$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft File: KUthydo1hCdBgvogr4Ym4a6oHzI.mft (raw, json) Hash identifier: 6+JZi9dHcUcwHCvrg61jcsuiCC50sJ3+0co0J1nwF2Y= Subject key identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF Authority key identifier: 29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 Certificate issuer: /CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Certificate serial: 9A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft Manifest number: 98 Signing time: Wed 05 Nov 2025 04:29:20 +0000 Manifest this update: Wed 05 Nov 2025 04:29:20 +0000 Manifest next update: Wed 05 Nov 2025 10:29:20 +0000 Files and hashes: 1: KUthydo1hCdBgvogr4Ym4a6oHzI.crl (hash: jd5OHm/fOW48IdTdZcKeeDhS7eom9vKVrvYhJsrkZxo=) 2: vX2zurKcZq6uHugr79Vj7CluX8U.roa (hash: GdVPCwO2JcoPshr3Z+ad1hPe/GxgIs2qP3IuU8IWvC8=) 3: zyeCTH0u4dPBpS48vPaM1qbh0ZQ.roa (hash: 4WOxoLw0W96yUmxJv3ac7DDaLuuI/40+Ms3ofP7ccYE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 10:29:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 154 (0x9a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=294B61C9DA3584274182FA20AF8626E1AEA81F32 Validity Not Before: Nov 5 04:29:20 2025 GMT Not After : Oct 7 15:30:20 2026 GMT Subject: CN=F9171C46A9290B996E7083C2123E3BA4532C4EBF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:43:57:1d:e2:25:7a:e7:4c:1b:a5:3d:69:90: 57:e6:08:f1:fe:0f:74:cd:35:79:17:aa:5e:f5:40: cd:15:26:32:57:c1:20:f8:7f:67:2c:dd:3a:8d:62: 58:52:09:3d:2f:25:b6:68:52:b9:f2:94:86:6e:c8: 3f:14:d5:a8:da:78:ae:c9:30:59:e7:c7:11:30:c3: 1b:e1:26:1e:d2:9b:c3:95:d4:62:d4:06:17:1f:84: b1:c1:29:a3:d6:9b:7e:2e:b0:bb:b7:39:90:c4:f2: 12:97:2b:24:46:3d:7c:8b:00:6b:dd:42:43:2a:e9: e9:d4:f9:91:d8:9b:d2:77:19:2b:b7:e9:e9:f9:7c: 20:1a:15:51:da:5a:f7:d6:51:ea:c7:d2:c2:46:c4: dd:76:42:75:b5:40:ed:04:e1:62:da:89:f5:25:46: be:6d:50:2e:fd:52:5b:15:6e:a4:1d:03:85:12:cd: cb:25:45:9a:9b:87:0e:35:c3:e5:49:b5:07:92:d5: 34:3b:ca:8d:36:25:2f:30:fb:b6:88:7b:3e:e2:36: f2:9d:07:3f:19:31:f7:b5:3f:ac:47:85:a8:04:52: 11:f4:1d:d7:8d:09:54:ce:dd:d5:ea:87:79:8d:4d: 56:c5:fd:6f:29:1d:82:dc:c9:7e:a7:f4:7c:ae:47: f5:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:17:1C:46:A9:29:0B:99:6E:70:83:C2:12:3E:3B:A4:53:2C:4E:BF X509v3 Authority Key Identifier: keyid:29:4B:61:C9:DA:35:84:27:41:82:FA:20:AF:86:26:E1:AE:A8:1F:32 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KUthydo1hCdBgvogr4Ym4a6oHzI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKGAME/KUthydo1hCdBgvogr4Ym4a6oHzI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 