$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft File: bKW4t-CigcRnJiJG3wyFnfX4fx8.mft (raw, json) Hash identifier: 9r1ZI6K1qjjYat8ebSkSzsJGw1tAo6dtsD+pINh5GYw= Subject key identifier: D7:62:F2:FD:46:30:B4:60:04:B4:DC:69:56:A9:96:5F:50:00:63:37 Authority key identifier: 6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F Certificate issuer: /CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Certificate serial: 32 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft Manifest number: 32 Signing time: Sun 02 Jun 2024 10:38:38 +0000 Manifest this update: Sun 02 Jun 2024 10:38:38 +0000 Manifest next update: Tue 04 Jun 2024 10:38:38 +0000 Files and hashes: 1: bKW4t-CigcRnJiJG3wyFnfX4fx8.crl (hash: EfAXqRquovaaFmD9RUYvF9BoiEeInt0ANOFYAhlOQnM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 10:38:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 50 (0x32) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6CA5B8B7E0A281C467262246DF0C859DF5F87F1F Validity Not Before: Jun 2 10:38:38 2024 GMT Not After : Mar 21 15:30:27 2025 GMT Subject: CN=D762F2FD4630B46004B4DC6956A9965F50006337 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:90:b7:8c:80:8b:3e:ae:56:61:8e:87:ba:af: d9:44:2c:dd:ab:f0:fc:5c:87:fb:b0:d7:b4:1a:b8: 7f:84:9c:82:ae:e5:88:66:f9:2b:53:b3:2f:33:52: 85:5a:fc:34:3c:b1:e4:3f:c2:21:62:0d:8b:a4:67: 3d:43:42:00:73:e1:57:43:24:38:e3:76:3d:59:41: 00:4e:80:7f:e6:a5:c6:e6:7b:cc:20:72:09:76:b7: 59:5c:40:d3:be:09:63:f8:12:6f:0c:10:be:ec:ab: f0:88:84:8e:6f:f6:87:64:cc:fc:0e:f1:85:eb:c2: 7a:c2:2f:fb:80:f6:5b:2a:25:86:14:ec:07:cb:e5: 29:ae:b3:89:7f:24:74:6b:a9:ba:66:b5:9f:03:b6: 03:67:35:3c:0a:42:4c:07:7a:45:38:c8:30:3a:3f: 7f:5d:81:01:6b:de:49:b9:51:06:2c:31:ef:cc:2c: 7b:31:2e:8e:0b:3c:d1:e2:9e:d6:4b:b5:ca:6c:0a: 54:d7:61:65:fe:5a:eb:4a:c3:e9:81:5f:e6:76:76: b1:e5:d3:12:b5:7e:5c:2f:26:1d:ff:3e:27:73:74: 5c:8a:ca:56:73:f2:d3:68:4e:ff:60:9a:b3:3e:03: b9:6e:44:77:09:d4:5e:b8:82:d0:cd:e2:60:43:30: 77:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:62:F2:FD:46:30:B4:60:04:B4:DC:69:56:A9:96:5F:50:00:63:37 X509v3 Authority Key Identifier: keyid:6C:A5:B8:B7:E0:A2:81:C4:67:26:22:46:DF:0C:85:9D:F5:F8:7F:1F X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/bKW4t-CigcRnJiJG3wyFnfX4fx8.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IAMT/bKW4t-CigcRnJiJG3wyFnfX4fx8.