$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BREACH9/CXUPPf-QwQxrwEUShmfvhmMqlEU.mft File: CXUPPf-QwQxrwEUShmfvhmMqlEU.mft (raw, json) Hash identifier: LnmX4fF4mRFZokd3E87BcQoI1NxUsb1KyQ9SeKk7reQ= Subject key identifier: A3:CB:65:B5:80:40:F2:F9:24:6F:78:D9:37:B1:1B:65:36:A6:3C:00 Authority key identifier: 09:75:0F:3D:FF:90:C1:0C:6B:C0:45:12:86:67:EF:86:63:2A:94:45 Certificate issuer: /CN=09750F3DFF90C10C6BC045128667EF86632A9445 Certificate serial: 2A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CXUPPf-QwQxrwEUShmfvhmMqlEU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BREACH9/CXUPPf-QwQxrwEUShmfvhmMqlEU.mft Manifest number: 2A Signing time: Fri 27 Mar 2026 20:58:43 +0000 Manifest this update: Fri 27 Mar 2026 20:58:43 +0000 Manifest next update: Sat 28 Mar 2026 02:58:43 +0000 Files and hashes: 1: CXUPPf-QwQxrwEUShmfvhmMqlEU.crl (hash: 8DPfLJh5jHJV2NJluVhHMgbVvlsfr5TCLiZo+UgF93M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BREACH9/CXUPPf-QwQxrwEUShmfvhmMqlEU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BREACH9/CXUPPf-QwQxrwEUShmfvhmMqlEU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/CXUPPf-QwQxrwEUShmfvhmMqlEU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 28 Mar 2026 02:29:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 42 (0x2a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=09750F3DFF90C10C6BC045128667EF86632A9445 Validity Not Before: Mar 27 20:58:43 2026 GMT Not After : Mar 17 15:30:20 2027 GMT Subject: CN=A3CB65B58040F2F9246F78D937B11B6536A63C00 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:a7:f9:1f:26:b3:e2:5d:02:d5:c8:56:b7:94: 48:37:ec:fd:6f:ea:ea:36:8f:55:71:08:45:24:45: 64:6e:f1:66:e6:c0:af:44:de:a9:50:d8:8b:83:04: 64:42:2f:ea:c1:3a:d8:21:50:5e:be:35:ef:20:4c: f0:06:e9:55:1a:d2:a8:20:94:d0:3a:5b:48:b3:95: bc:4d:31:d5:5a:75:b7:ac:08:d1:49:14:22:bc:1c: 48:01:9c:aa:8b:39:ea:b8:a5:39:53:56:18:68:11: 08:d5:d9:55:be:9d:45:05:6d:5f:c9:c9:aa:47:dc: 26:e7:e5:c3:d9:b2:44:3c:c9:33:3d:0b:c9:ef:de: 33:64:15:4a:65:38:8e:56:46:16:01:af:28:9c:eb: 49:8f:29:42:a2:bf:2c:ff:4a:17:df:a3:b5:86:22: 8c:8f:53:a9:81:d5:b2:08:e2:ef:cf:1a:e0:93:b1: 85:0e:31:ce:83:43:ae:5c:8f:9c:4f:d4:e2:2c:27: 19:36:7a:13:a4:0c:b2:2c:a0:34:59:5c:85:aa:6b: 2b:1e:22:a6:2d:6b:69:e6:d2:1f:a5:1d:41:8e:24: 66:d0:77:fb:a9:c4:b6:92:13:70:e4:d6:5f:18:58: 53:cf:59:04:f0:a4:99:c9:d8:37:71:b7:99:01:4f: 91:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:CB:65:B5:80:40:F2:F9:24:6F:78:D9:37:B1:1B:65:36:A6:3C:00 X509v3 Authority Key Identifier: keyid:09:75:0F:3D:FF:90:C1:0C:6B:C0:45:12:86:67:EF:86:63:2A:94:45 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BREACH9/CXUPPf-QwQxrwEUShmfvhmMqlEU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CXUPPf-QwQxrwEUShmfvhmMqlEU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BREACH9/CXUPPf-QwQxrwEUShmfvhmMqlEU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 