$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft File: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft (raw, json) Hash identifier: XudIS98uRPDhEE2G40e9m+mdGLbty/arui2UXBmq95M= Subject key identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E Authority key identifier: 8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 Certificate issuer: /CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Certificate serial: 0DE9 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft Manifest number: 0DE9 Signing time: Fri 17 Apr 2026 23:35:28 +0000 Manifest this update: Fri 17 Apr 2026 23:35:28 +0000 Manifest next update: Sun 19 Apr 2026 23:35:28 +0000 Files and hashes: 1: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl (hash: 1TsZWS4CsYbGMwQLsi6ZJ6x+kgu0VfM/rawmxqJpmI0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 13:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3561 (0xde9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Validity Not Before: Apr 17 23:35:28 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DC504C527C000BB5DA84F36648DC0C174EA5ED7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:84:f3:bb:2f:99:ef:c9:ec:a7:d6:d7:d3:27: 73:68:00:9b:75:40:10:4c:9f:9d:61:ce:b6:3c:5c: 97:0b:0b:25:74:d8:b4:d1:0f:3c:93:ab:05:5b:11: e2:b1:43:37:59:02:56:72:93:24:1d:23:2f:51:26: 58:71:ed:2c:e5:21:ee:43:ef:60:14:00:24:df:21: b8:89:90:f2:c7:a8:0e:f4:9d:2d:16:8c:27:09:bb: f6:20:f9:70:c1:a5:00:4b:84:0b:f0:be:57:ec:06: 53:fa:1c:8a:ed:71:f9:14:95:e6:26:8f:91:c0:eb: af:3c:17:92:8b:a8:be:84:5b:53:75:d9:3a:cc:4d: a9:02:6b:19:93:3e:93:0e:ab:4c:0b:98:b1:d0:e4: df:1c:6b:ec:22:f6:cf:43:d8:37:4b:e8:eb:13:cd: 5c:c5:47:bf:97:3a:13:2a:de:16:7d:58:95:b4:11: 33:e8:fb:4c:ac:50:73:95:7d:d0:b3:0a:c6:41:45: 76:4e:7b:7d:b0:43:5f:c5:d5:73:80:ae:00:94:30: d3:13:55:2d:2a:db:46:bf:11:3f:48:04:08:d3:01: f1:ea:89:b2:67:15:95:7a:a9:67:79:ef:c9:47:27: 03:01:2b:41:5e:9b:45:98:cc:6e:eb:fb:a0:5f:34: 54:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E X509v3 Authority Key Identifier: keyid:8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b3:a4:53:b0:2d:e3:b0:69:88:23:b1:6a:93:55:90:88:0d:37: fd:6e:df:55:57:15:67:b9:9c:03:f5:4f:7a:5f:da:d2:da:02: a7:50:a3:34:ce:2b:f1:65:5a:ad:4b:5f:43:f8:37:5a:79:d3: 73:00:94:ca:a3:06:81:fe:37:f6:2d:c8:d1:92:9d:0f:3f:56: c2:51:30:c8:36:09:e8:56:7e:73:ae:34:17:20:dd:eb:0e:b7: 4b:13:9b:00:e7:d6:40:e2:d4:95:dc:18:2b:80:17:a7:d0:ca: 7c:e0:5d:30:a8:35:47:bd:1c:50:71:99:8d:2c:c9:e8:db:1a: 35:dc:e4:61:99:27:7b:b8:16:7c:1d:14:cf:1e:14:35:ce:3e: ce:b6:d2:b4:e6:73:75:cc:9c:90:d9:0f:90:22:89:c3:44:dd: f7:92:82:99:f1:e5:52:84:42:9e:8f:2f:12:6f:f6:f1:91:1b: 3e:cf:5d:e1:34:20:60:0f:8c:75:15:ff:70:3d:ec:c7:5e:76: 6a:ab:3b:a9:d6:aa:fb:47:43:7c:b2:59:6f:7f:ad:c2:4b:60: b5:3b:c7:d9:4a:db:0c:26:ed:fb:2a:47:cc:48:fc:e5:a3:c1: c0:43:bb:03:4b:95:91:fc:7a:1b:c3:89:1a:21:30:82:06:79: 2d:be:bc:14 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDekwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQw ODRENENCMjdEODg5MEU2MUQ4RUYwQTE3MzA1M0M0MTkwQjY0NDAeFw0yNjA0MTcy MzM1MjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKERDNTA0QzUyN0MwMDBC QjVEQTg0RjM2NjQ4REMwQzE3NEVBNUVEN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8hPO7L5nvyeyn1tfTJ3NoAJt1QBBMn51hzrY8XJcLCyV02LTR DzyTqwVbEeKxQzdZAlZykyQdIy9RJlhx7SzlIe5D72AUACTfIbiJkPLHqA70nS0W jCcJu/Yg+XDBpQBLhAvwvlfsBlP6HIrtcfkUleYmj5HA6688F5KLqL6EW1N12TrM TakCaxmTPpMOq0wLmLHQ5N8ca+wi9s9D2DdL6OsTzVzFR7+XOhMq3hZ9WJW0ETPo +0ysUHOVfdCzCsZBRXZOe32wQ1/F1XOArgCUMNMTVS0q20a/ET9IBAjTAfHqibJn FZV6qWd578lHJwMBK0Fem0WYzG7r+6BfNFSXAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU3FBMUnwAC7XahPNmSNwMF06l7X4wHwYDVR0jBBgwFoAUjQhNTLJ9iJDmHY7w oXMFPEGQtkQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRElHSUNF TEwvalFoTlRMSjlpSkRtSFk3d29YTUZQRUdRdGtRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qUWhOVExKOWlKRG1IWTd3b1hNRlBFR1F0a1EuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ESUdJQ0VMTC9qUWhOVExKOWlKRG1I WTd3b1hNRlBFR1F0a1EubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAs6RTsC3jsGmII7Fqk1WQiA03/W7fVVcVZ7mcA/VPel/a0toCp1CjNM4r8WVa rUtfQ/g3WnnTcwCUyqMGgf439i3I0ZKdDz9WwlEwyDYJ6FZ+c640FyDd6w63SxOb AOfWQOLUldwYK4AXp9DKfOBdMKg1R70cUHGZjSzJ6NsaNdzkYZkne7gWfB0Uzx4U Nc4+zrbStOZzdcyckNkPkCKJw0Td95KCmfHlUoRCno8vEm/28ZEbPs9d4TQgYA+M dRX/cD3sx152aqs7qdaq+0dDfLJZb3+twktgtTvH2UrbDCbt+ypHzEj85aPBwEO7 A0uVkfx6G8OJGiEwggZ5Lb68FA== -----END CERTIFICATE-----Generated at Sun Apr 19 09:25:31 2026 by rpki-client