$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft File: pkjm4cnjtwsVKT38bA44MEeRldw.mft (raw, json) Hash identifier: 5j5PZyo19Dq/zyIvapa6UztTyW6dFNAPiFzzoz6nO9k= Subject key identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 Authority key identifier: A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC Certificate issuer: /CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Certificate serial: 0D4D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft Manifest number: 0D4D Signing time: Tue 16 Sep 2025 21:20:16 +0000 Manifest this update: Tue 16 Sep 2025 21:20:16 +0000 Manifest next update: Thu 18 Sep 2025 21:20:16 +0000 Files and hashes: 1: pkjm4cnjtwsVKT38bA44MEeRldw.crl (hash: TVRTl1b7fYy+XyPxr25qc/MyAN45y2iDQzMd206sNoQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 18 Sep 2025 04:19:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3405 (0xd4d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Validity Not Before: Sep 16 21:20:16 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2665389E1A6AE7CCA08C1D0390597B23BF20EEA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4a:4c:31:b0:63:ef:b3:1c:f3:34:74:4a:3d: b2:5c:39:c2:b2:7e:41:df:93:1c:4f:f7:43:32:95: 6c:dd:76:d4:7f:15:36:e7:34:d0:b7:aa:d2:03:2b: da:c8:35:94:67:be:88:d6:20:0c:e7:2d:c4:af:64: c0:fb:67:55:e3:20:f6:71:c0:7c:d5:ab:c0:f3:3f: 5e:49:05:33:32:42:fe:69:b1:78:34:ec:1c:7b:7d: 8d:43:04:aa:80:74:1b:81:13:41:1e:64:10:f7:6c: 34:e6:89:03:cf:a6:a2:16:8e:8e:84:dd:db:c5:0b: 4c:4d:f0:03:df:5f:5a:66:f5:b9:b0:a4:16:81:f1: c0:06:03:8b:0e:d0:1c:87:61:e4:fa:92:ca:4a:54: 36:36:46:b8:be:14:67:4c:2c:37:60:0d:b4:0f:3f: fb:8b:19:cb:49:44:77:b8:2c:35:44:e4:1a:6c:da: 75:4f:2f:06:f1:bf:2b:34:ad:cc:4d:b4:40:3c:6d: aa:5b:46:71:94:79:c6:52:0c:a3:1c:f4:b1:19:21: 35:d0:b9:64:61:e5:bb:c8:75:ef:89:d2:92:59:65: bb:75:be:e7:37:ca:e5:29:f8:2e:90:d4:38:63:64: 8a:18:37:e9:d8:8f:b9:88:48:db:ba:74:de:dc:a4: ea:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 X509v3 Authority Key Identifier: keyid:A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:d2:a0:62:19:0f:9e:d9:8a:0a:42:fb:fd:9c:9e:4f:67:51: d9:12:b1:c4:95:c8:e6:a9:07:34:b2:8a:8e:ca:08:42:ca:ff: 35:1d:ee:88:b4:e4:19:4a:ba:6e:0d:de:52:4e:be:f2:d2:3c: c1:74:91:4e:45:0f:c4:cc:5c:19:f2:e1:ac:51:be:29:fb:0d: 5b:7b:51:7b:f5:b8:ca:e5:00:64:9a:2a:18:9a:2a:a3:c1:80: af:4d:9a:96:42:03:8e:cd:10:bd:ee:35:dd:1b:9f:24:3b:20: 31:39:6c:f6:42:ee:08:35:ec:83:bd:bd:b0:8d:18:3b:e3:f1: e8:25:b2:30:fe:2e:bd:32:b6:79:f9:35:95:d5:77:78:31:9b: 5a:fe:4f:56:b1:35:81:35:02:22:e2:6c:4b:65:05:93:c0:d8: ee:97:f7:d0:25:38:1f:64:99:cf:26:d8:ca:0b:0a:a1:9a:e6: 86:2b:64:28:54:62:9e:3b:79:5b:70:9a:9a:b1:aa:c7:44:41: 05:8d:d9:c5:1b:cb:a4:e5:2b:5e:0f:a8:55:61:51:d4:3d:e0: 05:f7:eb:7e:0a:23:ad:2b:9c:0c:12:58:01:d1:3d:aa:6d:a7: e0:29:f3:6e:fd:83:81:ec:ec:49:31:e6:c4:9e:3e:6c:96:f0: 2c:26:42:ef -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDU0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTY0 OEU2RTFDOUUzQjcwQjE1MjkzREZDNkMwRTM4MzA0NzkxOTVEQzAeFw0yNTA5MTYy MTIwMTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDI2NjUzODlFMUE2QUU3 Q0NBMDhDMUQwMzkwNTk3QjIzQkYyMEVFQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxSkwxsGPvsxzzNHRKPbJcOcKyfkHfkxxP90MylWzddtR/FTbn NNC3qtIDK9rINZRnvojWIAznLcSvZMD7Z1XjIPZxwHzVq8DzP15JBTMyQv5psXg0 7Bx7fY1DBKqAdBuBE0EeZBD3bDTmiQPPpqIWjo6E3dvFC0xN8APfX1pm9bmwpBaB 8cAGA4sO0ByHYeT6kspKVDY2Rri+FGdMLDdgDbQPP/uLGctJRHe4LDVE5Bps2nVP Lwbxvys0rcxNtEA8bapbRnGUecZSDKMc9LEZITXQuWRh5bvIde+J0pJZZbt1vuc3 yuUp+C6Q1DhjZIoYN+nYj7mISNu6dN7cpOoHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUJmU4nhpq58ygjB0DkFl7I78g7qkwHwYDVR0jBBgwFoAUpkjm4cnjtwsVKT38 bA44MEeRldwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRW L3Bram00Y25qdHdzVktUMzhiQTQ0TUVlUmxkdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcGtqbTRjbmp0d3NWS1QzOGJBNDRNRWVSbGR3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRWL3Bram00Y25qdHdzVktUMzhi QTQ0TUVlUmxkdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBX 0qBiGQ+e2YoKQvv9nJ5PZ1HZErHElcjmqQc0soqOyghCyv81He6ItOQZSrpuDd5S Tr7y0jzBdJFORQ/EzFwZ8uGsUb4p+w1be1F79bjK5QBkmioYmiqjwYCvTZqWQgOO zRC97jXdG58kOyAxOWz2Qu4INeyDvb2wjRg74/HoJbIw/i69MrZ5+TWV1Xd4MZta /k9WsTWBNQIi4mxLZQWTwNjul/fQJTgfZJnPJtjKCwqhmuaGK2QoVGKeO3lbcJqa sarHREEFjdnFG8uk5SteD6hVYVHUPeAF9+t+CiOtK5wMElgB0T2qbafgKfNu/YOB 7OxJMebEnj5slvAsJkLv -----END CERTIFICATE-----Generated at Thu Sep 18 00:53:12 2025 by rpki-client