$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft File: KUthydo1hCdBgvogr4Ym4a6oHzI.mft (raw, json) Hash identifier: 57ZJm4uEzmjju9AEOJ3BeQ0TAddalAV4Ba5uf9NO93Y= Subject key identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF Authority key identifier: 29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 Certificate issuer: /CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Certificate serial: 51 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft Manifest number: 4F Signing time: Wed 22 Oct 2025 09:25:07 +0000 Manifest this update: Wed 22 Oct 2025 09:25:07 +0000 Manifest next update: Wed 22 Oct 2025 15:25:07 +0000 Files and hashes: 1: KUthydo1hCdBgvogr4Ym4a6oHzI.crl (hash: iwdgJEPNdJ1eAreXmchygnNZTS5ndJgQUYZLPrMMVS4=) 2: vX2zurKcZq6uHugr79Vj7CluX8U.roa (hash: GdVPCwO2JcoPshr3Z+ad1hPe/GxgIs2qP3IuU8IWvC8=) 3: zyeCTH0u4dPBpS48vPaM1qbh0ZQ.roa (hash: 4WOxoLw0W96yUmxJv3ac7DDaLuuI/40+Ms3ofP7ccYE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Oct 2025 15:25:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 81 (0x51) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Validity Not Before: Oct 22 09:25:07 2025 GMT Not After : Oct 7 15:30:20 2026 GMT Subject: CN=F9171C46A9290B996E7083C2123E3BA4532C4EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:57:1d:e2:25:7a:e7:4c:1b:a5:3d:69:90: 57:e6:08:f1:fe:0f:74:cd:35:79:17:aa:5e:f5:40: cd:15:26:32:57:c1:20:f8:7f:67:2c:dd:3a:8d:62: 58:52:09:3d:2f:25:b6:68:52:b9:f2:94:86:6e:c8: 3f:14:d5:a8:da:78:ae:c9:30:59:e7:c7:11:30:c3: 1b:e1:26:1e:d2:9b:c3:95:d4:62:d4:06:17:1f:84: b1:c1:29:a3:d6:9b:7e:2e:b0:bb:b7:39:90:c4:f2: 12:97:2b:24:46:3d:7c:8b:00:6b:dd:42:43:2a:e9: e9:d4:f9:91:d8:9b:d2:77:19:2b:b7:e9:e9:f9:7c: 20:1a:15:51:da:5a:f7:d6:51:ea:c7:d2:c2:46:c4: dd:76:42:75:b5:40:ed:04:e1:62:da:89:f5:25:46: be:6d:50:2e:fd:52:5b:15:6e:a4:1d:03:85:12:cd: cb:25:45:9a:9b:87:0e:35:c3:e5:49:b5:07:92:d5: 34:3b:ca:8d:36:25:2f:30:fb:b6:88:7b:3e:e2:36: f2:9d:07:3f:19:31:f7:b5:3f:ac:47:85:a8:04:52: 11:f4:1d:d7:8d:09:54:ce:dd:d5:ea:87:79:8d:4d: 56:c5:fd:6f:29:1d:82:dc:c9:7e:a7:f4:7c:ae:47: f5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF X509v3 Authority Key Identifier: keyid:29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 76:97:a9:1e:02:db:89:98:88:ae:21:a9:10:13:ea:f8:0d:8e: