$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft File: cJhPAIyij2R120JjU7_RxDPYvBo.mft (raw, json) Hash identifier: 9JcdiBb5RtXud+50WPQJguOv2jjAENjmWQTEeDs/ONQ= Subject key identifier: E9:C6:02:C2:C3:AB:88:79:C8:2F:5A:CD:6A:4B:0E:AC:A0:20:AA:66 Authority key identifier: 70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A Certificate issuer: /CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Certificate serial: 0C87 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft Manifest number: 0C59 Signing time: Sun 24 Nov 2024 06:24:36 +0000 Manifest this update: Sun 24 Nov 2024 06:24:36 +0000 Manifest next update: Tue 26 Nov 2024 06:24:36 +0000 Files and hashes: 1: 1hnkuSDbPPk63gEP4Mw5pMxhVhI.roa (hash: 4YAP8jIOt3Sw2dVfJrJ7CzsP/SjCgJQ69VAfg//TXAs=) 2: 9ETl0qf4dtBMGDPkw5TMdaBnoks.roa (hash: xm9+e5ND+YURgppgI9azco0LnjXudQiPlMxZraQqM4I=) 3: NvK7cTSUJ8P2XKmS62FZ0Co30wQ.roa (hash: dYxWNG8u3K9GBTw2ug0B/Esnh8PCMuhh1kXK7B4Exvw=) 4: S6bsOwEkFrdbuekuUs9F-xjPHjE.roa (hash: BnBWQNEgpaeLgLXZWqNNXsEjfCcB4deoMf4EqsGV7q8=) 5: WvWB3m7CEnCGEvCsOpYwxDU_j3k.roa (hash: aUZf6y1XUSujlg99Obkf7xj/ng9zlgkHDR9l/J1i800=) 6: bUbOklQb9tiSTIRa6L4MkxdIoUI.roa (hash: jzVqkuG1clGGjh901OLB6Br2NdiMM7F1NGr32TOtTQA=) 7: cJhPAIyij2R120JjU7_RxDPYvBo.crl (hash: 1XvFvVyNbYzOgxxzIlcjCKwZ23R+hA1wwCcV9FXFa+w=) 8: hMGLRtY_fpSNVSmb-C8D5ttoZn0.roa (hash: 9YlWrDeIb2LZnLAKnhIyTMbU2RI1HQFUttzxCOMKMQg=) 9: sw5GiX8dYNGKQw04li2dTT8JC-o.roa (hash: RrcVZ0TzBDWVcMbufKiPR6KdrJvaass26wPWlFE8fP0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3207 (0xc87) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=70984F008CA28F6475DB426353BFD1C433D8BC1A Validity Not Before: Nov 24 06:24:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E9C602C2C3AB8879C82F5ACD6A4B0EACA020AA66 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:96:4a:e6:25:b3:c9:a8:72:89:ad:c7:e8:56: 3c:86:b4:8d:a9:ce:31:78:73:63:8c:c0:5a:40:91: 71:02:e9:57:06:67:78:de:2b:fe:e2:fb:d5:0e:8e: b2:a0:ec:68:64:cf:ac:dc:7e:4c:d7:de:9a:e5:e9: f2:cb:23:50:2e:01:3b:53:2e:83:33:ef:99:70:f9: b6:64:e8:67:bc:04:c8:e3:c2:19:57:1a:f0:c6:44: 1f:e7:18:6f:e3:cc:e9:57:c0:8a:a6:d4:ca:46:ef: 89:49:09:3e:0c:77:de:08:05:16:58:6a:7d:df:cf: 47:b1:df:75:97:7c:2f:16:a2:e2:bc:9b:dc:07:8a: 40:f6:83:a0:47:ce:ac:6b:d8:26:8a:b2:77:19:6c: 9d:3e:4e:af:14:ae:9f:73:ec:d3:66:9c:e2:7c:29: d5:18:b0:f8:d5:c0:25:11:0d:37:ef:44:0f:3e:c1: e1:77:56:47:fa:79:3c:bd:82:c7:a8:72:e4:46:e1: 16:02:f0:03:98:ea:d5:46:a3:2b:85:d0:36:21:e6: ab:c0:58:c3:35:b6:4f:76:ee:76:bf:89:34:b0:f8: 6a:ac:73:98:89:85:1c:a8:e2:bd:42:29:fa:a5:ac: 98:95:fa:aa:ae:22:25:1b:31:cd:b9:75:f1:b0:a0: 1a:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:C6:02:C2:C3:AB:88:79:C8:2F:5A:CD:6A:4B:0E:AC:A0:20:AA:66 