54:8d:c9:2e:fa:26:85:bb:bc:8b:61:e1:33:97:5b:9c:63:00: c3:22:26:00:79:56:ec:e0:76:2e:2d:31:20:56:1c:5f:0f:f3: 0f:4a:5b:55:7e:17:91:dd:2c:a7:34:71:32:dd:9b:64:8e:63: a8:b1:86:7c:71:ee:56:11:07:ab:df:b9:d3:4a:3f:e7:ec:c5: 09:a7:8f:d5:2d:0c:bb:9b:48:25:11:71:c5:ac:75:75:ba:91: d3:83:bb:df:2e:6c:0f:4f:8c:3d:4e:3c:8a:b7:aa:58:f9:a9: 7e:59:36:e6:65:01:22:9d:4f:17:85:0a:aa:13:6c:86:09:4d: 51:a9:c8:45:a5:b2:ed:1b:94:9f:d2:1c:73:e7:2b:d2:fe:ee: 11:b0:62:90:cf:87:f7:3f:75:b5:3b:fe:01:39:d6:b1:fa:d2: 66:68:ff:ac:6c:0c:37:c6:a4:66:ef:92:64:87:19:19:dc:2e: c2:22:02:03:24:ee:78:aa:16:ad:2c:9e:fa:c6:b7:cf:59:e2: 9c:37:b8:00:a4:d1:56:94:05:19:4d:37:40:81:34:76:28:ea: 0a:d5:49:c0:e3:97:0b:4a:5e:18:d5:54:e5:2e:ca:1d:7a:a8: 5d:67:fb:2c:73:42:de:bc:8b:b3:cb:be:5d:e7:df:94:f5:ec: fa:d5:fb:78 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICAJowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjk0 QjYxQzlEQTM1ODQyNzQxODJGQTIwQUY4NjI2RTFBRUE4MUYzMjAeFw0yNTExMDUw NDI5MjBaFw0yNjEwMDcxNTMwMjBaMDMxMTAvBgNVBAMTKEY5MTcxQzQ2QTkyOTBC OTk2RTcwODNDMjEyM0UzQkE0NTMyQzRFQkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC0Q1cd4iV650wbpT1pkFfmCPH+D3TNNXkXql71QM0VJjJXwSD4 f2cs3TqNYlhSCT0vJbZoUrnylIZuyD8U1ajaeK7JMFnnxxEwwxvhJh7Sm8OV1GLU BhcfhLHBKaPWm34usLu3OZDE8hKXKyRGPXyLAGvdQkMq6enU+ZHYm9J3GSu36en5 fCAaFVHaWvfWUerH0sJGxN12QnW1QO0E4WLaifUlRr5tUC79UlsVbqQdA4USzcsl RZqbhw41w+VJtQeS1TQ7yo02JS8w+7aIez7iNvKdBz8ZMfe1P6xHhagEUhH0HdeN CVTO3dXqh3mNTVbF/W8pHYLcyX6n9HyuR/XHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQU+RccRqkpC5lucIPCEj47pFMsTr8wHwYDVR0jBBgwFoAUKUthydo1hCdBgvog r4Ym4a6oHzIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tHQU1F L0tVdGh5ZG8xaENkQmd2b2dyNFltNGE2b0h6SS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvS1V0aHlkbzFoQ2RCZ3ZvZ3I0WW00YTZvSHpJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tHQU1FL0tVdGh5ZG8xaENkQmd2b2dy NFltNGE2b0h6SS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBU jcku+iaFu7yLYeEzl1ucYwDDIiYAeVbs4HYuLTEgVhxfD/MPSltVfheR3SynNHEy 3ZtkjmOosYZ8ce5WEQer37nTSj/n7MUJp4/VLQy7m0glEXHFrHV1upHTg7vfLmwP T4w9TjyKt6pY+al+WTbmZQEinU8XhQqqE2yGCU1RqchFpbLtG5Sf0hxz5yvS/u4R sGKQz4f3P3W1O/4BOdax+tJmaP+sbAw3xqRm75JkhxkZ3C7CIgIDJO54qhatLJ76 xrfPWeKcN7gApNFWlAUZTTdAgTR2KOoK1UnA45cLSl4Y1VTlLsodeqhdZ/ssc0Le vIuzy75d59+U9ez61ft4 -----END CERTIFICATE-----Generated at Wed Nov 5 09:39:35 2025 by rpki-client