$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/IMYKL/a4hh85SbhfETv_s2vUm9wWEpsfM.mft File: a4hh85SbhfETv_s2vUm9wWEpsfM.mft (raw, json) Hash identifier: 5J0ufA+Sw/EdwkadGThRYZHReZaYP0R33VCAcizZs6M= Subject key identifier: F0:BB:8A:19:86:0A:7D:06:60:8E:4F:18:2B:BD:3D:44:77:8E:F4:AF Authority key identifier: 6B:88:61:F3:94:9B:85:F1:13:BF:FB:36:BD:49:BD:C1:61:29:B1:F3 Certificate issuer: /CN=6B8861F3949B85F113BFFB36BD49BDC16129B1F3 Certificate serial: DE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/a4hh85SbhfETv_s2vUm9wWEpsfM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/a4hh85SbhfETv_s2vUm9wWEpsfM.mft Manifest number: DE Signing time: Mon 25 Nov 2024 13:23:36 +0000 Manifest this update: Mon 25 Nov 2024 13:23:36 +0000 Manifest next update: Mon 25 Nov 2024 19:23:36 +0000 Files and hashes: 1: a4hh85SbhfETv_s2vUm9wWEpsfM.crl (hash: W+jYx1Czy7aOMei+iGqrRvZqa7kI1j9B8tytvqOo63s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/a4hh85SbhfETv_s2vUm9wWEpsfM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/a4hh85SbhfETv_s2vUm9wWEpsfM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/a4hh85SbhfETv_s2vUm9wWEpsfM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 19:23:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 222 (0xde) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=6B8861F3949B85F113BFFB36BD49BDC16129B1F3 Validity Not Before: Nov 25 13:23:36 2024 GMT Not After : Oct 14 15:30:23 2025 GMT Subject: CN=F0BB8A19860A7D06608E4F182BBD3D44778EF4AF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:8b:ed:22:74:af:cd:96:91:2f:3f:20:7a:8f: 15:52:90:91:e7:d3:72:cc:ee:27:9e:92:19:df:28: db:32:87:c7:e8:17:7b:f5:e6:76:5d:d4:01:f3:49: 78:ff:49:0f:e8:93:25:be:fd:5f:a1:38:52:40:a9: 75:f1:ac:05:91:f7:37:83:f8:48:c7:12:f4:e8:31: 8a:64:33:77:6c:e8:fc:ab:97:76:8c:da:fc:fd:9b: dc:43:93:f3:bd:3d:81:c2:e6:7e:94:59:1c:c5:fc: 5a:79:23:6c:61:e2:c8:81:84:c7:66:c0:32:17:ef: 5c:a8:2d:01:7b:60:53:ad:28:39:00:dd:3d:c2:f2: 48:b0:e3:a3:65:a0:2b:a0:b4:1d:d9:e8:2e:f2:78: 7d:bb:a0:4d:b8:33:63:72:11:98:bf:05:d7:40:9e: 69:dd:3a:86:e0:d9:e1:8e:7a:5c:3d:8d:43:f4:d4: 3d:ae:77:d9:56:de:cd:b4:b4:27:f0:5e:d7:7d:76: e3:17:82:12:ea:ca:78:ec:a3:44:64:89:b9:4e:bb: 6c:d6:1c:99:dc:74:29:e5:d7:cb:23:55:8b:5a:96: d8:ec:d8:eb:a0:7a:5a:70:be:fa:fd:3f:69:64:73: 64:95:69:6e:1a:0d:e5:45:c1:50:56:f8:ef:f1:98: f0:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:BB:8A:19:86:0A:7D:06:60:8E:4F:18:2B:BD:3D:44:77:8E:F4:AF X509v3 Authority Key Identifier: