$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft File: 639Ki3shDbkgjtWANXBF5Zcd4NM.mft (raw, json) Hash identifier: /CYIiI1HS5TfAHa1de+8v41PARWuO65hC/uCEwx3NKU= Subject key identifier: C6:A2:9D:DF:66:72:B4:B2:BC:E6:75:15:86:81:5C:B8:8C:94:C3:F3 Authority key identifier: EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3 Certificate issuer: /CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3 Certificate serial: 04E4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft Manifest number: 04DA Signing time: Sat 23 Aug 2025 21:15:20 +0000 Manifest this update: Sat 23 Aug 2025 21:15:20 +0000 Manifest next update: Mon 25 Aug 2025 21:15:20 +0000 Files and hashes: 1: 639Ki3shDbkgjtWANXBF5Zcd4NM.crl (hash: F07pHbY7Zj1YT72x2aSqLVlNY52ELAIx9zh6V7W+UAE=) 2: ALxxmI-MtTvV7so9NokBSyZ9pNc.roa (hash: bfyUeHCmQJ48LfOm63XlAVSRh9tG9IAeNiGx7Io5itQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1252 (0x4e4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3 Validity Not Before: Aug 23 21:15:20 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C6A29DDF6672B4B2BCE6751586815CB88C94C3F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ee:fa:15:8c:15:9a:4d:1c:8b:ed:2f:a6:30: 71:6e:32:0a:3f:9e:03:fa:73:5b:3c:c1:6f:14:e8: 07:0c:56:1f:ee:4e:7e:71:31:a1:af:e5:b7:3d:c9: ba:2e:17:47:e1:d0:f8:0e:22:06:73:6a:8e:5f:c4: 43:cb:58:6a:9a:a5:1f:08:b4:e1:bb:60:67:97:99: 93:b5:40:a2:41:02:0c:d3:99:cc:19:34:5c:4f:11: d5:66:75:21:59:c9:34:34:d2:f5:ea:95:70:2a:9b: 12:bf:29:9a:66:58:be:b6:e6:61:56:10:ea:9e:87: 12:b4:44:1b:64:6c:a3:ad:8b:78:4d:4a:4e:fd:f7: e9:a6:16:bb:20:7b:ac:33:37:49:bd:bd:18:b2:e6: 45:fe:8c:4f:08:e7:34:6f:b7:92:18:8f:74:1c:c9: 8d:11:e8:7a:b1:7a:ba:14:0d:5a:43:89:16:b6:75: 3f:5c:bc:c2:e7:13:53:47:12:1f:12:93:7d:90:bd: 3e:c3:6d:70:09:f5:e2:5f:5e:d0:03:49:6a:a9:8d: 07:7c:f1:2c:3b:a7:95:d3:09:df:93:b2:66:8e:2f: 06:30:cf:78:34:29:89:46:bc:f3:22:3a:b1:43:2d: 1d:71:8e:38:d8:67:db:b4:02:24:76:0f:76:15:e9: c8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A2:9D:DF:66:72:B4:B2:BC:E6:75:15:86:81:5C:B8:8C:94:C3:F3 X509v3 Authority Key Identifier: keyid:EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0c:c4:70:93:f5:12:b8:e4:0c:cf:e2:4d:de:1d:ac:4d:b3:1d: 35:66:65:e3:05:8a:f4:33:ec:4c:97:d4:1d:05:98:c3:e0:d8: 5c:66:03:2d:2e:0b:8e:98:12:15:a8:d0:f4:45:2c:ae:d5:80: f4:4c:d8:74:e2:b8:ab:e7:22:94:a2:e5:4e:df:a3:93:a8:a3: b7:3c:a0:f7:46:88:fb:8d:bb:8d:de:76:95:79:cb:71:b5:97: 2c:04:d0:6c:e4:c5:74:18:a5:2b:fe:00:52:98:08:68:81:d1: ff:32:a0:65:47:a2:6b:10:38:af:e4:a6:6b:6a:0a:22:4a:0d: 7f:6c:fb:ae:8b:5b:3b:7b:83:52:df:d2:a3:bf:50:77:ab:41: ae:74:e9:68:1f:07:ba:2b:dc:5b:2a:2f:5e:ac:78:83:22:9d: aa:86:d9:58:bd:bf:41:d9:9b:88:52:df:ed:70:15:4f:c0:df: ff:0c:9d:b6:4e:ff:ee:a6:01:d6:b7:94:dc:0b:a5:53:50:14: ea:99:6a:e8:ca:32:aa:d9:9e:96:72:eb:8a:af:0d:42:8f:ce: c7:52:bd:ec:cf:f3:6e:ba:ef:b8:4b:79:84:18:7a:e2:d7:f2: ad:83:83:6f:04:a4:22:89:f2:4e:fe:14:47:4d:b4:fa:02:c3: 2c:91:b7:b7 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBOQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI3 RjRBOEI3QjIxMERCOTIwOEVENTgwMzU3MDQ1RTU5NzFERTBEMzAeFw0yNTA4MjMy MTE1MjBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM2QTI5RERGNjY3MkI0 QjJCQ0U2NzUxNTg2ODE1Q0I4OEM5NEMzRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv7voVjBWaTRyL7S+mMHFuMgo/ngP6c1s8wW8U6AcMVh/uTn5x MaGv5bc9ybouF0fh0PgOIgZzao5fxEPLWGqapR8ItOG7YGeXmZO1QKJBAgzTmcwZ NFxPEdVmdSFZyTQ00vXqlXAqmxK/KZpmWL625mFWEOqehxK0RBtkbKOti3hNSk79 9+mmFrsge6wzN0m9vRiy5kX+jE8I5zRvt5IYj3QcyY0R6HqxeroUDVpDiRa2dT9c vMLnE1NHEh8Sk32QvT7DbXAJ9eJfXtADSWqpjQd88Sw7p5XTCd+TsmaOLwYwz3g0 KYlGvPMiOrFDLR1xjjjYZ9u0AiR2D3YV6chxAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUxqKd32ZytLK85nUVhoFcuIyUw/MwHwYDVR0jBBgwFoAU639Ki3shDbkgjtWA NXBF5Zcd4NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTFdB VENILzYzOUtpM3NoRGJrZ2p0V0FOWEJGNVpjZDROTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvNjM5S2kzc2hEYmtnanRXQU5YQkY1WmNkNE5NLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTFdBVENILzYzOUtpM3NoRGJr Z2p0V0FOWEJGNVpjZDROTS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAMxHCT9RK45AzP4k3eHaxNsx01ZmXjBYr0M+xMl9QdBZjD4NhcZgMtLguO mBIVqND0RSyu1YD0TNh04rir5yKUouVO36OTqKO3PKD3Roj7jbuN3naVectxtZcs BNBs5MV0GKUr/gBSmAhogdH/MqBlR6JrEDiv5KZragoiSg1/bPuui1s7e4NS39Kj v1B3q0GudOloHwe6K9xbKi9erHiDIp2qhtlYvb9B2ZuIUt/tcBVPwN//DJ22Tv/u pgHWt5TcC6VTUBTqmWroyjKq2Z6WcuuKrw1Cj87HUr3sz/Nuuu+4S3mEGHri1/Kt g4NvBKQiifJO/hRHTbT6AsMskbe3 -----END CERTIFICATE-----Generated at Sun Aug 24 09:08:09 2025 by rpki-client