$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft File: P4T67Wy0fhEvJMawJ3pIYicGcso.mft (raw, json) Hash identifier: maeB4F1l8Awtjca4zwXSIgIpuJijmoebf+l4kzuaYcY= Subject key identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 Authority key identifier: 3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA Certificate issuer: /CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Certificate serial: 7D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft Manifest number: 79 Signing time: Sun 26 May 2024 06:34:44 +0000 Manifest this update: Sun 26 May 2024 06:34:44 +0000 Manifest next update: Tue 28 May 2024 06:34:44 +0000 Files and hashes: 1: Ero1zU7ZBHakAC_ocRNMCweSDxc.roa (hash: OzUIrWkLWkbadLjD6wtZYtZkLBnLUTzPWfrbGURymm0=) 2: P4T67Wy0fhEvJMawJ3pIYicGcso.crl (hash: iuInZ2tIt8CwkEXSaFVQ6LoNo1ZFy4vnz6KwnX+BCm8=) 3: ftJDo8JGDtKveudWbZjJkTNApXY.roa (hash: CHM0EsgeDUuGWgtSW1IqBOjDalEzh6KdgkawImPEOKs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 28 May 2024 06:34:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 125 (0x7d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Validity Not Before: May 26 06:34:44 2024 GMT Not After : Dec 6 15:30:22 2024 GMT Subject: CN=C62935BDEE28689F47A37A776EF691F2FD9522A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:6f:5a:29:d0:9d:14:37:3b:94:31:e9:b6:39: 92:35:1b:25:de:6b:91:ab:a9:75:3c:3a:c5:73:71: d9:47:b9:21:fe:14:2a:4e:f9:c4:bf:d2:1f:4b:04: f9:1e:c5:38:e5:81:2f:61:65:d8:35:f4:55:ba:17: 6f:1d:ab:ee:60:36:f9:ab:f3:b9:46:42:56:a0:65: ce:68:17:4f:76:de:bb:2e:cc:6f:c9:00:dd:3a:ad: 41:1d:af:bf:5b:78:ef:29:5f:15:79:49:d7:53:ac: 56:6d:9c:b8:37:25:8f:f6:27:4e:54:d9:ca:ab:46: 36:ae:ea:ad:b4:d6:1b:b2:44:0e:61:84:a9:2d:fe: 29:47:38:ff:04:e3:8c:d1:e7:85:cf:8e:cc:d7:86: 0d:4b:5b:86:48:d6:fc:cd:21:96:e4:34:09:8c:a2: 66:b9:3a:6e:9a:9d:c9:a9:a8:66:e9:bf:94:e1:77: d0:b8:ad:d3:08:b5:2b:73:71:01:06:49:f1:40:52: a3:f3:c0:45:40:d4:4a:a0:a5:71:8a:19:d1:e1:a5: 7e:15:78:66:7a:06:fc:98:15:c8:a8:8d:af:d2:4c: eb:83:e3:ae:3a:dc:81:f8:ac:ce:3a:8c:c6:74:11: 7d:99:c3:56:c8:8e:af:62:3a:af:a8:fd:14:09:4c: bb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 X509v3 Authority Key Identifier: keyid:3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 60:a2:61:e5:06:d2:2a:01:23:b5:39:f4:08:6d:4a:83:99:36: ad:de:68:15:8c:c0:77:6b:b7:3a:c8:06:27:59:78:b0:2c:79: eb:f1:b9:d3:a5:17:0b:fe:72:2f:d9:f3:da:02:2f:f3:c0:8c: cc:99:49:00:3e:a3:61:ed:af:6a:1f:82:99:ae:6d:2d:47:42: 