$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft File: q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft (raw, json) Hash identifier: kLwEDtm6xCBZulCXdiMIJ0wErRyuHFotwuvMQ3gYHbw= Subject key identifier: E9:80:F0:E3:30:84:03:58:50:1F:5F:82:D1:32:81:5D:82:4B:1C:47 Authority key identifier: AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 Certificate issuer: /CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Certificate serial: 02C3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft Manifest number: 02A1 Signing time: Thu 21 Nov 2024 07:23:01 +0000 Manifest this update: Thu 21 Nov 2024 07:23:01 +0000 Manifest next update: Sat 23 Nov 2024 07:23:01 +0000 Files and hashes: 1: 4bXRPHb__3XCg-fzMEJHX3IW9Rc.roa (hash: ftcDpnL3C2osbbYE2XtDwNTVi2jDWeFEghpatW/NNpw=) 2: AhCyzl2wFH8cjoCFLYz05TxwVCo.roa (hash: 9z8m78tHfTdnE54W+IJaf+RUa6EUiEZT1Nsp2iwJkH0=) 3: BmyWTH1_GV4OZblqN9HuWVaazcE.roa (hash: ceEDI+WW2zCJtihArP/E2ZzX0uisVXZQ6Vf3Untijxw=) 4: KXPaSXyovsX8yd6UpvSWdn2fOk4.roa (hash: LZDR/aFM3IImhb0pGrzs8cb6l9+g5MpMAh4ONUy1+H0=) 5: KpeSKcv5qk2ZJm0clM5C6P2wfW8.roa (hash: wSvYAehBFxUv3xiw2ATb1TYwD8mOYg/OkddhlXmZ8io=) 6: _6ysWZe2j-3NZV9QDnIE-Z-FMos.roa (hash: FLPDAQSe489Hh+JL231sdp4c7/Vni2EbMCu/0YoIaXQ=) 7: q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl (hash: xnpvchC9cP7AV//0iKODMdmt++360jw9RlH+sevSIrc=) 8: wEUbPpPKl73YiElLanFeiYnxWwM.roa (hash: lHFy6yKLGOXZwh/vpeCsFJhFJaJqwCowi44Jrk7eyb0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 707 (0x2c3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=ABC8439FE19D99B038270208C94B66CA231FFED5 Validity Not Before: Nov 21 07:23:01 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E980F0E330840358501F5F82D132815D824B1C47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9c:93:e6:5d:b9:82:38:35:d8:8a:ec:a3:c2:4f: 8f:b2:4b:cf:ca:11:ba:be:c1:a9:74:5d:38:97:80: 77:ec:80:96:8b:8a:33:b0:ed:26:8c:7b:31:7a:e7: f0:90:ab:3b:f8:3a:5f:49:69:d7:fb:cc:b8:29:b9: f0:a2:a2:25:1e:37:8a:9a:08:81:fe:bd:d7:ff:7c: 71:19:98:99:47:c0:7e:50:1a:c0:ec:00:c2:d8:af: f0:6e:e2:94:c0:36:29:39:e5:9a:90:00:2e:92:c9: 0d:06:3d:39:2b:06:87:cb:31:72:82:55:c9:4b:4a: 9a:c1:33:c5:8e:3a:a3:b3:0d:52:b0:d6:dd:c4:f5: be:33:7b:29:e3:c7:4c:90:f3:9b:1f:a4:64:00:f4: e6:51:5c:15:66:8c:a9:35:94:74:de:9a:3e:f9:12: 8e:d2:8e:16:4b:3c:4a:35:ac:6a:ea:fe:be:a1:65: 71:b5:49:55:1b:f5:00:4a:78:31:75:c5:a6:69:27: b3:38:47:40:b2:c6:4d:62:30:e8:f2:b3:ea:8d:fc: f0:e6:4b:87:b3:6d:5c:3b:bd:cd:9a:7f:f5:a7:11: 6b:0b:78:44:33:f1:97:b8:2a:26:54:ab:05:e8:f4: 4f:a7:3a:da:dc:f0:d9:bb:bb:d1:7e:df:96:05:03: 02:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E9:80:F0:E3:30:84:03:58:50:1F:5F:82:D1:32:81:5D:82:4B:1C:47 