$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft File: csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft (raw, json) Hash identifier: Tb6L7bSYuQ+AxVooWqmS9ghFxJ5ZNrdkpJkkOgEJj9M= Subject key identifier: F3:91:F4:65:C8:CB:21:77:FC:08:73:98:16:F6:43:F8:C7:28:A5:BD Authority key identifier: 72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC Certificate issuer: /CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Certificate serial: 7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft Manifest number: 7D Signing time: Thu 06 Jun 2024 10:40:36 +0000 Manifest this update: Thu 06 Jun 2024 10:40:36 +0000 Manifest next update: Sat 08 Jun 2024 10:40:36 +0000 Files and hashes: 1: csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl (hash: ldyJpgu4IfNqMowwRrPbZhDBxeelrsPreHN7JAdYIaY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 08 Jun 2024 01:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=72C436BE92AE0ADCB314EBC1ACE319FF77BDA3FC Validity Not Before: Jun 6 10:40:36 2024 GMT Not After : Nov 22 15:30:19 2024 GMT Subject: CN=F391F465C8CB2177FC08739816F643F8C728A5BD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:b1:98:d2:0c:b8:66:38:9d:f1:d0:d9:06:52: f1:32:4e:de:a5:0d:6c:90:58:85:27:b4:e4:69:d4: 94:2b:67:9d:7f:ad:a5:0e:b1:5a:f3:47:be:71:5c: 17:34:92:50:e4:9a:d6:10:6e:d4:47:87:03:ff:75: ff:d9:1b:ac:2d:3c:b3:bc:44:f4:1c:75:f0:ee:39: f3:5b:39:2b:6d:78:06:1b:dd:ec:34:58:df:4e:f9: 1d:03:e0:e1:3d:e7:7d:e2:c2:63:aa:c4:dc:17:75: dc:d4:8a:37:36:d1:4e:31:af:3d:d2:0d:bf:8f:3c: 4c:4f:81:5e:c1:6f:6b:3a:77:99:28:0d:f2:ec:61: 24:8b:e6:54:42:c0:e3:6e:4e:73:03:ff:24:98:31: 27:27:aa:13:d7:ae:4a:2e:2d:e6:32:01:0b:81:24: 54:eb:c4:7f:cd:49:ae:b4:e5:d7:89:87:17:1e:ba: a0:9c:07:51:6f:8e:44:c0:df:1d:72:fd:d4:1c:8f: 13:6f:61:3b:77:a4:bc:2c:e3:e6:bc:05:80:08:18: 49:dc:5c:9c:24:46:b7:90:31:b7:ee:45:2b:7c:59: b1:b5:16:b7:12:21:14:5b:18:90:89:57:5e:44:43: 7a:c7:7f:c1:80:d3:05:88:1e:26:1f:6e:db:74:76: 9e:29 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F3:91:F4:65:C8:CB:21:77:FC:08:73:98:16:F6:43:F8:C7:28:A5:BD X509v3 Authority Key Identifier: keyid:72:C4:36:BE:92:AE:0A:DC:B3:14:EB:C1:AC:E3:19:FF:77:BD:A3:FC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JGZ/csQ2vpKuCtyzFOvBrOMZ_3e9o_w.