$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft File: zLVFQVOszs6FINM5B9VOVsXKmks.mft (raw, json) Hash identifier: l7GMvkxC3GLJ0L6Xlchxsk2PtKlQzds9IC7n88xSORw= Subject key identifier: 9F:76:E0:19:DB:14:62:7E:DD:F8:6F:6D:2E:AA:E9:BD:0E:B9:D8:8C Authority key identifier: CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B Certificate issuer: /CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Certificate serial: 0C22 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft Manifest number: 0BDD Signing time: Sat 18 May 2024 22:14:14 +0000 Manifest this update: Sat 18 May 2024 22:14:14 +0000 Manifest next update: Mon 20 May 2024 22:14:14 +0000 Files and hashes: 1: 5kJF2Sgxqkp8KA2cJBS5OBCSQNw.roa (hash: 4kWEExZ39X7TizROSJ57pG2Ay2bQQ5J43jT+0aC5IKs=) 2: 9paD2t3tHXBiIONMgjfdpAT8w_o.roa (hash: Mbg/d54pFWYvUBwVzE7jUQrRld/lFZK/QrzlPRwXPkI=) 3: A8oCjdRrIoJ6BXq8U_PkmwtVY_8.roa (hash: S83iHrTt8IVEMVIya5LQY4h8TL0jizpTGCXOE4vGHHM=) 4: ClegjVFmg3gSvwuE91SW7AnxCSM.roa (hash: PYALLxLlqN7iRW7Mn8qaIRnQrxLUXnXqUpIXZAQ2698=) 5: FTJfJ0QSFn3byFNupq7S1CNPC8s.roa (hash: X7EdtyTSz9kwqomaQG97Ll2HxzrXwbBYF2PbtKSRCgg=) 6: JBohKoHhqd-jPFHVK3dnAsmJ_w4.roa (hash: +idbc2e9VX+HrXcFb+q5i7osXbzrbCkXq5MFpQ/FSpw=) 7: Krdvg5NwPVVCzQste5rkNoeFtfI.roa (hash: No3RIX6C9i2Zk6vz8s9pzqet0d5FSsqe69EwudjvdyU=) 8: L1XPqjavjJvtGFKIRBX8SlOOyeg.roa (hash: dqwZrggDnbyUmAvn3aC5VXb2gaDoTmSJhndxH88QAN0=) 9: NtjKZpAPVp4w66j4QER99G0n03M.roa (hash: vmyA1LsIt5ZxgqA1aMMCKD2zjF3Wm28+i6M8m9AEEZ4=) 10: XGS2iwe5CcRRwnYF4ynJu048R7o.roa (hash: HTJYdHS8XsqPUFs7GRnAjSmZc1yN10DGWHnDn+2YcxQ=) 11: YoYoE11xI9vneHSJMzQTpMpUZo0.roa (hash: iTuLyQfL/ATM2KlYMWuRXqSluv2dnXUvXEorRzuWdjg=) 12: eeoZoN7R_LlK7E8QZ_xb0GDKfKY.roa (hash: WyAkax+PgDXfgH77cRid7hLWTS3yBMtoSp22+l55QN0=) 13: qkTBklndsB0DS1ex_moWuHKSpmI.roa (hash: E9NizxJRJkeiQ2f1ylhJAgGCNplJdOIK2D3SaeZ9IEc=) 14: tgfqjbvUrYCqExG-aOHtOwLnDac.roa (hash: pL8SlTwxk6KgZjv2gQruhkM7/MT8cJ3aif/pulrC7nY=) 15: zLVFQVOszs6FINM5B9VOVsXKmks.crl (hash: K29hZQ4af1cywK3dGncs2hrLddTDckVOj2y8pLV3Q40=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 May 2024 19:28:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3106 (0xc22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=CCB5454153ACCECE8520D33907D54E56C5CA9A4B Validity Not Before: May 18 22:14:14 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=9F76E019DB14627EDDF86F6D2EAAE9BD0EB9D88C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:99:36:6f:0a:b2:8a:95:22:aa:15:c7:66:54: 03:8e:a7:06:b5:49:08:1a:f1:47:9b:e2:3e:df:65: 7f:3f:12:ea:c3:84:47:3f:b2:41:b6:1a:22:66:66: 20:59:5d:7f:10:f7:ec:9a:6d:9b:c0:10:fd:4a:a1: bc:cd:f3:8f:a1:5e:44:69:3b:26:1f:80:e7:c8:19: db:d2:03:dd:8f:9b:cf:6d:f8:d9:a3:2b:7c:ff:bc: 6d:cb:12:89:93:28:33:34:8f:ed:4f:7b:6c:53:24: 38:0b:30:1f:b1:13:5b:a8:a5:13:c2:20:43:98:e6: 12:b1:17:e1:9b:19:93:c0:45:86:36:fb:cb:f6:07: b2:c7:82:6a:08:7e:71:4b:da:ba:c6:e7:af:18:e9: d7:b9:4f:33:f9:93:9e:98:76:9d:b6:ba:a8:49:41: bb:41:98:28:b0:90:c4:a3:c2:dd:2d:92:34:b1:6f: b4:93:f5:11:a2:12:e1:86:3e:27:6c:6b:93:d1:00: 