$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft File: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft (raw, json) Hash identifier: W3PJGJ9Ubp5kECfpZgxpBnWmnuZsf6CJR+GmJJ5FRAU= Subject key identifier: 5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08 Authority key identifier: BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7 Certificate issuer: /CN=BBF8E5352240971787806A3E53A8904859A9F0E7 Certificate serial: 0214 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft Manifest number: 0211 Signing time: Sun 01 Mar 2026 03:53:38 +0000 Manifest this update: Sun 01 Mar 2026 03:53:38 +0000 Manifest next update: Tue 03 Mar 2026 03:53:38 +0000 Files and hashes: 1: nxPOB_142Cw5aIl7fWRINXa_Loc.roa (hash: oZQg3Mac5DRiFP+QaVGaZceQPEXpPsPnqOS7dI/2mA4=) 2: u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl (hash: VeNmO+8Bh+lR7aovJxAaqIWD327kq7wMn82DQv2+SgU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 01:24:04 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 532 (0x214) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BBF8E5352240971787806A3E53A8904859A9F0E7 Validity Not Before: Mar 1 03:53:38 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=5F2EA8F6BC2A32CE1819AD42C2E60E2DB6EDB008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:0c:a3:25:d5:73:fe:23:56:af:9f:31:3d:98: 9c:39:b9:09:f9:35:63:31:52:3d:49:d4:d4:a8:e8: 4e:93:97:6f:59:a1:fc:73:d5:e2:fd:e7:17:f0:da: 95:a1:9c:24:cf:bb:13:2b:9e:52:3e:52:31:25:ea: ce:28:a9:b3:20:9f:63:91:81:ae:e4:db:31:6a:ee: 83:db:1a:c0:08:c9:83:bd:78:f2:cc:9f:c1:98:57: bc:64:9e:43:11:9b:4b:48:bf:f8:41:7e:af:15:b3: 18:c4:be:35:21:e7:68:9e:9d:ee:3c:6d:d5:3e:1d: 2e:ae:7a:48:9a:8d:b3:be:d6:05:9d:86:e2:83:48: a6:e8:56:c6:04:6f:2f:25:9c:17:a1:f6:50:9a:29: 7c:35:13:d2:ad:b3:37:7d:e9:80:63:11:e4:fd:b0: 76:6a:3c:2e:9a:ba:d1:78:b0:7a:20:5f:83:37:64: 5b:51:de:28:73:e2:9d:2b:ae:56:9b:7f:89:a1:5a: 6d:05:ec:69:f7:01:eb:8d:b0:9a:37:ff:63:38:8e: 8b:e7:a8:8a:16:0f:84:c5:85:59:b6:a0:c6:94:c5: 41:5e:39:d6:26:28:ea:63:90:f9:4b:7b:f2:6b:f6: 81:9b:bf:f0:a7:c7:d2:3b:4e:6d:a6:9a:1c:11:93: f1:5f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:2E:A8:F6:BC:2A:32:CE:18:19:AD:42:C2:E6:0E:2D:B6:ED:B0:08 X509v3 Authority Key Identifier: keyid:BB:F8:E5:35:22:40:97:17:87:80:6A:3E:53:A8:90:48:59:A9:F0:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKH/u_jlNSJAlxeHgGo-U6iQSFmp8Oc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:d9:57:f1:d7:7a:f8:20:25:49:b9:6e:e1:e7:aa:94:4e:87: 88:9e:00:bf:d4:5f:bb:3f:99:62:47:02:74:c8:af:cb:b0:ae: 2b:88:3b:49:61:43:0a:f2:aa:6b:b4:7f:54:38:3e:5f:9d:31: 9d:49:72:1e:b3:1d:68:0c:c3:bc:97:d1:6b:dc:87:df:09:08: a4:cf:1d:dc:00:eb:85:f3:ef:41:45:50:62:8c:30:1c:b0:e7: 3c:8b:a6:23:3f:8e:5d:0d:78:94:c9:00:66:e6:f0:d7:6f:43: b0:b8:49:82:ca:95:ea:5d:e1:bf:04:0e:f5:29:11:54:51:8d: 0c:cb:78:f8:2e:90:99:76:10:42:1b:ab:07:fc:c4:d7:cc:c1: ca:04:3c:61:c7:68:32:e3:93:66:2e:7f:d2:46:33:fa:a4:8c: bb:20:2b:b7:d9:f3:98:0f:7b:50:60:91:ff:01:88:bd:2c:4d: 0f:63:31:97:0e:ef:5e:3c:2a:10:80:22:88:d2:47:b2:c6:c7: 01:77:0c:73:18:ef:03:24:46:53:c4:50:25:f6:72:de:fc:68: 90:20:03:e5:7a:2f:4b:5d:bc:1c:8f:6e:ed:5e:a7:1f:80:ff: 86:7c:be:68:b8:14:5c:e1:ae:a4:9d:47:49:60:8b:1a:e7:70: 00:b2:81:fe -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAhQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkJG OEU1MzUyMjQwOTcxNzg3ODA2QTNFNTNBODkwNDg1OUE5RjBFNzAeFw0yNjAzMDEw MzUzMzhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDVGMkVBOEY2QkMyQTMy Q0UxODE5QUQ0MkMyRTYwRTJEQjZFREIwMDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCoDKMl1XP+I1avnzE9mJw5uQn5NWMxUj1J1NSo6E6Tl29Zofxz 1eL95xfw2pWhnCTPuxMrnlI+UjEl6s4oqbMgn2ORga7k2zFq7oPbGsAIyYO9ePLM n8GYV7xknkMRm0tIv/hBfq8VsxjEvjUh52iene48bdU+HS6uekiajbO+1gWdhuKD SKboVsYEby8lnBeh9lCaKXw1E9Ktszd96YBjEeT9sHZqPC6autF4sHogX4M3ZFtR 3ihz4p0rrlabf4mhWm0F7Gn3AeuNsJo3/2M4jovnqIoWD4TFhVm2oMaUxUFeOdYm KOpjkPlLe/Jr9oGbv/Cnx9I7Tm2mmhwRk/FfAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUXy6o9rwqMs4YGa1CwuYOLbbtsAgwHwYDVR0jBBgwFoAUu/jlNSJAlxeHgGo+ U6iQSFmp8OcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tIL3Vf amxOU0pBbHhlSGdHby1VNmlRU0ZtcDhPYy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev dV9qbE5TSkFseGVIZ0dvLVU2aVFTRm1wOE9jLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvS0tIL3VfamxOU0pBbHhlSGdHby1VNmlRU0Zt cDhPYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAM2Vfx13r4 ICVJuW7h56qUToeIngC/1F+7P5liRwJ0yK/LsK4riDtJYUMK8qprtH9UOD5fnTGd SXIesx1oDMO8l9Fr3IffCQikzx3cAOuF8+9BRVBijDAcsOc8i6YjP45dDXiUyQBm 5vDXb0OwuEmCypXqXeG/BA71KRFUUY0My3j4LpCZdhBCG6sH/MTXzMHKBDxhx2gy 45NmLn/SRjP6pIy7ICu32fOYD3tQYJH/AYi9LE0PYzGXDu9ePCoQgCKI0keyxscB dwxzGO8DJEZTxFAl9nLe/GiQIAPlei9LXbwcj27tXqcfgP+GfL5ouBRc4a6knUdJ YIsa53AAsoH+ -----END CERTIFICATE-----Generated at Sun Mar 1 23:55:34 2026 by rpki-client