keyid:6B:88:61:F3:94:9B:85:F1:13:BF:FB:36:BD:49:BD:C1:61:29:B1:F3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/a4hh85SbhfETv_s2vUm9wWEpsfM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/a4hh85SbhfETv_s2vUm9wWEpsfM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IMYKL/a4hh85SbhfETv_s2vUm9wWEpsfM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:0b:f7:81:ce:51:c1:dd:15:1c:dd:55:39:df:a1:bd:38:41: b0:b5:ef:69:4a:e0:78:af:63:27:4c:95:4a:52:28:61:29:0c: 6d:a3:87:16:bb:d9:0c:0a:9d:2f:aa:da:7f:e9:d4:74:d3:79: 94:b1:83:82:13:7d:e9:ea:dc:c0:47:92:80:3d:87:70:51:7f: 44:7a:c0:8d:2f:5f:78:d7:b1:1a:fd:f7:26:a6:6d:c2:10:78: a8:8a:79:b8:5f:fd:e5:77:0c:c1:52:e2:bb:89:0c:38:f5:16: 9f:e1:2e:67:fc:9b:9a:3b:55:e3:76:d1:33:5a:db:d5:20:ef: 8e:22:b5:a5:19:4d:9f:0f:46:6a:58:33:c2:a8:2b:01:8e:68: ac:71:2a:41:4a:da:73:51:67:2c:4a:62:92:1a:5f:14:ee:37: c2:6c:02:de:06:9d:1c:7f:81:ae:9b:08:b4:22:99:d2:18:eb: 8b:eb:e6:49:2d:38:c9:0b:77:3c:1e:9a:bb:5c:a2:c2:b8:02: 27:1b:a5:56:ac:c4:0e:61:54:ee:1e:49:61:f3:97:b5:3a:53: 5c:75:27:df:1f:9c:17:1a:a3:fc:2c:37:21:b4:f1:da:fa:fe: 27:c6:d4:bd:35:25:6c:83:4b:38:27:e6:a5:fe:1e:d6:be:88: 7f:44:f7:73 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAN4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNkI4 ODYxRjM5NDlCODVGMTEzQkZGQjM2QkQ0OUJEQzE2MTI5QjFGMzAeFw0yNDExMjUx MzIzMzZaFw0yNTEwMTQxNTMwMjNaMDMxMTAvBgNVBAMTKEYwQkI4QTE5ODYwQTdE MDY2MDhFNEYxODJCQkQzRDQ0Nzc4RUY0QUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRi+0idK/NlpEvPyB6jxVSkJHn03LM7ieekhnfKNsyh8foF3v1 5nZd1AHzSXj/SQ/okyW+/V+hOFJAqXXxrAWR9zeD+EjHEvToMYpkM3ds6Pyrl3aM 2vz9m9xDk/O9PYHC5n6UWRzF/Fp5I2xh4siBhMdmwDIX71yoLQF7YFOtKDkA3T3C 8kiw46NloCugtB3Z6C7yeH27oE24M2NyEZi/BddAnmndOobg2eGOelw9jUP01D2u d9lW3s20tCfwXtd9duMXghLqynjso0RkiblOu2zWHJncdCnl18sjVYtaltjs2Oug elpwvvr9P2lkc2SVaW4aDeVFwVBW+O/xmPAlAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU8LuKGYYKfQZgjk8YK709RHeO9K8wHwYDVR0jBBgwFoAUa4hh85SbhfETv/s2 vUm9wWEpsfMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSU1ZS0wv YTRoaDg1U2JoZkVUdl9zMnZVbTl3V0Vwc2ZNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9hNGhoODVTYmhmRVR2X3MydlVtOXdXRXBzZk0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9JTVlLTC9hNGhoODVTYmhmRVR2X3MydlVt OXdXRXBzZk0ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAHgv3 gc5Rwd0VHN1VOd+hvThBsLXvaUrgeK9jJ0yVSlIoYSkMbaOHFrvZDAqdL6raf+nU dNN5lLGDghN96ercwEeSgD2HcFF/RHrAjS9feNexGv33JqZtwhB4qIp5uF/95XcM wVLiu4kMOPUWn+EuZ/ybmjtV43bRM1rb1SDvjiK1pRlNnw9GalgzwqgrAY5orHEq QUrac1FnLEpikhpfFO43wmwC3gadHH+BrpsItCKZ0hjri+vmSS04yQt3PB6au1yi wrgCJxulVqzEDmFU7h5JYfOXtTpTXHUn3x+cFxqj/Cw3IbTx2vr+J8bUvTUlbINL OCfmpf4e1r6If0T3cw== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:39 2024 by rpki-client on console-fra.rpki-client.org