$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.mft File: irmeyQYHuWAZUW7KYEx7f_JHSpo.mft (raw, json) Hash identifier: qLzYApD0VG2U40oD27f85G9Eao1cw+3/yaThvSkWNGo= Subject key identifier: 3A:27:64:29:E7:A9:6E:DE:38:5F:B5:2F:1F:F6:EC:95:B6:17:99:9A Authority key identifier: 8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A Certificate issuer: /CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A Certificate serial: 0199 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.mft Manifest number: 018E Signing time: Sun 16 Feb 2025 16:27:03 +0000 Manifest this update: Sun 16 Feb 2025 16:27:03 +0000 Manifest next update: Sun 16 Feb 2025 22:27:03 +0000 Files and hashes: 1: RihfMfWvQsLq-r9eLjMkQB5ScIo.roa (hash: h+3FeksP7vpLGtxaVSkH3RkUH7+7bnYI87GWeleGJ1I=) 2: irmeyQYHuWAZUW7KYEx7f_JHSpo.crl (hash: AE0ReuWH5IqYwD9TKNp3CcNaC8f2AUTFe2px88bGe5g=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Feb 2025 22:27:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8AB99EC90607B96019516ECA604C7B7FF2474A9A Validity Not Before: Feb 16 16:27:03 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=3A276429E7A96EDE385FB52F1FF6EC95B617999A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a9:4b:03:d5:ac:ae:ff:f4:03:a3:9a:71:2e:ce: 7a:8a:c4:f0:0b:bb:59:38:e0:3c:a3:ea:e1:3e:e7: eb:a3:6f:a1:95:38:ec:3f:8c:d2:85:a0:9d:db:b8: b9:e6:e4:de:96:14:a9:c8:32:df:2b:7f:0d:55:aa: 64:56:1e:e7:0e:08:38:5c:ad:ed:a9:d3:27:9a:93: cc:25:9e:77:7b:e4:a2:ab:c5:a9:f3:e5:e6:1f:ae: a5:48:a4:2d:06:b3:98:ff:e5:d9:96:ed:9e:40:0c: 13:33:c9:05:d4:ed:42:dc:8e:6a:3d:d6:e8:b3:11: ee:a6:88:56:09:8c:5d:48:2a:9e:a3:81:47:ff:3f: 88:39:f7:a7:57:18:53:35:95:cf:ee:ea:99:cf:54: 27:b9:9d:b7:46:4e:1e:6c:86:21:33:ec:a0:83:ff: 4d:b3:bc:e5:00:10:a5:8e:6f:95:d2:c4:fa:da:a4: 83:a0:ed:40:92:82:33:d1:93:e8:94:11:8e:cc:3d: 26:c3:da:75:5e:d6:4a:9c:fc:f4:5c:da:53:55:20: bb:1d:00:d1:a7:ab:e0:43:1c:54:7b:1c:dc:71:05: da:a6:e5:18:86:77:88:7b:da:c6:5b:4b:d8:54:e7: 3b:86:9a:b4:45:d1:f6:99:62:97:f8:a3:43:21:d6: 41:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:27:64:29:E7:A9:6E:DE:38:5F:B5:2F:1F:F6:EC:95:B6:17:99:9A X509v3 Authority Key Identifier: keyid:8A:B9:9E:C9:06:07:B9:60:19:51:6E:CA:60:4C:7B:7F:F2:47:4A:9A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/irmeyQYHuWAZUW7KYEx7f_JHSpo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LINGCAI/irmeyQYHuWAZUW7KYEx7f_JHSpo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 