$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft File: p7aF2RtOmIGWTnfVtOI591VSoYs.mft (raw, json) Hash identifier: skisEqy28c7aT0bCg1jF0LjZUmI3G5uqaWS7OklX90s= Subject key identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 Authority key identifier: A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B Certificate issuer: /CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Certificate serial: 3D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft Manifest number: 3D Signing time: Sun 02 Jun 2024 08:33:16 +0000 Manifest this update: Sun 02 Jun 2024 08:33:16 +0000 Manifest next update: Tue 04 Jun 2024 08:33:16 +0000 Files and hashes: 1: p7aF2RtOmIGWTnfVtOI591VSoYs.crl (hash: FBGtJGLGgtnwVooD/R5PZTL4Ji510qIXxWMebGhUjc4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 08:33:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 61 (0x3d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A7B685D91B4E9881964E77D5B4E239F75552A18B Validity Not Before: Jun 2 08:33:16 2024 GMT Not After : Jan 29 15:30:22 2025 GMT Subject: CN=B70344CCA18168928455839B008376099FCB1700 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:48:fc:c9:8a:ce:0e:24:02:36:12:19:73:41: a8:7b:60:92:68:db:b4:be:5c:1b:7d:12:bd:22:00: ce:27:d7:35:cd:19:79:a4:8f:cc:d9:df:11:3c:51: f3:db:ba:cb:8c:09:2b:ae:30:15:a9:0b:20:ea:b7: 95:5d:17:2a:33:25:09:a0:8e:ff:d1:33:54:4f:42: 12:0f:5e:ca:6e:c0:68:66:ee:a5:aa:00:fc:94:82: 3f:ec:f7:cf:e7:93:72:01:ce:5e:a1:16:17:61:c7: de:86:b6:53:4f:61:f8:04:bc:e3:c3:90:ef:2c:b6: 76:57:76:f5:91:12:69:7b:a1:36:c4:8f:21:77:f7: 43:8a:14:8a:92:69:02:d3:82:30:99:d0:6d:dd:6e: d3:e9:22:8b:cf:e8:e1:3b:1c:a5:7b:5a:49:13:d1: ae:ac:46:03:11:0a:55:b3:43:77:7a:a0:89:5d:3c: b4:d2:c9:3a:6f:d8:07:3e:ce:de:38:ff:47:d9:5b: 05:68:39:d1:55:a8:23:3e:a1:56:01:ee:ba:e3:bd: c0:c5:60:6d:77:b7:62:aa:b2:00:1d:b2:16:bc:7a: db:4a:ba:d7:32:72:ba:a6:46:aa:d3:f5:2c:7e:b6: c2:51:d3:d6:80:b2:3c:3c:25:d7:3e:6a:69:5e:67: e3:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:03:44:CC:A1:81:68:92:84:55:83:9B:00:83:76:09:9F:CB:17:00 X509v3 Authority Key Identifier: keyid:A7:B6:85:D9:1B:4E:98:81:96:4E:77:D5:B4:E2:39:F7:55:52:A1:8B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/p7aF2RtOmIGWTnfVtOI591VSoYs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ASPIRAPPS/p7aF2RtOmIGWTnfVtOI591VSoYs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 96:51:5d:77:81:30:5f:66:a4:12:a1:b0:50:9b:37:ba:fe:9b: 29:ac:8b:87:22:f3:ad:85:b4:da:81:45:d5:a6:10:41:1b:1a: 1f:c8:fd:2c:3f:b9:6e:4d:83:db:0a:cf:45:3b:82:fe:e2:3a: b2:16:ca:52:c4:d9:3a:5f:57:15:aa:e7:50:ce:83:fa:f7:e6: 13:b7:e9:2b:a5:e3:39:6f:97:f1:6b:de:1d:6f:82:ac:04:80: 21:80:f0:9c:08:1e:c5:fa:88:98:3a:2e:fa:b1:3b:89:a9:19: 2d:58:b3:44:5b:51:15:a1:19:ad:a1:3e:90:d6:e6:68:10:d8: b9:99:f1:38:1c:66:71:2c:66:7f:51:ff:dd:ef:a1:44:c0:64: 22:70:33:c3:c8:43:07:5f:7f:aa:5c:cd:27:ed:20:6c:04:d7: b9:c2:a0:46:55:c5:28:15:f6:9e:45:53:a0:4e:b1:c6:d4:9d: a4:eb:2a:10:59:a2:96:78:06:5a:a1:56:87:b2:4f:40:76:7d: 8a:89:6a:e7:42:9c:3c:ef:0b:e6:89:10:97:84:6a:1f:68:3d: 5a:38:77:af:c4:08:dd:8b:c2:2d:8e:f7:5e:ad:23:9d:f6:e0: 7a:d3:cc:77:ad:4c:aa:22:98:36:5a:4e:02:fe:b3:38:87:72: 93:7d:e2:4a -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIBPTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhBN0I2 ODVEOTFCNEU5ODgxOTY0RTc3RDVCNEUyMzlGNzU1NTJBMThCMB4XDTI0MDYwMjA4 MzMxNloXDTI1MDEyOTE1MzAyMlowMzExMC8GA1UEAxMoQjcwMzQ0Q0NBMTgxNjg5 Mjg0NTU4MzlCMDA4Mzc2MDk5RkNCMTcwMDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM1I/MmKzg4kAjYSGXNBqHtgkmjbtL5cG30SvSIAzifXNc0ZeaSP zNnfETxR89u6y4wJK64wFakLIOq3lV0XKjMlCaCO/9EzVE9CEg9eym7AaGbupaoA /JSCP+z3z+eTcgHOXqEWF2HH3oa2U09h+AS848OQ7yy2dld29ZESaXuhNsSPIXf3 Q4oUipJpAtOCMJnQbd1u0+kii8/o4TscpXtaSRPRrqxGAxEKVbNDd3qgiV08tNLJ Om/YBz7O3jj/R9lbBWg50VWoIz6hVgHuuuO9wMVgbXe3YqqyAB2yFrx620q61zJy uqZGqtP1LH62wlHT1oCyPDwl1z5qaV5n4+ECAwEAAaOCAg0wggIJMB0GA1UdDgQW BBS3A0TMoYFokoRVg5sAg3YJn8sXADAfBgNVHSMEGDAWgBSntoXZG06YgZZOd9W0 4jn3VVKhizAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU1BJUkFQ UFMvcDdhRjJSdE9tSUdXVG5mVnRPSTU5MVZTb1lzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9wN2FGMlJ0T21JR1dUbmZWdE9JNTkxVlNvWXMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9BU1BJUkFQUFMvcDdhRjJSdE9tSUdX VG5mVnRPSTU5MVZTb1lzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJZRXXeBMF9mpBKhsFCbN7r+mymsi4ci862FtNqBRdWmEEEbGh/I/Sw/uW5N g9sKz0U7gv7iOrIWylLE2TpfVxWq51DOg/r35hO36Sul4zlvl/Fr3h1vgqwEgCGA 8JwIHsX6iJg6LvqxO4mpGS1Ys0RbURWhGa2hPpDW5mgQ2LmZ8TgcZnEsZn9R/93v oUTAZCJwM8PIQwdff6pczSftIGwE17nCoEZVxSgV9p5FU6BOscbUnaTrKhBZopZ4 BlqhVoeyT0B2fYqJaudCnDzvC+aJEJeEah9oPVo4d6/ECN2Lwi2O916tI5324HrT zHetTKoimDZaTgL+sziHcpN94ko= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:40 2024 by rpki-client on console-ams.rpki-client.org