$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft File: 639Ki3shDbkgjtWANXBF5Zcd4NM.mft (raw, json) Hash identifier: azBLjQPdWqwnrySQCR49wM2GjgrFID4a+ZL6Jci5Of4= Subject key identifier: C6:A2:9D:DF:66:72:B4:B2:BC:E6:75:15:86:81:5C:B8:8C:94:C3:F3 Authority key identifier: EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3 Certificate issuer: /CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3 Certificate serial: 03C0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft Manifest number: 03B8 Signing time: Thu 21 Nov 2024 06:22:55 +0000 Manifest this update: Thu 21 Nov 2024 06:22:55 +0000 Manifest next update: Sat 23 Nov 2024 06:22:55 +0000 Files and hashes: 1: 639Ki3shDbkgjtWANXBF5Zcd4NM.crl (hash: YVtydFiZQz1AN8ymiuy+qeOrYKwgUlvSUlDEITW+VMk=) 2: cDSwcGlkTRVOcp66ltsl80JxIs8.roa (hash: d2ohgamgMDOVmL49SwU0n/62ccImoQhna/c3cnv9190=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 960 (0x3c0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EB7F4A8B7B210DB9208ED580357045E5971DE0D3 Validity Not Before: Nov 21 06:22:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C6A29DDF6672B4B2BCE6751586815CB88C94C3F3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:ee:fa:15:8c:15:9a:4d:1c:8b:ed:2f:a6:30: 71:6e:32:0a:3f:9e:03:fa:73:5b:3c:c1:6f:14:e8: 07:0c:56:1f:ee:4e:7e:71:31:a1:af:e5:b7:3d:c9: ba:2e:17:47:e1:d0:f8:0e:22:06:73:6a:8e:5f:c4: 43:cb:58:6a:9a:a5:1f:08:b4:e1:bb:60:67:97:99: 93:b5:40:a2:41:02:0c:d3:99:cc:19:34:5c:4f:11: d5:66:75:21:59:c9:34:34:d2:f5:ea:95:70:2a:9b: 12:bf:29:9a:66:58:be:b6:e6:61:56:10:ea:9e:87: 12:b4:44:1b:64:6c:a3:ad:8b:78:4d:4a:4e:fd:f7: e9:a6:16:bb:20:7b:ac:33:37:49:bd:bd:18:b2:e6: 45:fe:8c:4f:08:e7:34:6f:b7:92:18:8f:74:1c:c9: 8d:11:e8:7a:b1:7a:ba:14:0d:5a:43:89:16:b6:75: 3f:5c:bc:c2:e7:13:53:47:12:1f:12:93:7d:90:bd: 3e:c3:6d:70:09:f5:e2:5f:5e:d0:03:49:6a:a9:8d: 07:7c:f1:2c:3b:a7:95:d3:09:df:93:b2:66:8e:2f: 06:30:cf:78:34:29:89:46:bc:f3:22:3a:b1:43:2d: 1d:71:8e:38:d8:67:db:b4:02:24:76:0f:76:15:e9: c8:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:A2:9D:DF:66:72:B4:B2:BC:E6:75:15:86:81:5C:B8:8C:94:C3:F3 X509v3 Authority Key Identifier: keyid:EB:7F:4A:8B:7B:21:0D:B9:20:8E:D5:80:35:70:45:E5:97:1D:E0:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/639Ki3shDbkgjtWANXBF5Zcd4NM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CARLWATCH/639Ki3shDbkgjtWANXBF5Zcd4NM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a0:3c:48:8c:c3:2b:55:91:4c:29:d0:9e:68:e3:d1:a0:73:54: 6e:05:b5:c0:92:c3:83:c2:52:fb:9b:c0:4c:3d:69:4b:0f:63: cc:bf:8e:f1:81:d1:a3:e1:0e:0b:6a:42:43:44:ef:27:c4:2a: 17:95:24:8d:72:c5:18:e2:f5:03:4c:c3:ff:8a:37:a4:0f:80: b8:d0:7a:9f:92:d8:33:5e:90:52:79:f5:d4:03:ea:2a:66:f5: c1:ae:f7:0e:c5:4c:1a:05:a8:71:77:5e:cc:e2:8e:01:9e:11: 44:61:83:6b:c7:93:d8:0a:b9:b5:95:bd:af:9c:d9:40:61:af: 10:5f:f0:1b:3e:8f:8e:8d:57:28:51:be:a3:5b:a1:9c:4c:b6: c5:2e:21:ec:0b:17:1e:16:3d:17:f4:ad:f4:34:68:c5:3b:68: fa:57:8b:53:7d:88:d6:05:7d:8d:eb:d7:3f:a0:c1:ab:7d:25: db:74:96:0d:f3:b3:18:e0:1d:45:d9:45:d7:dc:36:cc:55:37: dc:5d:38:5c:94:e2:93:11:35:8a:ef:9a:0b:33:66:67:5a:8f: 92:11:47:6d:da:cf:54:bf:ee:a2:ec:24:a6:37:b6:7f:a8:e8: 31:dc:cf:44:f5:40:2b:ac:17:3f:f9:a7:fb:4a:58:bb:d5:0f: 87:1a:ec:85 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICA8AwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRUI3 RjRBOEI3QjIxMERCOTIwOEVENTgwMzU3MDQ1RTU5NzFERTBEMzAeFw0yNDExMjEw NjIyNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2QTI5RERGNjY3MkI0 QjJCQ0U2NzUxNTg2ODE1Q0I4OEM5NEMzRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCv7voVjBWaTRyL7S+mMHFuMgo/ngP6c1s8wW8U6AcMVh/uTn5x MaGv5bc9ybouF0fh0PgOIgZzao5fxEPLWGqapR8ItOG7YGeXmZO1QKJBAgzTmcwZ NFxPEdVmdSFZyTQ00vXqlXAqmxK/KZpmWL625mFWEOqehxK0RBtkbKOti3hNSk79 9+mmFrsge6wzN0m9vRiy5kX+jE8I5zRvt5IYj3QcyY0R6HqxeroUDVpDiRa2dT9c vMLnE1NHEh8Sk32QvT7DbXAJ9eJfXtADSWqpjQd88Sw7p5XTCd+TsmaOLwYwz3g0 KYlGvPMiOrFDLR1xjjjYZ9u0AiR2D3YV6chxAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUxqKd32ZytLK85nUVhoFcuIyUw/MwHwYDVR0jBBgwFoAU639Ki3shDbkgjtWA NXBF5Zcd4NMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTFdB VENILzYzOUtpM3NoRGJrZ2p0V0FOWEJGNVpjZDROTS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvNjM5S2kzc2hEYmtnanRXQU5YQkY1WmNkNE5NLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FSTFdBVENILzYzOUtpM3NoRGJr Z2p0V0FOWEJGNVpjZDROTS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCgPEiMwytVkUwp0J5o49Ggc1RuBbXAksODwlL7m8BMPWlLD2PMv47xgdGj 4Q4LakJDRO8nxCoXlSSNcsUY4vUDTMP/ijekD4C40HqfktgzXpBSefXUA+oqZvXB rvcOxUwaBahxd17M4o4BnhFEYYNrx5PYCrm1lb2vnNlAYa8QX/AbPo+OjVcoUb6j W6GcTLbFLiHsCxceFj0X9K30NGjFO2j6V4tTfYjWBX2N69c/oMGrfSXbdJYN87MY 4B1F2UXX3DbMVTfcXThclOKTETWK75oLM2ZnWo+SEUdt2s9Uv+6i7CSmN7Z/qOgx 3M9E9UArrBc/+af7Sli71Q+HGuyF -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org