$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft File: _E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft (raw, json) Hash identifier: DCSfJPoZcKNncvmgD7dz74EfC4PkjjQShCzCeszjH9Y= Subject key identifier: 43:4D:FC:4B:07:1D:51:02:6F:2A:B1:E4:9F:FB:DA:8C:E4:DE:03:A1 Authority key identifier: FC:4F:89:8B:A4:80:D8:0D:04:A4:8A:6C:7E:39:A7:21:CA:AB:4B:47 Certificate issuer: /CN=FC4F898BA480D80D04A48A6C7E39A721CAAB4B47 Certificate serial: 0935 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft Manifest number: 0935 Signing time: Thu 06 Jun 2024 09:49:42 +0000 Manifest this update: Thu 06 Jun 2024 09:49:42 +0000 Manifest next update: Sat 08 Jun 2024 09:49:42 +0000 Files and hashes: 1: _E-Ji6SA2A0EpIpsfjmnIcqrS0c.crl (hash: 4YtvcKwzxnPeYhKuyE9LX/NHFgidXizb4/kZEWw2vTo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 09:49:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2357 (0x935) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FC4F898BA480D80D04A48A6C7E39A721CAAB4B47 Validity Not Before: Jun 6 09:49:42 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=434DFC4B071D51026F2AB1E49FFBDA8CE4DE03A1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:eb:1b:70:17:cd:31:d5:7e:04:bd:7e:bf:cb: c9:dc:92:b0:12:9c:dd:d1:25:7f:8b:55:a4:da:82: 65:fe:81:d6:7d:92:4f:ae:9c:99:69:99:32:bf:a6: 85:15:6a:43:a9:94:79:99:d6:fc:f3:c2:5b:f7:5c: 6e:b8:71:4d:fa:b2:2d:65:ab:00:66:2f:6e:77:d1: 75:64:88:c0:f5:70:57:d2:fc:fe:87:d8:2b:93:e1: 26:e7:ad:96:65:f7:46:cb:9c:f9:4b:21:e5:6f:f3: 9b:3f:b8:aa:fb:ec:f7:55:ec:b2:b3:54:de:a4:fe: 12:e0:ae:c1:2d:a9:06:e5:ae:c9:74:a5:94:2e:1e: 2c:a7:6e:4f:95:53:89:83:52:7d:2a:f3:9a:1b:f9: 45:f8:9b:f9:49:c9:b8:d9:d7:20:8c:c9:7d:21:8a: 65:ab:3a:05:54:7b:ab:4a:db:a6:33:f9:b5:35:da: 86:aa:e0:60:79:67:d8:3b:d2:fd:29:b4:11:e8:18: 25:d4:01:f7:31:59:ff:30:cc:73:73:97:79:a9:5b: 9c:73:46:f7:2a:5e:8a:b6:84:27:19:5f:f9:f3:3d: 5c:69:35:90:da:be:cf:9a:34:20:8e:67:2f:d4:92: 86:e4:93:9f:f6:b1:bf:74:d6:94:8a:5c:d9:32:a0: 17:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 43:4D:FC:4B:07:1D:51:02:6F:2A:B1:E4:9F:FB:DA:8C:E4:DE:03:A1 X509v3 Authority Key Identifier: keyid:FC:4F:89:8B:A4:80:D8:0D:04:A4:8A:6C:7E:39:A7:21:CA:AB:4B:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DREAMCITY/_E-Ji6SA2A0EpIpsfjmnIcqrS0c.