$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft File: 8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft (raw, json) Hash identifier: nu62elu+2w9SF7iUMWEA6D4YJFHLXeWEFd6FYWaqqB4= Subject key identifier: 82:A7:EA:2D:39:84:7C:AA:F9:6D:A1:9D:BE:9D:BF:5A:38:DD:22:49 Authority key identifier: F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE Certificate issuer: /CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE Certificate serial: 1258 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft Manifest number: 124D Signing time: Sun 02 Jun 2024 03:17:53 +0000 Manifest this update: Sun 02 Jun 2024 03:17:53 +0000 Manifest next update: Tue 04 Jun 2024 03:17:53 +0000 Files and hashes: 1: 1XskF7XZUxQttI9Pk_4drI2fjlA.roa (hash: rST9nuNBkf9VvzBo4McqWzUYdGc558qe+sNwN7E+hJM=) 2: 8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl (hash: 4L/JH/jnyee9Bhl1PTUKOwrq85En4pIceYwarxIXb5U=) 3: AWdovBdYLQASEU3WHvleuKIMnwE.roa (hash: 7RtXnGz4u1N1qtapOVbUmycXZKvAFLupApNXNqxE7Lg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 03:17:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4696 (0x1258) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F3174813DFB1F9B4560472C267F76CD0C141E5DE Validity Not Before: Jun 2 03:17:53 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=82A7EA2D39847CAAF96DA19DBE9DBF5A38DD2249 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:15:ae:be:91:b9:b6:81:5a:40:6c:74:51:ba: 82:21:4f:c9:71:ec:2e:74:8a:00:b8:90:5d:5e:1f: 82:f3:89:ff:7e:db:63:8a:a9:42:68:34:70:00:28: 21:9f:2b:92:23:ca:1a:cc:65:87:6a:59:51:18:f2: aa:2e:bf:90:f0:8f:61:83:31:a2:d6:12:bb:c2:9b: 2c:2e:1b:b8:e2:2b:d9:85:4d:b3:22:81:66:d2:03: ee:2e:fe:91:df:6b:25:7a:c9:e7:c5:d4:27:ee:aa: 01:d6:f4:ce:53:34:5b:a6:a8:16:e7:a8:7a:0f:b9: e0:a7:bf:8a:17:47:83:b6:30:f9:c6:d4:c9:02:ba: 0a:7d:55:73:dc:b9:92:c0:f0:95:25:dd:b1:53:0e: 30:38:ef:20:7e:b6:23:26:13:91:f3:55:01:9e:4f: b0:23:d2:ff:72:6e:78:ff:77:2e:2f:d2:d5:82:ed: e8:4c:3f:30:7c:a1:69:61:3e:12:e3:46:60:70:5f: 01:55:a7:12:ee:5b:ab:e3:c5:0c:43:20:4e:1a:42: d5:57:9b:1a:79:1d:eb:dd:6d:7f:1d:20:59:41:0b: b2:95:73:72:ea:ea:6d:be:09:bb:62:33:cd:62:55: ef:90:4b:8f:c1:e6:c1:03:34:00:67:ff:7b:9c:b2: 1b:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:A7:EA:2D:39:84:7C:AA:F9:6D:A1:9D:BE:9D:BF:5A:38:DD:22:49 X509v3 Authority Key Identifier: keyid:F3:17:48:13:DF:B1:F9:B4:56:04:72:C2:67:F7:6C:D0:C1:41:E5:DE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FAMILYPLUS/8xdIE9-x-bRWBHLCZ_ds0MFB5d4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b9:39:b4:99:07:2d:be:f9:fd:91:25:66:91:e2:d4:9c:f5:10: