$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft File: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft (raw, json) Hash identifier: 1YrZ/3fWVGqiC6I4uxlcvfl8Jxb7tB8GgE5iBCSSwmo= Subject key identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E Authority key identifier: 8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 Certificate issuer: /CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Certificate serial: 0D09 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft Manifest number: 0D09 Signing time: Sat 17 May 2025 21:55:13 +0000 Manifest this update: Sat 17 May 2025 21:55:13 +0000 Manifest next update: Mon 19 May 2025 21:55:13 +0000 Files and hashes: 1: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl (hash: hqTqjcKZhHaPcAus1E51yAb9oZ6ivcGkLO4eCpZp+E4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 19 May 2025 04:23:46 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3337 (0xd09) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Validity Not Before: May 17 21:55:13 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DC504C527C000BB5DA84F36648DC0C174EA5ED7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:84:f3:bb:2f:99:ef:c9:ec:a7:d6:d7:d3:27: 73:68:00:9b:75:40:10:4c:9f:9d:61:ce:b6:3c:5c: 97:0b:0b:25:74:d8:b4:d1:0f:3c:93:ab:05:5b:11: e2:b1:43:37:59:02:56:72:93:24:1d:23:2f:51:26: 58:71:ed:2c:e5:21:ee:43:ef:60:14:00:24:df:21: b8:89:90:f2:c7:a8:0e:f4:9d:2d:16:8c:27:09:bb: f6:20:f9:70:c1:a5:00:4b:84:0b:f0:be:57:ec:06: 53:fa:1c:8a:ed:71:f9:14:95:e6:26:8f:91:c0:eb: af:3c:17:92:8b:a8:be:84:5b:53:75:d9:3a:cc:4d: a9:02:6b:19:93:3e:93:0e:ab:4c:0b:98:b1:d0:e4: df:1c:6b:ec:22:f6:cf:43:d8:37:4b:e8:eb:13:cd: 5c:c5:47:bf:97:3a:13:2a:de:16:7d:58:95:b4:11: 33:e8:fb:4c:ac:50:73:95:7d:d0:b3:0a:c6:41:45: 76:4e:7b:7d:b0:43:5f:c5:d5:73:80:ae:00:94:30: d3:13:55:2d:2a:db:46:bf:11:3f:48:04:08:d3:01: f1:ea:89:b2:67:15:95:7a:a9:67:79:ef:c9:47:27: 03:01:2b:41:5e:9b:45:98:cc:6e:eb:fb:a0:5f:34: 54:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E X509v3 Authority Key Identifier: keyid:8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ba:1e:30:60:73:e6:a9:2f:62:36:ce:dc:2d:74:9a:e4:07:8a: 4b:81:ec:f5:a6:16:2f:ea:26:52:bc:0d:6b:3d:b3:e6:2f:e1: d1:c0:20:b8:7d:77:ef:b0:28:3a:ca:54:0b:a3:2c:90:87:28: 4b:65:ab:4f:12:1d:08:37:1f:58:2f:ec:5d:29:dc:9f:e4:73: 07:2e:c6:d4:d5:af:72:c8:69:ee:6b:88:13:77:66:79:ec:b2: 20:97:bb:ae:e2:fc:2a:9a:c6:a7:ab:98:36:23:8d:8e:d1:02: e1:38:2a:e0:54:f1:df:3a:7f:77:a2:f6:98:c5:38:3e:a4:ce: c1:7d:ab:45:23:44:77:5c:00:0a:a2:98:31:33:3b:bb:89:25: 9e:46:6c:f1:87:ae:ec:a0:32:70:59:db:fe:f5:de:67:16:48: d6:45:10:07:9d:14:e0:86:ae:7a:0f:ce:58:11:d6:4a:80:2c: 08:c4:0b:b6:75:ce:6f:80:58:1f:59:1f:a6:14:62:ea:aa:d1: 21:55:a2:63:8a:b2:85:42:43:44:f6:c6:6c:1c:de:68:6d:93: 9f:ce:63:a6:10:dd:e2:9f:8c:49:d0:68:05:7c:7d:d9:5f:c0: 6e:f2:ba:87:d7:16:1b:6b:20:7d:cf:9c:e9:9e:bd:a9:10:ca: d8:6d:83:c6 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDQkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQw ODRENENCMjdEODg5MEU2MUQ4RUYwQTE3MzA1M0M0MTkwQjY0NDAeFw0yNTA1MTcy MTU1MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDNTA0QzUyN0MwMDBC QjVEQTg0RjM2NjQ4REMwQzE3NEVBNUVEN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8hPO7L5nvyeyn1tfTJ3NoAJt1QBBMn51hzrY8XJcLCyV02LTR DzyTqwVbEeKxQzdZAlZykyQdIy9RJlhx7SzlIe5D72AUACTfIbiJkPLHqA70nS0W jCcJu/Yg+XDBpQBLhAvwvlfsBlP6HIrtcfkUleYmj5HA6688F5KLqL6EW1N12TrM TakCaxmTPpMOq0wLmLHQ5N8ca+wi9s9D2DdL6OsTzVzFR7+XOhMq3hZ9WJW0ETPo +0ysUHOVfdCzCsZBRXZOe32wQ1/F1XOArgCUMNMTVS0q20a/ET9IBAjTAfHqibJn FZV6qWd578lHJwMBK0Fem0WYzG7r+6BfNFSXAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU3FBMUnwAC7XahPNmSNwMF06l7X4wHwYDVR0jBBgwFoAUjQhNTLJ9iJDmHY7w oXMFPEGQtkQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRElHSUNF TEwvalFoTlRMSjlpSkRtSFk3d29YTUZQRUdRdGtRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qUWhOVExKOWlKRG1IWTd3b1hNRlBFR1F0a1EuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ESUdJQ0VMTC9qUWhOVExKOWlKRG1I WTd3b1hNRlBFR1F0a1EubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAuh4wYHPmqS9iNs7cLXSa5AeKS4Hs9aYWL+omUrwNaz2z5i/h0cAguH1377Ao OspUC6MskIcoS2WrTxIdCDcfWC/sXSncn+RzBy7G1NWvcshp7muIE3dmeeyyIJe7 ruL8KprGp6uYNiONjtEC4Tgq4FTx3zp/d6L2mMU4PqTOwX2rRSNEd1wACqKYMTM7 u4klnkZs8Yeu7KAycFnb/vXeZxZI1kUQB50U4Iaueg/OWBHWSoAsCMQLtnXOb4BY H1kfphRi6qrRIVWiY4qyhUJDRPbGbBzeaG2Tn85jphDd4p+MSdBoBXx92V/AbvK6 h9cWG2sgfc+c6Z69qRDK2G2Dxg== -----END CERTIFICATE-----Generated at Mon May 19 01:18:52 2025 by rpki-client