$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft File: mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft (raw, json) Hash identifier: HtDGk4XJx3wZrmGjhC8pLtJg0VocFhCJqvu9K2Flxsk= Subject key identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C Authority key identifier: 99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 Certificate issuer: /CN=996D67023ED27754ACB1B568433D4376C88200F5 Certificate serial: 0397 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft Manifest number: 0389 Signing time: Thu 21 Nov 2024 06:23:48 +0000 Manifest this update: Thu 21 Nov 2024 06:23:48 +0000 Manifest next update: Sat 23 Nov 2024 06:23:48 +0000 Files and hashes: 1: NNFuVJ4Pyc1jnDmd7_2EtHN2JkE.roa (hash: xAn1d0FuZWye2usluzvF8wGBVEhFHD60faY4dXJeBpQ=) 2: kTq1hYYD11J3HUfhlg1IVxxK5DE.roa (hash: pR6ubjiLplnfenaiS+MPmrzJjuIHijRrF1gqmniHCsU=) 3: mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl (hash: s0iNVu1c7ZUneipxt4DYcKjM7D8Ma+vmD4WfC/9zvhQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 919 (0x397) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=996D67023ED27754ACB1B568433D4376C88200F5 Validity Not Before: Nov 21 06:23:48 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B53DEE65687F1391EB2083BA1A2106262FBE7B2C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:be:53:85:d1:c7:6e:6f:83:48:80:1b:09:d7: b9:fc:fa:4b:41:6d:a4:04:6d:2c:40:39:a6:2b:af: 59:b0:4f:26:3c:df:66:19:1e:2b:e8:3b:8b:6b:19: 85:c4:83:9f:f8:e3:93:49:78:49:74:ae:d7:41:19: 10:65:bb:2c:60:37:b3:a0:a1:80:1b:40:8e:09:a9: 29:68:15:bf:31:14:e9:dc:02:01:d4:32:ac:c8:9d: c8:b5:94:84:5a:33:64:73:13:f4:f8:8c:47:77:fa: 17:ee:f2:48:1e:0f:a3:3c:d0:35:0a:2f:e0:b3:f0: 82:98:71:50:df:a7:7e:71:57:c0:a7:55:c0:12:d5: f2:2a:10:17:a5:27:18:4d:4a:22:a4:06:f1:49:24: fb:a2:87:06:61:c7:d2:7b:c9:6a:0c:5a:60:3e:01: 0b:7b:72:0f:5d:9e:d0:61:f6:72:9f:ff:6d:b7:3d: 20:42:9a:21:75:0d:30:95:7d:aa:a6:dc:f5:0b:18: b3:7f:e6:b0:77:9b:4b:3a:0a:4d:72:c7:62:5f:bf: 73:96:d8:77:0a:dc:fc:47:2e:09:ce:0b:e6:5e:5a: 3c:bc:e4:2d:2c:63:b2:85:d8:df:78:ac:c5:c4:3d: 8b:08:dd:b4:44:e3:39:41:06:e5:8d:76:11:68:f4: be:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:3D:EE:65:68:7F:13:91:EB:20:83:BA:1A:21:06:26:2F:BE:7B:2C X509v3 Authority Key Identifier: keyid:99:6D:67:02:3E:D2:77:54:AC:B1:B5:68:43:3D:43:76:C8:82:00:F5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/mW1nAj7Sd1SssbVoQz1DdsiCAPU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CWTW/mW1nAj7Sd1SssbVoQz1DdsiCAPU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b5:9f:c3:95:d3:5b:82:91:f1:5f:d6:7d:00:bf:aa:1f:4a:28: ae:7d:30:01:43:fc:22:f7:79:22:3a:ef:73:59:14:8a:43:77: e9:f3:9d:5d:dd:2d:15:83:7e:64:79:77:ca:17:98:84:dc:69: 56:f1:f9:37:f6:31:20:26:e8:f0:7c:80:86:68:5f:0d:6a:a2: 5c:6c:d7:02:00:b0:e9:f1:10:a4:08:35:cf:63:cc:b9:3f:70: 81:cc:b7:0c:f0:74:99:45:70:67:be:07:df:d9:4c:8c:f4:11: 2d:5f:fa:86:7c:21:0d:60:7e:2b:98:61:00:0c:53:1d:9f:73: 96:30:18:56:7f:60:68:ab:a3:d4:c9:52:82:61:40:d1:05:63: b8:ff:11:7e:2b:f0:98:2b:a4:dd:48:6c:36:9d:8f:b1:28:ea: 73:e2:ec:64:65:e2:c9:c9:62:76:12:f7:a1:9d:c2:49:ab:d5: 5f:97:47:7a:94:9e:35:c6:8f:8d:79:19:df:03:6e:c5:a2:ec: d0:64:ad:10:a4:03:a2:cc:5c:06:48:61:33:8a:86:86:2d:5f: 38:c2:68:a4:6c:bd:55:cf:f7:96:83:19:d7:55:1c:a6:52:5d: 61:62:fb:e7:83:40:97:29:70:94:45:a9:18:8c:0a:57:87:5e: f0:ab:04:87 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICA5cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTk2 RDY3MDIzRUQyNzc1NEFDQjFCNTY4NDMzRDQzNzZDODgyMDBGNTAeFw0yNDExMjEw NjIzNDhaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI1M0RFRTY1Njg3RjEz OTFFQjIwODNCQTFBMjEwNjI2MkZCRTdCMkMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPvlOF0cdub4NIgBsJ17n8+ktBbaQEbSxAOaYrr1mwTyY832YZ HivoO4trGYXEg5/445NJeEl0rtdBGRBluyxgN7OgoYAbQI4JqSloFb8xFOncAgHU MqzInci1lIRaM2RzE/T4jEd3+hfu8kgeD6M80DUKL+Cz8IKYcVDfp35xV8CnVcAS 1fIqEBelJxhNSiKkBvFJJPuihwZhx9J7yWoMWmA+AQt7cg9dntBh9nKf/223PSBC miF1DTCVfaqm3PULGLN/5rB3m0s6Ck1yx2Jfv3OW2HcK3PxHLgnOC+ZeWjy85C0s Y7KF2N94rMXEPYsI3bRE4zlBBuWNdhFo9L7fAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUtT3uZWh/E5HrIIO6GiEGJi++eywwHwYDVR0jBBgwFoAUmW1nAj7Sd1SssbVo Qz1DdsiCAPUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ1dUVy9t VzFuQWo3U2QxU3NzYlZvUXoxRGRzaUNBUFUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L21XMW5BajdTZDFTc3NiVm9RejFEZHNpQ0FQVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0NXVFcvbVcxbkFqN1NkMVNzc2JWb1F6MURk c2lDQVBVLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBALWfw5XT W4KR8V/WfQC/qh9KKK59MAFD/CL3eSI673NZFIpDd+nznV3dLRWDfmR5d8oXmITc aVbx+Tf2MSAm6PB8gIZoXw1qolxs1wIAsOnxEKQINc9jzLk/cIHMtwzwdJlFcGe+ B9/ZTIz0ES1f+oZ8IQ1gfiuYYQAMUx2fc5YwGFZ/YGiro9TJUoJhQNEFY7j/EX4r 8JgrpN1IbDadj7Eo6nPi7GRl4snJYnYS96Gdwkmr1V+XR3qUnjXGj415Gd8DbsWi 7NBkrRCkA6LMXAZIYTOKhoYtXzjCaKRsvVXP95aDGddVHKZSXWFi++eDQJcpcJRF qRiMCleHXvCrBIc= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:30 2024 by rpki-client on console-ams.rpki-client.org