$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft File: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft (raw, json) Hash identifier: QmsVulltC+tTNTj++h5Lk/KSYK6g4OpuvK1Xh7Oq6fE= Subject key identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E Authority key identifier: 8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 Certificate issuer: /CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Certificate serial: 0D29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft Manifest number: 0D29 Signing time: Fri 04 Jul 2025 22:04:59 +0000 Manifest this update: Fri 04 Jul 2025 22:04:59 +0000 Manifest next update: Sun 06 Jul 2025 22:04:59 +0000 Files and hashes: 1: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl (hash: JlxwmzDu0SHhwW010fQx8z8NXvUIY4Cb8LOwFohdaxg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 15:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3369 (0xd29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Validity Not Before: Jul 4 22:04:59 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DC504C527C000BB5DA84F36648DC0C174EA5ED7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:84:f3:bb:2f:99:ef:c9:ec:a7:d6:d7:d3:27: 73:68:00:9b:75:40:10:4c:9f:9d:61:ce:b6:3c:5c: 97:0b:0b:25:74:d8:b4:d1:0f:3c:93:ab:05:5b:11: e2:b1:43:37:59:02:56:72:93:24:1d:23:2f:51:26: 58:71:ed:2c:e5:21:ee:43:ef:60:14:00:24:df:21: b8:89:90:f2:c7:a8:0e:f4:9d:2d:16:8c:27:09:bb: f6:20:f9:70:c1:a5:00:4b:84:0b:f0:be:57:ec:06: 53:fa:1c:8a:ed:71:f9:14:95:e6:26:8f:91:c0:eb: af:3c:17:92:8b:a8:be:84:5b:53:75:d9:3a:cc:4d: a9:02:6b:19:93:3e:93:0e:ab:4c:0b:98:b1:d0:e4: df:1c:6b:ec:22:f6:cf:43:d8:37:4b:e8:eb:13:cd: 5c:c5:47:bf:97:3a:13:2a:de:16:7d:58:95:b4:11: 33:e8:fb:4c:ac:50:73:95:7d:d0:b3:0a:c6:41:45: 76:4e:7b:7d:b0:43:5f:c5:d5:73:80:ae:00:94:30: d3:13:55:2d:2a:db:46:bf:11:3f:48:04:08:d3:01: f1:ea:89:b2:67:15:95:7a:a9:67:79:ef:c9:47:27: 03:01:2b:41:5e:9b:45:98:cc:6e:eb:fb:a0:5f:34: 54:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E X509v3 Authority Key Identifier: keyid:8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ae:49:3d:a1:e8:24:fe:02:62:6e:8f:cf:68:10:c5:bb:45:11: e9:68:c0:8c:3b:3d:03:5c:ec:fc:7b:9d:e5:7b:7d:e1:42:ad: f6:f4:dd:95:64:bf:a4:3c:61:7b:65:f6:ef:50:66:5a:6f:7b: fc:81:39:db:22:f3:6b:21:8f:a8:17:62:28:bc:f6:b5:4f:76: d2:ab:6a:ba:61:c4:9d:df:8f:41:57:30:10:d6:1d:7f:f1:eb: c3:8a:1f:a4:cc:16:ea:8d:5e:69:b7:f4:64:c9:9b:69:7d:6b: 03:a7:9d:37:ae:30:17:5b:c5:3a:16:e0:32:10:e8:26:33:58: 72:04:14:1b:73:d0:cb:6f:6e:1c:01:68:fe:02:11:5e:b8:29: 73:98:6b:05:2b:fa:5c:bd:cc:43:8f:dd:e7:03:93:f2:00:b8: c2:4e:86:2e:d8:bc:97:7b:a2:0f:a3:b0:31:39:c7:5f:58:13: 7a:07:15:57:b2:31:78:54:79:79:99:c4:6a:e5:f4:ef:47:53: b4:f5:91:6f:4d:eb:26:a6:55:aa:59:3a:9c:34:1f:16:8e:8d: 78:c1:a4:0d:91:75:e7:63:93:af:da:8c:f5:ca:54:fd:62:7d: 1d:eb:ce:78:78:de:39:83:8e:21:a7:78:e7:ea:5b:de:e0:4a: 18:53:a9:b1 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDSkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQw ODRENENCMjdEODg5MEU2MUQ4RUYwQTE3MzA1M0M0MTkwQjY0NDAeFw0yNTA3MDQy MjA0NTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDNTA0QzUyN0MwMDBC QjVEQTg0RjM2NjQ4REMwQzE3NEVBNUVEN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8hPO7L5nvyeyn1tfTJ3NoAJt1QBBMn51hzrY8XJcLCyV02LTR DzyTqwVbEeKxQzdZAlZykyQdIy9RJlhx7SzlIe5D72AUACTfIbiJkPLHqA70nS0W jCcJu/Yg+XDBpQBLhAvwvlfsBlP6HIrtcfkUleYmj5HA6688F5KLqL6EW1N12TrM TakCaxmTPpMOq0wLmLHQ5N8ca+wi9s9D2DdL6OsTzVzFR7+XOhMq3hZ9WJW0ETPo +0ysUHOVfdCzCsZBRXZOe32wQ1/F1XOArgCUMNMTVS0q20a/ET9IBAjTAfHqibJn FZV6qWd578lHJwMBK0Fem0WYzG7r+6BfNFSXAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU3FBMUnwAC7XahPNmSNwMF06l7X4wHwYDVR0jBBgwFoAUjQhNTLJ9iJDmHY7w oXMFPEGQtkQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRElHSUNF TEwvalFoTlRMSjlpSkRtSFk3d29YTUZQRUdRdGtRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qUWhOVExKOWlKRG1IWTd3b1hNRlBFR1F0a1EuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ESUdJQ0VMTC9qUWhOVExKOWlKRG1I WTd3b1hNRlBFR1F0a1EubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEArkk9oegk/gJibo/PaBDFu0UR6WjAjDs9A1zs/Hud5Xt94UKt9vTdlWS/pDxh e2X271BmWm97/IE52yLzayGPqBdiKLz2tU920qtqumHEnd+PQVcwENYdf/Hrw4of pMwW6o1eabf0ZMmbaX1rA6edN64wF1vFOhbgMhDoJjNYcgQUG3PQy29uHAFo/gIR Xrgpc5hrBSv6XL3MQ4/d5wOT8gC4wk6GLti8l3uiD6OwMTnHX1gTegcVV7IxeFR5 eZnEauX070dTtPWRb03rJqZVqlk6nDQfFo6NeMGkDZF152OTr9qM9cpU/WJ9HevO eHjeOYOOIad45+pb3uBKGFOpsQ== -----END CERTIFICATE-----Generated at Sat Jul 5 12:01:03 2025 by rpki-client