$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft File: Z3gr2kgldGOtzabXLy7kG1_ZShE.mft (raw, json) Hash identifier: H9o9wArGDd8WoJb5/tKMW9T9EUlmjNlSk/vEzKIhio0= Subject key identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 Authority key identifier: 67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 Certificate issuer: /CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Certificate serial: 0ED0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft Manifest number: 0EBC Signing time: Sun 24 Nov 2024 09:24:49 +0000 Manifest this update: Sun 24 Nov 2024 09:24:49 +0000 Manifest next update: Tue 26 Nov 2024 09:24:49 +0000 Files and hashes: 1: II5KjgZQvHgyehkVKDaVmJy_w7E.roa (hash: F9w4pjGwKJ3XMxZ8ARVcC9Zf17+ZJ8Q2KWrk69buu1A=) 2: Z3gr2kgldGOtzabXLy7kG1_ZShE.crl (hash: d/mJTySL6yijWJ1aesrafIbqJm+r42o3Mns9ZqFkDeQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3792 (0xed0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=67782BDA48257463ADCDA6D72F2EE41B5FD94A11 Validity Not Before: Nov 24 09:24:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E0E70F63546DF8BC7C14185082C052D16A84AC4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:1c:1f:19:fd:a1:a0:86:7a:d0:8f:91:43:cd: 92:06:58:14:7b:3c:94:a0:fa:89:07:a3:1a:b0:d0: 77:e4:d0:30:88:d9:18:04:e3:6e:98:ef:b6:a5:6d: 37:86:70:7d:a7:b3:a3:af:aa:af:b3:c8:64:65:4b: 6f:ff:01:33:c9:19:29:ec:68:ea:da:e7:6e:4e:63: bc:ea:c3:f7:6b:ef:55:9e:06:02:00:94:3f:27:5f: 6c:7e:82:c5:36:5a:77:6c:35:12:bc:bf:aa:3d:99: fa:00:ab:c1:be:4b:4f:5f:31:38:c7:6d:0e:01:5d: 2e:aa:cd:47:49:83:4e:6e:40:82:21:f5:f9:70:3e: 97:b5:e1:89:3c:ba:be:4f:94:b3:5d:3a:0d:05:61: 80:67:5e:f2:31:91:5d:eb:8a:79:23:cf:36:ec:5e: 7b:dd:96:f5:3d:8d:85:1a:32:9d:76:48:42:33:74: 54:38:b2:31:d0:b4:5b:df:f1:c2:86:18:7c:55:20: ff:00:cf:9e:58:39:a0:fd:3c:c2:0f:06:26:a7:2c: f3:e1:be:58:c3:30:34:21:c4:63:9e:f9:84:0f:7b: 9b:b2:39:7f:4b:11:ba:48:b6:96:6d:79:69:ba:df: 15:46:48:b1:75:00:86:47:f9:e7:66:f2:02:ce:d2: 32:9d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:0E:70:F6:35:46:DF:8B:C7:C1:41:85:08:2C:05:2D:16:A8:4A:C4 X509v3 Authority Key Identifier: keyid:67:78:2B:DA:48:25:74:63:AD:CD:A6:D7:2F:2E:E4:1B:5F:D9:4A:11 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Z3gr2kgldGOtzabXLy7kG1_ZShE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMCLOUD/Z3gr2kgldGOtzabXLy7kG1_ZShE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8a:73:c9:d1:43:b7:b9:e2:39:a2:96:0c:ce:48:25:19:70:98: ce:27:1c:46:32:02:b1:54:93:c2:af:62:ab:55:48:86:d7:b2: 22:76:9c:15:f3:85:36:d2:f4:98:dd:20:c3:da:b7:b4:81:26: 73:df:31:f6:22:71:68:b3:06:dc:21:87:c3:93:fc:57:16:4b: 69:62:06:61:30:75:b4:b3:ea:79:7a:ad:8b:b6:f1:a8:48:6e: 9f:65:31:b6:a9:d8:f3:ad:31:5b:06:26:92:2c:61:85:8a:57: 4c:b5:ad:d7:27:ff:f7:92:f0:2f:49:65:81:ea:eb:62:81:7b: ec:2e:be:ac:87:bf:d9:c2:ff:90:a0:b4:b3:53:87:04:2f:e0: 2a:95:1f:58:c9:36:79:a5:52:f5:e9:88:87:3a:04:a4:4d:10: 23:18:d4:e2:2b:77:0c:b8:42:86:8d:e7:b6:1b:36:fa:07:6c: db:b2:05:2a:00:aa:01:9f:ae:1b:47:ad:59:29:f1:19:2d:da: 00:90:e6:04:bd:98:71:ee:d0:29:78:93:18:7f:8f:fa:84:06: 45:51:00:56:97:2d:87:29:f4:e2:00:ae:f8:1a:e9:29:a8:7e: 9b:40:8e:9b:18:c2:08:b4:12:76:d6:a7:5e:3e:93:81:ce:7f: 1b:5d:e1:61 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICDtAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjc3 ODJCREE0ODI1NzQ2M0FEQ0RBNkQ3MkYyRUU0MUI1RkQ5NEExMTAeFw0yNDExMjQw OTI0NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFMEU3MEY2MzU0NkRG OEJDN0MxNDE4NTA4MkMwNTJEMTZBODRBQzQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC+HB8Z/aGghnrQj5FDzZIGWBR7PJSg+okHoxqw0Hfk0DCI2RgE 426Y77albTeGcH2ns6Ovqq+zyGRlS2//ATPJGSnsaOra525OY7zqw/dr71WeBgIA lD8nX2x+gsU2WndsNRK8v6o9mfoAq8G+S09fMTjHbQ4BXS6qzUdJg05uQIIh9flw Ppe14Yk8ur5PlLNdOg0FYYBnXvIxkV3rinkjzzbsXnvdlvU9jYUaMp12SEIzdFQ4 sjHQtFvf8cKGGHxVIP8Az55YOaD9PMIPBianLPPhvljDMDQhxGOe+YQPe5uyOX9L EbpItpZteWm63xVGSLF1AIZH+edm8gLO0jKdAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUHg5w9jVG34vHwUGFCCwFLRaoSsQwHwYDVR0jBBgwFoAUZ3gr2kgldGOtzabX Ly7kG1/ZShEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1DTE9V RC9aM2dyMmtnbGRHT3R6YWJYTHk3a0cxX1pTaEUuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL1ozZ3Iya2dsZEdPdHphYlhMeTdrRzFfWlNoRS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0lNQ0xPVUQvWjNncjJrZ2xkR090emFi WEx5N2tHMV9aU2hFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AIpzydFDt7niOaKWDM5IJRlwmM4nHEYyArFUk8KvYqtVSIbXsiJ2nBXzhTbS9Jjd IMPat7SBJnPfMfYicWizBtwhh8OT/FcWS2liBmEwdbSz6nl6rYu28ahIbp9lMbap 2POtMVsGJpIsYYWKV0y1rdcn//eS8C9JZYHq62KBe+wuvqyHv9nC/5CgtLNThwQv 4CqVH1jJNnmlUvXpiIc6BKRNECMY1OIrdwy4QoaN57YbNvoHbNuyBSoAqgGfrhtH rVkp8Rkt2gCQ5gS9mHHu0Cl4kxh/j/qEBkVRAFaXLYcp9OIArvga6SmofptAjpsY wgi0EnbWp14+k4HOfxtd4WE= -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:08 2024 by rpki-client on console-ams.rpki-client.org