$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft File: p7aF2RtOmIGWTnfVtOI591VSoYs.mft (raw, json) Hash identifier: 5yc8VwKdyoMRSTxd6lM+26HxFfvQde79hrUQNQcpZ2E= Subject key identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 Authority key identifier: A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B Certificate issuer: /CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Certificate serial: B3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft Manifest number: B3 Signing time: Mon 25 Nov 2024 16:55:06 +0000 Manifest this update: Mon 25 Nov 2024 16:55:06 +0000 Manifest next update: Wed 27 Nov 2024 16:55:06 +0000 Files and hashes: 1: p7aF2RtOmIGWTnfVtOI591VSoYs.crl (hash: DLU7TDgKvbZqDnqfNsVEpU6GIZ8EMiuYh+EoHC8mBt0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 179 (0xb3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Validity Not Before: Nov 25 16:55:06 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B70344CCA18168928455839B008376099FCB1700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:48:fc:c9:8a:ce:0e:24:02:36:12:19:73:41: a8:7b:60:92:68:db:b4:be:5c:1b:7d:12:bd:22:00: ce:27:d7:35:cd:19:79:a4:8f:cc:d9:df:11:3c:51: f3:db:ba:cb:8c:09:2b:ae:30:15:a9:0b:20:ea:b7: 95:5d:17:2a:33:25:09:a0:8e:ff:d1:33:54:4f:42: 12:0f:5e:ca:6e:c0:68:66:ee:a5:aa:00:fc:94:82: 3f:ec:f7:cf:e7:93:72:01:ce:5e:a1:16:17:61:c7: de:86:b6:53:4f:61:f8:04:bc:e3:c3:90:ef:2c:b6: 76:57:76:f5:91:12:69:7b:a1:36:c4:8f:21:77:f7: 43:8a:14:8a:92:69:02:d3:82:30:99:d0:6d:dd:6e: d3:e9:22:8b:cf:e8:e1:3b:1c:a5:7b:5a:49:13:d1: ae:ac:46:03:11:0a:55:b3:43:77:7a:a0:89:5d:3c: b4:d2:c9:3a:6f:d8:07:3e:ce:de:38:ff:47:d9:5b: 05:68:39:d1:55:a8:23:3e:a1:56:01:ee:ba:e3:bd: c0:c5:60:6d:77:b7:62:aa:b2:00:1d:b2:16:bc:7a: db:4a:ba:d7:32:72:ba:a6:46:aa:d3:f5:2c:7e:b6: c2:51:d3:d6:80:b2:3c:3c:25:d7:3e:6a:69:5e:67: e3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 X509v3 Authority Key Identifier: keyid:A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:04:59:a2:62:5e:ce:ca:54:08:2e:4e:08:b1:f3:6c:1b:0e: 5e:e1:7e:80:36:a4:72:76:34:66:46:c7:74:ec:fa:53:74:b9: a2:f5:75:d2:af:be:a9:ad:92:e5:83:6d:a7:41:34:a6:91:89: dd:d8:ab:b6:71:31:ea:18:e2:23:0f:4b:67:38:08:ff:d4:05: 0a:a5:db:45:cb:9f:19:f9:7b:a5:84:6a:5c:2f:33:dd:24:82: da:40:d7:b4:29:91:e3:fe:5e:d1:e1:23:00:2f:d1:af:0d:e7: a5:fa:9a:b8:f2:87:21:3b:62:76:0a:c2:1d:be:61:56:5d:46: 19:0a:3e:b3:00:29:5d:f6:56:3d:28:36:75:de:7e:be:bc:f9: 7a:7a:8b:fd:66:df:a8:eb:28:56:fe:97:6e:ae:08:1b:63:d0: 5a:3d:3e:26:b1:7c:13:92:f1:45:a8:c0:a4:63:29:59:ba:6b: 97:fb:e9:09:6a:55:d9:39:29:ae:03:a6:75:b6:c9:ab:3a:58: 87:43:8a:9c:37:8f:ae:8a:f4:18:c0:8e:a8:3d:38:19:48:21: 9c:13:b2:d8:be:c4:0b:dd:03:08:64:c9:08:2e:d8:f3:05:7c: f0:59:3e:bd:7d:46:21:22:04:0e:89:91:7e:f5:4f:7c:18:97: 70:6f:19:20 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICALMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTdC Njg1RDkxQjRFOTg4MTk2NEU3N0Q1QjRFMjM5Rjc1NTUyQTE4QjAeFw0yNDExMjUx NjU1MDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI3MDM0NENDQTE4MTY4 OTI4NDU1ODM5QjAwODM3NjA5OUZDQjE3MDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDNSPzJis4OJAI2EhlzQah7YJJo27S+XBt9Er0iAM4n1zXNGXmk j8zZ3xE8UfPbusuMCSuuMBWpCyDqt5VdFyozJQmgjv/RM1RPQhIPXspuwGhm7qWq APyUgj/s98/nk3IBzl6hFhdhx96GtlNPYfgEvOPDkO8stnZXdvWREml7oTbEjyF3 90OKFIqSaQLTgjCZ0G3dbtPpIovP6OE7HKV7WkkT0a6sRgMRClWzQ3d6oIldPLTS yTpv2Ac+zt44/0fZWwVoOdFVqCM+oVYB7rrjvcDFYG13t2KqsgAdsha8ettKutcy crqmRqrT9Sx+tsJR09aAsjw8Jdc+amleZ+PhAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUtwNEzKGBaJKEVYObAIN2CZ/LFwAwHwYDVR0jBBgwFoAUp7aF2RtOmIGWTnfV tOI591VSoYswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJB UFBTL3A3YUYyUnRPbUlHV1RuZlZ0T0k1OTFWU29Zcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcDdhRjJSdE9tSUdXVG5mVnRPSTU5MVZTb1lzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVNQSVJBUFBTL3A3YUYyUnRPbUlH V1RuZlZ0T0k1OTFWU29Zcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQB8BFmiYl7OylQILk4IsfNsGw5e4X6ANqRydjRmRsd07PpTdLmi9XXSr76p rZLlg22nQTSmkYnd2Ku2cTHqGOIjD0tnOAj/1AUKpdtFy58Z+XulhGpcLzPdJILa QNe0KZHj/l7R4SMAL9GvDeel+pq48ochO2J2CsIdvmFWXUYZCj6zACld9lY9KDZ1 3n6+vPl6eov9Zt+o6yhW/pdurggbY9BaPT4msXwTkvFFqMCkYylZumuX++kJalXZ OSmuA6Z1tsmrOliHQ4qcN4+uivQYwI6oPTgZSCGcE7LYvsQL3QMIZMkILtjzBXzw WT69fUYhIgQOiZF+9U98GJdwbxkg -----END CERTIFICATE-----Generated at Mon Nov 25 19:59:00 2024 by rpki-client on console-ams.rpki-client.org