$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft File: 639Ki3shDbkgjtWANXBF5Zcd4NM.mft (raw, json) Hash identifier: +btEj8p43/y6pCebzJfn10hzmisKy9tS7HENtqaoXHQ= Subject key identifier: C6:A2:9D:DF:66:72:B4:B2:BC:E6:75:15:86:81:5C:B8:8C:94:C3:F3 Authority key identifier: EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3 Certificate issuer: /CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3 Certificate serial: 04CC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft Manifest number: 04C3 Signing time: Mon 21 Jul 2025 10:07:04 +0000 Manifest this update: Mon 21 Jul 2025 10:07:04 +0000 Manifest next update: Wed 23 Jul 2025 10:07:04 +0000 Files and hashes: 1: 639Ki3shDbkgjtWANXBF5Zcd4NM.crl (hash: KsX/vpf5a/6wxwa++HTsO2pNyLsSfkHEUEjKBL2hopo=) 2: QjWH8IvvcQRnRJwyrC-yfGiXzHs.roa (hash: PZ9YEwp2XR9xSBGCVl6iG4XZkPUrM/aSAEYSJqEG048=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 22 Jul 2025 05:06:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1228 (0x4cc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3 Validity Not Before: Jul 21 10:07:04 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C6A29DDF6672B4B2BCE6751586815CB88C94C3F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ee:fa:15:8c:15:9a:4d:1c:8b:ed:2f:a6:30: 71:6e:32:0a:3f:9e:03:fa:73:5b:3c:c1:6f:14:e8: 07:0c:56:1f:ee:4e:7e:71:31:a1:af:e5:b7:3d:c9: ba:2e:17:47:e1:d0:f8:0e:22:06:73:6a:8e:5f:c4: 43:cb:58:6a:9a:a5:1f:08:b4:e1:bb:60:67:97:99: 93:b5:40:a2:41:02:0c:d3:99:cc:19:34:5c:4f:11: d5:66:75:21:59:c9:34:34:d2:f5:ea:95:70:2a:9b: 12:bf:29:9a:66:58:be:b6:e6:61:56:10:ea:9e:87: 12:b4:44:1b:64:6c:a3:ad:8b:78:4d:4a:4e:fd:f7: e9:a6:16:bb:20:7b:ac:33:37:49:bd:bd:18:b2:e6: 45:fe:8c:4f:08:e7:34:6f:b7:92:18:8f:74:1c:c9: 8d:11:e8:7a:b1:7a:ba:14:0d:5a:43:89:16:b6:75: 3f:5c:bc:c2:e7:13:53:47:12:1f:12:93:7d:90:bd: 3e:c3:6d:70:09:f5:e2:5f:5e:d0:03:49:6a:a9:8d: 07:7c:f1:2c:3b:a7:95:d3:09:df:93:b2:66:8e:2f: 06:30:cf:78:34:29:89:46:bc:f3:22:3a:b1:43:2d: 1d:71:8e:38:d8:67:db:b4:02:24:76:0f:76:15:e9: c8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A2:9D:DF:66:72:B4:B2:BC:E6:75:15:86:81:5C:B8:8C:94:C3:F3 X509v3 Authority Key Identifier: keyid:EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 26:a2:dc:a3:6f:9a:12:77:97:8c:39:c0:34:15:8a:2e:4f:a0: 41:81:4a:1b:88:1b:58:00:32:cc:22:7d:98:c8:ac:d9:a1:47: 95:d2:7e:b4:94:ef:3a:e8:ea:e2:41:73:8e:8a:cf:92:cb:6f: 81:c4:d6:79:c6:4c:49:ac:d9:f9:24:01:42:e3:99:0c:2f:17: 7e:4c:85:b2:3c:50:7c:55:da:bf:58:86:21:b4:d9:8b:82:af: 8d:88:1c:dc:23:08:b9:32:8c:9a:4b:0c:bc:2c:ff:35:3c:c2: bf:75:77:f3:6e:8d:e4:d9:6a:5f:9e:0e:55:3a:3b:48:97:8e: 58:60:ba:21:db:7f:97:84:d1:96:51:1c:bf:f4:f9:cf:34:25: 8e:01:e5:c4:ed:69:db:a4:55:6d:d1:04:eb:11:14:3f:e2:e8: 19:96:c1:d1:37:e2:b0:ea:2c:f8:81:88:3c:ec:44:64:1f:ea: e7:2c:90:31:ce:8d:00:30:e2:64:7f:21:1a:f6:5e:97:bd:94: a0:76:50:04:12:03:05:2c:42:95:b2:62:05:57:78:79:7f:63: 3f:67:7a:83:e5:99:f1:7b:32:ef:2e:47:f7:e9:bd:a1:0c:73: 3d:c7:8f:82:28:a8:78:7e:c5:7a:3a:c9:b3:22:b8:e9:29:e5: 31:a7:94:d4 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBMwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI3 RjRBOEI3QjIxMERCOTIwOEVENTgwMzU3MDQ1RTU5NzFERTBEMzAeFw0yNTA3MjEx MDA3MDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2QTI5RERGNjY3MkI0 QjJCQ0U2NzUxNTg2ODE1Q0I4OEM5NEMzRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv7voVjBWaTRyL7S+mMHFuMgo/ngP6c1s8wW8U6AcMVh/uTn5x MaGv5bc9ybouF0fh0PgOIgZzao5fxEPLWGqapR8ItOG7YGeXmZO1QKJBAgzTmcwZ NFxPEdVmdSFZyTQ00vXqlXAqmxK/KZpmWL625mFWEOqehxK0RBtkbKOti3hNSk79 9+mmFrsge6wzN0m9vRiy5kX+jE8I5zRvt5IYj3QcyY0R6HqxeroUDVpDiRa2dT9c vMLnE1NHEh8Sk32QvT7DbXAJ9eJfXtADSWqpjQd88Sw7p5XTCd+TsmaOLwYwz3g0 KYlGvPMiOrFDLR1xjjjYZ9u0AiR2D3YV6chxAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUxqKd32ZytLK85nUVhoFcuIyUw/MwHwYDVR0jBBgwFoAU639Ki3shDbkgjtWA NXBF5Zcd4NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTFdB VENILzYzOUtpM3NoRGJrZ2p0V0FOWEJGNVpjZDROTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvNjM5S2kzc2hEYmtnanRXQU5YQkY1WmNkNE5NLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTFdBVENILzYzOUtpM3NoRGJr Z2p0V0FOWEJGNVpjZDROTS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAmotyjb5oSd5eMOcA0FYouT6BBgUobiBtYADLMIn2YyKzZoUeV0n60lO86 6OriQXOOis+Sy2+BxNZ5xkxJrNn5JAFC45kMLxd+TIWyPFB8Vdq/WIYhtNmLgq+N iBzcIwi5MoyaSwy8LP81PMK/dXfzbo3k2Wpfng5VOjtIl45YYLoh23+XhNGWURy/ 9PnPNCWOAeXE7WnbpFVt0QTrERQ/4ugZlsHRN+Kw6iz4gYg87ERkH+rnLJAxzo0A MOJkfyEa9l6XvZSgdlAEEgMFLEKVsmIFV3h5f2M/Z3qD5ZnxezLvLkf36b2hDHM9 x4+CKKh4fsV6OsmzIrjpKeUxp5TU -----END CERTIFICATE-----Generated at Tue Jul 22 00:26:45 2025 by rpki-client