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:12:88:3e:8a:d5:19:e7:15:5c:56:1c:76:f5:61:06:39:69: 20:51:1d:75:6d:8d:bd:03:55:ae:57:fd:77:13:fe:f3:38:1c: 55:9e:a2:a3:7f:ef:c3:d6:fa:9a:24:e2:f6:fa:cb:68:9d:40: ea:a1:50:81:9a:0e:ba:31:59:72:af:04:aa:5b:93:b7:aa:b4: 03:e7:31:09:2e:45:fd:08:96:2d:70:9b:5a:88:d9:5a:9c:04: 39:d5:f8:5a:53:c4:40:6c:46:e1:8f:2e:58:df:db:e9:0b:59: d5:aa:ec:04:6c:75:27:02:d6:30:d9:5f:9a:04:43:64:76:79: 65:bd:80:3d:65:d5:f6:4e:fb:59:7a:5e:2c:0a:33:2c:d7:58: b4:a4:ed:a7:50:85:c1:f9:a2:48:e2:9e:c0:2a:5f:ef:8b:de: 27:96:e7:61:f9:3f:5c:29:10:5a:33:4f:78:73:dc:e5:d2:bb: 0f:30:85:1c:71:4d:96:a3:12:ba:bc:0f:30:0d:2e:62:76:4b: b4:29:18:36:c1:46:00:82:2a:fa:c9:2f:40:6b:76:35:55:3d: ca:05:7f:87:95:c8:de:5a:3d:c8:0d:ed:e0:8a:9c:69:56:1e: f2:53:ec:d5:79:21:21:fa:36:c0:fe:3e:7f:c9:27:c5:40:53: a8:aa:dc:fb -----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgIBfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg3MkM0 MzZCRTkyQUUwQURDQjMxNEVCQzFBQ0UzMTlGRjc3QkRBM0ZDMB4XDTI0MDYwNjEw NDAzNloXDTI0MTEyMjE1MzAxOVowMzExMC8GA1UEAxMoRjM5MUY0NjVDOENCMjE3 N0ZDMDg3Mzk4MTZGNjQzRjhDNzI4QTVCRDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALGxmNIMuGY4nfHQ2QZS8TJO3qUNbJBYhSe05GnUlCtnnX+tpQ6x WvNHvnFcFzSSUOSa1hBu1EeHA/91/9kbrC08s7xE9Bx18O4581s5K214Bhvd7DRY 3075HQPg4T3nfeLCY6rE3Bd13NSKNzbRTjGvPdINv488TE+BXsFvazp3mSgN8uxh JIvmVELA425OcwP/JJgxJyeqE9euSi4t5jIBC4EkVOvEf81JrrTl14mHFx66oJwH UW+ORMDfHXL91ByPE29hO3ekvCzj5rwFgAgYSdxcnCRGt5Axt+5FK3xZsbUWtxIh FFsYkIlXXkRDesd/wYDTBYgeJh9u23R2nikCAwEAAaOCAgEwggH9MB0GA1UdDgQW BBTzkfRlyMshd/wIc5gW9kP4xyilvTAfBgNVHSMEGDAWgBRyxDa+kq4K3LMU68Gs 4xn/d72j/DAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFkGA1UdHwRSMFAwTqBM oEqGSHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9KR1ovY3NR MnZwS3VDdHl6Rk92QnJPTVpfM2U5b193LmNybDBgBggrBgEFBQcBAQRUMFIwUAYI KwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9j c1EydnBLdUN0eXpGT3ZCck9NWl8zZTlvX3cuY2VyMA4GA1UdDwEB/wQEAwIHgDCB mQYIKwYBBQUHAQsEgYwwgYkwVAYIKwYBBQUHMAuGSHJzeW5jOi8vcnBraWNhLnR3 bmljLnR3L3Jwa2kvVFdOSUNDQS9KR1ovY3NRMnZwS3VDdHl6Rk92QnJPTVpfM2U5 b193Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3JyZHAv bm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEHAQH/ BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAGkSiD6K1Rnn FVxWHHb1YQY5aSBRHXVtjb0DVa5X/XcT/vM4HFWeoqN/78PW+pok4vb6y2idQOqh UIGaDroxWXKvBKpbk7eqtAPnMQkuRf0Ili1wm1qI2VqcBDnV+FpTxEBsRuGPLljf 2+kLWdWq7ARsdScC1jDZX5oEQ2R2eWW9gD1l1fZO+1l6XiwKMyzXWLSk7adQhcH5 okjinsAqX++L3ieW52H5P1wpEFozT3hz3OXSuw8whRxxTZajErq8DzANLmJ2S7Qp GDbBRgCCKvrJL0BrdjVVPcoFf4eVyN5aPcgN7eCKnGlWHvJT7NV5ISH6NsD+Pn/J J8VAU6iq3Ps= -----END CERTIFICATE-----Generated at Thu Jun 6 20:18:52 2024 by rpki-client on console-fra.rpki-client.org