cb:82:66:00:cf:3d:ef:dd:80:18:b1:d9:84:23:a2:53:0f:19: b9:b1:0a:d9:94:aa:4b:f3:f6:b4:61:c4:90:1d:7e:b4:46:e6: 16:7d:c5:16:fe:06:f1:85:74:7e:e7:ab:2c:89:39:2a:46:d2: 62:07:5d:97:1b:b4:0c:96:d5:8c:5d:0d:f2:fd:50:8e:fb:27: 9a:90:cd:7f:c7:b5:68:94:59:3b:e2:57:53:d1:e5:6a:05:cd: c7:9d:d5:a9:7c:9c:e1:22:c4:22:00:79:cb:b3:29:12:da:68: b2:97:ee:a8:55:7e:b0:f0:ed:1f:22:e4:a4:c2:73:db:3d:9a: 64:c8:9f:6b:c9:27:f5:45:a8:a1:a1:14:9b:d0:b3:0e:1f:f7: 73:10:4d:f1:b2:37:ed:5b:f8:37:24:33:e4:38:5b:a3:a7:78: 85:2e:9c:f9:72:f8:37:1a:97:ac:c4:6d:38:67:d9:a0:73:5f: 9a:c5:b9:c3:b0:82:59:1b:c4:1d:45:c4:70:7b:96:e3:4c:89: 70:db:5c:9f:97:46:1b:9d:65:c9:d3:d8:53:b1:10:20:ab:63: 91:d6:25:48:2d:c2:58:6c:0b:c8:c7:c4:8a:55:db:6d:94:da: 36:06:43:c7 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICElgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjMx NzQ4MTNERkIxRjlCNDU2MDQ3MkMyNjdGNzZDRDBDMTQxRTVERTAeFw0yNDA2MDIw MzE3NTNaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDgyQTdFQTJEMzk4NDdD QUFGOTZEQTE5REJFOURCRjVBMzhERDIyNDkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC5Fa6+kbm2gVpAbHRRuoIhT8lx7C50igC4kF1eH4Lzif9+22OK qUJoNHAAKCGfK5IjyhrMZYdqWVEY8qouv5Dwj2GDMaLWErvCmywuG7jiK9mFTbMi gWbSA+4u/pHfayV6yefF1CfuqgHW9M5TNFumqBbnqHoPueCnv4oXR4O2MPnG1MkC ugp9VXPcuZLA8JUl3bFTDjA47yB+tiMmE5HzVQGeT7Aj0v9ybnj/dy4v0tWC7ehM PzB8oWlhPhLjRmBwXwFVpxLuW6vjxQxDIE4aQtVXmxp5HevdbX8dIFlBC7KVc3Lq 6m2+CbtiM81iVe+QS4/B5sEDNABn/3ucshv/AgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUgqfqLTmEfKr5baGdvp2/WjjdIkkwHwYDVR0jBBgwFoAU8xdIE9+x+bRWBHLC Z/ds0MFB5d4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRkFNSUxZ UExVUy84eGRJRTkteC1iUldCSExDWl9kczBNRkI1ZDQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBLzh4ZElFOS14LWJSV0JITENaX2RzME1GQjVkNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0ZBTUlMWVBMVVMvOHhkSUU5LXgt YlJXQkhMQ1pfZHMwTUZCNWQ0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBALk5tJkHLb75/ZElZpHi1Jz1EMuCZgDPPe/dgBix2YQjolMPGbmxCtmU qkvz9rRhxJAdfrRG5hZ9xRb+BvGFdH7nqyyJOSpG0mIHXZcbtAyW1YxdDfL9UI77 J5qQzX/HtWiUWTviV1PR5WoFzced1al8nOEixCIAecuzKRLaaLKX7qhVfrDw7R8i 5KTCc9s9mmTIn2vJJ/VFqKGhFJvQsw4f93MQTfGyN+1b+DckM+Q4W6OneIUunPly +Dcal6zEbThn2aBzX5rFucOwglkbxB1FxHB7luNMiXDbXJ+XRhudZcnT2FOxECCr Y5HWJUgtwlhsC8jHxIpV222U2jYGQ8c= -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:42 2024 by rpki-client on console-ams.rpki-client.org