69:0a:02:96:7e:57:73:39:f4:49:58:ca:fa:c4:29:45:fc:87: e1:02:93:c1:48:f1:4a:82:48:8c:01:a5:02:b8:7b:68:52:91: 48:cb:72:19:4a:5f:33:a4:7e:a7:99:e5:e9:66:38:a4:fc:e2: 64:71:e1:b6:b2:1c:4e:5d:bc:3a:c2:ad:7b:e3:f3:7e:90:0c: ee:00:44:27:e3:e1:e2:d3:4d:b4:45:92:0c:14:2d:84:b3:72: dd:d3:c5:51:d0:13:9c:c6:17:b7:fb:35:dd:f0:57:db:98:35: 7c:72:65:e4:03:63:d9:9f:56:3d:c6:78:98:1c:f2:6a:15:7f: 79:20:7c:ad:c6:fe:76:9f:26:a0:53:5e:43:8c:d0:f1:98:89: 30:d1:b5:86:93:44:99:a7:e8:2a:81:c2:a9:6c:90:23:6d:c2: cd:db:44:45:d6:d4:6f:5a:03:df:a3:27:89:85:7b:4d:7a:b7: 8a:55:7b:e4:7e:0b:46:72:61:1d:44:86:95:03:94:d0:f5:fb: be:0e:af:c3:0c:ec:39:c7:78:c4:27:1f:9a:5d:e1:06:69:8a: e0:2c:f5:30:85:57:23:19:5e:ef:5c:6b:bf:50:d6:2d:a9:51: 91:3f:93:8a:ea:5d:6e:9a:03:0f:e6:19:fd:de:a9:fe:a3:18: a1:fe:a5:2b -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOEFC OTlFQzkwNjA3Qjk2MDE5NTE2RUNBNjA0QzdCN0ZGMjQ3NEE5QTAeFw0yNTAyMTYx NjI3MDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDNBMjc2NDI5RTdBOTZF REUzODVGQjUyRjFGRjZFQzk1QjYxNzk5OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCpSwPVrK7/9AOjmnEuznqKxPALu1k44Dyj6uE+5+ujb6GVOOw/ jNKFoJ3buLnm5N6WFKnIMt8rfw1VqmRWHucOCDhcre2p0yeak8wlnnd75KKrxanz 5eYfrqVIpC0Gs5j/5dmW7Z5ADBMzyQXU7ULcjmo91uizEe6miFYJjF1IKp6jgUf/ P4g596dXGFM1lc/u6pnPVCe5nbdGTh5shiEz7KCD/02zvOUAEKWOb5XSxPrapIOg 7UCSgjPRk+iUEY7MPSbD2nVe1kqc/PRc2lNVILsdANGnq+BDHFR7HNxxBdqm5RiG d4h72sZbS9hU5zuGmrRF0faZYpf4o0Mh1kHTAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUOidkKeepbt44X7UvH/bslbYXmZowHwYDVR0jBBgwFoAUirmeyQYHuWAZUW7K YEx7f/JHSpowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElOR0NB SS9pcm1leVFZSHVXQVpVVzdLWUV4N2ZfSkhTcG8uY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL2lybWV5UVlIdVdBWlVXN0tZRXg3Zl9KSFNwby5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL0xJTkdDQUkvaXJtZXlRWUh1V0FaVVc3 S1lFeDdmX0pIU3BvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AGkKApZ+V3M59ElYyvrEKUX8h+ECk8FI8UqCSIwBpQK4e2hSkUjLchlKXzOkfqeZ 5elmOKT84mRx4bayHE5dvDrCrXvj836QDO4ARCfj4eLTTbRFkgwULYSzct3TxVHQ E5zGF7f7Nd3wV9uYNXxyZeQDY9mfVj3GeJgc8moVf3kgfK3G/nafJqBTXkOM0PGY iTDRtYaTRJmn6CqBwqlskCNtws3bREXW1G9aA9+jJ4mFe016t4pVe+R+C0ZyYR1E hpUDlND1+74Or8MM7DnHeMQnH5pd4QZpiuAs9TCFVyMZXu9ca79Q1i2pUZE/k4rq XW6aAw/mGf3eqf6jGKH+pSs= -----END CERTIFICATE-----Generated at Sun Feb 16 20:35:58 2025 by rpki-client