$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft File: Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft (raw, json) Hash identifier: NoSWNrHnNcObSmu+pKd94Da7B+VWMv8WwN3OLQdmls0= Subject key identifier: 56:98:0A:C0:90:CF:7A:C1:89:68:DC:66:13:BD:E3:85:9D:50:C7:A2 Authority key identifier: 43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 Certificate issuer: /CN=43FF5C92CC4950A457A7327D168FBC465B218322 Certificate serial: 0C61 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft Manifest number: 0C50 Signing time: Sun 24 Nov 2024 06:54:21 +0000 Manifest this update: Sun 24 Nov 2024 06:54:21 +0000 Manifest next update: Tue 26 Nov 2024 06:54:21 +0000 Files and hashes: 1: Gjpj0hyCZa2KwksuNgK6Ogk2A58.roa (hash: 4HhFWksuNpCNG0QWc4N+jsJSgRTkh/Ru/hTrrel+2Jw=) 2: QF3KvLKnn1pJfEuta8rawY5jvpg.roa (hash: 5zGGJQG1xr3Km6IDb2ziS41NaqJyyllvWsLwlFQAY68=) 3: Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl (hash: Xk+HwSJemFRLNdB4oGagEah9ffQhS6DZNUz9sQuIGn4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3169 (0xc61) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43FF5C92CC4950A457A7327D168FBC465B218322 Validity Not Before: Nov 24 06:54:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=56980AC090CF7AC18968DC6613BDE3859D50C7A2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:54:32:cc:56:3f:6e:08:87:11:d5:84:95:31: 04:3b:1e:8f:9d:ee:a1:0c:2f:e3:69:5c:da:45:76: 03:eb:d7:07:89:d3:27:18:6e:a1:cd:8c:fb:fe:69: d5:8c:88:77:c6:ef:e4:f2:e9:97:1b:f5:c8:b0:9a: ca:c9:52:01:aa:98:9d:e6:27:af:3c:9d:9b:de:0c: 06:6f:c0:9c:a8:8c:eb:82:dc:c4:64:e4:3c:16:61: 4a:68:d4:1c:f7:8b:01:a2:f5:99:82:4d:67:c4:7e: e5:12:bd:ad:d5:98:49:97:c8:d6:13:25:5a:5f:27: af:1e:58:c7:6a:26:b0:cc:05:22:e9:7d:20:ac:2f: 8b:31:24:52:90:54:f4:e7:39:df:d5:5b:bc:83:c4: 98:6c:b6:03:92:aa:f5:c5:26:09:96:b0:14:22:08: 12:89:bc:ac:e6:7c:de:77:69:c5:fa:27:ea:4f:2f: cc:7a:0b:43:39:a1:8e:0c:d9:fe:dd:04:73:71:4c: c5:a5:f3:b1:1e:13:3c:59:7f:2c:3c:04:f0:a0:58: 68:16:db:61:86:aa:a1:34:e4:90:d3:30:68:5f:2e: f1:c8:d4:d0:a4:28:67:e4:e9:96:a0:4c:e8:4c:2f: 1b:95:92:d8:a6:6c:14:12:58:cf:d7:62:70:41:a0: 11:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 56:98:0A:C0:90:CF:7A:C1:89:68:DC:66:13:BD:E3:85:9D:50:C7:A2 X509v3 Authority Key Identifier: keyid:43:FF:5C:92:CC:49:50:A4:57:A7:32:7D:16:8F:BC:46:5B:21:83:22 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HEALTHNET/Q_9cksxJUKRXpzJ9Fo-8RlshgyI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:05:a7:f2:6f:f9:4d:7b:84:c9:5a:cd:76:ff:4c:1e:be:e8: 