64:2e:9c:f4:a0:74:42:9e:51:6d:5e:91:c2:47:cb:7c:0f:72: 66:78:2e:9d:ab:b4:42:4e:ba:f9:c2:71:c0:53:ee:b8:b9:aa: 06:d3:ae:26:2b:64:4a:23:5d:ee:23:31:22:75:86:9c:64:e8: 73:96:a7:99:31:1e:99:47:1e:9a:74:cb:00:81:92:d8:0b:ae: 04:d9:c6:19:b7:cc:ac:ca:ea:e2:3c:f8:bb:e3:c3:3d:bf:5b: 93:9e:06:d2:b3:9e:15:53:0d:7d:59:8c:f9:2b:30:99:6a:18: 78:30:4e:35:88:92:48:f8:5e:0f:05:87:96:fc:13:c8:3e:16: 97:52:73:68:ab:6e:f5:08:21:08:eb:30:a0:09:98:72:10:25: ce:4e:ad:75:24:ce:15:e7:66:39:9b:16:f1:54:a7:c6:01:b1: d4:02:4a:18:84:75:a2:64:b8:94:2a:bb:05:7b:0f:45:5f:86: f5:b2:f2:4b:20:0a:8a:f9:0e:a8:4f:43:70:60:3f:39:76:ed: 12:38:6f:f0:18:a8:01:43:cb:bb:91:c9:a6:ff:f4:95:3d:96: 0b:fe:1c:de:b9:de:bc:bb:08:5e:6b:97:e4:44:60:4d:07:6b: 41:2b:d7:70:72:57:43:b1:75:d3:a0:5e:3a:37:a3:d7:91:30: 5a:2c:d5:26 -----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgIBKjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwOTc1 MEYzREZGOTBDMTBDNkJDMDQ1MTI4NjY3RUY4NjYzMkE5NDQ1MB4XDTI2MDMyNzIw NTg0M1oXDTI3MDMxNzE1MzAyMFowMzExMC8GA1UEAxMoQTNDQjY1QjU4MDQwRjJG OTI0NkY3OEQ5MzdCMTFCNjUzNkE2M0MwMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL+n+R8ms+JdAtXIVreUSDfs/W/q6jaPVXEIRSRFZG7xZubAr0Te qVDYi4MEZEIv6sE62CFQXr417yBM8AbpVRrSqCCU0DpbSLOVvE0x1Vp1t6wI0UkU IrwcSAGcqos56rilOVNWGGgRCNXZVb6dRQVtX8nJqkfcJuflw9myRDzJMz0Lye/e M2QVSmU4jlZGFgGvKJzrSY8pQqK/LP9KF9+jtYYijI9TqYHVsgji788a4JOxhQ4x zoNDrlyPnE/U4iwnGTZ6E6QMsiygNFlchaprKx4ipi1raebSH6UdQY4kZtB3+6nE tpITcOTWXxhYU89ZBPCkmcnYN3G3mQFPkTECAwEAAaOCAgkwggIFMB0GA1UdDgQW BBSjy2W1gEDy+SRveNk3sRtlNqY8ADAfBgNVHSMEGDAWgBQJdQ89/5DBDGvARRKG Z++GYyqURTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF0GA1UdHwRWMFQwUqBQ oE6GTHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9CUkVBQ0g5 L0NYVVBQZi1Rd1F4cndFVVNobWZ2aG1NcWxFVS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvQ1hVUFBmLVF3UXhyd0VVU2htZnZobU1xbEVVLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZ0GCCsGAQUFBwELBIGQMIGNMFgGCCsGAQUFBzALhkxyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJFQUNIOS9DWFVQUGYtUXdReHJ3RVVT aG1mdmhtTXFsRVUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMu dHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYB BQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEA ZC6c9KB0Qp5RbV6RwkfLfA9yZngunau0Qk66+cJxwFPuuLmqBtOuJitkSiNd7iMx InWGnGToc5anmTEemUcemnTLAIGS2AuuBNnGGbfMrMrq4jz4u+PDPb9bk54G0rOe FVMNfVmM+SswmWoYeDBONYiSSPheDwWHlvwTyD4Wl1JzaKtu9QghCOswoAmYchAl zk6tdSTOFedmOZsW8VSnxgGx1AJKGIR1omS4lCq7BXsPRV+G9bLySyAKivkOqE9D cGA/OXbtEjhv8BioAUPLu5HJpv/0lT2WC/4c3rnevLsIXmuX5ERgTQdrQSvXcHJX Q7F106BeOjej15EwWizVJg== -----END CERTIFICATE-----Generated at Sat Mar 28 00:26:46 2026 by rpki-client