$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft File: 4hRiP9Epy5cnQNOR2vORlvKt8r0.mft (raw, json) Hash identifier: zHqMGpf8uZ0mqxp8znHyIFWzSIVPFSiihCuE13HmTBE= Subject key identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB Authority key identifier: E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD Certificate issuer: /CN=E214623FD129CB972740D391DAF39196F2ADF2BD Certificate serial: 3C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft Manifest number: 3B Signing time: Thu 21 Nov 2024 06:24:25 +0000 Manifest this update: Thu 21 Nov 2024 06:24:25 +0000 Manifest next update: Sat 23 Nov 2024 06:24:25 +0000 Files and hashes: 1: 4hRiP9Epy5cnQNOR2vORlvKt8r0.crl (hash: GgbCZSl819WeRuIktoIc6TnPIlElU3vq8oPX7ZByeOg=) 2: mq2F8gpAWjLsZD7T3r-QppQLdqU.roa (hash: tbNXeWixuvrApOPy0Cgkh5zIR8kykzjsIfRRcFvJauI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 60 (0x3c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E214623FD129CB972740D391DAF39196F2ADF2BD Validity Not Before: Nov 21 06:24:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=5F4E013E8588F20D7604DFEA79DAC4D64B88E9AB Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:3b:a8:8c:da:a4:d9:95:81:48:9d:98:2f:23: 36:0a:90:d7:70:72:d0:66:3b:92:cc:47:d1:62:8a: 61:2c:f3:fe:e2:cc:00:9b:2c:62:ff:19:9f:43:0a: 49:75:35:66:ab:6b:2a:9c:c6:38:70:dd:11:a3:c8: ed:c0:34:19:e9:f6:84:d1:18:53:59:fd:90:94:4a: 1f:75:c2:cb:4f:40:04:94:aa:04:17:48:7d:db:b3: ba:94:c3:97:d1:b5:c7:a1:a1:fa:97:cd:48:b6:b9: de:2f:2d:0d:97:e1:75:ba:6c:26:fd:a6:a6:3c:a5: 7e:e5:59:c2:5d:8a:3a:37:5a:ff:df:a2:2d:28:46: 8a:47:d6:e6:88:b8:d2:90:68:42:b2:40:76:b4:90: 0f:03:92:34:db:47:05:77:c8:95:eb:8d:b2:05:0e: a8:c7:47:57:4a:7a:47:f4:44:89:27:b7:ae:0d:bb: aa:c8:ff:14:93:de:ae:4c:e6:94:b5:e7:e7:7d:95: 0e:bd:b2:86:37:c0:03:26:fe:de:77:54:ff:99:08: 47:0d:74:88:b6:31:5a:1d:02:e0:13:89:c5:4b:0d: 13:ab:39:5a:f7:3d:b6:d1:a7:cb:e5:19:37:bf:18: 1b:34:58:ee:dd:33:56:ac:0b:83:53:d2:f6:dc:28: fc:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5F:4E:01:3E:85:88:F2:0D:76:04:DF:EA:79:DA:C4:D6:4B:88:E9:AB X509v3 Authority Key Identifier: keyid:E2:14:62:3F:D1:29:CB:97:27:40:D3:91:DA:F3:91:96:F2:AD:F2:BD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4hRiP9Epy5cnQNOR2vORlvKt8r0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CJME/4hRiP9Epy5cnQNOR2vORlvKt8r0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 80:ae:56:bd:29:26:9b:ce:e7:52:09:8e:56:cc:e9:85:4e:a1: 