$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft File: B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft (raw, json) Hash identifier: T2G+fhrmhLIeKRhhmg6WB/MUJXZH3r/UOV1hzM/4fUs= Subject key identifier: 2C:50:7E:10:C9:72:DD:D4:CA:DF:1C:39:42:A2:EC:FA:A7:9B:B0:E8 Authority key identifier: 07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C Certificate issuer: /CN=07D3E73EC5EB3D704863889E221845B7695D409C Certificate serial: 38 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft Manifest number: 35 Signing time: Fri 17 May 2024 05:50:35 +0000 Manifest this update: Fri 17 May 2024 05:50:35 +0000 Manifest next update: Sun 19 May 2024 05:50:35 +0000 Files and hashes: 1: B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl (hash: B/Ake8ULdvL+vxtLDFQOzx/IL+eJ78YktFWOUikI0EM=) 2: FCj0YwNiya9LUPfYLtOtxweWdlo.roa (hash: BfmjRFgVZaESy3qGdtSTP62LDelkMFDszZ+CKSRaMn0=) 3: qAhpBmuY95BefiIsRzZk9eFyaes.roa (hash: NCaIgL9QvkuXUeFG6UmLnbCmd+11ckY6/i2iATlk5NE=) 4: wVSJemqXqih8hyQIBCnjOc3IVn0.roa (hash: 5uZ/kWnqE2Lc3A6gVIh4etj9cmJ3OZzf08DHid5iE/o=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 18 May 2024 17:35:38 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 56 (0x38) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07D3E73EC5EB3D704863889E221845B7695D409C Validity Not Before: May 17 05:50:35 2024 GMT Not After : Feb 28 15:30:27 2025 GMT Subject: CN=2C507E10C972DDD4CADF1C3942A2ECFAA79BB0E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:ce:77:71:d4:55:fe:b0:40:06:c3:96:17: a0:00:3e:48:6b:d9:cf:21:aa:c2:21:9a:74:95:c8: 0e:67:a9:5e:d4:3e:85:9f:02:85:91:0b:e1:8f:78: 49:2f:5d:be:31:c7:3d:96:86:2d:04:d5:88:c4:26: a8:30:a0:66:a9:16:e0:61:e5:e3:d9:29:6c:ff:7f: a2:00:0f:7a:2c:65:0b:14:65:b8:51:8d:b8:8f:72: e1:be:f7:fd:e4:d8:d2:6d:4c:f0:94:7d:98:79:e3: 6e:27:3c:ab:81:7d:55:d2:1a:17:a4:99:1f:1b:6f: 7d:30:7a:89:29:a4:3b:a4:ea:f6:17:ab:f4:25:36: b4:33:dc:49:b4:34:c8:49:2d:89:38:1d:97:1a:ab: 01:49:06:89:28:4b:eb:37:90:88:41:7b:e6:16:28: fc:23:77:e0:03:d2:92:d0:68:59:8d:5e:4f:f5:66: de:08:17:6b:f6:3d:41:73:1e:66:03:8d:3e:3d:e0: 77:38:10:0a:3f:91:2e:91:76:cf:80:21:f3:78:70: 97:aa:2a:95:fd:a5:b2:36:d2:3e:cd:ed:e5:b6:ee: 7d:8b:9d:14:90:8a:84:78:bc:2f:ca:55:56:a5:b3: 75:4b:26:1b:70:b0:c7:c4:56:9b:f5:b6:d7:e6:41: 63:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:50:7E:10:C9:72:DD:D4:CA:DF:1C:39:42:A2:EC:FA:A7:9B:B0:E8 X509v3 Authority Key Identifier: keyid:07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 