$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft File: P4T67Wy0fhEvJMawJ3pIYicGcso.mft (raw, json) Hash identifier: ZVcG/zJRbyoytO3eRRnQCFKdM44awgHPEIaDmnBNSco= Subject key identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 Authority key identifier: 3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA Certificate issuer: /CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Certificate serial: F5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft Manifest number: F1 Signing time: Thu 21 Nov 2024 04:54:13 +0000 Manifest this update: Thu 21 Nov 2024 04:54:13 +0000 Manifest next update: Sat 23 Nov 2024 04:54:13 +0000 Files and hashes: 1: Ero1zU7ZBHakAC_ocRNMCweSDxc.roa (hash: OzUIrWkLWkbadLjD6wtZYtZkLBnLUTzPWfrbGURymm0=) 2: P4T67Wy0fhEvJMawJ3pIYicGcso.crl (hash: 2/ECfaYy1k0KI9MTBD7Hr15YDcG2zn2JOrR/nSRIr60=) 3: ftJDo8JGDtKveudWbZjJkTNApXY.roa (hash: CHM0EsgeDUuGWgtSW1IqBOjDalEzh6KdgkawImPEOKs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 245 (0xf5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3F84FAED6CB47E112F24C6B0277A4862270672CA Validity Not Before: Nov 21 04:54:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=C62935BDEE28689F47A37A776EF691F2FD9522A0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f9:6f:5a:29:d0:9d:14:37:3b:94:31:e9:b6:39: 92:35:1b:25:de:6b:91:ab:a9:75:3c:3a:c5:73:71: d9:47:b9:21:fe:14:2a:4e:f9:c4:bf:d2:1f:4b:04: f9:1e:c5:38:e5:81:2f:61:65:d8:35:f4:55:ba:17: 6f:1d:ab:ee:60:36:f9:ab:f3:b9:46:42:56:a0:65: ce:68:17:4f:76:de:bb:2e:cc:6f:c9:00:dd:3a:ad: 41:1d:af:bf:5b:78:ef:29:5f:15:79:49:d7:53:ac: 56:6d:9c:b8:37:25:8f:f6:27:4e:54:d9:ca:ab:46: 36:ae:ea:ad:b4:d6:1b:b2:44:0e:61:84:a9:2d:fe: 29:47:38:ff:04:e3:8c:d1:e7:85:cf:8e:cc:d7:86: 0d:4b:5b:86:48:d6:fc:cd:21:96:e4:34:09:8c:a2: 66:b9:3a:6e:9a:9d:c9:a9:a8:66:e9:bf:94:e1:77: d0:b8:ad:d3:08:b5:2b:73:71:01:06:49:f1:40:52: a3:f3:c0:45:40:d4:4a:a0:a5:71:8a:19:d1:e1:a5: 7e:15:78:66:7a:06:fc:98:15:c8:a8:8d:af:d2:4c: eb:83:e3:ae:3a:dc:81:f8:ac:ce:3a:8c:c6:74:11: 7d:99:c3:56:c8:8e:af:62:3a:af:a8:fd:14:09:4c: bb:13 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:29:35:BD:EE:28:68:9F:47:A3:7A:77:6E:F6:91:F2:FD:95:22:A0 X509v3 Authority Key Identifier: keyid:3F:84:FA:ED:6C:B4:7E:11:2F:24:C6:B0:27:7A:48:62:27:06:72:CA X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/P4T67Wy0fhEvJMawJ3pIYicGcso.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KRONOSTECH/P4T67Wy0fhEvJMawJ3pIYicGcso.