$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft File: FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft (raw, json) Hash identifier: /Q8uAMUkWoAN7bTd+oIFsQtJJgxroJkHUiITWEYiIe0= Subject key identifier: 3C:E3:DF:61:7B:EA:5D:05:79:2A:F9:97:07:A7:FD:2C:2C:CD:91:72 Authority key identifier: 14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 Certificate issuer: /CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Certificate serial: 14C9 Authority info access: rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft Manifest number: 149E Signing time: Tue 30 Apr 2024 13:22:42 +0000 Manifest this update: Tue 30 Apr 2024 13:22:42 +0000 Manifest next update: Thu 02 May 2024 13:22:42 +0000 Files and hashes: 1: -FjQAAx8RqmGsuuWgV8GriaTqdA.cer (hash: f+g1xmII/0zCXHalTv8WqMJ8JA1B/T82/hYtbsiRgQ4=) 2: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer (hash: lMJb/siPDVRHdE8yFPKa/L4eG056Yy52CuzLjmNoZas=) 3: 3ocrrSYtGPCmdJ4Cctl1Jh2UnsM.cer (hash: z7d7cY6rtT5TS1wqkIFLP7L8r8hGZdA57MOgeS9oWJk=) 4: 6rJQ0Fj6y-s-oNFrU4ZQYTOQdLY.cer (hash: 2O28DSyMjiPti974BqkWY5mvnCRubAhSfOUZNM8dL00=) 5: 8zpyqveYEFuyd_CURY5GS0ZZ-AM.cer (hash: /x04aaS70E+NVgoleYWnGBHKzGytNuuxWUC9lgNXNrY=) 6: B-NqPSGaivyE-IswVT5jjObCzs4.cer (hash: 4Uea7Z7253hJjxXrRW4m06gH+5fI5YBlxgmj12aVfRk=) 7: B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer (hash: QTW9qUhmLfiBD99Ma8fVnrZMUNzPH6iUrB8KT3upK4M=) 8: Bq4UgM78XOCAKSl_TUnLyr1s4vI.cer (hash: heZQPYBE8P7tzqUnJ86EYoqdDdu4GIvW5YOMongwFds=) 9: FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl (hash: mh2JVBpbPSSbC28M5poXhD8LTTYDLd4vUukZop6j+Rs=) 10: NzDZoZWrcQKGcizlzKRnz7pb1JQ.cer (hash: FiV7Ei+lt+ybn751+3O3q4ssu5PJT+1hnMA7AuHG10g=) 11: RUwtAMcuK1O0J_30WpO8Vn5AQOI.cer (hash: oF7l8nmOGh3NPP+bkX8DMw3Dlo3MQx5aZZJ4lgd8Heo=) 12: RXsQNypobj_3Nla-tc0968kyNxo.cer (hash: +g4OtNKHNV3FaawA6hruQiu8HiRC7kFwZHskvK21ITM=) 13: RhvA5RYCLDwnj8iSQgcF_rhWaNk.cer (hash: fZ+2tIG/ZXTo77K4auYOjscFT4pp2A1GF6sy/Pkd03U=) 14: WHbkuN-qIkwBnSRpMfw816T-7So.cer (hash: YsPuofm0i1reGkHBpLoGtBWYjFqRUOivf60yXZIiaHs=) 15: tKZaDrhmkhnEGFRC1J_J1vgltmU.cer (hash: Azh5Un3oqaTkBljWQ/8QPNGekI2SIZLTuRlFwbPX714=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 02 May 2024 13:22:42 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5321 (0x14c9) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91BDB290000/serialNumber=1431392F2FA6D18F66741E2EA1AEEA1781861743 Validity Not Before: Apr 30 13:22:42 2024 GMT Not After : Sep 30 00:00:00 2024 GMT Subject: CN=3CE3DF617BEA5D05792AF99707A7FD2C2CCD9172 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:76:ee:25:61:32:a6:5d:0e:04:37:32:5f:d6: 12:41:14:61:6d:c2:98:d3:de:c8:01:8e:72:15:6a: 91:83:f2:e4:91:ef:94:48:d8:2b:66:18:29:ae:e4: 2d:05:bc:86:8b:5f:b9:cb:3c:e4:bc:9e:6b:6c:b4: b7:92:23:a6:28:14:98:44:9e:1b:b1:2a:4f:e3:09: 8a:83:ad:04:cd:6d:01:d6:95:3e:e4:d8:bf:db:86: 13:70:fe:8b:db:c8:29:57:61:29:fb:10:13:c4:18: 59:68:50:fb:a1:ec:df:0d:33:46:92:90:9d:9b:7e: c9:db:02:06:a8:73:4f:d9:fb:13:6a:b7:c3:c2:0f: ae:b1:4f:fa:37:fd:a8:59:2d:13:62:b3:52:de:b9: 3a:9f:48:6a:ac:f2:e4:77:83:38:83:2d:6b:c2:0a: b7:e4:63:c9:33:82:fb:1c:06:6d:4c:2b:c8:09:12: a4:ba:fa:3a:59:36:b1:c4:46:a3:92:e2:64:33:c9: 