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 51:7c:3f:6a:d7:1f:49:30:ff:22:ed:08:1e:99:67:40:67:eb: 7e:41:ea:9e:72:b5:24:9d:ca:aa:13:08:b8:6a:96:20:b4:6e: 99:11:b5:f9:3c:03:d9:64:aa:74:e8:dc:c2:51:69:1d:85:01: 71:f0:5d:b2:c1:14:8f:73:b6:37:a0:3a:3e:16:dd:76:11:25: f8:8e:7a:ef:55:94:6b:3f:3b:d9:88:99:e5:9c:29:72:1f:97: c0:44:0e:15:69:3d:e0:02:c3:76:21:d2:9e:ab:ff:9f:66:a3: 0a:42:e4:77:28:da:30:dd:ce:77:2f:12:df:4e:70:10:cf:f5: c9:b4:5b:24:65:dd:6e:fd:7c:2d:1d:2d:e1:0d:bb:ac:99:13: 29:2f:8e:6f:fa:36:4e:6f:3e:9c:fc:0c:b6:cc:8a:cd:e3:ca: 2e:3b:39:4b:c3:86:f9:01:99:65:9a:11:21:67:03:63:19:87: 0f:d6:e8:43:8e:06:20:11:39:05:e5:ac:af:7f:4b:be:f9:b3: 67:9b:ac:a0:9a:85:33:4a:e8:5b:14:de:a0:3b:d1:fb:ec:aa: 84:18:80:9f:59:85:6e:0d:41:68:35:c4:d4:c6:b6:5d:ff:ba: 56:69:b7:df:e3:b1:b6:73:5c:43:a5:73:2a:79:3f:de:1e:b6: 83:86:b8:35 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIBMjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg2Q0E1 QjhCN0UwQTI4MUM0NjcyNjIyNDZERjBDODU5REY1Rjg3RjFGMB4XDTI0MDYwMjEw MzgzOFoXDTI1MDMyMTE1MzAyN1owMzExMC8GA1UEAxMoRDc2MkYyRkQ0NjMwQjQ2 MDA0QjREQzY5NTZBOTk2NUY1MDAwNjMzNzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALWQt4yAiz6uVmGOh7qv2UQs3avw/FyH+7DXtBq4f4Scgq7liGb5 K1OzLzNShVr8NDyx5D/CIWINi6RnPUNCAHPhV0MkOON2PVlBAE6Af+alxuZ7zCBy CXa3WVxA074JY/gSbwwQvuyr8IiEjm/2h2TM/A7xhevCesIv+4D2WyolhhTsB8vl Ka6ziX8kdGupuma1nwO2A2c1PApCTAd6RTjIMDo/f12BAWveSblRBiwx78wsezEu jgs80eKe1ku1ymwKVNdhZf5a60rD6YFf5nZ2seXTErV+XC8mHf8+J3N0XIrKVnPy 02hO/2Casz4DuW5EdwnUXriC0M3iYEMwd0ECAwEAAaOCAgMwggH/MB0GA1UdDgQW BBTXYvL9RjC0YAS03GlWqZZfUABjNzAfBgNVHSMEGDAWgBRspbi34KKBxGcmIkbf DIWd9fh/HzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JQU1UL2JL VzR0LUNpZ2NSbkppSkczd3lGbmZYNGZ4OC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev YktXNHQtQ2lnY1JuSmlKRzN3eUZuZlg0Zng4LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSUFNVC9iS1c0dC1DaWdjUm5KaUpHM3d5Rm5m WDRmeDgubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUHAQcB Af8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUXw/atcf STD/Iu0IHplnQGfrfkHqnnK1JJ3KqhMIuGqWILRumRG1+TwD2WSqdOjcwlFpHYUB cfBdssEUj3O2N6A6PhbddhEl+I5671WUaz872YiZ5Zwpch+XwEQOFWk94ALDdiHS nqv/n2ajCkLkdyjaMN3Ody8S305wEM/1ybRbJGXdbv18LR0t4Q27rJkTKS+Ob/o2 Tm8+nPwMtsyKzePKLjs5S8OG+QGZZZoRIWcDYxmHD9boQ44GIBE5BeWsr39Lvvmz Z5usoJqFM0roWxTeoDvR++yqhBiAn1mFbg1BaDXE1Ma2Xf+6Vmm33+OxtnNcQ6Vz Knk/3h62g4a4NQ== -----END CERTIFICATE-----Generated at Mon Jun 3 02:57:40 2024 by rpki-client on console-fra.rpki-client.org