d1:e9:56:a8:bb:7a:9b:c5:79:6d:e9:93:e8:5f:c5:8e:6c:99: f4:a7:16:c8:91:d6:fc:6d:ab:ed:f8:d2:45:07:b1:2f:c8:3c: 41:f9:bd:ef:4b:94:8a:83:f8:ea:05:28:f1:2a:c0:54:8c:5e: eb:9a:47:b1:85:f5:cb:a2:bb:fa:78:e5:81:2e:98:e6:9a:39: b0:97:b9:46:10:d9:57:8e:50:5a:34:28:e1:9b:e2:ef:8d:b2: eb:dc:9b:c5:e4:11:b1:be:90:ed:9e:e9:2c:d9:b2:7f:fa:5b: 47:0f:02:bd:92:c3:e3:e1:e3:d8:d7:c1:6f:89:fa:e5:5c:6a: 28:a0:8c:b7:52:38:62:d3:51:54:8a:19:e6:59:4e:b9:69:7b: 55:67:61:43:f6:6d:c5:ab:e6:d3:c2:f3:a7:7a:b8:42:6b:85: a3:ec:a2:e6:37:b3:5b:19:de:34:47:75:84:62:d1:35:dc:92: 38:58:6b:d0:ce:dd:b8:14:df:d7:0e:21:ed:59:7f:f7:19:83: aa:e7:5a:12:c3:b1:d9:f5:ef:0c:06:40:dd:f1:7f:35:87:0e: 40:eb:51:26:d1:0e:7e:4b:cb:f1:8c:0e:6d:38:2d:1a:82:f6: 79:1b:30:50 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIBUTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygyOTRC NjFDOURBMzU4NDI3NDE4MkZBMjBBRjg2MjZFMUFFQTgxRjMyMB4XDTI1MTAyMjA5 MjUwN1oXDTI2MTAwNzE1MzAyMFowMzExMC8GA1UEAxMoRjkxNzFDNDZBOTI5MEI5 OTZFNzA4M0MyMTIzRTNCQTQ1MzJDNEVCRjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALRDVx3iJXrnTBulPWmQV+YI8f4PdM01eReqXvVAzRUmMlfBIPh/ ZyzdOo1iWFIJPS8ltmhSufKUhm7IPxTVqNp4rskwWefHETDDG+EmHtKbw5XUYtQG Fx+EscEpo9abfi6wu7c5kMTyEpcrJEY9fIsAa91CQyrp6dT5kdib0ncZK7fp6fl8 IBoVUdpa99ZR6sfSwkbE3XZCdbVA7QThYtqJ9SVGvm1QLv1SWxVupB0DhRLNyyVF mpuHDjXD5Um1B5LVNDvKjTYlLzD7toh7PuI28p0HPxkx97U/rEeFqARSEfQd140J VM7d1eqHeY1NVsX9bykdgtzJfqf0fK5H9ccCAwEAAaOCAgcwggIDMB0GA1UdDgQW BBT5FxxGqSkLmW5wg8ISPjukUyxOvzAfBgNVHSMEGDAWgBQpS2HJ2jWEJ0GC+iCv hibhrqgfMjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9LS0dBTUUv S1V0aHlkbzFoQ2RCZ3ZvZ3I0WW00YTZvSHpJLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9LVXRoeWRvMWhDZEJndm9ncjRZbTRhNm9IekkuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9LS0dBTUUvS1V0aHlkbzFoQ2RCZ3ZvZ3I0 WW00YTZvSHpJLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAHaX qR4C24mYiK4hqRAT6vgNjtHpVqi7epvFeW3pk+hfxY5smfSnFsiR1vxtq+340kUH sS/IPEH5ve9LlIqD+OoFKPEqwFSMXuuaR7GF9cuiu/p45YEumOaaObCXuUYQ2VeO UFo0KOGb4u+Nsuvcm8XkEbG+kO2e6SzZsn/6W0cPAr2Sw+Ph49jXwW+J+uVcaiig jLdSOGLTUVSKGeZZTrlpe1VnYUP2bcWr5tPC86d6uEJrhaPsouY3s1sZ3jRHdYRi 0TXckjhYa9DO3bgU39cOIe1Zf/cZg6rnWhLDsdn17wwGQN3xfzWHDkDrUSbRDn5L y/GMDm04LRqC9nkbMFA= -----END CERTIFICATE-----Generated at Wed Oct 22 14:58:15 2025 by rpki-client