$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft File: mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft (raw, json) Hash identifier: 2OdB6W3kgguQJ6SmdILu8WO0GHmvaWEwoJhzfsYjNfo= Subject key identifier: B1:4F:CA:ED:DE:09:C7:ED:F4:B2:AD:6D:75:B2:10:5C:13:E5:10:DA Authority key identifier: 99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 Certificate issuer: /CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Certificate serial: 0E20 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft Manifest number: 0DE8 Signing time: Tue 14 Apr 2026 23:34:28 +0000 Manifest this update: Tue 14 Apr 2026 23:34:28 +0000 Manifest next update: Thu 16 Apr 2026 23:34:28 +0000 Files and hashes: 1: mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl (hash: 9JaK7GE4aYCOx2ncHNesDFviwBP9hGd2vVBdZ9IJd5s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 15 Apr 2026 13:33:33 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3616 (0xe20) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=993F7280F1F9B65439DD65ADFB68CA0D6C99BEC5 Validity Not Before: Apr 14 23:34:28 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B14FCAEDDE09C7EDF4B2AD6D75B2105C13E510DA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:1f:7d:d7:f2:fb:38:76:98:a8:cf:87:5e:96: a4:87:e0:8f:41:48:98:04:bc:be:35:bc:f7:92:9d: e4:0a:e6:f8:a4:64:5a:d6:b3:ca:59:71:9e:cc:36: 00:6d:63:4e:48:f9:b4:ea:93:18:84:d1:6b:9d:74: 15:c8:71:5a:a6:72:c0:17:fc:21:4d:41:d3:59:25: ce:3a:38:05:ec:ce:1f:16:f6:31:3a:a9:9c:df:d9: 95:ae:e7:05:48:77:df:cf:54:7b:d8:14:6e:d6:9a: e7:8e:dc:ce:8b:2e:36:aa:ee:c3:1a:76:25:b1:0b: 59:a3:e9:64:77:65:f4:2e:97:22:54:1b:1e:51:99: 72:f2:92:59:e0:49:03:48:9f:8b:93:ec:32:f1:1b: b3:c4:92:25:4c:00:e8:8e:87:4f:71:27:15:28:e4: 60:cd:f8:cd:ef:a2:30:8e:6b:f5:09:0d:e8:f1:10: 55:cf:ca:f3:16:c9:2d:d6:07:cb:d3:b3:e3:f4:38: b3:70:c7:3c:c3:d3:c3:01:9f:72:14:5c:00:7c:a7: 27:20:f5:1e:ab:7d:3e:83:78:4b:75:f3:bd:86:90: 24:15:90:31:7d:b6:69:2a:ee:c0:ad:cf:5d:17:4d: 0b:74:36:1b:c2:4a:c8:1d:c5:91:d7:66:7c:fd:6f: 45:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:4F:CA:ED:DE:09:C7:ED:F4:B2:AD:6D:75:B2:10:5C:13:E5:10:DA X509v3 Authority Key Identifier: keyid:99:3F:72:80:F1:F9:B6:54:39:DD:65:AD:FB:68:CA:0D:6C:99:BE:C5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mT9ygPH5tlQ53WWt-2jKDWyZvsU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAKURAHOST/mT9ygPH5tlQ53WWt-2jKDWyZvsU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c1:83:9f:b3:c0:27:12:fb:02:bf:66:e7:d8:f6:aa:18:ec:56: 2e:68:96:6a:c3:ba:9c:f2:81:9c:a4:6d:5f:8a:af:98:1f:d7: 61:b7:13:43:37:1b:9c:8a:19:e6:60:dd:8e:b0:5b:91:90:c6: 6d:6c:11:d0:d5:f6:81:4b:1a:aa:3a:38:5b:6d:dd:1b:84:6d: 32:6d:90:8b:ff:8b:0a:71:d8:40:ea:e5:17:29:05:e9:01:60: 62:86:3c:dc:7d:28:5e:a1:b6:c8:63:01:b5:ed:28:b9:8a:36: d7:77:33:98:38:b9:38:f5:5b:ba:aa:55:f2:97:04:62:c2:e4: f2:03:2b:09:cb:a4:66:09:2d:72:35:ee:2e:f1:fe:c0:37:14: 20:f1:4b:43:d2:75:44:e6:0d:38:c3:c8:bf:67:28:9e:49:7e: 84:01:f4:a6:d3:12:76:c5:2a:ad:00:99:88:b4:83:6d:25:fd: 83:c2:d1:70:b5:8b:4f:3e:13:ca:e8:f4:49:47:43:0c:d3:c0: 81:6d:04:09:c9:32:95:90:ce:59:76:2a:80:f8:a8:82:26:60: 3a:9f:d2:17:c9:6d:cc:d4:9d:fd:26:36:0c:4c:f6:25:70:82: d6:f8:11:cd:21:02:33:88:4b:2d:69:f1:1f:61:03:d5:fc:5b: 1d:64:31:ed -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDiAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTkz RjcyODBGMUY5QjY1NDM5REQ2NUFERkI2OENBMEQ2Qzk5QkVDNTAeFw0yNjA0MTQy MzM0MjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEIxNEZDQUVEREUwOUM3 RURGNEIyQUQ2RDc1QjIxMDVDMTNFNTEwREEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC9H33X8vs4dpioz4delqSH4I9BSJgEvL41vPeSneQK5vikZFrW s8pZcZ7MNgBtY05I+bTqkxiE0WuddBXIcVqmcsAX/CFNQdNZJc46OAXszh8W9jE6 qZzf2ZWu5wVId9/PVHvYFG7WmueO3M6LLjaq7sMadiWxC1mj6WR3ZfQulyJUGx5R mXLyklngSQNIn4uT7DLxG7PEkiVMAOiOh09xJxUo5GDN+M3vojCOa/UJDejxEFXP yvMWyS3WB8vTs+P0OLNwxzzD08MBn3IUXAB8pycg9R6rfT6DeEt1872GkCQVkDF9 tmkq7sCtz10XTQt0NhvCSsgdxZHXZnz9b0X9AgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUsU/K7d4Jx+30sq1tdbIQXBPlENowHwYDVR0jBBgwFoAUmT9ygPH5tlQ53WWt +2jKDWyZvsUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FLVVJB SE9TVC9tVDl5Z1BINXRsUTUzV1d0LTJqS0RXeVp2c1UuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21UOXlnUEg1dGxRNTNXV3QtMmpLRFd5WnZzVS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1NBS1VSQUhPU1QvbVQ5eWdQSDV0 bFE1M1dXdC0yaktEV3ladnNVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAMGDn7PAJxL7Ar9m59j2qhjsVi5olmrDupzygZykbV+Kr5gf12G3E0M3 G5yKGeZg3Y6wW5GQxm1sEdDV9oFLGqo6OFtt3RuEbTJtkIv/iwpx2EDq5RcpBekB YGKGPNx9KF6htshjAbXtKLmKNtd3M5g4uTj1W7qqVfKXBGLC5PIDKwnLpGYJLXI1 7i7x/sA3FCDxS0PSdUTmDTjDyL9nKJ5JfoQB9KbTEnbFKq0AmYi0g20l/YPC0XC1 i08+E8ro9ElHQwzTwIFtBAnJMpWQzll2KoD4qIImYDqf0hfJbczUnf0mNgxM9iVw gtb4Ec0hAjOISy1p8R9hA9X8Wx1kMe0= -----END CERTIFICATE-----Generated at Wed Apr 15 10:31:09 2026 by rpki-client