$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft File: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft (raw, json) Hash identifier: ND9yOE42smbSrPuk1FKDtOom3NvWDwYqJ59gjBGqGB8= Subject key identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA Authority key identifier: 83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 Certificate issuer: /CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Certificate serial: 0145 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft Manifest number: 013D Signing time: Thu 21 Nov 2024 21:24:18 +0000 Manifest this update: Thu 21 Nov 2024 21:24:18 +0000 Manifest next update: Sat 23 Nov 2024 21:24:18 +0000 Files and hashes: 1: NSamg7l37QpmC2oZR7SzGfxaf90.roa (hash: dHy8vmR3/FEabzby0yE/QGvjaCrOB4kaXmhMqlrV1c0=) 2: aOpAE4_ZV5OFguED7i4Og0CRpU0.roa (hash: RXhwXxY3tByiPrA24GfZlt+lbM+GgLON7OqH/Ro1sIc=) 3: g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl (hash: bQbYgDNaz5qrKSagNJWCcdhzSyiP+DV2nGYlMNN4dxg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 325 (0x145) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=83ACFC46609C1649AB4616D20D64C9D15D834C64 Validity Not Before: Nov 21 21:24:18 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=9949C49DC8645CE600E8EA0C244876200B49A9EA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ed:ee:2c:7a:82:9e:91:78:70:e1:03:aa:dd:65: 79:37:3d:ca:eb:0d:6d:44:73:0b:2e:d6:d9:94:d6: 4a:2c:b9:2b:af:3c:c5:bc:3c:f5:0e:4f:74:a8:18: 06:2c:cb:4e:9c:85:f5:ae:22:b6:69:93:be:92:03: 6a:9c:b0:d4:ff:0a:47:2c:32:d2:81:b5:24:ee:b1: 49:88:5c:65:30:1f:37:b5:1f:c7:39:2f:d8:f5:75: 93:c6:33:af:54:d6:24:e3:79:79:9c:5d:5d:1d:65: 66:4d:6c:ff:d9:d0:56:ee:45:4c:3a:80:c4:06:2c: b3:0e:a0:fe:69:29:db:46:f1:d1:1d:4f:e7:20:84: 0a:6c:a3:55:11:64:f3:8b:e8:1d:cd:26:bb:0f:d9: 9d:7c:78:30:55:fb:e1:05:f4:a3:36:c7:e7:62:1f: d6:4d:47:b6:99:7c:7c:8d:e4:1d:31:99:76:94:c5: 3f:57:0f:d3:1c:02:c9:31:53:6e:0b:81:e5:38:23: f1:54:cf:d3:3c:75:b1:36:07:28:96:63:57:fa:21: ba:1b:08:0e:4c:92:ba:c9:d1:2d:75:6a:95:8f:24: aa:b5:00:a7:85:07:22:0d:b6:ea:58:bb:80:fc:ce: 1e:97:8b:a8:72:1a:ea:a2:8c:b5:cb:4b:88:c0:4b: 32:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 99:49:C4:9D:C8:64:5C:E6:00:E8:EA:0C:24:48:76:20:0B:49:A9:EA X509v3 Authority Key Identifier: keyid:83:AC:FC:46:60:9C:16:49:AB:46:16:D2:0D:64:C9:D1:5D:83:4C:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/JCA/g6z8RmCcFkmrRhbSDWTJ0V2DTGQ.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:14:f4:d5:e0:96:53:ab:0b:f8:76:24:6a:71:f2:9e:86:11: b5:e0:7e:55:38:9a:9f:c2:5f:b7:3e:d9:30:5d:6d:08:cb:d3: 05:89:36:55:74:22:ec:e8:a4:7e:a3:a3:32:81:96:27:8b:45: fe:08:15:fa:51:aa:25:6b:4d:01:1b:43:7a:a8:cf:12:6c:ff: 5d:f1:15:60:a8:58:74:49:20:88:da:4e:06:e4:95:be:9f:ea: 88:96:c5:c3:54:23:8a:bb:ef:9f:89:d0:58:eb:4a:a5:b6:1e: 46:ec:95:8c:c1:93:86:bc:68:33:40:02:f7:c8:3b:6b:b8:31: 9c:e3:64:26:bd:7c:b7:07:6b:42:57:c5:b5:54:fe:7e:36:ae: 8b:f1:42:1c:bf:90:3a:52:a5:77:d8:5e:28:b3:7b:59:e7:82: f3:29:f0:bb:cf:5b:e0:43:aa:27:db:9b:5b:33:83:87:9d:e7: 56:34:d4:83:0a:b8:3a:cd:ad:47:a3:3c:53:a4:83:5d:75:27: ed:8c:3b:6e:ae:43:e2:18:10:9d:47:30:ef:0c:e9:98:e1:0c: 90:12:08:f6:22:0d:e0:77:78:45:c5:9c:19:b1:bc:0b:38:51: 81:a0:3e:d5:bb:d2:d0:f6:06:9f:b7:d9:0d:23:e9:d7:f7:68: a5:3a:e8:78 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICAUUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODNB Q0ZDNDY2MDlDMTY0OUFCNDYxNkQyMEQ2NEM5RDE1RDgzNEM2NDAeFw0yNDExMjEy MTI0MThaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk5NDlDNDlEQzg2NDVD RTYwMEU4RUEwQzI0NDg3NjIwMEI0OUE5RUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDt7ix6gp6ReHDhA6rdZXk3PcrrDW1Ecwsu1tmU1kosuSuvPMW8 PPUOT3SoGAYsy06chfWuIrZpk76SA2qcsNT/CkcsMtKBtSTusUmIXGUwHze1H8c5 L9j1dZPGM69U1iTjeXmcXV0dZWZNbP/Z0FbuRUw6gMQGLLMOoP5pKdtG8dEdT+cg hApso1URZPOL6B3NJrsP2Z18eDBV++EF9KM2x+diH9ZNR7aZfHyN5B0xmXaUxT9X D9McAskxU24LgeU4I/FUz9M8dbE2ByiWY1f6IbobCA5MkrrJ0S11apWPJKq1AKeF ByINtupYu4D8zh6Xi6hyGuqijLXLS4jASzLDAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUmUnEnchkXOYA6OoMJEh2IAtJqeowHwYDVR0jBBgwFoAUg6z8RmCcFkmrRhbS DWTJ0V2DTGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2 ejhSbUNjRmttclJoYlNEV1RKMFYyRFRHUS5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev ZzZ6OFJtQ2NGa21yUmhiU0RXVEowVjJEVEdRLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvSkNBL2c2ejhSbUNjRmttclJoYlNEV1RKMFYy RFRHUS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQADFPTV4JZT qwv4diRqcfKehhG14H5VOJqfwl+3PtkwXW0Iy9MFiTZVdCLs6KR+o6MygZYni0X+ CBX6Uaola00BG0N6qM8SbP9d8RVgqFh0SSCI2k4G5JW+n+qIlsXDVCOKu++fidBY 60qlth5G7JWMwZOGvGgzQAL3yDtruDGc42QmvXy3B2tCV8W1VP5+Nq6L8UIcv5A6 UqV32F4os3tZ54LzKfC7z1vgQ6on25tbM4OHnedWNNSDCrg6za1HozxTpINddSft jDturkPiGBCdRzDvDOmY4QyQEgj2Ig3gd3hFxZwZsbwLOFGBoD7Vu9LQ9gaft9kN I+nX92ilOuh4 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:51 2024 by rpki-client on console-fra.rpki-client.org