29:5b:97:7a:f9:60:ef:8f:b8:59:dc:7e:52:ca:c1:c1:59:fc: b7:e8:e1:e9:44:cb:4f:83:56:99:fe:7b:7d:bc:c6:fb:6c:9e: 1e:8d:56:5e:8c:9c:33:b1:47:b1:76:06:e3:38:66:88:e3:7e: 47:9a:d5:8b:a7:97:2d:65:06:75:94:29:99:63:d7:bd:9f:6a: 96:f9:f1:a0:9c:3f:97:c6:d7:99:03:10:d9:ce:c5:2c:9c:ba: e9:4b:f4:5c:70:ba:e4:11:f2:ca:9c:75:fc:14:a9:f2:06:7c: 3f:ea:ef:b4:80:a9:be:31:bf:7e:4e:7d:c6:b4:35:91:cb:10: cd:94:a0:d9:66:60:04:05:bf:02:c4:d7:58:6d:5e:8e:05:1a: a1:7b:3d:17:39:af:82:9e:5c:1d:e5:1c:67:1c:91:9d:fc:e3: 1b:37:9d:1b:df:64:ff:f2:4e:dc:d4:8c:24:88:fe:21:a3:8d: f2:8b:13:10 -----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIBfTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzRjg0 RkFFRDZDQjQ3RTExMkYyNEM2QjAyNzdBNDg2MjI3MDY3MkNBMB4XDTI0MDUyNjA2 MzQ0NFoXDTI0MTIwNjE1MzAyMlowMzExMC8GA1UEAxMoQzYyOTM1QkRFRTI4Njg5 RjQ3QTM3QTc3NkVGNjkxRjJGRDk1MjJBMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAPlvWinQnRQ3O5Qx6bY5kjUbJd5rkaupdTw6xXNx2Ue5If4UKk75 xL/SH0sE+R7FOOWBL2Fl2DX0VboXbx2r7mA2+avzuUZCVqBlzmgXT3beuy7Mb8kA 3TqtQR2vv1t47ylfFXlJ11OsVm2cuDclj/YnTlTZyqtGNq7qrbTWG7JEDmGEqS3+ KUc4/wTjjNHnhc+OzNeGDUtbhkjW/M0hluQ0CYyiZrk6bpqdyamoZum/lOF30Lit 0wi1K3NxAQZJ8UBSo/PARUDUSqClcYoZ0eGlfhV4ZnoG/JgVyKiNr9JM64Pjrjrc gfiszjqMxnQRfZnDVsiOr2I6r6j9FAlMuxMCAwEAAaOCAg8wggILMB0GA1UdDgQW BBTGKTW97ihon0ejendu9pHy/ZUioDAfBgNVHSMEGDAWgBQ/hPrtbLR+ES8kxrAn ekhiJwZyyjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMGAGA1UdHwRZMFcwVaBT oFGGT3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9LUk9OT1NU RUNIL1A0VDY3V3kwZmhFdkpNYXdKM3BJWWljR2Nzby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvUDRUNjdXeTBmaEV2Sk1hd0ozcElZaWNHY3NvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgaAGCCsGAQUFBwELBIGTMIGQMFsGCCsGAQUFBzALhk9yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1JPTk9TVEVDSC9QNFQ2N1d5MGZo RXZKTWF3SjNwSVlpY0djc28ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAu dHduaWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAw IQYIKwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsF AAOCAQEAYKJh5QbSKgEjtTn0CG1Kg5k2rd5oFYzAd2u3OsgGJ1l4sCx56/G506UX C/5yL9nz2gIv88CMzJlJAD6jYe2vah+Cma5tLUdCKVuXevlg74+4Wdx+UsrBwVn8 t+jh6UTLT4NWmf57fbzG+2yeHo1WXoycM7FHsXYG4zhmiON+R5rVi6eXLWUGdZQp mWPXvZ9qlvnxoJw/l8bXmQMQ2c7FLJy66Uv0XHC65BHyypx1/BSp8gZ8P+rvtICp vjG/fk59xrQ1kcsQzZSg2WZgBAW/AsTXWG1ejgUaoXs9Fzmvgp5cHeUcZxyRnfzj GzedG99k//JO3NSMJIj+IaON8osTEA== -----END CERTIFICATE-----Generated at Sun May 26 23:37:05 2024 by rpki-client on console-ams.rpki-client.org