$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft File: 8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft (raw, json) Hash identifier: lqzaALiWtoSCTCZfTtZ0reH/txEBmC/hEZsoHkCYDGU= Subject key identifier: 82:A7:EA:2D:39:84:7C:AA:F9:6D:A1:9D:BE:9D:BF:5A:38:DD:22:49 Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE Certificate serial: 12D3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft Manifest number: 12C4 Signing time: Sun 24 Nov 2024 06:23:56 +0000 Manifest this update: Sun 24 Nov 2024 06:23:56 +0000 Manifest next update: Tue 26 Nov 2024 06:23:56 +0000 Files and hashes: 1: 76Ev_ZNsx0TJPEGhTUMEh03cd-w.roa (hash: vBFQ8IVz9bWw5kCEnKUzzsp9ffvmFIYvKApFBw808Is=) 2: 8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl (hash: akjG2vPC7UflVL6htaP7ShyMMrBi1LaJSE5rkhuXPqw=) 3: Tz4lMQpnsE4hKzLxx5vLCMKeDR0.roa (hash: uKaT4TzgugL3ii7eDGbD+Se2PD82RFs9TNUPfKMdMTU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4819 (0x12d3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE Validity Not Before: Nov 24 06:23:56 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=82A7EA2D39847CAAF96DA19DBE9DBF5A38DD2249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:15:ae:be:91:b9:b6:81:5a:40:6c:74:51:ba: 82:21:4f:c9:71:ec:2e:74:8a:00:b8:90:5d:5e:1f: 82:f3:89:ff:7e:db:63:8a:a9:42:68:34:70:00:28: 21:9f:2b:92:23:ca:1a:cc:65:87:6a:59:51:18:f2: aa:2e:bf:90:f0:8f:61:83:31:a2:d6:12:bb:c2:9b: 2c:2e:1b:b8:e2:2b:d9:85:4d:b3:22:81:66:d2:03: ee:2e:fe:91:df:6b:25:7a:c9:e7:c5:d4:27:ee:aa: 01:d6:f4:ce:53:34:5b:a6:a8:16:e7:a8:7a:0f:b9: e0:a7:bf:8a:17:47:83:b6:30:f9:c6:d4:c9:02:ba: 0a:7d:55:73:dc:b9:92:c0:f0:95:25:dd:b1:53:0e: 30:38:ef:20:7e:b6:23:26:13:91:f3:55:01:9e:4f: b0:23:d2:ff:72:6e:78:ff:77:2e:2f:d2:d5:82:ed: e8:4c:3f:30:7c:a1:69:61:3e:12:e3:46:60:70:5f: 01:55:a7:12:ee:5b:ab:e3:c5:0c:43:20:4e:1a:42: d5:57:9b:1a:79:1d:eb:dd:6d:7f:1d:20:59:41:0b: b2:95:73:72:ea:ea:6d:be:09:bb:62:33:cd:62:55: ef:90:4b:8f:c1:e6:c1:03:34:00:67:ff:7b:9c:b2: 1b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A7:EA:2D:39:84:7C:AA:F9:6D:A1:9D:BE:9D:BF:5A:38:DD:22:49 X509v3 Authority Key Identifier: keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:32:85:1d:a4:89:4b:52:0f:5e:4f:75:a2:76:47:63:59:d2: a1:52:41:95:b3:ad:05:bb:9e:85:e8:7a:6c:bc:25:d9:2c:70: b6:17:0e:82:1a:ed:46:95:0c:c2:7f:c1:78:d7:da:bf:ee:60: 60:1e:53:2a:6f:b5:86:f1:5b:38:26:79:c1:d7:27:94:73:0b: 6a:18:a8:b4:5c:69:77:7b:2e:6d:ab:20:37:3b:16:a4:e5:85: 41:c6:9e:98:b1:65:68:a3:12:47:af:31:11:73:ac:7a:63:6f: c8:44:de:e5:1b:24:f8:93:8c:51:de:67:c7:a6:97:5b:c1:37: 79:12:07:c4:d0:42:2a:78:1a:07:9d:46:bc:04:6a:04:14:c4: ca:82:3c:cf:eb:2c:5b:90:a6:b3:e3:cd:5c:63:45:b4:fd:6f: 4a:75:1e:61:50:79:df:b2:b4:c7:6a:89:7b:96:87:7a:69:c9: 1c:7f:04:13:1d:a2:17:35:6e:ae:7d:91:f6:18:3b:42:c2:a3: 4b:85:31:5a:00:50:ee:2b:d4:cf:22:d2:40:70:7c:5c:32:b5: 15:a0:78:17:7c:c1:81:b8:78:2e:5e:53:dd:00:aa:52:21:a9: bd:09:8b:37:c7:2f:ae:2b:7b:e5:62:9a:33:4f:c2:a5:ed:7d: f6:65:6e:d2 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICEtMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMx NzQ4MTNERkIxRjlCNDU2MDQ3MkMyNjdGNzZDRDBDMTQxRTVERTAeFw0yNDExMjQw NjIzNTZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDgyQTdFQTJEMzk4NDdD QUFGOTZEQTE5REJFOURCRjVBMzhERDIyNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5Fa6+kbm2gVpAbHRRuoIhT8lx7C50igC4kF1eH4Lzif9+22OK qUJoNHAAKCGfK5IjyhrMZYdqWVEY8qouv5Dwj2GDMaLWErvCmywuG7jiK9mFTbMi gWbSA+4u/pHfayV6yefF1CfuqgHW9M5TNFumqBbnqHoPueCnv4oXR4O2MPnG1MkC ugp9VXPcuZLA8JUl3bFTDjA47yB+tiMmE5HzVQGeT7Aj0v9ybnj/dy4v0tWC7ehM PzB8oWlhPhLjRmBwXwFVpxLuW6vjxQxDIE4aQtVXmxp5HevdbX8dIFlBC7KVc3Lq 6m2+CbtiM81iVe+QS4/B5sEDNABn/3ucshv/AgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUgqfqLTmEfKr5baGdvp2/WjjdIkkwHwYDVR0jBBgwFoAU8xdIE9+x+bRWBHLC Z/ds0MFB5d4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFNSUxZ UExVUy84eGRJRTkteC1iUldCSExDWl9kczBNRkI1ZDQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBLzh4ZElFOS14LWJSV0JITENaX2RzME1GQjVkNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTUlMWVBMVVMvOHhkSUU5LXgt YlJXQkhMQ1pfZHMwTUZCNWQ0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAJIyhR2kiUtSD15PdaJ2R2NZ0qFSQZWzrQW7noXoemy8JdkscLYXDoIa 7UaVDMJ/wXjX2r/uYGAeUypvtYbxWzgmecHXJ5RzC2oYqLRcaXd7Lm2rIDc7FqTl hUHGnpixZWijEkevMRFzrHpjb8hE3uUbJPiTjFHeZ8eml1vBN3kSB8TQQip4Gged RrwEagQUxMqCPM/rLFuQprPjzVxjRbT9b0p1HmFQed+ytMdqiXuWh3ppyRx/BBMd ohc1bq59kfYYO0LCo0uFMVoAUO4r1M8i0kBwfFwytRWgeBd8wYG4eC5eU90AqlIh qb0JizfHL64re+VimjNPwqXtffZlbtI= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:36 2024 by rpki-client on console-fra.rpki-client.org