X509v3 Authority Key Identifier: keyid:70:98:4F:00:8C:A2:8F:64:75:DB:42:63:53:BF:D1:C4:33:D8:BC:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/cJhPAIyij2R120JjU7_RxDPYvBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASNET/cJhPAIyij2R120JjU7_RxDPYvBo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b1:86:97:c9:3f:0b:c2:81:d6:10:47:6f:40:16:4a:91:6a:c4: 7f:73:37:e2:9a:1b:78:5e:f3:70:f9:2b:98:6a:77:94:34:0d: 08:6f:a0:24:97:b6:5b:4c:d3:5e:01:35:96:72:73:b7:e8:de: d6:5f:a4:dd:d8:43:10:02:10:c4:b9:30:e6:d9:ef:bf:e0:10: 80:db:01:a9:9b:c9:f8:d1:f5:23:3e:55:01:3b:77:bb:8d:3b: 60:50:01:02:93:a3:97:47:3b:87:fb:6e:d6:bc:1d:24:e9:e3: 53:70:41:03:6f:b0:d1:7d:fa:3e:e3:c3:76:f3:79:52:b3:24: 4e:fb:dc:44:9d:20:9f:ae:b8:75:63:6c:e4:38:7f:60:42:bf: dd:92:32:0a:ae:6d:c9:78:53:f4:f4:8f:92:db:71:45:de:35: 3b:82:e1:47:77:3a:06:09:dd:68:71:3b:24:fe:a4:f0:4e:9f: 33:16:c2:6e:4a:bd:52:60:73:fd:5c:d1:be:0e:c2:fa:b7:2a: ea:5a:b6:47:5b:91:20:4a:8d:18:76:9c:0a:9f:5b:48:ea:f6: 38:03:4b:67:ce:5e:8d:9f:f2:e6:d5:e7:8c:b0:7c:86:99:9f: 2f:2e:70:03:41:5e:30:ac:61:b8:d3:68:4e:9e:3f:e3:9b:b8: 1a:9c:a0:98 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDIcwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNzA5 ODRGMDA4Q0EyOEY2NDc1REI0MjYzNTNCRkQxQzQzM0Q4QkMxQTAeFw0yNDExMjQw NjI0MzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5QzYwMkMyQzNBQjg4 NzlDODJGNUFDRDZBNEIwRUFDQTAyMEFBNjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLlkrmJbPJqHKJrcfoVjyGtI2pzjF4c2OMwFpAkXEC6VcGZ3je K/7i+9UOjrKg7Ghkz6zcfkzX3prl6fLLI1AuATtTLoMz75lw+bZk6Ge8BMjjwhlX GvDGRB/nGG/jzOlXwIqm1MpG74lJCT4Md94IBRZYan3fz0ex33WXfC8WouK8m9wH ikD2g6BHzqxr2CaKsncZbJ0+Tq8Urp9z7NNmnOJ8KdUYsPjVwCURDTfvRA8+weF3 Vkf6eTy9gseocuRG4RYC8AOY6tVGoyuF0DYh5qvAWMM1tk927na/iTSw+Gqsc5iJ hRyo4r1CKfqlrJiV+qquIiUbMc25dfGwoBqXAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU6cYCwsOriHnIL1rNaksOrKAgqmYwHwYDVR0jBBgwFoAUcJhPAIyij2R120Jj U7/RxDPYvBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNORVQv Y0poUEFJeWlqMlIxMjBKalU3X1J4RFBZdkJvLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9jSmhQQUl5aWoyUjEyMEpqVTdfUnhEUFl2Qm8uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU05FVC9jSmhQQUl5aWoyUjEyMEpqVTdf UnhEUFl2Qm8ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAsYaX yT8LwoHWEEdvQBZKkWrEf3M34pobeF7zcPkrmGp3lDQNCG+gJJe2W0zTXgE1lnJz t+je1l+k3dhDEAIQxLkw5tnvv+AQgNsBqZvJ+NH1Iz5VATt3u407YFABApOjl0c7 h/tu1rwdJOnjU3BBA2+w0X36PuPDdvN5UrMkTvvcRJ0gn664dWNs5Dh/YEK/3ZIy Cq5tyXhT9PSPkttxRd41O4LhR3c6BgndaHE7JP6k8E6fMxbCbkq9UmBz/VzRvg7C +rcq6lq2R1uRIEqNGHacCp9bSOr2OANLZ85ejZ/y5tXnjLB8hpmfLy5wA0FeMKxh uNNoTp4/45u4GpygmA== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:01 2024 by rpki-client on console-ams.rpki-client.org