3c:f2:be:3d:8e:06:3e:ca:d1:95:5d:8d:00:ca:d9:c5:f6:99: df:34:3b:e8:3c:a9:fb:46:8d:45:af:6f:a4:7a:d2:e3:2c:16: ce:ce:54:e3:ab:79:cd:eb:ea:22:6c:6d:14:89:87:88:79:c5: 42:c9:b8:cc:a8:a0:aa:4e:e1:61:85:9e:df:26:b6:77:94:70: 97:53:9b:97:9d:62:21:3e:1e:f5:61:da:1d:4d:a0:37:ba:de: 2c:58:83:82:88:6e:62:f5:1a:e7:21:14:b5:a4:56:dd:c0:6f: a9:5e:b1:d7:45:98:be:43:f5:2e:22:1c:ed:e4:59:e2:e8:82: 0a:b5:9f:0c:51:64:bf:cc:44:b4:78:33:0e:d3:36:5a:75:01: 23:c9:83:ca:8f:59:61:0c:50:82:88:7c:6c:8a:97:13:6b:a7: 3a:8c:df:90:37:7d:bb:97:a0:cd:5b:e1:0b:14:0e:11:d9:5f: dc:77:ad:2c:11:76:3b:a7:df:b3:c6:69:dc:f0:8c:68:ac:c5: b7:37:c2:03:b0:89:27:7d:2c:4c:b9:a9:49:66:32:51:fb:9c: 84:ea:d3:7c:a4:4f:ef:a4:4e:82:6a:16:c1:b7:c9:41:08:c4: 67:d4:60:81 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIBPDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFMjE0 NjIzRkQxMjlDQjk3Mjc0MEQzOTFEQUYzOTE5NkYyQURGMkJEMB4XDTI0MTEyMTA2 MjQyNVoXDTI1MDgyNjAxNTcwM1owMzExMC8GA1UEAxMoNUY0RTAxM0U4NTg4RjIw RDc2MDRERkVBNzlEQUM0RDY0Qjg4RTlBQjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANY7qIzapNmVgUidmC8jNgqQ13By0GY7ksxH0WKKYSzz/uLMAJss Yv8Zn0MKSXU1ZqtrKpzGOHDdEaPI7cA0Gen2hNEYU1n9kJRKH3XCy09ABJSqBBdI fduzupTDl9G1x6Gh+pfNSLa53i8tDZfhdbpsJv2mpjylfuVZwl2KOjda/9+iLShG ikfW5oi40pBoQrJAdrSQDwOSNNtHBXfIleuNsgUOqMdHV0p6R/REiSe3rg27qsj/ FJPerkzmlLXn532VDr2yhjfAAyb+3ndU/5kIRw10iLYxWh0C4BOJxUsNE6s5Wvc9 ttGny+UZN78YGzRY7t0zVqwLg1PS9two/H8CAwEAAaOCAgMwggH/MB0GA1UdDgQW BBRfTgE+hYjyDXYE3+p52sTWS4jpqzAfBgNVHSMEGDAWgBTiFGI/0SnLlydA05Ha 85GW8q3yvTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9DSk1FLzRo UmlQOUVweTVjblFOT1Iydk9SbHZLdDhyMC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev NGhSaVA5RXB5NWNuUU5PUjJ2T1Jsdkt0OHIwLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvQ0pNRS80aFJpUDlFcHk1Y25RTk9SMnZPUmx2 S3Q4cjAubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUHAQcB Af8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAgK5WvSkm m87nUgmOVszphU6hPPK+PY4GPsrRlV2NAMrZxfaZ3zQ76Dyp+0aNRa9vpHrS4ywW zs5U46t5zevqImxtFImHiHnFQsm4zKigqk7hYYWe3ya2d5Rwl1Obl51iIT4e9WHa HU2gN7reLFiDgohuYvUa5yEUtaRW3cBvqV6x10WYvkP1LiIc7eRZ4uiCCrWfDFFk v8xEtHgzDtM2WnUBI8mDyo9ZYQxQgoh8bIqXE2unOozfkDd9u5egzVvhCxQOEdlf 3HetLBF2O6ffs8Zp3PCMaKzFtzfCA7CJJ30sTLmpSWYyUfuchOrTfKRP76ROgmoW wbfJQQjEZ9RggQ== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:49 2024 by rpki-client on console-fra.rpki-client.org