$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft File: F5xj2x1vOrL7DueOGol7hbvSpgI.mft (raw, json) Hash identifier: JK9OYLZoXKCvO8hdlzrC1lrdDxuRC4GRB+53ETv56ew= Subject key identifier: D8:FA:B0:C7:18:7F:34:1B:62:59:39:0C:B3:78:EF:06:94:0B:44:84 Authority key identifier: 17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 Certificate issuer: /CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Certificate serial: 0292 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft Manifest number: 0287 Signing time: Sun 24 Nov 2024 06:23:47 +0000 Manifest this update: Sun 24 Nov 2024 06:23:47 +0000 Manifest next update: Tue 26 Nov 2024 06:23:47 +0000 Files and hashes: 1: 9T6mIkXEe20US5wVSTh8cBqQlxY.roa (hash: g9vNOYwOsBgDPoJev72dJdWUeGIQui4rMYVOPbFYBfs=) 2: F5xj2x1vOrL7DueOGol7hbvSpgI.crl (hash: kZeFneNwpHNVToo5Pb0Y79hoyGnZp7mI4wRiEsrVZSM=) 3: z-zG-TdaZkHNSxt6p4gtg69t_qM.roa (hash: y5U4UDrPgVGA3PZHqXD3S+jmPdD19LKckn8Fx4E9MWE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 658 (0x292) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=179C63DB1D6F3AB2FB0EE78E1A897B85BBD2A602 Validity Not Before: Nov 24 06:23:47 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D8FAB0C7187F341B6259390CB378EF06940B4484 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f6:f7:2d:d9:f3:7e:28:44:b2:f7:ed:49:87: 97:8a:e6:b8:60:07:72:1e:4f:e1:c5:5d:85:4b:78: a1:54:7f:46:67:4d:85:ce:e5:5d:e3:0f:d4:a6:c5: 49:32:c0:16:ca:7e:4e:01:83:9d:af:49:37:d9:a1: e9:1c:bd:ec:6b:22:69:cb:cc:93:10:5c:7b:1c:19: d7:0e:2f:67:6d:a1:41:5e:e1:55:4f:2c:48:44:d5: 01:e2:f8:21:0f:48:de:70:ba:91:7b:3e:b2:69:92: d6:20:88:fb:0e:86:5c:c6:9f:f4:8c:24:31:60:d4: ab:d1:eb:9c:3a:6c:0b:ea:6d:ac:28:80:96:75:f1: ae:17:7d:0f:80:50:17:69:55:b6:90:d4:bc:a9:15: 2b:99:14:c5:e7:e8:13:13:8c:a9:27:da:fe:19:3d: 40:fd:ce:12:44:6c:ad:f2:62:4a:72:24:2b:d2:e5: 58:ec:5b:31:93:5f:2d:b6:94:84:34:a2:08:3f:02: e9:62:7d:22:ca:ac:ad:0e:0b:a1:61:08:8a:0d:ef: 59:03:57:08:a3:9b:b8:68:f1:14:08:81:df:95:7f: 0f:6c:ed:f4:63:02:8d:ec:6e:61:98:1f:9b:3d:2a: 5c:41:ca:1e:51:73:e8:47:97:9a:e2:b8:fb:77:30: e1:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:FA:B0:C7:18:7F:34:1B:62:59:39:0C:B3:78:EF:06:94:0B:44:84 X509v3 Authority Key Identifier: keyid:17:9C:63:DB:1D:6F:3A:B2:FB:0E:E7:8E:1A:89:7B:85:BB:D2:A6:02 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/F5xj2x1vOrL7DueOGol7hbvSpgI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHARMWAY/F5xj2x1vOrL7DueOGol7hbvSpgI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:6b:1f:3b:fe:f1:0b:ab:dc:e9:a6:d0:02:b0:24:6f:7e:80: 