X509v3 Authority Key Identifier: keyid:AB:C8:43:9F:E1:9D:99:B0:38:27:02:08:C9:4B:66:CA:23:1F:FE:D5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/q8hDn-GdmbA4JwIIyUtmyiMf_tU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CHINATEL/q8hDn-GdmbA4JwIIyUtmyiMf_tU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 35:ad:70:78:62:4d:63:d8:0d:83:2a:39:75:a9:f4:95:c3:10: 54:00:c9:f8:f0:6f:d9:28:b5:a3:9e:b1:79:9e:0a:e0:16:5e: 7e:3b:d1:f0:ba:7e:b5:7c:56:0d:6c:48:e7:bf:38:c4:bd:c8: 5d:21:89:e6:ad:d0:11:65:bc:cf:55:17:2f:4b:94:36:a2:40: ee:70:3d:b3:3c:97:f8:28:99:a9:d9:9d:78:a8:76:d2:ac:1b: 12:3c:b1:d9:90:98:6d:a5:1d:c0:3a:c5:9e:44:c5:f5:ed:18: 32:58:04:02:05:94:59:36:6a:2a:bf:0a:e4:de:5c:cf:e4:18: fe:7a:9e:0d:5e:80:6a:12:b3:9c:b0:cd:42:fe:a4:e1:f0:b4: 6c:b5:5e:9f:78:4e:dd:23:d0:a8:ef:a9:9d:7f:6d:05:2f:56: f2:1a:e8:ca:ad:28:11:49:8a:2b:61:5a:1b:64:29:2b:da:5a: 36:6d:34:2f:5e:4d:12:88:4d:63:60:be:71:a0:42:1a:5a:26: 90:83:7d:c3:45:e5:db:b7:a3:b1:d7:00:0b:0b:3a:6d:73:23: f7:62:de:b4:92:a9:ef:48:31:b0:29:ea:43:35:97:4e:f6:88: 40:b1:50:4c:79:e0:ff:a0:6f:f6:6f:be:c1:41:80:60:9e:1f: f7:e9:0c:c1 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICAsMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQUJD ODQzOUZFMTlEOTlCMDM4MjcwMjA4Qzk0QjY2Q0EyMzFGRkVENTAeFw0yNDExMjEw NzIzMDFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEU5ODBGMEUzMzA4NDAz NTg1MDFGNUY4MkQxMzI4MTVEODI0QjFDNDcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCck+ZduYI4NdiK7KPCT4+yS8/KEbq+wal0XTiXgHfsgJaLijOw 7SaMezF65/CQqzv4Ol9Jadf7zLgpufCioiUeN4qaCIH+vdf/fHEZmJlHwH5QGsDs AMLYr/Bu4pTANik55ZqQAC6SyQ0GPTkrBofLMXKCVclLSprBM8WOOqOzDVKw1t3E 9b4zeynjx0yQ85sfpGQA9OZRXBVmjKk1lHTemj75Eo7SjhZLPEo1rGrq/r6hZXG1 SVUb9QBKeDF1xaZpJ7M4R0Cyxk1iMOjys+qN/PDmS4ezbVw7vc2af/WnEWsLeEQz 8Ze4KiZUqwXo9E+nOtrc8Nm7u9F+35YFAwLZAgMBAAGjggILMIICBzAdBgNVHQ4E FgQU6YDw4zCEA1hQH1+C0TKBXYJLHEcwHwYDVR0jBBgwFoAUq8hDn+GdmbA4JwII yUtmyiMf/tUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0hJTkFU RUwvcThoRG4tR2RtYkE0SndJSXlVdG15aU1mX3RVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9xOGhEbi1HZG1iQTRKd0lJeVV0bXlpTWZfdFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSElOQVRFTC9xOGhEbi1HZG1iQTRK d0lJeVV0bXlpTWZfdFUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEANa1weGJNY9gNgyo5dan0lcMQVADJ+PBv2Si1o56xeZ4K4BZefjvR8Lp+tXxW DWxI5784xL3IXSGJ5q3QEWW8z1UXL0uUNqJA7nA9szyX+CiZqdmdeKh20qwbEjyx 2ZCYbaUdwDrFnkTF9e0YMlgEAgWUWTZqKr8K5N5cz+QY/nqeDV6AahKznLDNQv6k 4fC0bLVen3hO3SPQqO+pnX9tBS9W8hroyq0oEUmKK2FaG2QpK9paNm00L15NEohN Y2C+caBCGlomkIN9w0Xl27ejsdcACws6bXMj92LetJKp70gxsCnqQzWXTvaIQLFQ THng/6Bv9m++wUGAYJ4f9+kMwQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org