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 37:cd:a8:25:3f:7d:a5:a9:ee:64:5c:67:72:c2:5d:1d:4e:cc: 69:71:9c:2c:84:4e:e2:70:fc:65:4f:08:89:54:32:fb:7f:c5: 50:a1:e4:87:60:04:f9:7b:f6:7a:83:3f:67:93:ff:4b:20:37: 1c:10:ce:f6:9a:55:c8:f3:9f:b3:da:6a:25:bc:7b:e6:d3:23: bb:fb:12:8e:3b:88:43:cc:77:48:68:90:59:5d:4d:ce:f2:f3: e0:90:39:3c:59:63:60:35:22:d9:b0:a4:a8:ce:80:c1:9e:83: d7:da:03:ca:dd:2d:a7:7c:d7:a2:5a:74:73:c1:8b:3a:7b:bf: 99:a7:7b:d5:7e:2c:c9:0a:3f:8d:16:22:b1:05:28:eb:4b:ec: 51:01:7a:1f:89:b3:ff:5d:89:dc:77:ad:8e:3a:ca:6e:d3:c3: c5:c6:8d:ff:e3:9d:61:95:c2:c9:b5:ae:d1:54:ec:e6:8d:06: 0b:95:17:5b:ec:46:c6:0b:cc:1f:0c:52:c1:f7:29:11:a0:52: a4:e0:c1:ce:4c:83:d0:e1:99:67:42:67:2e:df:c9:5c:3e:02: 64:ad:85:ce:ac:1a:2d:ee:c7:4f:64:45:3f:22:56:63:0a:65: 3a:76:85:a2:52:84:ce:7f:f2:2f:88:fc:f1:5f:4e:7e:48:90: 25:89:14:9c -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICCTUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkM0 Rjg5OEJBNDgwRDgwRDA0QTQ4QTZDN0UzOUE3MjFDQUFCNEI0NzAeFw0yNDA2MDYw OTQ5NDJaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDQzNERGQzRCMDcxRDUx MDI2RjJBQjFFNDlGRkJEQThDRTRERTAzQTEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC86xtwF80x1X4EvX6/y8nckrASnN3RJX+LVaTagmX+gdZ9kk+u nJlpmTK/poUVakOplHmZ1vzzwlv3XG64cU36si1lqwBmL2530XVkiMD1cFfS/P6H 2CuT4SbnrZZl90bLnPlLIeVv85s/uKr77PdV7LKzVN6k/hLgrsEtqQblrsl0pZQu Hiynbk+VU4mDUn0q85ob+UX4m/lJybjZ1yCMyX0himWrOgVUe6tK26Yz+bU12oaq 4GB5Z9g70v0ptBHoGCXUAfcxWf8wzHNzl3mpW5xzRvcqXoq2hCcZX/nzPVxpNZDa vs+aNCCOZy/Ukobkk5/2sb901pSKXNkyoBc7AgMBAAGjggINMIICCTAdBgNVHQ4E FgQUQ038SwcdUQJvKrHkn/vajOTeA6EwHwYDVR0jBBgwFoAU/E+Ji6SA2A0EpIps fjmnIcqrS0cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFJFQU1D SVRZL19FLUppNlNBMkEwRXBJcHNmam1uSWNxclMwYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvX0UtSmk2U0EyQTBFcElwc2ZqbW5JY3FyUzBjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFJFQU1DSVRZL19FLUppNlNBMkEw RXBJcHNmam1uSWNxclMwYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQA3zaglP32lqe5kXGdywl0dTsxpcZwshE7icPxlTwiJVDL7f8VQoeSHYAT5 e/Z6gz9nk/9LIDccEM72mlXI85+z2molvHvm0yO7+xKOO4hDzHdIaJBZXU3O8vPg kDk8WWNgNSLZsKSozoDBnoPX2gPK3S2nfNeiWnRzwYs6e7+Zp3vVfizJCj+NFiKx BSjrS+xRAXofibP/XYncd62OOspu08PFxo3/451hlcLJta7RVOzmjQYLlRdb7EbG C8wfDFLB9ykRoFKk4MHOTIPQ4ZlnQmcu38lcPgJkrYXOrBot7sdPZEU/IlZjCmU6 doWiUoTOf/IviPzxX05+SJAliRSc -----END CERTIFICATE-----Generated at Fri Jun 7 17:02:45 2024 by rpki-client on console-fra.rpki-client.org