$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.mft File: tRrvrFDR7mlQbia9hf6_Ot8Htss.mft (raw, json) Hash identifier: ziRBkJoqrpuJDDBHbsQgH+MSAmE+yJVBtkwRoUf/cxY= Subject key identifier: F1:FB:4C:49:15:70:E7:3A:F6:FD:D9:5C:23:86:4A:C0:D0:22:61:B6 Authority key identifier: B5:1A:EF:AC:50:D1:EE:69:50:6E:26:BD:85:FE:BF:3A:DF:07:B6:CB Certificate issuer: /CN=B51AEFAC50D1EE69506E26BD85FEBF3ADF07B6CB Certificate serial: 0BE7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tRrvrFDR7mlQbia9hf6_Ot8Htss.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.mft Manifest number: 0BE7 Signing time: Sun 24 Nov 2024 03:53:58 +0000 Manifest this update: Sun 24 Nov 2024 03:53:58 +0000 Manifest next update: Tue 26 Nov 2024 03:53:58 +0000 Files and hashes: 1: tRrvrFDR7mlQbia9hf6_Ot8Htss.crl (hash: GLyAc2MKK/O7GSp5Juh8/2n2aoj1vvE+/5F+rYYC1D4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tRrvrFDR7mlQbia9hf6_Ot8Htss.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3047 (0xbe7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B51AEFAC50D1EE69506E26BD85FEBF3ADF07B6CB Validity Not Before: Nov 24 03:53:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=F1FB4C491570E73AF6FDD95C23864AC0D02261B6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:c3:ba:a5:b4:b3:33:d8:8f:8d:42:0e:94:1c: c1:48:4a:f4:a4:e0:ed:fc:52:91:86:c5:cf:30:1a: 64:11:cb:ee:18:ae:67:b1:f3:0e:6b:7f:ca:b5:e7: 79:f4:c2:d0:66:8f:a2:8a:eb:fa:f8:0f:2e:f5:44: f4:64:9f:8d:c1:c0:09:4a:04:90:6a:e7:8d:89:a0: 84:9d:d1:bd:e8:c1:36:1e:18:9f:2b:a8:1b:4c:58: cf:b0:d3:ed:2a:14:34:a6:01:41:2c:6b:98:3c:9e: 5d:06:ba:cd:59:6e:26:3b:4e:5f:6e:9d:19:6a:ab: c3:32:77:bb:24:f3:76:f1:f3:ae:47:fc:b6:18:97: 67:29:47:4b:00:84:8a:26:27:40:40:c8:ab:3a:25: 70:55:38:74:1c:0b:39:32:71:c6:b7:f6:bb:0a:8b: 7d:dd:9d:25:3d:ce:38:c1:77:60:f7:22:b5:5e:cf: ed:c7:99:b2:12:cd:06:3b:f0:4b:24:d9:34:c5:7b: fb:59:a6:77:16:a7:e4:07:b9:2d:e9:e1:87:2b:83: f6:c7:59:06:15:87:8d:e8:cb:f0:05:1e:88:9c:78: fc:e8:bb:29:22:4b:37:58:f6:47:3f:b8:97:24:88: 90:ff:25:29:19:44:19:fd:2a:7a:28:4b:40:30:e0: 8f:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F1:FB:4C:49:15:70:E7:3A:F6:FD:D9:5C:23:86:4A:C0:D0:22:61:B6 X509v3 Authority Key Identifier: keyid:B5:1A:EF:AC:50:D1:EE:69:50:6E:26:BD:85:FE:BF:3A:DF:07:B6:CB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tRrvrFDR7mlQbia9hf6_Ot8Htss.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/EINVEST/tRrvrFDR7mlQbia9hf6_Ot8Htss.