$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.mft File: v4KjrBFFUDB0PAp0NxH4oNjrrig.mft (raw, json) Hash identifier: 2kJnjfeQsf9d3JBOrfck4zz3JY8ugZ1f+pNnNnOKAOs= Subject key identifier: 99:07:56:92:5A:94:40:AC:54:13:73:1D:7F:01:D3:B2:C3:96:12:E7 Authority key identifier: BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 Certificate issuer: /CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Certificate serial: 0C14 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.mft Manifest number: 0BE7 Signing time: Fri 31 May 2024 16:26:09 +0000 Manifest this update: Fri 31 May 2024 16:26:09 +0000 Manifest next update: Sun 02 Jun 2024 16:26:09 +0000 Files and hashes: 1: 5ZNCC0i6pKTuYopUhxZSAU0RqDQ.roa (hash: CjhhZ+wEQz6RJAuBAxQxkLTHKBupDEtKFOpBtntGFWQ=) 2: Fu_c-n-nncEKHXXPT8LOta8z6A0.roa (hash: RDfIYrJD2g56h5JAYcsP4h6qxvgn3Amy3u6guYdbwro=) 3: LkgOdw9Ite_QESWGOGHAUEddwTo.roa (hash: HIMMU4RRf0Kn2p7+JTy0dxh5whjWdEbATGs6iaEFujo=) 4: MKQG_L6s7WhO3xUMxlHewXALKtQ.roa (hash: SLO4w09MbgdTpcEAOQtEkHt4uOO5MnFtLZAIQHCSbkk=) 5: O2M29SVdv-eCeFLKR8nLCVoAk1k.roa (hash: oZsesBBKRoIZup0+FfPlaO1vnBtNaQJN5qQY4tpnHMc=) 6: gTrJ-9PFBcC2LqGPlD37JFNIe6s.roa (hash: IQbyezD+BmGZhEBzzU62FcBqy5+fKtw0NN4Tbo2E4m8=) 7: mvV4fMAjb_FiMIk1rqFPZOfCNcM.roa (hash: E+AGgTwhs8zO7t4iuMctZv0JJfanUHHxX6lbe0xu2Jg=) 8: v4KjrBFFUDB0PAp0NxH4oNjrrig.crl (hash: fkvcdB1Fiub55xwI0hkgAEmLeiTZm6+gZjfy9+P/zCk=) 9: yY5ERgxC-vrclluEQVeMPnEdfVI.roa (hash: 3JPv8TYiHwxGLR96S0XVzgUcIdWe1yoF+ztmZdMbbK4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 02 Jun 2024 16:26:09 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3092 (0xc14) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=BF82A3AC11455030743C0A743711F8A0D8EBAE28 Validity Not Before: May 31 16:26:09 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=990756925A9440AC5413731D7F01D3B2C39612E7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:5f:f0:0d:2e:82:80:f9:1c:3c:ec:e7:8a:ee: f9:24:0c:52:20:94:52:7c:ae:5c:71:8c:31:44:81: a9:2e:23:9d:e6:9e:16:0b:5c:b6:9d:0f:cb:5c:6a: c8:65:ee:e7:43:25:c1:dc:e4:98:1e:2a:73:c8:3a: 6d:e5:f4:26:02:d8:da:40:fb:cd:3c:c7:d5:11:45: 65:fe:0e:cb:5f:f0:d9:4a:46:fb:30:75:37:68:02: 6c:b0:18:8f:c0:90:6d:3e:b1:ce:d3:aa:38:91:5e: 15:7c:c9:6b:ce:d3:1d:ef:79:45:5f:81:42:02:94: 95:ea:29:2b:70:5b:89:cb:15:f6:1a:22:7d:88:60: 1c:2b:0e:77:e1:fb:bd:5a:a6:ab:61:a7:82:a3:b5: 5f:9b:91:f7:72:a4:99:76:d4:0c:ba:02:e2:79:f1: d0:ec:cd:45:85:5f:76:fe:67:26:f8:a8:60:a7:52: 57:65:f1:27:1c:0b:e0:76:25:98:bd:45:78:df:be: 6a:16:c3:70:c0:de:6b:01:2d:35:f9:0f:1f:20:2b: 1a:5a:05:11:30:b4:4c:d6:4d:44:fd:72:11:6f:8b: 81:fe:d6:de:e3:fd:0c:ca:50:7e:f0:04:fc:8f:f2: 2c:73:bb:2a:70:07:44:de:5f:19:04:21:13:96:02: aa:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:07:56:92:5A:94:40:AC:54:13:73:1D:7F:01:D3:B2:C3:96:12:E7 X509v3 Authority Key Identifier: keyid:BF:82:A3:AC:11:45:50:30:74:3C:0A:74:37:11:F8:A0:D8:EB:AE:28 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/v4KjrBFFUDB0PAp0NxH4oNjrrig.