32:8e:92:2d:50:76:11:fa:a7:be:6f:53:2a:ed:b1:1a:23:ec: a7:76:4f:08:e0:cd:31:e4:ad:c0:ff:83:b9:73:77:a1:ed:f6: ab:10:f9:9e:f7:5e:28:98:1d:08:4e:b4:c3:d6:c7:82:cb:47: 6e:9d:0f:b1:54:6a:af:ec:80:3f:91:3c:6f:d7:b3:e0:d3:da: 3a:0e:63:0e:59:86:13:c9:94:95:15:4c:2c:5e:a5:38:b8:94: d1:01:99:75:2f:31:85:6c:bd:36:94:73:af:85:44:68:6d:9d: 9f:6a:e5:a1:29:f5:36:e4:97:9b:aa:9b:b5:7a:f2:d8:a8:e2: 95:ca:7e:9f:d5:c1:e8:ce:90:09:ff:cc:1b:66:9d:14:c5:4d: 31:1a:af:1f:77:d7:55:f3:8f:f6:81:89:28:a3:70:48:e3:b7: 37:12:b3:92:28:45:3e:a6:d8:71:37:87:01:72:b0:f8:3c:df: 54:cd:95:c2:03:e5:11:55:93:37:e2:4c:c9:5c:3c:fc:d5:b9: e3:18:7c:57:80:7b:3c:eb:bb:ab:12:b4:67:22:1d:33:9b:bc: 2b:0c:51:90:2f:ea:56:1d:32:53:6e:72:39:85:0e:c8:61:16: 82:ac:68:24:4b:fa:61:d8:d8:31:3e:01:8a:c6:8e:85:cf:e9: fe:a3:97:cc -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIBODANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygwN0Qz RTczRUM1RUIzRDcwNDg2Mzg4OUUyMjE4NDVCNzY5NUQ0MDlDMB4XDTI0MDUxNzA1 NTAzNVoXDTI1MDIyODE1MzAyN1owMzExMC8GA1UEAxMoMkM1MDdFMTBDOTcyRERE NENBREYxQzM5NDJBMkVDRkFBNzlCQjBFODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANczzndx1FX+sEAGw5YXoAA+SGvZzyGqwiGadJXIDmepXtQ+hZ8C hZEL4Y94SS9dvjHHPZaGLQTViMQmqDCgZqkW4GHl49kpbP9/ogAPeixlCxRluFGN uI9y4b73/eTY0m1M8JR9mHnjbic8q4F9VdIaF6SZHxtvfTB6iSmkO6Tq9her9CU2 tDPcSbQ0yEktiTgdlxqrAUkGiShL6zeQiEF75hYo/CN34APSktBoWY1eT/Vm3ggX a/Y9QXMeZgONPj3gdzgQCj+RLpF2z4Ah83hwl6oqlf2lsjbSPs3t5bbufYudFJCK hHi8L8pVVqWzdUsmG3Cwx8RWm/W21+ZBY5cCAwEAAaOCAgUwggIBMB0GA1UdDgQW BBQsUH4QyXLd1MrfHDlCouz6p5uw6DAfBgNVHSMEGDAWgBQH0+c+xes9cEhjiJ4i GEW3aV1AnDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NMk5JTS9C OVBuUHNYclBYQklZNGllSWhoRnQybGRRSncuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0I5UG5Qc1hyUFhCSVk0aWVJaGhGdDJsZFFKdy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL00yTklNL0I5UG5Qc1hyUFhCSVk0aWVJaGhG dDJsZFFKdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcB BwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAyjpIt UHYR+qe+b1Mq7bEaI+yndk8I4M0x5K3A/4O5c3eh7farEPme914omB0ITrTD1seC y0dunQ+xVGqv7IA/kTxv17Pg09o6DmMOWYYTyZSVFUwsXqU4uJTRAZl1LzGFbL02 lHOvhURobZ2fauWhKfU25Jebqpu1evLYqOKVyn6f1cHozpAJ/8wbZp0UxU0xGq8f d9dV84/2gYkoo3BI47c3ErOSKEU+pthxN4cBcrD4PN9UzZXCA+URVZM34kzJXDz8 1bnjGHxXgHs867urErRnIh0zm7wrDFGQL+pWHTJTbnI5hQ7IYRaCrGgkS/ph2Ngx PgGKxo6Fz+n+o5fM -----END CERTIFICATE-----Generated at Fri May 17 07:36:26 2024 by rpki-client on console-fra.rpki-client.org