$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft File: 8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft (raw, json) Hash identifier: G2FGkHiToI5o17EPHpp4G71FjxrzHhlksL4NANrH+nM= Subject key identifier: 7A:F7:DD:84:1A:67:03:83:BA:74:77:3B:AD:79:38:72:71:1D:1E:CD Authority key identifier: F3:E6:A6:95:53:88:04:6E:01:3E:5E:D1:E0:CE:C6:C2:5E:85:30:94 Certificate issuer: /CN=F3E6A6955388046E013E5ED1E0CEC6C25E853094 Certificate serial: 0B8A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft Manifest number: 0B8A Signing time: Fri 31 May 2024 09:41:18 +0000 Manifest this update: Fri 31 May 2024 09:41:18 +0000 Manifest next update: Sun 02 Jun 2024 09:41:18 +0000 Files and hashes: 1: 8-amlVOIBG4BPl7R4M7Gwl6FMJQ.crl (hash: IE+KaSVPNC7tz6Zos9k+je/mJ23YeOi50TCtQ/mCAbs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 01:35:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2954 (0xb8a) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3E6A6955388046E013E5ED1E0CEC6C25E853094 Validity Not Before: May 31 09:41:18 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=7AF7DD841A670383BA74773BAD793872711D1ECD Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:70:83:9f:7f:46:07:9e:97:a3:c4:cc:14:a4: ff:7c:6a:47:ec:c0:40:ba:78:44:a2:df:54:4e:16: c5:36:a7:76:5b:f9:27:f9:d2:34:c8:09:e4:8a:12: f3:c9:79:a0:b6:40:85:13:a6:c8:cb:37:cf:7a:4b: 3c:de:49:fe:f7:7c:85:df:4f:9e:8b:0c:c5:6b:45: da:be:ed:f4:27:33:3a:5a:aa:e1:f8:ea:25:f0:38: 34:a7:cf:42:96:80:17:0f:e7:ef:bb:fd:07:ae:97: 59:db:7d:f5:41:6a:7e:b5:3f:66:83:e0:2a:dd:0b: 58:88:08:2c:d6:9e:ec:a9:13:bc:21:b8:cf:7f:81: c0:c6:21:94:bd:f6:81:56:75:b9:93:87:7e:65:ec: 9a:e3:bf:66:e2:26:52:a7:ce:58:5f:d7:5a:c1:0d: cc:e5:f3:07:c9:b0:05:1e:13:a0:82:a4:7d:a6:61: 50:d2:04:75:6f:55:b1:96:0f:3c:a5:a8:ff:3a:45: b2:53:87:98:45:0e:16:72:e4:fb:cd:b3:ef:8a:4d: d0:42:1e:d5:33:8b:d6:91:78:8e:6f:75:a4:37:6f: 33:6e:73:52:79:7b:3a:7d:71:2e:23:94:04:28:69: 43:a8:33:75:dd:4d:f9:cb:e5:cc:3d:43:47:dd:f4: ac:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7A:F7:DD:84:1A:67:03:83:BA:74:77:3B:AD:79:38:72:71:1D:1E:CD X509v3 Authority Key Identifier: keyid:F3:E6:A6:95:53:88:04:6E:01:3E:5E:D1:E0:CE:C6:C2:5E:85:30:94 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MYNET/8-amlVOIBG4BPl7R4M7Gwl6FMJQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:0c:13:ca:7b:4b:1b:6b:e4:2d:73:62:50:cf:87:ee:9b:1e: 5b:c5:11:ae:2a:b6:f5:11:99:b9:1a:3d:34:34:24:35:0e:7d: aa:f7:4b:68:a7:4a:f6:a4:c3:53:c4:5a:25:0b:1f:1a:4d:3b: b7:01:66:70:ec:ec:55:84:f6:93:a8:0f:71:ad:76:cd:c6:69: db:16:c0:69:cb:a3:16:f9:68:41:d7:00:f1:9b:7a:4c:77:10: b9:15:94:77:8f:22:14:56:63:09:a5:ff:50:23:06:09:38:5f: 8e:f5:0d:0f:58:43:6f:9a:71:04:ec:71:0a:b8:d0:4e:db:30: 82:03:44:c3:aa:70:81:b2:f0:ca:bb:35:77:1b:77:ab:6a:a0: 62:cc:23:f5:c6:5c:ff:71:b6:7e:26:2c:d0:84:64:19:96:e5: 0c:26:a1:31:bb:f2:f0:33:83:ff:ca:59:63:94:cd:96:0c:a1: fc:fa:6b:57:96:89:07:ac:04:0e:d6:97:70:87:f7:44:5b:4b: 74:ff:75:27:bd:af:5c:57:a0:b6:c0:bd:44:b1:98:69:4e:74: f3:fa:c5:8e:95:38:1a:ad:e6:94:20:9c:5f:c2:61:65:9c:59: 5a:9d:2a:81:cf:e0:da:4c:85:17:4c:84:c8:9d:a4:49:a0:06: 3e:56:64:9f -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICC4owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjNF NkE2OTU1Mzg4MDQ2RTAxM0U1RUQxRTBDRUM2QzI1RTg1MzA5NDAeFw0yNDA1MzEw OTQxMThaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDdBRjdERDg0MUE2NzAz ODNCQTc0NzczQkFENzkzODcyNzExRDFFQ0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC6cIOff0YHnpejxMwUpP98akfswEC6eESi31ROFsU2p3Zb+Sf5 0jTICeSKEvPJeaC2QIUTpsjLN896SzzeSf73fIXfT56LDMVrRdq+7fQnMzpaquH4 6iXwODSnz0KWgBcP5++7/Qeul1nbffVBan61P2aD4CrdC1iICCzWnuypE7whuM9/ gcDGIZS99oFWdbmTh35l7Jrjv2biJlKnzlhf11rBDczl8wfJsAUeE6CCpH2mYVDS BHVvVbGWDzylqP86RbJTh5hFDhZy5PvNs++KTdBCHtUzi9aReI5vdaQ3bzNuc1J5 ezp9cS4jlAQoaUOoM3XdTfnL5cw9Q0fd9Kx5AgMBAAGjggIFMIICATAdBgNVHQ4E FgQUevfdhBpnA4O6dHc7rXk4cnEdHs0wHwYDVR0jBBgwFoAU8+amlVOIBG4BPl7R 4M7Gwl6FMJQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTVlORVQv OC1hbWxWT0lCRzRCUGw3UjRNN0d3bDZGTUpRLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS84LWFtbFZPSUJHNEJQbDdSNE03R3dsNkZNSlEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NWU5FVC84LWFtbFZPSUJHNEJQbDdSNE03 R3dsNkZNSlEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiQwT yntLG2vkLXNiUM+H7pseW8URriq29RGZuRo9NDQkNQ59qvdLaKdK9qTDU8RaJQsf Gk07twFmcOzsVYT2k6gPca12zcZp2xbAacujFvloQdcA8Zt6THcQuRWUd48iFFZj CaX/UCMGCThfjvUND1hDb5pxBOxxCrjQTtswggNEw6pwgbLwyrs1dxt3q2qgYswj 9cZc/3G2fiYs0IRkGZblDCahMbvy8DOD/8pZY5TNlgyh/PprV5aJB6wEDtaXcIf3 RFtLdP91J72vXFegtsC9RLGYaU508/rFjpU4Gq3mlCCcX8JhZZxZWp0qgc/g2kyF F0yEyJ2kSaAGPlZknw== -----END CERTIFICATE-----Generated at Fri May 31 23:15:51 2024 by rpki-client on console-ams.rpki-client.org