90:69:fa:2f:a9:a5:2c:be:88:9c:ed:28:fc:28:85: a1:8e:ab:45:36:3f:d5:50:57:00:d9:52:03:04:c6: 95:c2:76:a8:a6:a4:1a:49:bd:44:f2:e2:a9:6a:3c: ac:ab:81:aa:3f:f3:48:b7:e6:e8:a8:ee:f9:9d:03: d7:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:76:E0:19:DB:14:62:7E:DD:F8:6F:6D:2E:AA:E9:BD:0E:B9:D8:8C X509v3 Authority Key Identifier: keyid:CC:B5:45:41:53:AC:CE:CE:85:20:D3:39:07:D5:4E:56:C5:CA:9A:4B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/zLVFQVOszs6FINM5B9VOVsXKmks.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SONET/zLVFQVOszs6FINM5B9VOVsXKmks.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 08:68:7a:65:14:71:ef:e1:7f:01:f5:3a:19:8c:e1:fb:d0:cc: ea:83:2d:5f:18:8e:b1:c5:03:8b:67:d8:47:2b:1e:9b:da:2b: da:36:5e:95:23:5c:7b:85:dc:bb:ce:07:52:11:c3:e7:42:75: 2e:76:03:e8:6e:62:de:6d:72:07:f2:41:de:f7:c0:de:a6:cc: 5d:6a:22:09:26:89:54:ac:10:97:20:74:01:ba:63:02:e6:26: 79:58:a6:a4:40:9d:4e:a3:00:49:c8:48:de:3c:85:6b:13:c7: 19:63:25:1a:9e:5b:a3:25:fd:98:66:de:63:6a:f5:a9:dc:f6: b1:fb:8e:6e:66:86:cc:a5:fb:5b:64:2b:74:be:59:80:d0:95: c7:5b:a5:49:a7:51:e6:1c:e1:0f:bd:aa:08:47:81:f9:dd:88: 6a:b3:80:49:9a:ac:92:5b:d9:68:e5:c5:ff:2d:bb:b2:48:bf: 3e:b1:74:dc:9b:3e:79:45:6b:32:f4:12:c0:65:91:9b:4f:26: 57:8d:79:53:d7:61:c0:e0:81:e9:cd:54:fb:0f:b6:78:c2:9c: d3:10:df:2b:fc:e5:95:f0:db:25:34:67:f2:2e:8e:45:f3:c3: 75:0c:64:54:9d:23:49:66:d4:96:e4:fa:38:9b:ab:4d:3e:cb: 40:0c:a7:17 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDCIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQ0NC NTQ1NDE1M0FDQ0VDRTg1MjBEMzM5MDdENTRFNTZDNUNBOUE0QjAeFw0yNDA1MTgy MjE0MTRaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDlGNzZFMDE5REIxNDYy N0VEREY4NkY2RDJFQUFFOUJEMEVCOUQ4OEMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCimTZvCrKKlSKqFcdmVAOOpwa1SQga8Ueb4j7fZX8/EurDhEc/ skG2GiJmZiBZXX8Q9+yabZvAEP1KobzN84+hXkRpOyYfgOfIGdvSA92Pm89t+Nmj K3z/vG3LEomTKDM0j+1Pe2xTJDgLMB+xE1uopRPCIEOY5hKxF+GbGZPARYY2+8v2 B7LHgmoIfnFL2rrG568Y6de5TzP5k56Ydp22uqhJQbtBmCiwkMSjwt0tkjSxb7ST 9RGiEuGGPidsa5PRAJBp+i+ppSy+iJztKPwohaGOq0U2P9VQVwDZUgMExpXCdqim pBpJvUTy4qlqPKyrgao/80i35uio7vmdA9fXAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUn3bgGdsUYn7d+G9tLqrpvQ652IwwHwYDVR0jBBgwFoAUzLVFQVOszs6FINM5 B9VOVsXKmkswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU09ORVQv ekxWRlFWT3N6czZGSU5NNUI5Vk9Wc1hLbWtzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS96TFZGUVZPc3pzNkZJTk01QjlWT1ZzWEtta3MuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TT05FVC96TFZGUVZPc3pzNkZJTk01QjlW T1ZzWEtta3MubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEACGh6 ZRRx7+F/AfU6GYzh+9DM6oMtXxiOscUDi2fYRysem9or2jZelSNce4Xcu84HUhHD 50J1LnYD6G5i3m1yB/JB3vfA3qbMXWoiCSaJVKwQlyB0AbpjAuYmeVimpECdTqMA SchI3jyFaxPHGWMlGp5boyX9mGbeY2r1qdz2sfuObmaGzKX7W2QrdL5ZgNCVx1ul SadR5hzhD72qCEeB+d2IarOASZqsklvZaOXF/y27ski/PrF03Js+eUVrMvQSwGWR m08mV415U9dhwOCB6c1U+w+2eMKc0xDfK/zllfDbJTRn8i6ORfPDdQxkVJ0jSWbU luT6OJurTT7LQAynFw== -----END CERTIFICATE-----Generated at Sun May 19 10:32:41 2024 by rpki-client on console-ams.rpki-client.org