$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft File: V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft (raw, json) Hash identifier: neP+Dx0kW0F0AJ9o9zALC3cZ9QBrbfCHHABcnTnOTeU= Subject key identifier: 00:51:DA:18:39:1A:E4:0B:13:6B:79:4F:92:1E:52:EA:A0:C6:4A:D8 Authority key identifier: 57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 Certificate issuer: /CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Certificate serial: 0237 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft Manifest number: 0230 Signing time: Fri 31 May 2024 14:52:39 +0000 Manifest this update: Fri 31 May 2024 14:52:39 +0000 Manifest next update: Sun 02 Jun 2024 14:52:39 +0000 Files and hashes: 1: V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl (hash: xckKvY3UHbmqBCTAtgYFexwbZK3T8Wd1cUfRHLx528M=) 2: acM1OPW7S6QeRgBPsTvzKdJ2aGs.roa (hash: lVKj6l4p9b/3RzX1ws5f3nsDW6CbjO53imTjq98e8JY=) 3: n7VUYT4ANpAcZ4oGrujIpfGnCSI.roa (hash: qt+d8C5efQpdkZqyqpo8LyZ3VXdBVe9ERcIVBNm1w6k=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 14:52:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 567 (0x237) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=578183A0FE5DA4A0F3C0546FB6EC26CBD1232F99 Validity Not Before: May 31 14:52:39 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=0051DA18391AE40B136B794F921E52EAA0C64AD8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:40:b4:84:75:82:c3:a5:fd:38:af:34:1d:b9: ec:59:c3:17:53:57:b5:a1:a5:05:0b:93:57:17:97: 2e:16:92:fd:20:d4:9d:36:4f:59:0a:18:70:b4:f3: ba:42:4e:cb:07:e7:4c:d0:76:8a:95:6b:5e:12:4b: 54:d2:cb:de:65:c9:a7:44:6e:75:08:da:bf:ac:f5: 63:83:5f:0c:22:01:8d:af:dc:18:8c:25:59:b4:2f: b3:1d:f0:cc:8f:e5:08:16:5e:a5:0c:16:33:d4:92: 07:a1:be:df:d0:ad:8f:95:22:55:fc:52:93:41:c1: 4a:da:0a:06:71:ae:9f:b5:76:6a:3a:aa:1e:76:c5: 7b:f5:dd:78:9e:49:a5:d0:2d:f7:f3:b5:4e:11:5a: 82:25:18:31:39:9f:b7:4a:37:4e:b2:6e:21:5b:b4: e9:4d:83:d4:36:d8:b0:bb:a6:ba:24:7e:d9:e6:a6: 85:13:27:87:ea:26:63:63:91:50:5e:4f:e4:14:e4: 23:62:95:03:61:42:3c:11:86:05:ea:d3:70:50:66: 11:55:a5:ed:dc:d7:8b:27:4a:06:86:86:bd:07:fd: 34:ec:5d:ad:39:c5:39:a1:04:cf:81:a2:a2:d4:ac: 1c:78:b0:a9:87:f1:5e:41:44:a2:99:70:4e:d9:54: 0d:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:51:DA:18:39:1A:E4:0B:13:6B:79:4F:92:1E:52:EA:A0:C6:4A:D8 X509v3 Authority Key Identifier: keyid:57:81:83:A0:FE:5D:A4:A0:F3:C0:54:6F:B6:EC:26:CB:D1:23:2F:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/V4GDoP5dpKDzwFRvtuwmy9EjL5k.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CCP1138470/V4GDoP5dpKDzwFRvtuwmy9EjL5k.