$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft File: pkjm4cnjtwsVKT38bA44MEeRldw.mft (raw, json) Hash identifier: /IiOxHRWyVPCmUyMP1vqhWPEiOKxt0I3sesfuEKdK2k= Subject key identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 Authority key identifier: A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC Certificate issuer: /CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Certificate serial: 0D1B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft Manifest number: 0D1B Signing time: Fri 04 Jul 2025 22:03:53 +0000 Manifest this update: Fri 04 Jul 2025 22:03:53 +0000 Manifest next update: Sun 06 Jul 2025 22:03:53 +0000 Files and hashes: 1: pkjm4cnjtwsVKT38bA44MEeRldw.crl (hash: MlQr4hU7zbVFDDKpDXv/Il7LfFhCI8eCNXnZb2nf4Hc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 05 Jul 2025 10:03:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3355 (0xd1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Validity Not Before: Jul 4 22:03:53 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2665389E1A6AE7CCA08C1D0390597B23BF20EEA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4a:4c:31:b0:63:ef:b3:1c:f3:34:74:4a:3d: b2:5c:39:c2:b2:7e:41:df:93:1c:4f:f7:43:32:95: 6c:dd:76:d4:7f:15:36:e7:34:d0:b7:aa:d2:03:2b: da:c8:35:94:67:be:88:d6:20:0c:e7:2d:c4:af:64: c0:fb:67:55:e3:20:f6:71:c0:7c:d5:ab:c0:f3:3f: 5e:49:05:33:32:42:fe:69:b1:78:34:ec:1c:7b:7d: 8d:43:04:aa:80:74:1b:81:13:41:1e:64:10:f7:6c: 34:e6:89:03:cf:a6:a2:16:8e:8e:84:dd:db:c5:0b: 4c:4d:f0:03:df:5f:5a:66:f5:b9:b0:a4:16:81:f1: c0:06:03:8b:0e:d0:1c:87:61:e4:fa:92:ca:4a:54: 36:36:46:b8:be:14:67:4c:2c:37:60:0d:b4:0f:3f: fb:8b:19:cb:49:44:77:b8:2c:35:44:e4:1a:6c:da: 75:4f:2f:06:f1:bf:2b:34:ad:cc:4d:b4:40:3c:6d: aa:5b:46:71:94:79:c6:52:0c:a3:1c:f4:b1:19:21: 35:d0:b9:64:61:e5:bb:c8:75:ef:89:d2:92:59:65: bb:75:be:e7:37:ca:e5:29:f8:2e:90:d4:38:63:64: 8a:18:37:e9:d8:8f:b9:88:48:db:ba:74:de:dc:a4: ea:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 X509v3 Authority Key Identifier: keyid:A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 59:69:48:34:41:59:45:9f:80:fb:19:c7:71:04:36:39:2d:ab: e0:28:b4:ec:e9:91:ae:04:e1:5d:bf:43:34:c0:f9:43:f9:11: 9c:98:c3:2e:55:ff:a7:e8:f2:3c:f4:ef:53:dc:74:12:c0:e7: 3f:4b:9f:5c:43:de:23:93:4a:03:32:4e:e8:17:5c:f1:77:c2: 74:2e:f5:34:3b:d5:38:e4:12:6a:32:c6:5c:6b:fc:20:aa:5b: c2:8e:84:8b:9d:12:cc:05:3b:97:ae:5e:b7:b0:5c:f0:c8:b3: 95:34:f6:06:10:e7:50:b4:d5:e1:02:83:98:8b:9c:e3:54:b5: cc:4d:75:cb:4a:3e:e0:db:10:7a:e2:23:7f:fb:20:8d:41:bc: 46:ef:9b:8e:e9:5f:91:c4:c4:9f:81:db:9b:51:9b:0f:eb:2c: 5e:d0:6b:30:c0:7b:c3:4d:63:c8:b3:95:94:b0:c4:15:64:fc: 89:2c:94:52:b5:21:ec:66:9d:95:60:c2:50:f5:1f:65:c9:06: 54:b6:30:a9:57:f5:41:9f:18:34:c2:45:34:3d:aa:50:fe:eb: ad:87:51:72:12:3d:98:c3:20:e9:c1:3e:77:12:d0:c9:97:5d: 39:fe:c9:99:42:83:cf:5b:14:8c:fd:14:7f:27:f7:b1:68:24: 90:67:f4:9c -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDRswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTY0 OEU2RTFDOUUzQjcwQjE1MjkzREZDNkMwRTM4MzA0NzkxOTVEQzAeFw0yNTA3MDQy MjAzNTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2NjUzODlFMUE2QUU3 Q0NBMDhDMUQwMzkwNTk3QjIzQkYyMEVFQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxSkwxsGPvsxzzNHRKPbJcOcKyfkHfkxxP90MylWzddtR/FTbn NNC3qtIDK9rINZRnvojWIAznLcSvZMD7Z1XjIPZxwHzVq8DzP15JBTMyQv5psXg0 7Bx7fY1DBKqAdBuBE0EeZBD3bDTmiQPPpqIWjo6E3dvFC0xN8APfX1pm9bmwpBaB 8cAGA4sO0ByHYeT6kspKVDY2Rri+FGdMLDdgDbQPP/uLGctJRHe4LDVE5Bps2nVP Lwbxvys0rcxNtEA8bapbRnGUecZSDKMc9LEZITXQuWRh5bvIde+J0pJZZbt1vuc3 yuUp+C6Q1DhjZIoYN+nYj7mISNu6dN7cpOoHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUJmU4nhpq58ygjB0DkFl7I78g7qkwHwYDVR0jBBgwFoAUpkjm4cnjtwsVKT38 bA44MEeRldwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRW L3Bram00Y25qdHdzVktUMzhiQTQ0TUVlUmxkdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcGtqbTRjbmp0d3NWS1QzOGJBNDRNRWVSbGR3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRWL3Bram00Y25qdHdzVktUMzhi QTQ0TUVlUmxkdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBZ aUg0QVlFn4D7GcdxBDY5LavgKLTs6ZGuBOFdv0M0wPlD+RGcmMMuVf+n6PI89O9T 3HQSwOc/S59cQ94jk0oDMk7oF1zxd8J0LvU0O9U45BJqMsZca/wgqlvCjoSLnRLM BTuXrl63sFzwyLOVNPYGEOdQtNXhAoOYi5zjVLXMTXXLSj7g2xB64iN/+yCNQbxG 75uO6V+RxMSfgdubUZsP6yxe0GswwHvDTWPIs5WUsMQVZPyJLJRStSHsZp2VYMJQ 9R9lyQZUtjCpV/VBnxg0wkU0PapQ/uuth1FyEj2YwyDpwT53EtDJl105/smZQoPP WxSM/RR/J/exaCSQZ/Sc -----END CERTIFICATE-----Generated at Sat Jul 5 06:21:48 2025 by rpki-client