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:c3:1c:d8:7a:73:ba:a4:27:18:d9:a9:5b:c7:9a:73:6e:4f: 92:69:de:09:7e:8c:ea:0e:a7:62:c9:64:b0:0e:c9:d6:fa:24: 0c:ea:a2:56:fc:1a:be:68:99:18:29:04:6b:e9:1b:d6:ec:e5: c5:1e:7e:93:e3:13:4d:99:f2:80:8d:90:27:96:8d:f3:65:ff: 33:66:c6:4d:1e:25:11:b8:e0:dc:5f:2e:35:dc:63:ed:58:b4: 2a:34:a4:17:05:e2:af:de:cf:79:01:87:39:53:f2:68:71:17: 00:0b:6b:be:ce:55:0e:f1:10:a4:e1:71:0f:87:6f:14:da:f4: 6b:13:71:53:2e:b7:3c:fb:77:fe:78:32:0d:5b:ff:01:12:48: a4:5d:c9:92:b7:bf:87:a3:d3:23:b5:d4:83:3a:e1:8c:1c:66: 9d:7f:51:f4:d9:0d:fd:6e:0f:10:a2:1b:7c:97:54:0f:3e:eb: ae:3b:15:a8:2c:c3:15:a3:53:49:91:a2:37:f5:96:55:15:25: 35:01:f2:c9:c3:f6:e8:ca:41:33:b1:23:52:8f:b0:d4:ec:35: e5:b9:bc:45:45:53:40:0d:43:ef:33:f6:59:73:65:d3:23:c2: b1:31:ab:5c:72:4f:0e:11:dd:e6:31:5c:dd:09:c4:5d:bd:a1: 4c:fc:a9:18 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICC+cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjUx QUVGQUM1MEQxRUU2OTUwNkUyNkJEODVGRUJGM0FERjA3QjZDQjAeFw0yNDExMjQw MzUzNThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEYxRkI0QzQ5MTU3MEU3 M0FGNkZERDk1QzIzODY0QUMwRDAyMjYxQjYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD2w7qltLMz2I+NQg6UHMFISvSk4O38UpGGxc8wGmQRy+4Yrmex 8w5rf8q153n0wtBmj6KK6/r4Dy71RPRkn43BwAlKBJBq542JoISd0b3owTYeGJ8r qBtMWM+w0+0qFDSmAUEsa5g8nl0Gus1ZbiY7Tl9unRlqq8Myd7sk83bx865H/LYY l2cpR0sAhIomJ0BAyKs6JXBVOHQcCzkycca39rsKi33dnSU9zjjBd2D3IrVez+3H mbISzQY78Esk2TTFe/tZpncWp+QHuS3p4Ycrg/bHWQYVh43oy/AFHoicePzouyki SzdY9kc/uJckiJD/JSkZRBn9KnooS0Aw4I/5AgMBAAGjggIJMIICBTAdBgNVHQ4E FgQU8ftMSRVw5zr2/dlcI4ZKwNAiYbYwHwYDVR0jBBgwFoAUtRrvrFDR7mlQbia9 hf6/Ot8HtsswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRUlOVkVT VC90UnJ2ckZEUjdtbFFiaWE5aGY2X090OEh0c3MuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL3RScnZyRkRSN21sUWJpYTloZjZfT3Q4SHRzcy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0VJTlZFU1QvdFJydnJGRFI3bWxRYmlh OWhmNl9PdDhIdHNzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AFPDHNh6c7qkJxjZqVvHmnNuT5Jp3gl+jOoOp2LJZLAOydb6JAzqolb8Gr5omRgp BGvpG9bs5cUefpPjE02Z8oCNkCeWjfNl/zNmxk0eJRG44NxfLjXcY+1YtCo0pBcF 4q/ez3kBhzlT8mhxFwALa77OVQ7xEKThcQ+HbxTa9GsTcVMutzz7d/54Mg1b/wES SKRdyZK3v4ej0yO11IM64YwcZp1/UfTZDf1uDxCiG3yXVA8+6647FagswxWjU0mR ojf1llUVJTUB8snD9ujKQTOxI1KPsNTsNeW5vEVFU0ANQ+8z9llzZdMjwrExq1xy Tw4R3eYxXN0JxF29oUz8qRg= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:03 2024 by rpki-client on console-ams.rpki-client.org