$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft File: KUthydo1hCdBgvogr4Ym4a6oHzI.mft (raw, json) Hash identifier: 161cuiySMZufOcc6Sbkoa0Ng2UxiXsW4cJMwADOgQ8E= Subject key identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF Authority key identifier: 29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 Certificate issuer: /CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Certificate serial: 0402 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft Manifest number: 0400 Signing time: Wed 22 Apr 2026 00:34:57 +0000 Manifest this update: Wed 22 Apr 2026 00:34:57 +0000 Manifest next update: Wed 22 Apr 2026 06:34:57 +0000 Files and hashes: 1: KUthydo1hCdBgvogr4Ym4a6oHzI.crl (hash: AXxxh8GUV1QJPNicqln2I6M7S6w2xNn6njc+4JMLLVA=) 2: vX2zurKcZq6uHugr79Vj7CluX8U.roa (hash: GdVPCwO2JcoPshr3Z+ad1hPe/GxgIs2qP3IuU8IWvC8=) 3: zyeCTH0u4dPBpS48vPaM1qbh0ZQ.roa (hash: 4WOxoLw0W96yUmxJv3ac7DDaLuuI/40+Ms3ofP7ccYE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:34:57 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1026 (0x402) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Validity Not Before: Apr 22 00:34:57 2026 GMT Not After : Oct 7 15:30:20 2026 GMT Subject: CN=F9171C46A9290B996E7083C2123E3BA4532C4EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:57:1d:e2:25:7a:e7:4c:1b:a5:3d:69:90: 57:e6:08:f1:fe:0f:74:cd:35:79:17:aa:5e:f5:40: cd:15:26:32:57:c1:20:f8:7f:67:2c:dd:3a:8d:62: 58:52:09:3d:2f:25:b6:68:52:b9:f2:94:86:6e:c8: 3f:14:d5:a8:da:78:ae:c9:30:59:e7:c7:11:30:c3: 1b:e1:26:1e:d2:9b:c3:95:d4:62:d4:06:17:1f:84: b1:c1:29:a3:d6:9b:7e:2e:b0:bb:b7:39:90:c4:f2: 12:97:2b:24:46:3d:7c:8b:00:6b:dd:42:43:2a:e9: e9:d4:f9:91:d8:9b:d2:77:19:2b:b7:e9:e9:f9:7c: 20:1a:15:51:da:5a:f7:d6:51:ea:c7:d2:c2:46:c4: dd:76:42:75:b5:40:ed:04:e1:62:da:89:f5:25:46: be:6d:50:2e:fd:52:5b:15:6e:a4:1d:03:85:12:cd: cb:25:45:9a:9b:87:0e:35:c3:e5:49:b5:07:92:d5: 34:3b:ca:8d:36:25:2f:30:fb:b6:88:7b:3e:e2:36: f2:9d:07:3f:19:31:f7:b5:3f:ac:47:85:a8:04:52: 11:f4:1d:d7:8d:09:54:ce:dd:d5:ea:87:79:8d:4d: 56:c5:fd:6f:29:1d:82:dc:c9:7e:a7:f4:7c:ae:47: f5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF X509v3 Authority Key Identifier: keyid:29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:2d:f8:6a:f5:33:fb:ab:4d:7f:6e:5e:8e:50:f0:fc:17:3a: 19:f4:23:04:91:a8:ac:62:99:14:ff:46:da:46:a2:d8:2f:5f: ed:75:e3:c8:9e:33:cc:5c:e7:3c:26:2a:1b:50:35:c5:7e:ee: 83:22:aa:5d:f5:16:e7:83:a1:2b:fb:8d:f2:9e:b8:51:6b:3e: 50:6c:81:71:b6:00:9c:dd:53:7a:7c:8f:ab:f4:46:64:4c:20: 47:09:b2:84:1d:96:14:12:41:9b:18:d1:13:0f:14:98:16:c4: 6f:8f:c7:ea:55:28:49:cc:83:c9:07:60:a0:46:29:7f:c1:16: f2:6d:6f:29:d3:4f:8f:b1:ef:3f:ef:aa:6e:70:31:7f:2a:3d: 9b:22:04:b1:72:b7:4b:50:b3:6a:1a:72:f4:68:ed:da:6d:ba: 62:ea:a2:3b:f2:cd:dd:ee:72:ec:cd:f8:94:c1:f8:04:1b:3a: 2d:87:9c:7f:5c:bc:0e:b1:d8:4e:9b:0e:25:3f:6a:44:be:79: 14:32:97:fa:7e:77:09:b7:d6:64:ff:bb:96:d8:1d:a4:a4:73: 37:d6:01:15:e9:13:fc:23:09:53:2a:75:70:35:85:54:9f:89: 4a:4d:1d:ec:ce:c1:86:12:55:53:b8:94:a0:91:4c:0a:c4:39: d5:b1:a9:a5 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICBAIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk0 QjYxQzlEQTM1ODQyNzQxODJGQTIwQUY4NjI2RTFBRUE4MUYzMjAeFw0yNjA0MjIw MDM0NTdaFw0yNjEwMDcxNTMwMjBaMDMxMTAvBgNVBAMTKEY5MTcxQzQ2QTkyOTBC OTk2RTcwODNDMjEyM0UzQkE0NTMyQzRFQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Q1cd4iV650wbpT1pkFfmCPH+D3TNNXkXql71QM0VJjJXwSD4 f2cs3TqNYlhSCT0vJbZoUrnylIZuyD8U1ajaeK7JMFnnxxEwwxvhJh7Sm8OV1GLU BhcfhLHBKaPWm34usLu3OZDE8hKXKyRGPXyLAGvdQkMq6enU+ZHYm9J3GSu36en5 fCAaFVHaWvfWUerH0sJGxN12QnW1QO0E4WLaifUlRr5tUC79UlsVbqQdA4USzcsl RZqbhw41w+VJtQeS1TQ7yo02JS8w+7aIez7iNvKdBz8ZMfe1P6xHhagEUhH0HdeN CVTO3dXqh3mNTVbF/W8pHYLcyX6n9HyuR/XHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQU+RccRqkpC5lucIPCEj47pFMsTr8wHwYDVR0jBBgwFoAUKUthydo1hCdBgvog r4Ym4a6oHzIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tHQU1F L0tVdGh5ZG8xaENkQmd2b2dyNFltNGE2b0h6SS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvS1V0aHlkbzFoQ2RCZ3ZvZ3I0WW00YTZvSHpJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tHQU1FL0tVdGh5ZG8xaENkQmd2b2dy NFltNGE2b0h6SS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBU Lfhq9TP7q01/bl6OUPD8FzoZ9CMEkaisYpkU/0baRqLYL1/tdePInjPMXOc8Jiob UDXFfu6DIqpd9Rbng6Er+43ynrhRaz5QbIFxtgCc3VN6fI+r9EZkTCBHCbKEHZYU EkGbGNETDxSYFsRvj8fqVShJzIPJB2CgRil/wRbybW8p00+Pse8/76pucDF/Kj2b IgSxcrdLULNqGnL0aO3abbpi6qI78s3d7nLszfiUwfgEGzoth5x/XLwOsdhOmw4l P2pEvnkUMpf6fncJt9Zk/7uW2B2kpHM31gEV6RP8IwlTKnVwNYVUn4lKTR3szsGG ElVTuJSgkUwKxDnVsaml -----END CERTIFICATE-----Generated at Wed Apr 22 06:31:58 2026 by rpki-client