$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft File: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft (raw, json) Hash identifier: RMp7Ix0C5aPYXTD/bMuWZ6BWq/KPFzaOwxBTWP5q0hY= Subject key identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E Authority key identifier: 8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 Certificate issuer: /CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Certificate serial: 0DDA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft Manifest number: 0DDA Signing time: Thu 26 Mar 2026 11:00:42 +0000 Manifest this update: Thu 26 Mar 2026 11:00:42 +0000 Manifest next update: Sat 28 Mar 2026 11:00:42 +0000 Files and hashes: 1: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl (hash: tHlOhe1h/0qYOXx7AI4spRPWpVceBzFcRmepZHX1uo0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 26 Mar 2026 23:29:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3546 (0xdda) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Validity Not Before: Mar 26 11:00:42 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DC504C527C000BB5DA84F36648DC0C174EA5ED7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:84:f3:bb:2f:99:ef:c9:ec:a7:d6:d7:d3:27: 73:68:00:9b:75:40:10:4c:9f:9d:61:ce:b6:3c:5c: 97:0b:0b:25:74:d8:b4:d1:0f:3c:93:ab:05:5b:11: e2:b1:43:37:59:02:56:72:93:24:1d:23:2f:51:26: 58:71:ed:2c:e5:21:ee:43:ef:60:14:00:24:df:21: b8:89:90:f2:c7:a8:0e:f4:9d:2d:16:8c:27:09:bb: f6:20:f9:70:c1:a5:00:4b:84:0b:f0:be:57:ec:06: 53:fa:1c:8a:ed:71:f9:14:95:e6:26:8f:91:c0:eb: af:3c:17:92:8b:a8:be:84:5b:53:75:d9:3a:cc:4d: a9:02:6b:19:93:3e:93:0e:ab:4c:0b:98:b1:d0:e4: df:1c:6b:ec:22:f6:cf:43:d8:37:4b:e8:eb:13:cd: 5c:c5:47:bf:97:3a:13:2a:de:16:7d:58:95:b4:11: 33:e8:fb:4c:ac:50:73:95:7d:d0:b3:0a:c6:41:45: 76:4e:7b:7d:b0:43:5f:c5:d5:73:80:ae:00:94:30: d3:13:55:2d:2a:db:46:bf:11:3f:48:04:08:d3:01: f1:ea:89:b2:67:15:95:7a:a9:67:79:ef:c9:47:27: 03:01:2b:41:5e:9b:45:98:cc:6e:eb:fb:a0:5f:34: 54:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E X509v3 Authority Key Identifier: keyid:8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7b:c9:07:69:47:01:7a:9c:08:75:9c:e9:f2:f7:7f:d2:d0:95: b1:ef:8d:80:70:fb:88:8a:58:0f:1d:75:cc:b5:3f:57:07:0a: 27:64:16:f4:7b:f4:15:72:ed:2e:ac:a2:98:49:86:69:b4:3a: 49:93:5d:24:6b:ef:da:c1:88:45:b4:63:d2:a3:3b:32:6d:3a: e0:62:1b:fc:02:64:23:7d:94:a5:07:47:f6:72:42:80:83:c0: 5b:ea:36:d7:eb:f7:d1:b4:e8:57:a2:97:0b:d5:bf:d6:60:03: 5c:83:b6:69:d9:f3:09:d7:ec:c0:93:93:68:38:16:69:37:de: d0:59:eb:02:3e:e8:a5:9d:f4:1a:b4:a5:86:6e:94:2f:ca:75: 23:7f:31:86:d5:62:86:38:38:f3:b8:2b:15:ec:a8:4f:b5:9b: b0:22:af:05:c1:e3:85:f1:99:9a:9b:7f:76:42:5b:d1:fc:eb: 96:6e:57:12:73:fa:8a:30:ce:ce:46:9e:62:f7:c9:3a:a5:78: d8:4d:7b:d1:0a:b5:ca:5e:eb:62:be:63:b3:a4:b4:83:72:da: 40:7e:f2:24:d6:6f:58:75:3b:4b:e9:0b:20:ac:02:88:c9:b2: 6c:75:5b:b3:9e:22:97:18:cf:83:0d:a4:80:ae:c1:fa:d1:82: e0:98:e8:4d -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDdowDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQw ODRENENCMjdEODg5MEU2MUQ4RUYwQTE3MzA1M0M0MTkwQjY0NDAeFw0yNjAzMjYx MTAwNDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERDNTA0QzUyN0MwMDBC QjVEQTg0RjM2NjQ4REMwQzE3NEVBNUVEN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8hPO7L5nvyeyn1tfTJ3NoAJt1QBBMn51hzrY8XJcLCyV02LTR DzyTqwVbEeKxQzdZAlZykyQdIy9RJlhx7SzlIe5D72AUACTfIbiJkPLHqA70nS0W jCcJu/Yg+XDBpQBLhAvwvlfsBlP6HIrtcfkUleYmj5HA6688F5KLqL6EW1N12TrM TakCaxmTPpMOq0wLmLHQ5N8ca+wi9s9D2DdL6OsTzVzFR7+XOhMq3hZ9WJW0ETPo +0ysUHOVfdCzCsZBRXZOe32wQ1/F1XOArgCUMNMTVS0q20a/ET9IBAjTAfHqibJn FZV6qWd578lHJwMBK0Fem0WYzG7r+6BfNFSXAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU3FBMUnwAC7XahPNmSNwMF06l7X4wHwYDVR0jBBgwFoAUjQhNTLJ9iJDmHY7w oXMFPEGQtkQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRElHSUNF TEwvalFoTlRMSjlpSkRtSFk3d29YTUZQRUdRdGtRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qUWhOVExKOWlKRG1IWTd3b1hNRlBFR1F0a1EuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ESUdJQ0VMTC9qUWhOVExKOWlKRG1I WTd3b1hNRlBFR1F0a1EubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAe8kHaUcBepwIdZzp8vd/0tCVse+NgHD7iIpYDx11zLU/VwcKJ2QW9Hv0FXLt LqyimEmGabQ6SZNdJGvv2sGIRbRj0qM7Mm064GIb/AJkI32UpQdH9nJCgIPAW+o2 1+v30bToV6KXC9W/1mADXIO2adnzCdfswJOTaDgWaTfe0FnrAj7opZ30GrSlhm6U L8p1I38xhtVihjg487grFeyoT7WbsCKvBcHjhfGZmpt/dkJb0fzrlm5XEnP6ijDO zkaeYvfJOqV42E170Qq1yl7rYr5js6S0g3LaQH7yJNZvWHU7S+kLIKwCiMmybHVb s54ilxjPgw2kgK7B+tGC4JjoTQ== -----END CERTIFICATE-----Generated at Thu Mar 26 23:22:43 2026 by rpki-client