$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft File: pkjm4cnjtwsVKT38bA44MEeRldw.mft (raw, json) Hash identifier: jfk9/NApLoz4VsXV9Y3B0e11T57lAIGBLx+W7aZdW9I= Subject key identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 Authority key identifier: A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC Certificate issuer: /CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Certificate serial: 0D05 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft Manifest number: 0D05 Signing time: Sun 01 Jun 2025 21:57:13 +0000 Manifest this update: Sun 01 Jun 2025 21:57:13 +0000 Manifest next update: Tue 03 Jun 2025 21:57:13 +0000 Files and hashes: 1: pkjm4cnjtwsVKT38bA44MEeRldw.crl (hash: J5naScqFbuyYjiteqlJ9JGCl3dbR7sHUFJpLIqQgbKo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 03 Jun 2025 09:26:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3333 (0xd05) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Validity Not Before: Jun 1 21:57:13 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2665389E1A6AE7CCA08C1D0390597B23BF20EEA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4a:4c:31:b0:63:ef:b3:1c:f3:34:74:4a:3d: b2:5c:39:c2:b2:7e:41:df:93:1c:4f:f7:43:32:95: 6c:dd:76:d4:7f:15:36:e7:34:d0:b7:aa:d2:03:2b: da:c8:35:94:67:be:88:d6:20:0c:e7:2d:c4:af:64: c0:fb:67:55:e3:20:f6:71:c0:7c:d5:ab:c0:f3:3f: 5e:49:05:33:32:42:fe:69:b1:78:34:ec:1c:7b:7d: 8d:43:04:aa:80:74:1b:81:13:41:1e:64:10:f7:6c: 34:e6:89:03:cf:a6:a2:16:8e:8e:84:dd:db:c5:0b: 4c:4d:f0:03:df:5f:5a:66:f5:b9:b0:a4:16:81:f1: c0:06:03:8b:0e:d0:1c:87:61:e4:fa:92:ca:4a:54: 36:36:46:b8:be:14:67:4c:2c:37:60:0d:b4:0f:3f: fb:8b:19:cb:49:44:77:b8:2c:35:44:e4:1a:6c:da: 75:4f:2f:06:f1:bf:2b:34:ad:cc:4d:b4:40:3c:6d: aa:5b:46:71:94:79:c6:52:0c:a3:1c:f4:b1:19:21: 35:d0:b9:64:61:e5:bb:c8:75:ef:89:d2:92:59:65: bb:75:be:e7:37:ca:e5:29:f8:2e:90:d4:38:63:64: 8a:18:37:e9:d8:8f:b9:88:48:db:ba:74:de:dc:a4: ea:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 X509v3 Authority Key Identifier: keyid:A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 27:87:98:d0:74:99:ed:68:eb:ca:1b:38:40:42:1a:58:52:53: be:06:2e:b3:a9:c4:48:94:fd:2a:68:5f:07:e3:ec:7e:c9:3f: 1e:a1:c6:ef:53:6c:32:42:da:db:74:a9:bc:91:95:97:00:fb: d1:22:a6:eb:8e:28:15:3e:f5:ef:c2:e8:55:5d:5b:ad:cc:1b: b0:46:44:6d:b6:db:7b:66:68:a8:6c:14:e1:f5:b6:16:6c:dd: 51:ff:07:84:c0:73:98:65:48:11:df:05:7a:79:e2:c2:01:a6: 4c:06:e4:15:c0:7b:9b:8a:a8:b6:cd:9f:9d:57:bf:ad:f9:3e: 3f:fd:1c:5f:52:ef:d1:64:77:d8:03:ce:2f:d8:33:d0:a1:bf: 82:4d:45:54:53:72:ef:e3:34:19:0d:78:90:25:5b:d3:4a:93: e3:e0:94:aa:bf:b3:dd:d2:1b:16:18:4a:9c:6f:1f:ab:b9:0a: 4d:08:b9:90:40:c3:da:a6:7c:fa:66:32:64:9f:15:93:96:e4: 73:9a:71:72:3f:01:dd:19:07:af:e9:67:90:da:74:5a:9d:36: aa:cb:a6:d6:ce:ee:e7:7d:7f:97:50:06:2a:62:81:6f:1e:10: d9:06:f1:9e:3f:67:29:45:c6:89:4b:88:b2:be:f5:ca:71:6b: d7:2d:22:3c -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDQUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTY0 OEU2RTFDOUUzQjcwQjE1MjkzREZDNkMwRTM4MzA0NzkxOTVEQzAeFw0yNTA2MDEy MTU3MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2NjUzODlFMUE2QUU3 Q0NBMDhDMUQwMzkwNTk3QjIzQkYyMEVFQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxSkwxsGPvsxzzNHRKPbJcOcKyfkHfkxxP90MylWzddtR/FTbn NNC3qtIDK9rINZRnvojWIAznLcSvZMD7Z1XjIPZxwHzVq8DzP15JBTMyQv5psXg0 7Bx7fY1DBKqAdBuBE0EeZBD3bDTmiQPPpqIWjo6E3dvFC0xN8APfX1pm9bmwpBaB 8cAGA4sO0ByHYeT6kspKVDY2Rri+FGdMLDdgDbQPP/uLGctJRHe4LDVE5Bps2nVP Lwbxvys0rcxNtEA8bapbRnGUecZSDKMc9LEZITXQuWRh5bvIde+J0pJZZbt1vuc3 yuUp+C6Q1DhjZIoYN+nYj7mISNu6dN7cpOoHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUJmU4nhpq58ygjB0DkFl7I78g7qkwHwYDVR0jBBgwFoAUpkjm4cnjtwsVKT38 bA44MEeRldwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRW L3Bram00Y25qdHdzVktUMzhiQTQ0TUVlUmxkdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcGtqbTRjbmp0d3NWS1QzOGJBNDRNRWVSbGR3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRWL3Bram00Y25qdHdzVktUMzhi QTQ0TUVlUmxkdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAn h5jQdJntaOvKGzhAQhpYUlO+Bi6zqcRIlP0qaF8H4+x+yT8eocbvU2wyQtrbdKm8 kZWXAPvRIqbrjigVPvXvwuhVXVutzBuwRkRtttt7ZmiobBTh9bYWbN1R/weEwHOY ZUgR3wV6eeLCAaZMBuQVwHubiqi2zZ+dV7+t+T4//RxfUu/RZHfYA84v2DPQob+C TUVUU3Lv4zQZDXiQJVvTSpPj4JSqv7Pd0hsWGEqcbx+ruQpNCLmQQMPapnz6ZjJk nxWTluRzmnFyPwHdGQev6WeQ2nRanTaqy6bWzu7nfX+XUAYqYoFvHhDZBvGeP2cp RcaJS4iyvvXKcWvXLSI8 -----END CERTIFICATE-----Generated at Tue Jun 3 08:16:36 2025 by rpki-client