$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft File: YCy84y3XbQuzn1pwYyQkiGkRlDU.mft (raw, json) Hash identifier: 80nZOo7K8rnZ0fxsKIEeO0FVZsuO74FQALcjZsU3st0= Subject key identifier: 1E:2B:4B:A2:9E:53:32:34:E9:60:93:4A:15:48:A8:BA:60:A2:BC:2F Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435 Certificate serial: 0BE5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft Manifest number: 0BD7 Signing time: Fri 31 May 2024 15:41:17 +0000 Manifest this update: Fri 31 May 2024 15:41:17 +0000 Manifest next update: Sun 02 Jun 2024 15:41:17 +0000 Files and hashes: 1: 3MGp-gEwzAsubADpxIV2p8HSYPE.roa (hash: YGaaoNO3Q1+F2E8Qk2JuAJnG3WXZySPx1mreNU/D7T4=) 2: YCy84y3XbQuzn1pwYyQkiGkRlDU.crl (hash: htkaotTemwwNnwYCMxPtjedH1uw0wjMSHT68vSIiZA8=) 3: zyOBMGgounjus3BTjdXusM7MCu8.roa (hash: OmgzXYZlsG2qUjWnCLr6KySKFYdPTd5ujNB5DzgIewU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 15:41:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3045 (0xbe5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435 Validity Not Before: May 31 15:41:17 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=1E2B4BA29E533234E960934A1548A8BA60A2BC2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ea:e8:4b:58:f6:93:80:b3:4d:d0:4f:69:02: 6c:fa:fe:5f:d2:1f:20:a8:9f:9c:82:39:94:72:9e: 26:47:d2:77:6a:16:b1:df:f5:45:72:03:50:2d:1e: e7:23:0e:08:3f:b2:f1:2d:c6:05:5c:82:5f:35:5e: 67:bc:c9:47:16:37:1a:77:d4:50:89:64:70:fd:17: 68:27:25:a2:a3:f7:2b:79:60:9a:b5:f6:e6:5d:a7: 83:17:52:b5:7e:fb:23:95:9e:10:fc:80:91:47:f1: ab:2c:e4:27:9a:0a:1e:e1:67:58:cb:ac:1c:60:b3: 2a:f5:ed:9a:e6:0f:14:c7:94:81:cd:82:20:48:0f: 0c:b3:0b:45:d3:18:12:2e:26:11:e1:61:f4:2e:92: c5:4d:fa:6f:8e:9a:0f:10:c0:3b:99:db:59:03:5b: b2:a5:47:71:78:1f:e3:75:23:0e:35:f1:87:f5:06: f7:98:fa:35:c1:5b:67:30:8f:1b:89:75:75:a3:85: bc:f1:9c:1b:ac:e1:3f:a7:1f:1a:9a:ec:f6:e7:87: fe:0e:e2:68:a4:ab:e1:ac:97:69:f1:36:0d:7c:ca: df:c5:67:ac:90:81:78:7c:a6:56:c9:f0:ad:0d:8d: af:61:4a:cf:08:79:aa:62:cd:d0:06:8b:f6:c3:a0: c9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2B:4B:A2:9E:53:32:34:E9:60:93:4A:15:48:A8:BA:60:A2:BC:2F X509v3 Authority Key Identifier: keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5d:93:34:e6:62:77:20:11:a6:43:83:2b:49:2a:17:a3:d2:65: 4c:83:8a:3b:56:77:fa:eb:6e:ec:c4:21:8b:5a:0a:bb:0c:b5: 4f:d1:1a:22:bf:49:75:63:e1:10:a6:0c:92:63:19:40:06:89: 4a:6e:55:89:c9:a3:e4:8e:1c:d7:43:a5:e8:78:2f:ae:73:0b: 48:b0:1f:2f:7c:da:80:bd:ff:34:41:ee:05:34:2f:09:63:a2: 5c:52:75:d4:a7:8e:c7:86:15:31:5e:14:a7:41:22:97:11:5d: 42:e2:28:17:67:98:b5:74:0b:df:5e:28:61:b8:95:0c:87:45: 88:ff:d4:c3:4d:26:09:c1:3b:c5:b3:a7:2a:04:32:2c:92:c4: 8f:7f:e1:58:27:76:6f:95:75:f6:5f:6e:f7:de:89:6f:d8:1a: 4d:d9:2d:6d:e2:94:f1:a7:06:56:fb:d4:1c:c5:52:62:e7:81: f6:40:a3:7e:cb:e7:e6:dd:86:0a:a5:ad:8d:7d:8e:cc:87:2b: c4:91:57:89:38:dc:73:3c:bb:c2:69:74:a9:5e:46:f7:ad:2b: 50:2d:87:71:2c:8c:fc:0c:7a:8a:85:0e:31:64:70:e8:d5:7a: 34:df:81:20:7d:18:bb:77:da:71:e8:e1:cf:7c:4b:37:39:b7: e5:2f:24:10 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICC+UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAy Q0JDRTMyREQ3NkQwQkIzOUY1QTcwNjMyNDI0ODg2OTExOTQzNTAeFw0yNDA1MzEx NTQxMTdaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDFFMkI0QkEyOUU1MzMy MzRFOTYwOTM0QTE1NDhBOEJBNjBBMkJDMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh6uhLWPaTgLNN0E9pAmz6/l/SHyCon5yCOZRyniZH0ndqFrHf 9UVyA1AtHucjDgg/svEtxgVcgl81Xme8yUcWNxp31FCJZHD9F2gnJaKj9yt5YJq1 9uZdp4MXUrV++yOVnhD8gJFH8ass5CeaCh7hZ1jLrBxgsyr17ZrmDxTHlIHNgiBI DwyzC0XTGBIuJhHhYfQuksVN+m+Omg8QwDuZ21kDW7KlR3F4H+N1Iw418Yf1BveY +jXBW2cwjxuJdXWjhbzxnBus4T+nHxqa7Pbnh/4O4mikq+Gsl2nxNg18yt/FZ6yQ gXh8plbJ8K0Nja9hSs8IeapizdAGi/bDoMnlAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUHitLop5TMjTpYJNKFUioumCivC8wHwYDVR0jBBgwFoAUYCy84y3XbQuzn1pw YyQkiGkRlDUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUVHQUlD QkMvWUN5ODR5M1hiUXV6bjFwd1l5UWtpR2tSbERVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZQ3k4NHkzWGJRdXpuMXB3WXlRa2lHa1JsRFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRUdBSUNCQy9ZQ3k4NHkzWGJRdXpu MXB3WXlRa2lHa1JsRFUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAXZM05mJ3IBGmQ4MrSSoXo9JlTIOKO1Z3+utu7MQhi1oKuwy1T9EaIr9JdWPh EKYMkmMZQAaJSm5Vicmj5I4c10Ol6HgvrnMLSLAfL3zagL3/NEHuBTQvCWOiXFJ1 1KeOx4YVMV4Up0EilxFdQuIoF2eYtXQL314oYbiVDIdFiP/Uw00mCcE7xbOnKgQy LJLEj3/hWCd2b5V19l9u996Jb9gaTdktbeKU8acGVvvUHMVSYueB9kCjfsvn5t2G CqWtjX2OzIcrxJFXiTjcczy7wml0qV5G960rUC2HcSyM/Ax6ioUOMWRw6NV6NN+B IH0Yu3facejhz3xLNzm35S8kEA== -----END CERTIFICATE-----Generated at Sat Jun 1 15:05:00 2024 by rpki-client on console-fra.rpki-client.org