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 38:5a:85:51:a9:77:71:63:33:d3:93:76:b5:3e:2d:2c:9c:08: 97:27:c0:c2:26:60:27:fc:69:bb:c6:bf:31:04:e6:34:28:87: 2c:4f:28:84:8e:33:0d:a2:2c:f6:c3:0f:fd:7a:d1:b5:82:5c: 61:06:40:cb:79:8c:5f:cd:c7:54:45:f8:d0:59:fb:c7:1d:48: 4a:f6:7b:bc:91:6f:c0:56:f4:93:a1:fe:f3:f2:08:d5:ae:e3: c2:f1:ed:24:a7:3f:56:d3:a5:c5:4b:3c:9c:4b:54:68:df:67: 9c:c1:5c:a6:08:3e:6b:b1:86:c4:eb:02:f5:db:c6:98:97:7a: 7a:5a:17:37:68:bb:62:62:58:11:3c:92:37:4b:2b:4d:67:9b: 41:0a:42:7d:39:ea:9d:e5:b7:68:98:9b:17:cd:01:00:c1:35: 0e:f4:da:ca:e2:69:d3:1e:e9:6e:88:06:46:84:fd:da:72:de: e9:c6:95:3c:30:f7:c4:89:d8:da:61:44:6b:b1:62:55:98:17: e8:7f:99:27:2a:4b:79:24:51:71:15:0c:d7:89:9f:49:a7:99: da:fb:5f:a5:d4:ec:55:e3:62:21:f4:8f:a5:7a:56:ba:0c:58: 33:13:0c:af:7d:a8:57:21:92:16:cc:18:a5:fe:d6:64:53:2c: 5b:6e:33:04 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAPUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0Y4 NEZBRUQ2Q0I0N0UxMTJGMjRDNkIwMjc3QTQ4NjIyNzA2NzJDQTAeFw0yNDExMjEw NDU0MTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEM2MjkzNUJERUUyODY4 OUY0N0EzN0E3NzZFRjY5MUYyRkQ5NTIyQTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQD5b1op0J0UNzuUMem2OZI1GyXea5GrqXU8OsVzcdlHuSH+FCpO +cS/0h9LBPkexTjlgS9hZdg19FW6F28dq+5gNvmr87lGQlagZc5oF0923rsuzG/J AN06rUEdr79beO8pXxV5SddTrFZtnLg3JY/2J05U2cqrRjau6q201huyRA5hhKkt /ilHOP8E44zR54XPjszXhg1LW4ZI1vzNIZbkNAmMoma5Om6ancmpqGbpv5Thd9C4 rdMItStzcQEGSfFAUqPzwEVA1EqgpXGKGdHhpX4VeGZ6BvyYFcioja/STOuD4646 3IH4rM46jMZ0EX2Zw1bIjq9iOq+o/RQJTLsTAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUxik1ve4oaJ9Ho3p3bvaR8v2VIqAwHwYDVR0jBBgwFoAUP4T67Wy0fhEvJMaw J3pIYicGcsowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS1JPTk9T VEVDSC9QNFQ2N1d5MGZoRXZKTWF3SjNwSVlpY0djc28uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1A0VDY3V3kwZmhFdkpNYXdKM3BJWWljR2Nzby5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL0tST05PU1RFQ0gvUDRUNjdXeTBm aEV2Sk1hd0ozcElZaWNHY3NvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBADhahVGpd3FjM9OTdrU+LSycCJcnwMImYCf8abvGvzEE5jQohyxPKISO Mw2iLPbDD/160bWCXGEGQMt5jF/Nx1RF+NBZ+8cdSEr2e7yRb8BW9JOh/vPyCNWu 48Lx7SSnP1bTpcVLPJxLVGjfZ5zBXKYIPmuxhsTrAvXbxpiXenpaFzdou2JiWBE8 kjdLK01nm0EKQn056p3lt2iYmxfNAQDBNQ702sriadMe6W6IBkaE/dpy3unGlTww 98SJ2NphRGuxYlWYF+h/mScqS3kkUXEVDNeJn0mnmdr7X6XU7FXjYiH0j6V6VroM WDMTDK99qFchkhbMGKX+1mRTLFtuMwQ= -----END CERTIFICATE-----Generated at Fri Nov 22 08:14:08 2024 by rpki-client on console-ams.rpki-client.org