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TCB/v4KjrBFFUDB0PAp0NxH4oNjrrig.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 71:98:01:0c:7c:49:c9:ff:09:94:41:50:50:fa:ed:62:4a:28: 0b:af:2f:f5:0b:65:50:96:b7:b0:7b:3a:00:d3:4f:14:5b:2a: 32:49:5f:d7:5a:94:6d:4e:3f:d0:f9:a7:17:47:d6:fc:db:7b: 85:4c:12:dd:d9:a7:29:a7:05:6f:bb:71:47:7a:49:8e:12:3e: 7c:4d:2d:94:35:df:31:b8:64:b4:3a:e7:48:64:a2:9f:c4:b2: 74:47:8d:f3:81:2c:26:ad:8b:07:1a:dc:bf:e1:df:bb:19:d6: 78:64:39:20:51:6e:85:db:99:56:53:0d:c4:a1:51:cf:d8:48: e8:26:fb:66:07:b2:1a:da:87:e3:9a:01:01:fc:33:c0:9e:d6: 6a:d0:04:8f:20:f7:68:be:4c:7c:86:9d:16:08:6d:5b:ef:b5: 54:65:7d:39:17:5f:ea:ab:bc:9f:5e:d4:bc:9b:03:ef:de:89: 69:a4:48:f0:d9:47:71:8a:5d:4a:dd:45:7d:22:ce:ce:3b:3d: a3:d9:44:df:68:7d:0a:f6:ce:a3:3b:1a:a4:5f:e0:fa:61:b0: 4a:bc:f0:95:ca:b0:94:b7:94:c7:18:44:cc:7c:96:a8:f1:f2: 3d:b9:3a:8b:ff:d6:1a:4c:bf:f5:7e:4c:8f:42:7a:5c:75:73: 8f:ba:4a:03 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICDBQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQkY4 MkEzQUMxMTQ1NTAzMDc0M0MwQTc0MzcxMUY4QTBEOEVCQUUyODAeFw0yNDA1MzEx NjI2MDlaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDk5MDc1NjkyNUE5NDQw QUM1NDEzNzMxRDdGMDFEM0IyQzM5NjEyRTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDOX/ANLoKA+Rw87OeK7vkkDFIglFJ8rlxxjDFEgakuI53mnhYL XLadD8tcashl7udDJcHc5JgeKnPIOm3l9CYC2NpA+808x9URRWX+Dstf8NlKRvsw dTdoAmywGI/AkG0+sc7TqjiRXhV8yWvO0x3veUVfgUIClJXqKStwW4nLFfYaIn2I YBwrDnfh+71apqthp4KjtV+bkfdypJl21Ay6AuJ58dDszUWFX3b+Zyb4qGCnUldl 8SccC+B2JZi9RXjfvmoWw3DA3msBLTX5Dx8gKxpaBREwtEzWTUT9chFvi4H+1t7j /QzKUH7wBPyP8ixzuypwB0TeXxkEIROWAqrlAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUmQdWklqUQKxUE3MdfwHTssOWEucwHwYDVR0jBBgwFoAUv4KjrBFFUDB0PAp0 NxH4oNjrrigwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL3Y0 S2pyQkZGVURCMFBBcDBOeEg0b05qcnJpZy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev djRLanJCRkZVREIwUEFwME54SDRvTmpycmlnLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVENCL3Y0S2pyQkZGVURCMFBBcDBOeEg0b05q cnJpZy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBxmAEMfEnJ /wmUQVBQ+u1iSigLry/1C2VQlrewezoA008UWyoySV/XWpRtTj/Q+acXR9b823uF TBLd2acppwVvu3FHekmOEj58TS2UNd8xuGS0OudIZKKfxLJ0R43zgSwmrYsHGty/ 4d+7GdZ4ZDkgUW6F25lWUw3EoVHP2EjoJvtmB7Ia2ofjmgEB/DPAntZq0ASPIPdo vkx8hp0WCG1b77VUZX05F1/qq7yfXtS8mwPv3olppEjw2Udxil1K3UV9Is7OOz2j 2UTfaH0K9s6jOxqkX+D6YbBKvPCVyrCUt5THGETMfJao8fI9uTqL/9YaTL/1fkyP QnpcdXOPukoD -----END CERTIFICATE-----Generated at Sat Jun 1 15:05:03 2024 by rpki-client on console-fra.rpki-client.org