9e:3a:49:88:6d:b1:a2:5b:17:9a:1f:2e:e9:0a:00:0f:25:fb: 62:82:1d:e4:3d:fb:2b:d9:8f:17:2c:78:40:ae:40:35:8e:32: 91:bf:7c:2e:b9:65:e4:ce:3a:16:93:4f:15:74:de:2c:a6:78: 21:98:4a:14:53:f5:db:ad:d9:d5:b7:eb:af:65:3b:9f:62:c5: ec:fc:b7:ce:2d:fb:1a:14:58:8d:bb:46:a0:8e:3c:99:97:c4: 86:5f:4d:97:10:1a:6a:9e:28:d7:54:02:c6:75:a1:5d:fd:dd: 43:0a:5f:b2:c3:83:25:ce:21:55:cb:eb:df:f7:6a:99:cd:6a: 68:e5:1e:80:5e:fb:e2:92:52:0a:b3:94:56:ab:26:fb:74:a7: 6f:87:8f:ef:3f:76:bd:25:f7:d7:9a:a6:2b:a6:3d:b8:36:73: 3a:d8:b7:67:e4:02:e2:de:f8:85:f2:ba:06:37:dc:54:51:9b: d9:67:2d:14:c9:7a:01:64:04:3d:4a:de:7f:fa:13:2a:55:25: 33:31:63:a1:9a:ee:50:2d:71:18:09:8c:ec:50:62:ec:40:07: 8b:0c:7a:87:45:ab:27:67:d0:26:bf:da:d7:b7:0d:66:4e:84: 1c:df:f4:43 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICDGEwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNG RjVDOTJDQzQ5NTBBNDU3QTczMjdEMTY4RkJDNDY1QjIxODMyMjAeFw0yNDExMjQw NjU0MjFaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDU2OTgwQUMwOTBDRjdB QzE4OTY4REM2NjEzQkRFMzg1OUQ1MEM3QTIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMVDLMVj9uCIcR1YSVMQQ7Ho+d7qEML+NpXNpFdgPr1weJ0ycY bqHNjPv+adWMiHfG7+Ty6Zcb9ciwmsrJUgGqmJ3mJ688nZveDAZvwJyojOuC3MRk 5DwWYUpo1Bz3iwGi9ZmCTWfEfuUSva3VmEmXyNYTJVpfJ68eWMdqJrDMBSLpfSCs L4sxJFKQVPTnOd/VW7yDxJhstgOSqvXFJgmWsBQiCBKJvKzmfN53acX6J+pPL8x6 C0M5oY4M2f7dBHNxTMWl87EeEzxZfyw8BPCgWGgW22GGqqE05JDTMGhfLvHI1NCk KGfk6ZagTOhMLxuVktimbBQSWM/XYnBBoBGnAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUVpgKwJDPesGJaNxmE73jhZ1Qx6IwHwYDVR0jBBgwFoAUQ/9cksxJUKRXpzJ9 Fo+8RlshgyIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRI TkVUL1FfOWNrc3hKVUtSWHB6SjlGby04UmxzaGd5SS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvUV85Y2tzeEpVS1JYcHpKOUZvLThSbHNoZ3lJLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSEVBTFRITkVUL1FfOWNrc3hKVUtS WHB6SjlGby04UmxzaGd5SS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQASBafyb/lNe4TJWs12/0wevuieOkmIbbGiWxeaHy7pCgAPJftigh3kPfsr 2Y8XLHhArkA1jjKRv3wuuWXkzjoWk08VdN4spnghmEoUU/XbrdnVt+uvZTufYsXs /LfOLfsaFFiNu0agjjyZl8SGX02XEBpqnijXVALGdaFd/d1DCl+yw4MlziFVy+vf 92qZzWpo5R6AXvviklIKs5RWqyb7dKdvh4/vP3a9JffXmqYrpj24NnM62Ldn5ALi 3viF8roGN9xUUZvZZy0UyXoBZAQ9St5/+hMqVSUzMWOhmu5QLXEYCYzsUGLsQAeL DHqHRasnZ9Amv9rXtw1mToQc3/RD -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:06 2024 by rpki-client on console-ams.rpki-client.org