+srpRY=) 3: ZSxhd8aHi1LMGqcLudRx__hQNQU.roa (hash: 6c0losMgzYfoBgXeGjGJmVkJ0DSJmbIwFvnsJet7r0c=) 4: mSApZwnuhTHRnFXHnX6RvzTKGYE.roa (hash: ZoNhTA/dFtecSixl6TwZgm+2FPUyeLITukQ2ucLNwGs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 23:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1199 (0x4af) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Validity Not Before: Mar 26 12:58:20 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DD86409E426F9916CBB6874B07529843D30A48F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:db:89:0b:c5:2c:92:c4:78:96:00:84:64:de: f8:f0:1c:8b:c3:c8:de:56:c3:da:d5:95:d5:f7:c0: 53:aa:d0:a7:3a:75:06:5b:87:0d:f8:b8:55:00:71: b0:30:1c:28:0b:04:b3:7f:53:1b:50:40:0c:14:47: 59:2d:28:9a:c5:ad:cd:af:15:29:eb:49:01:7a:4a: 65:f5:bd:d3:be:12:c8:f7:76:8e:f6:f3:ef:31:98: 26:94:48:0f:7b:30:61:8c:71:08:8e:fb:54:7a:38: fa:16:d6:69:0f:73:4e:0e:7a:a7:88:32:21:95:fc: 1c:7b:64:ff:9c:31:e1:c9:fc:1b:93:7c:ff:bf:52: 47:38:4c:2c:85:96:31:47:c1:27:0d:3c:70:77:da: 14:05:55:d1:e1:93:e1:69:e3:85:ed:17:59:d5:63: 58:8b:a9:a2:34:59:17:ef:96:b7:90:ed:eb:6a:a0: 43:28:c2:bc:73:52:71:95:67:5e:2e:6b:6f:f1:39: 93:2e:d8:fb:2a:6d:b8:60:7f:3b:fb:5f:7b:65:5e: 22:65:45:06:be:5b:6f:0d:0a:e5:b1:68:80:69:c8: 44:a0:7a:43:1c:eb:b7:f6:5c:89:70:bc:f6:5d:b9: 81:0b:f2:a7:9a:cd:04:93:99:24:f6:e6:96:c0:a3: 3b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 X509v3 Authority Key Identifier: keyid:2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 6a:2e:11:36:a9:d5:26:91:56:64:12:c2:7b:7f:4e:62:9a:96: e0:f1:3b:ec:d5:6e:bc:05:63:f8:7d:3d:1a:27:be:df:94:9e: 6e:2f:ac:4e:14:2c:0c:4e:e1:9a:d5:96:51:30:77:b4:82:a2: f9:90:dd:b0:62:d1:13:80:64:6c:52:38:99:03:8c:6b:94:48: 09:09:2c:52:3a:d9:38:06:e3:6d:88:d1:59:ec:5e:2e:69:4d: 63:e7:78:5e:e0:99:8c:34:35:b1:ee:bf:92:bd:9d:5b:a6:c6: 0e:dc:56:37:83:29:f6:c9:a5:82:f3:c7:83:30:f5:ce:da:fd: f7:12:b1:e6:d6:d2:e5:5d:95:4b:0f:0d:07:f9:26:1c:31:2e: c1:00:ea:9c:46:6b:f5:b8:84:dc:a7:2a:28:6e:e2:5f:ef:cf: 5e:16:ca:6b:ce:fb:20:7c:a2:47:98:c9:b4:21:ff:73:3a:27: 42:15:4c:7c:43:a4:17:98:f7:0c:dc:46:b3:90:34:a1:88:e6: 21:45:b5:7d:7d:23:c4:51:52:32:c2:49:e6:b5:85:d7:31:8c: 38:51:b8:1a:74:c1:e5:57:06:9d:d8:95:46:27:6a:88:2c:a6: 1c:76:25:45:20:fc:be:54:40:ac:b6:a0:48:4c:59:4b:84:bc: 9e:77:11:f6 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBK8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIz Qjg5QUQzMkYzQjk1QjdBRjE2NUY0QzhBNENEMDhFNzU0RDVBQjAeFw0yNjAzMjYx MjU4MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEREODY0MDlFNDI2Rjk5 MTZDQkI2ODc0QjA3NTI5ODQzRDMwQTQ4RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo24kLxSySxHiWAIRk3vjwHIvDyN5Ww9rVldX3wFOq0Kc6dQZb hw34uFUAcbAwHCgLBLN/UxtQQAwUR1ktKJrFrc2vFSnrSQF6SmX1vdO+Esj3do72 8+8xmCaUSA97MGGMcQiO+1R6OPoW1mkPc04OeqeIMiGV/Bx7ZP+cMeHJ/BuTfP+/ Ukc4TCyFljFHwScNPHB32hQFVdHhk+Fp44XtF1nVY1iLqaI0WRfvlreQ7etqoEMo wrxzUnGVZ14ua2/xOZMu2Psqbbhgfzv7X3tlXiJlRQa+W28NCuWxaIBpyESgekMc 67f2XIlwvPZduYEL8qeazQSTmST25pbAozuVAgMBAAGjggINMIICCTAdBgNVHQ4E FgQU3YZAnkJvmRbLtodLB1KYQ9MKSPEwHwYDVR0jBBgwFoAUKzuJrTLzuVt68WX0 yKTNCOdU1aswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUND VUJFL0t6dUpyVEx6dVZ0NjhXWDB5S1ROQ09kVTFhcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvS3p1SnJUTHp1VnQ2OFdYMHlLVE5DT2RVMWFzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUNDVUJFL0t6dUpyVEx6dVZ0 NjhXWDB5S1ROQ09kVTFhcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBqLhE2qdUmkVZkEsJ7f05impbg8Tvs1W68BWP4fT0aJ77flJ5uL6xOFCwM TuGa1ZZRMHe0gqL5kN2wYtETgGRsUjiZA4xrlEgJCSxSOtk4BuNtiNFZ7F4uaU1j 53he4JmMNDWx7r+SvZ1bpsYO3FY3gyn2yaWC88eDMPXO2v33ErHm1tLlXZVLDw0H +SYcMS7BAOqcRmv1uITcpyoobuJf789eFsprzvsgfKJHmMm0If9zOidCFUx8Q6QX mPcM3EazkDShiOYhRbV9fSPEUVIywknmtYXXMYw4UbgadMHlVwad2JVGJ2qILKYc diVFIPy+VECstqBITFlLhLyedxH2 -----END CERTIFICATE-----Generated at Thu Mar 26 22:07:52 2026 by rpki-client