6c:9f:aa:cb:1f:da:86:13:ea:b7:fc:0b:30:c1:3f: a0:4a:9b:cc:66:93:da:86:20:96:ec:20:78:e0:10: 1e:3f:82:b4:61:c9:8e:f0:93:19:61:f9:a4:d7:ae: f7:e4:a6:db:39:65:3f:43:e5:b0:cc:30:bb:4d:aa: 55:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:E3:DF:61:7B:EA:5D:05:79:2A:F9:97:07:A7:FD:2C:2C:CD:91:72 X509v3 Authority Key Identifier: keyid:14:31:39:2F:2F:A6:D1:8F:66:74:1E:2E:A1:AE:EA:17:81:86:17:43 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 78:20:c8:f5:d8:e8:37:11:a8:7e:07:21:9c:ab:b9:ee:84:38: 5b:ff:c2:2e:82:95:27:33:91:11:83:d9:5b:73:bf:94:e4:0e: 63:99:bf:f8:b2:d5:8d:f4:03:21:fe:d4:ba:cb:7a:41:99:ee: ba:c4:63:1a:0e:7a:05:35:fb:d8:30:d6:16:a2:fa:f5:c2:eb: ed:a7:3c:f0:21:61:89:f3:78:c5:ec:2a:34:0a:da:bd:cb:b7: 9a:57:c9:82:79:e4:9b:8f:66:b5:4d:65:1c:ab:e0:1c:3d:4d: f4:58:08:37:e6:00:f8:b0:7d:aa:89:ac:0a:9f:7f:bf:d9:3e: 37:8c:5e:38:6a:ae:94:88:af:8f:47:59:c0:0d:cb:5b:b6:f9: 37:4e:5e:76:c1:86:79:85:37:b0:11:7f:d1:9c:88:a0:e4:96: a3:af:ea:b3:0a:1a:8b:14:00:8f:cd:10:48:57:41:0b:82:78: d2:16:4e:c6:cf:14:5e:47:07:a4:60:6e:0b:51:f0:62:c7:3e: 38:2e:e4:6b:a4:51:87:de:5f:70:40:19:9f:8c:2c:de:1b:b7: 43:0e:7b:46:9c:41:62:0b:3d:b0:ae:86:65:c3:4b:d4:8c:be: 07:29:8b:6d:e9:38:27:d4:54:36:25:15:65:9f:2b:69:ac:4b: fa:50:91:28 -----BEGIN CERTIFICATE----- MIIFEjCCA/qgAwIBAgICFMkwDQYJKoZIhvcNAQELBQAwSjEVMBMGA1UEAxMMQTkx QkRCMjkwMDAwMTEwLwYDVQQFEygxNDMxMzkyRjJGQTZEMThGNjY3NDFFMkVBMUFF RUExNzgxODYxNzQzMB4XDTI0MDQzMDEzMjI0MloXDTI0MDkzMDAwMDAwMFowMzEx MC8GA1UEAxMoM0NFM0RGNjE3QkVBNUQwNTc5MkFGOTk3MDdBN0ZEMkMyQ0NEOTE3 MjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMR27iVhMqZdDgQ3Ml/W EkEUYW3CmNPeyAGOchVqkYPy5JHvlEjYK2YYKa7kLQW8hotfucs85Lyea2y0t5Ij pigUmESeG7EqT+MJioOtBM1tAdaVPuTYv9uGE3D+i9vIKVdhKfsQE8QYWWhQ+6Hs 3w0zRpKQnZt+ydsCBqhzT9n7E2q3w8IPrrFP+jf9qFktE2KzUt65Op9Iaqzy5HeD OIMta8IKt+RjyTOC+xwGbUwryAkSpLr6Olk2scRGo5LiZDPJbJ+qyx/ahhPqt/wL MME/oEqbzGaT2oYgluwgeOAQHj+CtGHJjvCTGWH5pNeu9+Sm2zllP0PlsMwwu02q Va0CAwEAAaOCAhcwggITMB0GA1UdDgQWBBQ8499he+pdBXkq+ZcHp/0sLM2RcjAf BgNVHSMEGDAWgBQUMTkvL6bRj2Z0Hi6hruoXgYYXQzAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMFUGA1UdHwROMEwwSqBIoEaGRHJzeW5jOi8vcnBraWNhLnR3bmlj LnR3L3Jwa2kvVFdOSUNDQS9GREU1THktbTBZOW1kQjR1b2E3cUY0R0dGME0uY3Js MH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtpLmFwbmlj Lm5ldC9yZXBvc2l0b3J5L0IzQTI0RjIwMUQ2NjExRTI4QUM4ODM3QzcyRkQxRkYy L0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0YwTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGVBggrBgEFBQcBCwSBiDCBhTBQBggrBgEFBQcwC4ZEcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0ZERTVMeS1tMFk5bWRCNHVvYTdxRjRHR0Yw TS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRwL25v dGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB/wQS MBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB4IMj12Og3Eah+ ByGcq7nuhDhb/8IugpUnM5ERg9lbc7+U5A5jmb/4stWN9AMh/tS6y3pBme66xGMa DnoFNfvYMNYWovr1wuvtpzzwIWGJ83jF7Co0Ctq9y7eaV8mCeeSbj2a1TWUcq+Ac PU30WAg35gD4sH2qiawKn3+/2T43jF44aq6UiK+PR1nADctbtvk3Tl52wYZ5hTew EX/RnIig5Jajr+qzChqLFACPzRBIV0ELgnjSFk7GzxReRwekYG4LUfBixz44LuRr pFGH3l9wQBmfjCzeG7dDDntGnEFiCz2wroZlw0vUjL4HKYtt6Tgn1FQ2JRVlnytp rEv6UJEo -----END CERTIFICATE-----Generated at Tue Apr 30 21:02:32 2024 by rpki-client on console-ams.rpki-client.org