$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft File: 639Ki3shDbkgjtWANXBF5Zcd4NM.mft (raw, json) Hash identifier: FH+NSFmM4h5aL+9nAea2JCTVG4DHexVLQeSV+5GpzHg= Subject key identifier: C6:A2:9D:DF:66:72:B4:B2:BC:E6:75:15:86:81:5C:B8:8C:94:C3:F3 Authority key identifier: EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3 Certificate issuer: /CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3 Certificate serial: 04EE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft Manifest number: 04E4 Signing time: Sun 07 Sep 2025 21:18:24 +0000 Manifest this update: Sun 07 Sep 2025 21:18:24 +0000 Manifest next update: Tue 09 Sep 2025 21:18:24 +0000 Files and hashes: 1: 639Ki3shDbkgjtWANXBF5Zcd4NM.crl (hash: WL0FGdSskjdhOTGTQBmh/B87a+vtleEokFFMzRUpmfk=) 2: ALxxmI-MtTvV7so9NokBSyZ9pNc.roa (hash: bfyUeHCmQJ48LfOm63XlAVSRh9tG9IAeNiGx7Io5itQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Sep 2025 10:48:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1262 (0x4ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3 Validity Not Before: Sep 7 21:18:24 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C6A29DDF6672B4B2BCE6751586815CB88C94C3F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ee:fa:15:8c:15:9a:4d:1c:8b:ed:2f:a6:30: 71:6e:32:0a:3f:9e:03:fa:73:5b:3c:c1:6f:14:e8: 07:0c:56:1f:ee:4e:7e:71:31:a1:af:e5:b7:3d:c9: ba:2e:17:47:e1:d0:f8:0e:22:06:73:6a:8e:5f:c4: 43:cb:58:6a:9a:a5:1f:08:b4:e1:bb:60:67:97:99: 93:b5:40:a2:41:02:0c:d3:99:cc:19:34:5c:4f:11: d5:66:75:21:59:c9:34:34:d2:f5:ea:95:70:2a:9b: 12:bf:29:9a:66:58:be:b6:e6:61:56:10:ea:9e:87: 12:b4:44:1b:64:6c:a3:ad:8b:78:4d:4a:4e:fd:f7: e9:a6:16:bb:20:7b:ac:33:37:49:bd:bd:18:b2:e6: 45:fe:8c:4f:08:e7:34:6f:b7:92:18:8f:74:1c:c9: 8d:11:e8:7a:b1:7a:ba:14:0d:5a:43:89:16:b6:75: 3f:5c:bc:c2:e7:13:53:47:12:1f:12:93:7d:90:bd: 3e:c3:6d:70:09:f5:e2:5f:5e:d0:03:49:6a:a9:8d: 07:7c:f1:2c:3b:a7:95:d3:09:df:93:b2:66:8e:2f: 06:30:cf:78:34:29:89:46:bc:f3:22:3a:b1:43:2d: 1d:71:8e:38:d8:67:db:b4:02:24:76:0f:76:15:e9: c8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A2:9D:DF:66:72:B4:B2:BC:E6:75:15:86:81:5C:B8:8C:94:C3:F3 X509v3 Authority Key Identifier: keyid:EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:fe:ec:99:cc:3d:ec:80:9b:d2:ae:d4:e7:37:e4:44:1a:3b: 05:aa:9f:bb:65:48:da:f0:c0:e3:60:0a:3d:b5:fd:55:82:ce: 03:3e:18:39:9e:eb:48:6c:55:40:f8:8d:62:06:e2:ff:ec:af: 29:7d:b1:70:e7:9f:a2:67:8c:80:19:d6:6a:12:e9:55:93:4a: 99:c0:ab:aa:ff:f3:ca:9c:8d:b0:ce:1a:ec:69:01:53:62:7d: 98:29:22:39:27:3c:04:f3:85:ab:02:ec:d4:20:0b:4a:d0:63: 67:2e:92:3e:2b:73:b9:85:b4:ae:17:71:6d:e5:2e:6a:3a:26: e5:8f:c4:f9:c7:ee:d6:88:ac:ae:b9:98:55:65:b6:c9:3f:23: 8c:1b:1b:f0:79:dc:d0:23:ea:43:02:7c:2e:6d:12:14:17:3b: 7c:1c:e1:e9:5e:cb:24:28:b3:af:09:f2:40:f9:43:39:19:bb: 7b:7e:98:8e:c8:9a:09:f9:67:8d:22:4c:eb:ea:25:34:a8:61: a9:3e:3e:b8:9c:24:6e:cb:60:63:f7:b8:2b:f7:8a:d5:96:d6: 26:fc:e0:9a:62:39:b2:7c:d0:66:a2:62:d3:6a:54:6a:da:4f: 4d:c8:ad:13:98:96:74:d8:19:22:58:0b:ff:70:30:cb:e8:c3: 00:e4:a8:71 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBO4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI3 RjRBOEI3QjIxMERCOTIwOEVENTgwMzU3MDQ1RTU5NzFERTBEMzAeFw0yNTA5MDcy MTE4MjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM2QTI5RERGNjY3MkI0 QjJCQ0U2NzUxNTg2ODE1Q0I4OEM5NEMzRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv7voVjBWaTRyL7S+mMHFuMgo/ngP6c1s8wW8U6AcMVh/uTn5x MaGv5bc9ybouF0fh0PgOIgZzao5fxEPLWGqapR8ItOG7YGeXmZO1QKJBAgzTmcwZ NFxPEdVmdSFZyTQ00vXqlXAqmxK/KZpmWL625mFWEOqehxK0RBtkbKOti3hNSk79 9+mmFrsge6wzN0m9vRiy5kX+jE8I5zRvt5IYj3QcyY0R6HqxeroUDVpDiRa2dT9c vMLnE1NHEh8Sk32QvT7DbXAJ9eJfXtADSWqpjQd88Sw7p5XTCd+TsmaOLwYwz3g0 KYlGvPMiOrFDLR1xjjjYZ9u0AiR2D3YV6chxAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUxqKd32ZytLK85nUVhoFcuIyUw/MwHwYDVR0jBBgwFoAU639Ki3shDbkgjtWA NXBF5Zcd4NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTFdB VENILzYzOUtpM3NoRGJrZ2p0V0FOWEJGNVpjZDROTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvNjM5S2kzc2hEYmtnanRXQU5YQkY1WmNkNE5NLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTFdBVENILzYzOUtpM3NoRGJr Z2p0V0FOWEJGNVpjZDROTS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCf/uyZzD3sgJvSrtTnN+REGjsFqp+7ZUja8MDjYAo9tf1Vgs4DPhg5nutI bFVA+I1iBuL/7K8pfbFw55+iZ4yAGdZqEulVk0qZwKuq//PKnI2wzhrsaQFTYn2Y KSI5JzwE84WrAuzUIAtK0GNnLpI+K3O5hbSuF3Ft5S5qOiblj8T5x+7WiKyuuZhV ZbbJPyOMGxvwedzQI+pDAnwubRIUFzt8HOHpXsskKLOvCfJA+UM5Gbt7fpiOyJoJ +WeNIkzr6iU0qGGpPj64nCRuy2Bj97gr94rVltYm/OCaYjmyfNBmomLTalRq2k9N yK0TmJZ02BkiWAv/cDDL6MMA5Khx -----END CERTIFICATE-----Generated at Mon Sep 8 08:39:54 2025 by rpki-client