$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft File: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft (raw, json) Hash identifier: 1LfdkThX+plekRRJaYVqb0N5m2KQ3dPeLmTYzmJ4vAE= Subject key identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Certificate serial: 25 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft Manifest number: 20 Signing time: Sun 02 Jun 2024 01:28:49 +0000 Manifest this update: Sun 02 Jun 2024 01:28:49 +0000 Manifest next update: Tue 04 Jun 2024 01:28:49 +0000 Files and hashes: 1: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl (hash: FIu6Ftc0fX8HZyjT4iw0Mg5W62U1zREt5gvpXTdiOnw=) 2: 88gPUEKKqg4WAPhS7X2AtQDtPbk.roa (hash: heuwQMRqbIKKRZQ6zkiVf7R5hnpXcijpVFo/sW451oI=) 3: V9OU9n-j2UNy0s3aNXDDwEKRLLo.roa (hash: 1wh/5Ay6UAhQPWzxU69ARoGcs0arrJJpJWTjBkZi0Yk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 01:28:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 37 (0x25) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Validity Not Before: Jun 2 01:28:49 2024 GMT Not After : Apr 26 10:00:55 2025 GMT Subject: CN=721BD71397601F82691E128A2782C35B4FC3AC40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:85:dd:8e:40:a6:72:e5:c1:f7:b8:37:1b:68: c8:64:1b:d0:2a:24:ac:4d:57:74:67:03:07:e8:a4: 6b:2b:d7:0b:62:1b:78:1f:73:05:95:f3:23:86:27: 5f:9b:ab:4a:67:34:ea:8a:1d:12:78:76:b0:df:78: 86:eb:a3:a8:31:65:3c:48:08:da:6c:06:fe:5c:6a: 59:16:be:af:39:2d:60:6a:ad:be:7e:15:e4:0c:81: cf:e8:05:89:05:3e:cd:f7:7d:9a:9b:c0:02:55:4c: f1:4a:ef:73:ff:0d:d8:16:f2:58:b4:a5:b7:5f:d3: f6:a1:18:77:ce:48:4a:7c:ee:bf:cf:a8:34:82:a8: b5:a0:d3:1f:6d:86:8b:9c:b2:0b:2e:4d:f0:60:4f: 3f:b7:c4:91:cb:07:70:f1:dd:82:da:5d:b8:a5:21: 1a:9f:5e:7c:87:30:4a:0a:a2:c7:4f:61:d0:b7:43: de:db:c8:20:05:7d:e6:ce:b8:17:3f:85:cd:b9:0f: de:cf:7c:ce:63:7a:25:28:3e:81:5d:85:cf:eb:7d: 48:e1:44:22:52:cb:32:95:aa:70:a3:42:df:98:23: 4d:ca:fe:70:4c:d0:9a:24:ff:b9:23:f4:6c:7c:b4: 42:39:a5:82:b2:11:58:a7:e7:6c:3c:c8:ad:1d:24: c7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 X509v3 Authority Key Identifier: keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption cd:a4:20:7b:c6:93:08:01:6d:fa:f3:46:ad:46:1e:4e:c6:5d: d2:c1:7a:0a:cd:95:8c:34:4c:8b:71:08:54:d8:f5:d4:7c:11: 9a:af:89:d5:0c:91:54:08:af:84:2e:4b:d4:b1:45:3e:28:bb: 6d:af:0c:2b:6d:ae:62:20:39:d4:94:43:c4:0c:61:52:81:2c: c8:fa:58:57:29:ef:53:78:d2:a3:3c:39:6a:a7:95:b8:38:05: 7f:41:e1:e4:6c:c3:90:8e:47:f6:1b:28:04:be:2d:9c:2d:a5: 81:d8:7a:9a:00:69:ab:42:30:10:6a:f4:ac:89:7b:7b:62:bf: 2e:42:8a:8b:48:a1:8b:ce:5f:5c:c3:23:09:f7:cc:b0:74:56: 28:a3:bb:66:ef:fc:8d:c6:fd:3b:f2:9d:df:e9:0f:16:de:4e: 98:d0:5d:fd:66:ea:a6:76:1d:09:a3:3e:15:ef:a9:12:98:ca: 25:7d:6b:6a:00:50:aa:32:9c:8c:54:fb:30:77:c7:02:43:7c: 30:1e:55:f7:74:dd:c3:64:32:cf:88:a4:8f:c3:a3:56:70:1d: 05:72:c7:6f:d2:21:36:06:c0:22:8f:b8:7d:e5:70:18:18:e2: 9b:53:fb:66:82:d1:a9:ec:2d:cc:a7:93:76:34:ad:64:81:30: 2e:11:71:8d -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIBJTANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEOTY2 QjU1OTA5MzI0MTgwQTg4QTQ1RTFGNjgzQ0Y0RDJFRDlCQ0E1MB4XDTI0MDYwMjAx Mjg0OVoXDTI1MDQyNjEwMDA1NVowMzExMC8GA1UEAxMoNzIxQkQ3MTM5NzYwMUY4 MjY5MUUxMjhBMjc4MkMzNUI0RkMzQUM0MDCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAJ2F3Y5ApnLlwfe4NxtoyGQb0CokrE1XdGcDB+ikayvXC2IbeB9z BZXzI4YnX5urSmc06oodEnh2sN94huujqDFlPEgI2mwG/lxqWRa+rzktYGqtvn4V 5AyBz+gFiQU+zfd9mpvAAlVM8Urvc/8N2BbyWLSlt1/T9qEYd85ISnzuv8+oNIKo taDTH22Gi5yyCy5N8GBPP7fEkcsHcPHdgtpduKUhGp9efIcwSgqix09h0LdD3tvI IAV95s64Fz+FzbkP3s98zmN6JSg+gV2Fz+t9SOFEIlLLMpWqcKNC35gjTcr+cEzQ miT/uSP0bHy0QjmlgrIRWKfnbDzIrR0kx6cCAwEAAaOCAgUwggIBMB0GA1UdDgQW BBRyG9cTl2AfgmkeEoongsNbT8OsQDAfBgNVHSMEGDAWgBTZZrVZCTJBgKiKReH2 g89NLtm8pTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8y V2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzJXYTFXUWt5UVlDb2lrWGg5b1BQVFM3WnZLVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0xJUlVOLzJXYTFXUWt5UVlDb2lrWGg5b1BQ VFM3WnZLVS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcB BwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDNpCB7 xpMIAW3680atRh5Oxl3SwXoKzZWMNEyLcQhU2PXUfBGar4nVDJFUCK+ELkvUsUU+ KLttrwwrba5iIDnUlEPEDGFSgSzI+lhXKe9TeNKjPDlqp5W4OAV/QeHkbMOQjkf2 GygEvi2cLaWB2HqaAGmrQjAQavSsiXt7Yr8uQoqLSKGLzl9cwyMJ98ywdFYoo7tm 7/yNxv078p3f6Q8W3k6Y0F39Zuqmdh0Joz4V76kSmMolfWtqAFCqMpyMVPswd8cC Q3wwHlX3dN3DZDLPiKSPw6NWcB0Fcsdv0iE2BsAij7h95XAYGOKbU/tmgtGp7C3M p5N2NK1kgTAuEXGN -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:46 2024 by rpki-client on console-ams.rpki-client.org