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 57:91:24:41:48:6d:6d:60:fd:c8:51:0c:5f:2e:5b:ee:5a:4f: 61:85:fa:80:61:20:0d:b2:53:15:6f:82:47:32:a1:aa:76:4d: bd:25:e8:ef:12:56:f6:90:bf:b5:b4:bb:95:d5:ce:f5:3f:9d: 11:2d:fc:52:4c:15:56:87:41:3f:d9:cd:4a:d1:42:be:a8:03: f8:48:3d:ad:7a:bc:dc:07:b9:f0:aa:05:c0:a0:6f:9a:2f:2d: 83:fa:b1:89:da:02:cb:5c:5c:53:02:ca:c1:07:c9:30:c7:44: a1:e2:9c:56:88:4d:4a:5f:0d:61:ff:78:7f:32:22:b7:7e:bb: cd:cf:19:37:ec:32:5c:f5:aa:90:35:c6:7c:6d:d5:e1:e7:6f: 7f:d0:2e:83:3f:4a:4c:31:d0:dd:c8:16:ad:a9:ae:68:55:76: 96:d7:5d:42:18:b3:e3:4d:5c:aa:53:a2:ff:b1:40:2f:19:ff: fe:03:be:ef:b6:01:d8:3b:e0:b3:9f:54:80:bc:01:b8:25:95: 9f:97:0b:ae:f6:31:7f:4e:56:72:99:77:2d:eb:32:ff:87:8f: 01:9a:59:8c:d9:8c:70:f2:45:e1:34:85:fb:7a:ba:ca:5f:7a: b9:09:12:d1:be:dd:1b:89:8e:01:fa:19:47:2c:d2:96:74:6a: a2:3c:bc:31 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAjcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNTc4 MTgzQTBGRTVEQTRBMEYzQzA1NDZGQjZFQzI2Q0JEMTIzMkY5OTAeFw0yNDA1MzEx NDUyMzlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDAwNTFEQTE4MzkxQUU0 MEIxMzZCNzk0RjkyMUU1MkVBQTBDNjRBRDgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPQLSEdYLDpf04rzQduexZwxdTV7WhpQULk1cXly4Wkv0g1J02 T1kKGHC087pCTssH50zQdoqVa14SS1TSy95lyadEbnUI2r+s9WODXwwiAY2v3BiM JVm0L7Md8MyP5QgWXqUMFjPUkgehvt/QrY+VIlX8UpNBwUraCgZxrp+1dmo6qh52 xXv13XieSaXQLffztU4RWoIlGDE5n7dKN06ybiFbtOlNg9Q22LC7prokftnmpoUT J4fqJmNjkVBeT+QU5CNilQNhQjwRhgXq03BQZhFVpe3c14snSgaGhr0H/TTsXa05 xTmhBM+BoqLUrBx4sKmH8V5BRKKZcE7ZVA0BAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUAFHaGDka5AsTa3lPkh5S6qDGStgwHwYDVR0jBBgwFoAUV4GDoP5dpKDzwFRv tuwmy9EjL5kwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0NQMTEz ODQ3MC9WNEdEb1A1ZHBLRHp3RlJ2dHV3bXk5RWpMNWsuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1Y0R0RvUDVkcEtEendGUnZ0dXdteTlFakw1ay5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0NDUDExMzg0NzAvVjRHRG9QNWRw S0R6d0ZSdnR1d215OUVqTDVrLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFeRJEFIbW1g/chRDF8uW+5aT2GF+oBhIA2yUxVvgkcyoap2Tb0l6O8S VvaQv7W0u5XVzvU/nREt/FJMFVaHQT/ZzUrRQr6oA/hIPa16vNwHufCqBcCgb5ov LYP6sYnaAstcXFMCysEHyTDHRKHinFaITUpfDWH/eH8yIrd+u83PGTfsMlz1qpA1 xnxt1eHnb3/QLoM/Skwx0N3IFq2prmhVdpbXXUIYs+NNXKpTov+xQC8Z//4Dvu+2 Adg74LOfVIC8AbgllZ+XC672MX9OVnKZdy3rMv+HjwGaWYzZjHDyReE0hft6uspf erkJEtG+3RuJjgH6GUcs0pZ0aqI8vDE= -----END CERTIFICATE-----Generated at Sat Jun 1 15:04:56 2024 by rpki-client on console-fra.rpki-client.org