Manifest

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.mft
File:                     RfMLTF7ObhLm2QiJ15QNjhhxBys.mft (raw, json)
Hash identifier:          nM9cBVphdtkctZ4udK2WanYHPq1TKoaHditP7uUphwU=
Subject key identifier:   3C:D6:46:90:69:C6:DB:A2:9F:32:42:0C:F1:07:60:D4:C4:92:61:0E
Authority key identifier: 45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B
Certificate issuer:       /CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
Certificate serial:       018B
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.mft
Manifest number:          0188
Signing time:             Sat 15 Jun 2024 08:58:32 +0000
Manifest this update:     Sat 15 Jun 2024 08:58:32 +0000
Manifest next update:     Mon 17 Jun 2024 08:58:32 +0000
Files and hashes:         1: RfMLTF7ObhLm2QiJ15QNjhhxBys.crl (hash: 3qfDARv4xJvyArBVpi9oKypDmgA1tYX1gvu7HM/qidA=)
                          2: UOoW5IvWYtf7a3radBHqn8K7oq0.roa (hash: 1k6o1/HbTcYwr1sSEx3vd9JdiMxQs8amE1cQyuLYNfY=)
                          3: z6Uc3_HFG68oAXsCHq-f8Lks0WI.roa (hash: q4V0oMpO/yBAQGUFUQzoK6e2dToxdrBV9P6NvQWOhrM=)

Validation:               OK
Signature path:           rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.mft
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 16 Jun 2024 10:12:47 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 395 (0x18b)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=45F30B4C5ECE6E12E6D90889D7940D8E1871072B
        Validity
            Not Before: Jun 15 08:58:32 2024 GMT
            Not After : Aug 31 03:10:53 2024 GMT
        Subject: CN=3CD6469069C6DBA29F32420CF10760D4C492610E
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:c4:0e:9e:37:bd:b4:86:96:42:be:41:85:d8:6e:
                    ce:58:1c:10:e0:88:d6:42:22:ab:c3:15:62:3f:9f:
                    f4:23:a6:2a:57:ff:a7:17:c9:e8:13:72:1b:34:aa:
                    c3:e3:2f:8b:40:40:0b:28:d6:59:53:8a:39:67:8c:
                    7d:d0:c5:f8:c7:4e:fe:d9:1f:49:f3:ee:28:4d:53:
                    7f:3d:f1:ab:6c:54:aa:0d:8f:d0:df:51:0c:42:e9:
                    bc:ee:c1:aa:9a:26:ef:cf:ef:20:c8:36:fc:8f:22:
                    8f:7d:05:f0:9f:63:80:84:6a:9d:4f:84:52:55:ab:
                    70:ea:41:e3:7b:71:3a:d8:8c:8d:11:d6:3a:8a:2b:
                    9e:1e:ef:f2:25:d8:a0:25:ba:6e:c8:ec:14:5a:b7:
                    be:fa:54:89:27:51:61:1c:3a:f1:20:ca:ae:cc:ae:
                    fa:cb:1f:c6:c4:7d:26:fe:a4:ac:0e:1d:82:cd:5a:
                    5e:c8:4a:6c:de:c3:04:8f:12:4d:23:de:8c:06:35:
                    ba:2d:60:70:e3:d8:bc:2f:0b:f2:14:08:f9:07:66:
                    c9:d3:2f:48:20:d7:d9:8d:77:3c:70:29:2b:de:56:
                    70:8e:c3:b8:95:16:4a:94:cf:04:0b:a1:7d:24:07:
                    fe:10:d6:7d:b0:f9:81:b9:38:8c:36:9a:d0:31:04:
                    77:3b
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                3C:D6:46:90:69:C6:DB:A2:9F:32:42:0C:F1:07:60:D4:C4:92:61:0E
            X509v3 Authority Key Identifier:
                keyid:45:F3:0B:4C:5E:CE:6E:12:E6:D9:08:89:D7:94:0D:8E:18:71:07:2B

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RfMLTF7ObhLm2QiJ15QNjhhxBys.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SMTRTCH/RfMLTF7ObhLm2QiJ15QNjhhxBys.mft
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         8e:b3:29:9f:0c:fb:f1:ce:9c:b2:7b:0f:28:ca:43:50:62:bc:
         a7:2d:c0:82:a6:ac:ca:21:65:aa:98:82:a7:48:b8:c2:e3:ab:
         59:42:b2:4b:69:77:92:3b:e1:ee:75:e7:53:1c:79:20:d3:07:
         75:9b:d2:45:7f:dc:1d:33:86:86:1d:00:2b:67:41:27:fa:95:
         87:ac:84:34:de:d8:8d:ee:4d:57:7e:82:cc:2d:01:cd:1d:48:
         9e:1b:b4:bc:2a:de:61:ed:dc:82:5d:88:fd:8f:76:5e:6a:dd:
         44:7b:36:25:7a:67:90:17:52:40:58:bd:90:5d:f8:76:91:7f:
         3d:29:44:9e:01:13:62:42:03:38:32:30:b5:c2:a9:ee:d9:2c:
         62:74:21:08:7f:01:d1:2b:25:a3:bf:45:f3:58:ca:3c:4c:15:
         a1:ed:36:a8:21:34:55:f7:b3:7e:db:09:72:f6:38:61:a3:ea:
         23:e1:31:14:6c:b8:4a:1e:49:15:4b:01:0b:4b:a1:29:a8:2f:
         de:1c:b9:55:71:07:55:39:6b:15:5a:25:64:6f:6e:ee:de:72:
         b4:73:69:ff:54:62:10:0c:04:a0:bd:b6:ce:2f:98:0c:02:55:
         5e:6b:55:26:8e:f4:0b:2e:3a:e7:2b:9a:10:ef:0d:45:13:e8:
         48:bc:c0:3e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Jun 15 15:40:38 2024 by rpki-client on console-ams.rpki-client.org