09:36:b8:55:1c:0b:af:19:70:06:87:65:84:42:2f:61:c5:19: f5:4b:9f:3a:37:ac:4d:71:ee:b8:2f:ed:6f:43:86:7c:9f:95: d9:36:e3:69:20:b3:a9:2b:4b:e1:89:fc:3a:70:c6:fe:6d:9f: d3:ca:7b:4d:31:32:ed:fc:c8:9f:f1:e5:30:73:ab:39:e2:c1: 6e:7e:23:52:4e:b5:0b:b9:c1:ea:2f:b8:28:bf:41:e1:14:a7: 25:63:06:8c:af:fa:40:76:0f:8b:be:7f:df:82:fb:6b:06:c8: d5:31:76:8a:74:b3:3d:78:b7:2f:df:9a:fc:33:b5:8c:00:84: 00:dd:c7:6b:9c:46:1d:31:91:66:d9:c3:d6:96:78:07:e5:d7: 0c:11:b6:2c:b0:c6:e0:a6:51:15:33:fd:14:a4:61:12:01:85: be:c5:78:f0:12:10:1d:58:36:03:3b:95:45:bf:52:99:bd:b8: f3:1d:3d:51:46:00:8d:94:bb:8d:c2:8a:f3:cd:e9:cb:70:79: ac:67:dc:49:34:03:ab:50:d5:5f:d3:26:ef:87:26:1d:b7:d6: 2b:39:fb:42:7f:2d:2c:9a:0f:f1:67:47:94:c2:ba:38:2a:82: 13:50:f5:13 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICApIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMTc5 QzYzREIxRDZGM0FCMkZCMEVFNzhFMUE4OTdCODVCQkQyQTYwMjAeFw0yNDExMjQw NjIzNDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEQ4RkFCMEM3MTg3RjM0 MUI2MjU5MzkwQ0IzNzhFRjA2OTQwQjQ0ODQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCw9vct2fN+KESy9+1Jh5eK5rhgB3IeT+HFXYVLeKFUf0ZnTYXO 5V3jD9SmxUkywBbKfk4Bg52vSTfZoekcvexrImnLzJMQXHscGdcOL2dtoUFe4VVP LEhE1QHi+CEPSN5wupF7PrJpktYgiPsOhlzGn/SMJDFg1KvR65w6bAvqbawogJZ1 8a4XfQ+AUBdpVbaQ1LypFSuZFMXn6BMTjKkn2v4ZPUD9zhJEbK3yYkpyJCvS5Vjs WzGTXy22lIQ0ogg/AulifSLKrK0OC6FhCIoN71kDVwijm7ho8RQIgd+Vfw9s7fRj Ao3sbmGYH5s9KlxByh5Rc+hHl5riuPt3MOFBAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU2Pqwxxh/NBtiWTkMs3jvBpQLRIQwHwYDVR0jBBgwFoAUF5xj2x1vOrL7DueO Gol7hbvSpgIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hBUk1X QVkvRjV4ajJ4MXZPckw3RHVlT0dvbDdoYnZTcGdJLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9GNXhqMngxdk9yTDdEdWVPR29sN2hidlNwZ0kuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSEFSTVdBWS9GNXhqMngxdk9yTDdE dWVPR29sN2hidlNwZ0kubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAEWsfO/7xC6vc6abQArAkb36ACTa4VRwLrxlwBodlhEIvYcUZ9UufOjesTXHu uC/tb0OGfJ+V2TbjaSCzqStL4Yn8OnDG/m2f08p7TTEy7fzIn/HlMHOrOeLBbn4j Uk61C7nB6i+4KL9B4RSnJWMGjK/6QHYPi75/34L7awbI1TF2inSzPXi3L9+a/DO1 jACEAN3Ha5xGHTGRZtnD1pZ4B+XXDBG2LLDG4KZRFTP9FKRhEgGFvsV48BIQHVg2 AzuVRb9Smb248x09UUYAjZS7jcKK883py3B5rGfcSTQDq1DVX9Mm74cmHbfWKzn7 Qn8tLJoP8WdHlMK6OCqCE1D1Ew== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:02 2024 by rpki-client on console-ams.rpki-client.org