$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft File: pkjm4cnjtwsVKT38bA44MEeRldw.mft (raw, json) Hash identifier: nRHRAoPNgsJ6MGvfQ/NMXb6sCC0FUp5yk69xObcw69Q= Subject key identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 Authority key identifier: A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC Certificate issuer: /CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Certificate serial: 0D3D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft Manifest number: 0D3D Signing time: Sat 23 Aug 2025 21:15:24 +0000 Manifest this update: Sat 23 Aug 2025 21:15:24 +0000 Manifest next update: Mon 25 Aug 2025 21:15:24 +0000 Files and hashes: 1: pkjm4cnjtwsVKT38bA44MEeRldw.crl (hash: 7onaJYF7bEq81ZLOtjuBQ3x2/uALZPai02PdmVOGNkM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 13:14:07 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3389 (0xd3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Validity Not Before: Aug 23 21:15:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2665389E1A6AE7CCA08C1D0390597B23BF20EEA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4a:4c:31:b0:63:ef:b3:1c:f3:34:74:4a:3d: b2:5c:39:c2:b2:7e:41:df:93:1c:4f:f7:43:32:95: 6c:dd:76:d4:7f:15:36:e7:34:d0:b7:aa:d2:03:2b: da:c8:35:94:67:be:88:d6:20:0c:e7:2d:c4:af:64: c0:fb:67:55:e3:20:f6:71:c0:7c:d5:ab:c0:f3:3f: 5e:49:05:33:32:42:fe:69:b1:78:34:ec:1c:7b:7d: 8d:43:04:aa:80:74:1b:81:13:41:1e:64:10:f7:6c: 34:e6:89:03:cf:a6:a2:16:8e:8e:84:dd:db:c5:0b: 4c:4d:f0:03:df:5f:5a:66:f5:b9:b0:a4:16:81:f1: c0:06:03:8b:0e:d0:1c:87:61:e4:fa:92:ca:4a:54: 36:36:46:b8:be:14:67:4c:2c:37:60:0d:b4:0f:3f: fb:8b:19:cb:49:44:77:b8:2c:35:44:e4:1a:6c:da: 75:4f:2f:06:f1:bf:2b:34:ad:cc:4d:b4:40:3c:6d: aa:5b:46:71:94:79:c6:52:0c:a3:1c:f4:b1:19:21: 35:d0:b9:64:61:e5:bb:c8:75:ef:89:d2:92:59:65: bb:75:be:e7:37:ca:e5:29:f8:2e:90:d4:38:63:64: 8a:18:37:e9:d8:8f:b9:88:48:db:ba:74:de:dc:a4: ea:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 X509v3 Authority Key Identifier: keyid:A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 42:a0:75:07:13:5a:8a:93:21:f5:f0:f8:f9:df:8c:aa:70:f5: 62:cd:3c:ba:94:0a:08:02:8c:54:1c:2d:6c:7d:a7:e5:9d:a5: 47:50:d1:af:c0:29:f7:97:c2:7b:3b:92:3e:9d:be:51:f5:4c: a9:db:68:cf:1c:64:b1:29:66:6a:c9:59:2f:95:fb:3b:2f:45: cd:4a:39:fa:f4:e9:94:cc:1e:63:19:50:b9:ff:a4:29:35:7d: 97:8d:1f:de:58:ed:87:6b:21:fc:57:d2:20:b9:37:66:d7:29: c9:d6:eb:9f:60:57:0e:27:c8:4c:63:ba:05:37:51:10:eb:cf: 8e:72:81:7e:10:66:26:7a:e0:fd:e7:c7:fc:9a:14:72:5d:13: 96:20:ac:00:d3:60:c8:c8:46:5f:42:77:14:bf:1e:22:15:83: 7a:b2:c2:63:62:e5:ba:b4:e5:77:a3:fe:f3:01:de:f9:fa:11: c9:5c:44:96:a4:27:6e:e5:34:ed:da:d8:63:55:75:29:93:01: f6:a4:8d:93:c2:75:5c:a1:b1:2c:7a:e3:16:dd:61:0f:fa:14: d3:28:27:27:41:33:58:cf:8a:e6:ce:eb:64:5d:53:f7:36:b6: 10:e3:1c:02:e1:0a:95:b2:fb:b9:e9:7d:e0:3e:fd:97:eb:d2: 84:46:49:3e -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDT0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTY0 OEU2RTFDOUUzQjcwQjE1MjkzREZDNkMwRTM4MzA0NzkxOTVEQzAeFw0yNTA4MjMy MTE1MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI2NjUzODlFMUE2QUU3 Q0NBMDhDMUQwMzkwNTk3QjIzQkYyMEVFQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxSkwxsGPvsxzzNHRKPbJcOcKyfkHfkxxP90MylWzddtR/FTbn NNC3qtIDK9rINZRnvojWIAznLcSvZMD7Z1XjIPZxwHzVq8DzP15JBTMyQv5psXg0 7Bx7fY1DBKqAdBuBE0EeZBD3bDTmiQPPpqIWjo6E3dvFC0xN8APfX1pm9bmwpBaB 8cAGA4sO0ByHYeT6kspKVDY2Rri+FGdMLDdgDbQPP/uLGctJRHe4LDVE5Bps2nVP Lwbxvys0rcxNtEA8bapbRnGUecZSDKMc9LEZITXQuWRh5bvIde+J0pJZZbt1vuc3 yuUp+C6Q1DhjZIoYN+nYj7mISNu6dN7cpOoHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUJmU4nhpq58ygjB0DkFl7I78g7qkwHwYDVR0jBBgwFoAUpkjm4cnjtwsVKT38 bA44MEeRldwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRW L3Bram00Y25qdHdzVktUMzhiQTQ0TUVlUmxkdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcGtqbTRjbmp0d3NWS1QzOGJBNDRNRWVSbGR3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRWL3Bram00Y25qdHdzVktUMzhi QTQ0TUVlUmxkdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBC oHUHE1qKkyH18Pj534yqcPVizTy6lAoIAoxUHC1sfaflnaVHUNGvwCn3l8J7O5I+ nb5R9Uyp22jPHGSxKWZqyVkvlfs7L0XNSjn69OmUzB5jGVC5/6QpNX2XjR/eWO2H ayH8V9IguTdm1ynJ1uufYFcOJ8hMY7oFN1EQ68+OcoF+EGYmeuD958f8mhRyXROW IKwA02DIyEZfQncUvx4iFYN6ssJjYuW6tOV3o/7zAd75+hHJXESWpCdu5TTt2thj VXUpkwH2pI2TwnVcobEseuMW3WEP+hTTKCcnQTNYz4rmzutkXVP3NrYQ4xwC4QqV svu56X3gPv2X69KERkk+ -----END CERTIFICATE-----Generated at Sun Aug 24 09:57:36 2025 by rpki-client