$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.mft File: 05oCrhUIYtFftyfFEbEE1j77RoY.mft (raw, json) Hash identifier: FAGvvo7aJ8zv/ZaBihGDKozvKiaVvfwXXi4YIlsXVWY= Subject key identifier: AB:4B:54:3E:FB:79:74:31:23:9C:57:D4:3D:E7:3E:09:FF:F2:97:7A Authority key identifier: D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86 Certificate issuer: /CN=D39A02AE150862D15FB727C511B104D63EFB4686 Certificate serial: 122F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.mft Manifest number: 1218 Signing time: Thu 21 Nov 2024 06:53:46 +0000 Manifest this update: Thu 21 Nov 2024 06:53:46 +0000 Manifest next update: Sat 23 Nov 2024 06:53:46 +0000 Files and hashes: 1: 05oCrhUIYtFftyfFEbEE1j77RoY.crl (hash: X4JvJA2tQOm7lPtp0yPLYkcRuuXtOkD8Sv3DkZr0GkM=) 2: 5pyUoag8aKIcwce03p8lgcqjowE.roa (hash: 5eML+Lqqt09qTr7gJlLAQfhIm3PsKENUc4R/Vpd793M=) 3: 8yXOjN9zRtosBBIHEBVGLCLQjgA.roa (hash: BAuZs+IaUZMMWWZrKQaB+eMDnXUmrrmOCFhCQH4CHz8=) 4: VSd5VMBEnUQHDxefBFJ4F4qMLA0.roa (hash: KfamYkOxd8tQdMHzxMJ/UGl6bOC0HooJsB/fre/BaRA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4655 (0x122f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D39A02AE150862D15FB727C511B104D63EFB4686 Validity Not Before: Nov 21 06:53:46 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=AB4B543EFB797431239C57D43DE73E09FFF2977A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:cb:01:12:bf:21:4d:b4:15:2b:78:f5:71:02: 2f:a7:89:0a:8f:ac:0e:02:43:89:f1:9a:8f:7e:bf: 58:a9:e5:e9:96:92:29:b5:fe:2f:d5:69:aa:87:9e: bf:19:c6:ae:fc:f6:d4:1b:24:2e:a5:e8:54:4c:90: 69:be:11:65:7d:cf:d3:51:cc:a4:4b:8c:11:98:d6: 0f:fb:6f:01:de:4d:96:19:55:eb:fb:f1:3a:15:cd: 95:32:b3:9d:97:f0:cb:c1:5f:84:22:38:a5:fc:af: 0f:33:f3:20:32:44:80:ef:a2:18:4a:f0:cf:e1:cb: 2d:35:e5:b6:38:21:e4:79:9e:5d:4f:46:a6:75:e4: 4b:79:b1:40:38:8d:32:ab:4e:00:0c:36:b1:c6:30: 40:e5:75:78:46:f2:92:a4:d2:0b:76:67:65:f5:c0: f6:8f:e9:3a:14:4d:88:28:e4:e9:60:82:7e:e1:ea: be:f8:73:6d:fe:97:61:8a:1e:c4:fc:9f:47:d8:96: 3b:80:a1:8d:64:24:8b:5a:38:81:23:18:70:1f:65: 6f:dc:ee:dd:42:12:6e:b8:9b:e9:d6:c7:e1:6e:ef: a1:89:83:32:9b:12:4c:83:c6:71:ec:41:42:dc:c1: 6a:f4:33:0e:b8:e4:bc:2f:fe:0e:7c:e5:ff:99:99: ed:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:4B:54:3E:FB:79:74:31:23:9C:57:D4:3D:E7:3E:09:FF:F2:97:7A X509v3 Authority Key Identifier: keyid:D3:9A:02:AE:15:08:62:D1:5F:B7:27:C5:11:B1:04:D6:3E:FB:46:86 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/05oCrhUIYtFftyfFEbEE1j77RoY.