$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft File: 0SSAw3OkqF1efXJZMUQ137NEBEA.mft (raw, json) Hash identifier: 81SNGaXtzmfNummxrs151OMYw1XyuS2xgFjf3qzeX4U= Subject key identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 Authority key identifier: D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 Certificate issuer: /CN=D12480C373A4A85D5E7D7259314435DFB3440440 Certificate serial: 0C38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft Manifest number: 0C38 Signing time: Thu 21 Nov 2024 03:53:23 +0000 Manifest this update: Thu 21 Nov 2024 03:53:23 +0000 Manifest next update: Sat 23 Nov 2024 03:53:23 +0000 Files and hashes: 1: 0SSAw3OkqF1efXJZMUQ137NEBEA.crl (hash: yhoSFMqMz9cSnuI0ACM4RzMGaMPAxOWWfDAPhr3HB7c=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3128 (0xc38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D12480C373A4A85D5E7D7259314435DFB3440440 Validity Not Before: Nov 21 03:53:23 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=679553EAF718165E2C6F7C23CBA05EE3F79704A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:05:89:34:5d:8d:6a:29:a5:8f:c4:e1:db:fd: 5d:46:b9:22:d4:cb:84:17:df:78:5f:fb:c6:e8:46: ae:67:c7:aa:e8:45:a2:86:6b:21:1b:6e:1b:4e:82: ae:2e:50:8b:90:c0:07:27:82:10:ea:a5:5a:5d:7b: 46:e1:ce:0c:e8:ef:51:c6:de:54:4a:aa:da:0e:7e: ef:84:b7:8d:33:b9:ec:19:3a:94:4a:32:79:9f:11: cc:25:86:49:e2:df:63:af:ab:f1:f8:ab:12:c6:9d: 6e:6c:fe:46:67:c5:b1:4b:0d:47:6e:f8:1d:03:bb: 56:7e:1b:4b:5c:ea:67:45:e5:9f:d5:6b:e0:27:14: 57:b9:a9:07:9b:0c:93:c4:f1:17:37:20:cf:d6:5b: 24:32:d8:93:e6:0d:01:50:89:93:11:28:ff:9c:30: 2a:de:9f:d7:47:11:32:73:ad:16:08:5a:b0:53:5f: 67:98:f1:04:7f:56:e8:7f:62:95:23:a0:f6:5b:5b: 5f:ba:18:a3:c4:6e:67:99:61:7d:0c:d8:cc:f9:7a: 81:cd:c5:3b:ec:61:db:ac:bf:9c:50:2b:8f:8d:69: 1d:2a:8c:8d:61:5a:a5:f7:bb:69:09:54:49:77:8d: 47:41:22:a8:92:43:e5:3c:90:83:b7:fe:39:39:18: 68:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 X509v3 Authority Key Identifier: keyid:D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:47:f9:50:76:b9:13:5d:9b:2c:92:00:b2:c8:ce:1d:b9:82: 48:5d:59:99:5c:40:ff:bd:bf:90:e7:cf:52:3a:04:b5:cd:d1: 2f:5b:48:07:fb:bb:18:3c:6e:3e:84:0c:76:97:75:8a:a5:e5: e1:2a:1a:77:bb:86:15:f9:9f:a0:62:15:5a:9e:44:77:4c:97: f5:0e:7d:96:91:e7:1c:f6:ef:ca:bb:70:ee:d5:03:b0:09:df: db:c0:2c:da:54:28:7f:7f:e4:27:43:af:0f:db:8f:90:c0:71: 76:8a:23:9d:48:fe:07:2f:0d:93:a5:0b:24:a8:6f:87:28:78: 7f:d6:47:7d:1a:5d:64:f5:16:e5:a5:7e:05:92:90:cd:ff:6d: 64:91:51:9c:27:af:eb:5a:2a:fe:18:4a:8c:42:f5:2c:f8:03: ef:eb:d5:bf:e7:dc:27:f1:d8:31:e0:cc:e1:84:6b:4b:ba:48: 44:dc:a1:5a:2f:7f:fc:72:28:5c:e9:da:04:e9:78:1b:ee:21: 65:74:5d:7b:4c:f9:c6:81:4a:3f:4a:bc:17:85:0c:49:24:fc: 5a:a5:35:41:fe:87:48:5b:2e:66:97:2d:1b:a4:2f:a6:ca:ef: 64:e0:56:98:9d:69:4b:8a:57:91:1b:c7:16:3d:6a:be:52:7f: 86:e1:c2:22 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDDgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEy NDgwQzM3M0E0QTg1RDVFN0Q3MjU5MzE0NDM1REZCMzQ0MDQ0MDAeFw0yNDExMjEw MzUzMjNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3OTU1M0VBRjcxODE2 NUUyQzZGN0MyM0NCQTA1RUUzRjc5NzA0QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2BYk0XY1qKaWPxOHb/V1GuSLUy4QX33hf+8boRq5nx6roRaKG ayEbbhtOgq4uUIuQwAcnghDqpVpde0bhzgzo71HG3lRKqtoOfu+Et40zuewZOpRK MnmfEcwlhkni32Ovq/H4qxLGnW5s/kZnxbFLDUdu+B0Du1Z+G0tc6mdF5Z/Va+An FFe5qQebDJPE8Rc3IM/WWyQy2JPmDQFQiZMRKP+cMCren9dHETJzrRYIWrBTX2eY 8QR/Vuh/YpUjoPZbW1+6GKPEbmeZYX0M2Mz5eoHNxTvsYdusv5xQK4+NaR0qjI1h WqX3u2kJVEl3jUdBIqiSQ+U8kIO3/jk5GGjVAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUZ5VT6vcYFl4sb3wjy6Be4/eXBKcwHwYDVR0jBBgwFoAU0SSAw3OkqF1efXJZ MUQ137NEBEAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0VUT1Av MFNTQXczT2txRjFlZlhKWk1VUTEzN05FQkVBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8wU1NBdzNPa3FGMWVmWEpaTVVRMTM3TkVCRUEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HRVRPUC8wU1NBdzNPa3FGMWVmWEpaTVVR MTM3TkVCRUEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEArUf5 UHa5E12bLJIAssjOHbmCSF1ZmVxA/72/kOfPUjoEtc3RL1tIB/u7GDxuPoQMdpd1 iqXl4Soad7uGFfmfoGIVWp5Ed0yX9Q59lpHnHPbvyrtw7tUDsAnf28As2lQof3/k J0OvD9uPkMBxdoojnUj+By8Nk6ULJKhvhyh4f9ZHfRpdZPUW5aV+BZKQzf9tZJFR nCev61oq/hhKjEL1LPgD7+vVv+fcJ/HYMeDM4YRrS7pIRNyhWi9//HIoXOnaBOl4 G+4hZXRde0z5xoFKP0q8F4UMSST8WqU1Qf6HSFsuZpctG6QvpsrvZOBWmJ1pS4pX kRvHFj1qvlJ/huHCIg== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org