$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft File: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft (raw, json) Hash identifier: 7FNPDi9xISCST6RWwsD6niic3pgtALd8Vu8yJowxH30= Subject key identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E Authority key identifier: 8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 Certificate issuer: /CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Certificate serial: 0D22 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft Manifest number: 0D22 Signing time: Tue 24 Jun 2025 10:02:49 +0000 Manifest this update: Tue 24 Jun 2025 10:02:49 +0000 Manifest next update: Thu 26 Jun 2025 10:02:49 +0000 Files and hashes: 1: jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl (hash: IEKdJm7kIwju6GjcjFRYzNDCiWMBYZD2rmHBzVdb8qI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 24 Jun 2025 22:01:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3362 (0xd22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8D084D4CB27D8890E61D8EF0A173053C4190B644 Validity Not Before: Jun 24 10:02:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=DC504C527C000BB5DA84F36648DC0C174EA5ED7E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:84:f3:bb:2f:99:ef:c9:ec:a7:d6:d7:d3:27: 73:68:00:9b:75:40:10:4c:9f:9d:61:ce:b6:3c:5c: 97:0b:0b:25:74:d8:b4:d1:0f:3c:93:ab:05:5b:11: e2:b1:43:37:59:02:56:72:93:24:1d:23:2f:51:26: 58:71:ed:2c:e5:21:ee:43:ef:60:14:00:24:df:21: b8:89:90:f2:c7:a8:0e:f4:9d:2d:16:8c:27:09:bb: f6:20:f9:70:c1:a5:00:4b:84:0b:f0:be:57:ec:06: 53:fa:1c:8a:ed:71:f9:14:95:e6:26:8f:91:c0:eb: af:3c:17:92:8b:a8:be:84:5b:53:75:d9:3a:cc:4d: a9:02:6b:19:93:3e:93:0e:ab:4c:0b:98:b1:d0:e4: df:1c:6b:ec:22:f6:cf:43:d8:37:4b:e8:eb:13:cd: 5c:c5:47:bf:97:3a:13:2a:de:16:7d:58:95:b4:11: 33:e8:fb:4c:ac:50:73:95:7d:d0:b3:0a:c6:41:45: 76:4e:7b:7d:b0:43:5f:c5:d5:73:80:ae:00:94:30: d3:13:55:2d:2a:db:46:bf:11:3f:48:04:08:d3:01: f1:ea:89:b2:67:15:95:7a:a9:67:79:ef:c9:47:27: 03:01:2b:41:5e:9b:45:98:cc:6e:eb:fb:a0:5f:34: 54:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:50:4C:52:7C:00:0B:B5:DA:84:F3:66:48:DC:0C:17:4E:A5:ED:7E X509v3 Authority Key Identifier: keyid:8D:08:4D:4C:B2:7D:88:90:E6:1D:8E:F0:A1:73:05:3C:41:90:B6:44 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DIGICELL/jQhNTLJ9iJDmHY7woXMFPEGQtkQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2b:e9:f1:5e:b8:97:a1:97:87:63:c1:94:88:27:85:fd:6a:9b: ac:24:d2:c1:a4:29:00:05:64:09:38:78:93:d0:b6:a3:f0:b8: 0e:19:2f:27:eb:93:e9:9b:ed:2f:c5:3a:c1:f7:b5:7b:b1:e3: 16:65:e7:b3:61:bb:48:b2:56:ea:e7:5f:0f:32:4e:d2:cb:d2: ce:1c:af:0a:9d:b6:46:f9:a2:72:80:f6:48:ba:56:0a:de:c3: 2e:71:9a:e1:c0:74:08:b9:4b:e0:d5:da:af:2b:6e:a6:c6:e0: 65:4a:53:1e:23:f6:70:84:65:95:0d:cf:45:9c:42:aa:12:12: 74:36:4c:96:83:bd:74:45:53:7e:76:45:46:7e:bd:3e:c0:02: 73:ac:39:34:51:0f:16:75:c3:1b:0b:ba:28:9a:d0:c5:b3:ac: d1:a1:58:a8:3b:b1:b4:db:b5:c0:55:78:1d:64:14:b1:7c:bc: 1d:38:9a:c2:d0:39:4b:60:4e:68:0c:88:5f:f5:29:99:ca:e2: 9b:1f:97:8e:76:ff:30:02:7b:57:93:f0:fc:c2:16:92:b0:66: fa:63:2d:c5:ca:f2:20:91:d4:05:9a:6e:0e:bb:9b:a3:fb:bf: 83:8b:47:14:c3:19:53:c0:d8:ef:16:bb:9b:41:31:9d:cf:37: c6:56:d3:a9 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDSIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEQw ODRENENCMjdEODg5MEU2MUQ4RUYwQTE3MzA1M0M0MTkwQjY0NDAeFw0yNTA2MjQx MDAyNDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKERDNTA0QzUyN0MwMDBC QjVEQTg0RjM2NjQ4REMwQzE3NEVBNUVEN0UwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8hPO7L5nvyeyn1tfTJ3NoAJt1QBBMn51hzrY8XJcLCyV02LTR DzyTqwVbEeKxQzdZAlZykyQdIy9RJlhx7SzlIe5D72AUACTfIbiJkPLHqA70nS0W jCcJu/Yg+XDBpQBLhAvwvlfsBlP6HIrtcfkUleYmj5HA6688F5KLqL6EW1N12TrM TakCaxmTPpMOq0wLmLHQ5N8ca+wi9s9D2DdL6OsTzVzFR7+XOhMq3hZ9WJW0ETPo +0ysUHOVfdCzCsZBRXZOe32wQ1/F1XOArgCUMNMTVS0q20a/ET9IBAjTAfHqibJn FZV6qWd578lHJwMBK0Fem0WYzG7r+6BfNFSXAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU3FBMUnwAC7XahPNmSNwMF06l7X4wHwYDVR0jBBgwFoAUjQhNTLJ9iJDmHY7w oXMFPEGQtkQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRElHSUNF TEwvalFoTlRMSjlpSkRtSFk3d29YTUZQRUdRdGtRLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9qUWhOVExKOWlKRG1IWTd3b1hNRlBFR1F0a1EuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9ESUdJQ0VMTC9qUWhOVExKOWlKRG1I WTd3b1hNRlBFR1F0a1EubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAK+nxXriXoZeHY8GUiCeF/WqbrCTSwaQpAAVkCTh4k9C2o/C4DhkvJ+uT6Zvt L8U6wfe1e7HjFmXns2G7SLJW6udfDzJO0svSzhyvCp22RvmicoD2SLpWCt7DLnGa 4cB0CLlL4NXarytupsbgZUpTHiP2cIRllQ3PRZxCqhISdDZMloO9dEVTfnZFRn69 PsACc6w5NFEPFnXDGwu6KJrQxbOs0aFYqDuxtNu1wFV4HWQUsXy8HTiawtA5S2BO aAyIX/Upmcrimx+Xjnb/MAJ7V5Pw/MIWkrBm+mMtxcryIJHUBZpuDrubo/u/g4tH FMMZU8DY7xa7m0Exnc83xlbTqQ== -----END CERTIFICATE-----Generated at Tue Jun 24 20:51:07 2025 by rpki-client