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HWACOM/05oCrhUIYtFftyfFEbEE1j77RoY.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 09:29:73:9a:44:be:be:f1:34:85:e5:6e:d2:ba:70:b3:76:40: 50:5d:59:8b:4a:d0:fa:e0:97:44:64:32:ac:39:6d:1b:24:11: 76:2e:47:6c:0a:0c:43:6e:a5:cc:cb:fc:c0:9e:a0:1e:cf:3c: 3b:60:bf:84:d8:65:44:f9:57:28:df:23:8a:9e:79:d8:ac:3a: 3a:3b:16:c0:44:e1:d5:b2:b3:8e:4e:91:22:cd:fd:49:a0:eb: f0:8a:c6:fc:38:cd:1d:52:a7:e1:f3:f2:67:fd:8a:c4:51:d3: d7:e0:6b:38:8e:d2:5f:fd:c2:97:05:16:f0:b1:7e:68:d1:b2: ca:b6:61:12:70:34:4d:e0:58:b8:df:de:79:e6:de:13:80:be: 34:7e:62:1e:84:91:43:eb:37:8b:43:7f:d8:ca:1c:89:48:c2: b2:b1:32:a2:75:8a:6a:9e:4c:9f:64:29:c8:3c:91:11:8f:99: 24:3d:19:c3:c2:90:7c:61:49:af:01:ee:6b:4c:4b:76:89:b2: c4:3d:cb:50:a5:a4:3d:29:eb:3f:59:9d:79:0c:ce:56:9d:1d: 22:7f:85:c7:b4:de:58:b2:79:09:f9:3d:9b:d2:80:21:ef:db: 99:b7:5f:a0:46:d8:cd:5d:9d:3b:9c:2e:56:fc:21:d7:e4:15: 11:6c:2e:36 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICEi8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDM5 QTAyQUUxNTA4NjJEMTVGQjcyN0M1MTFCMTA0RDYzRUZCNDY4NjAeFw0yNDExMjEw NjUzNDZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEFCNEI1NDNFRkI3OTc0 MzEyMzlDNTdENDNERTczRTA5RkZGMjk3N0EwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVywESvyFNtBUrePVxAi+niQqPrA4CQ4nxmo9+v1ip5emWkim1 /i/VaaqHnr8Zxq789tQbJC6l6FRMkGm+EWV9z9NRzKRLjBGY1g/7bwHeTZYZVev7 8ToVzZUys52X8MvBX4QiOKX8rw8z8yAyRIDvohhK8M/hyy015bY4IeR5nl1PRqZ1 5Et5sUA4jTKrTgAMNrHGMEDldXhG8pKk0gt2Z2X1wPaP6ToUTYgo5Olggn7h6r74 c23+l2GKHsT8n0fYljuAoY1kJItaOIEjGHAfZW/c7t1CEm64m+nWx+Fu76GJgzKb EkyDxnHsQULcwWr0Mw645Lwv/g585f+Zme0TAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUq0tUPvt5dDEjnFfUPec+Cf/yl3owHwYDVR0jBBgwFoAU05oCrhUIYtFftyfF EbEE1j77RoYwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFdBQ09N LzA1b0NyaFVJWXRGZnR5ZkZFYkVFMWo3N1JvWS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvMDVvQ3JoVUlZdEZmdHlmRkViRUUxajc3Um9ZLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvSFdBQ09NLzA1b0NyaFVJWXRGZnR5ZkZF YkVFMWo3N1JvWS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAJ KXOaRL6+8TSF5W7SunCzdkBQXVmLStD64JdEZDKsOW0bJBF2LkdsCgxDbqXMy/zA nqAezzw7YL+E2GVE+Vco3yOKnnnYrDo6OxbAROHVsrOOTpEizf1JoOvwisb8OM0d Uqfh8/Jn/YrEUdPX4Gs4jtJf/cKXBRbwsX5o0bLKtmEScDRN4Fi439555t4TgL40 fmIehJFD6zeLQ3/YyhyJSMKysTKidYpqnkyfZCnIPJERj5kkPRnDwpB8YUmvAe5r TEt2ibLEPctQpaQ9Kes/WZ15DM5WnR0if4XHtN5YsnkJ+T2b0oAh79uZt1+gRtjN XZ07nC5W/CHX5BURbC42 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org