$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft File: YCy84y3XbQuzn1pwYyQkiGkRlDU.mft (raw, json) Hash identifier: emlg+0J8aTv/6TuhxEluTF3oood4UaVNT0im+doOAlI= Subject key identifier: 1E:2B:4B:A2:9E:53:32:34:E9:60:93:4A:15:48:A8:BA:60:A2:BC:2F Authority key identifier: 60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 Certificate issuer: /CN=602CBCE32DD76D0BB39F5A706324248869119435 Certificate serial: 0C5F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft Manifest number: 0C4D Signing time: Thu 21 Nov 2024 06:53:36 +0000 Manifest this update: Thu 21 Nov 2024 06:53:36 +0000 Manifest next update: Sat 23 Nov 2024 06:53:36 +0000 Files and hashes: 1: YCy84y3XbQuzn1pwYyQkiGkRlDU.crl (hash: ks0vAYYeJF5BAqnzssqT6+3l0OTzKE51aGBIyqWCxdU=) 2: Yx3r7bTu1LH2t5iRNeW60hZz8mU.roa (hash: gK6JXgH7aBSjbjFuFvGu5V4fUDs5146GWu5E+bb2hcE=) 3: b10pSRAcElHfm9ufgwjUoR-wv2Q.roa (hash: EtJI9GWJU9tRyjVkokZd94rVu5nA5Ej2j3xr4QQk4C4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3167 (0xc5f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=602CBCE32DD76D0BB39F5A706324248869119435 Validity Not Before: Nov 21 06:53:36 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=1E2B4BA29E533234E960934A1548A8BA60A2BC2F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:ea:e8:4b:58:f6:93:80:b3:4d:d0:4f:69:02: 6c:fa:fe:5f:d2:1f:20:a8:9f:9c:82:39:94:72:9e: 26:47:d2:77:6a:16:b1:df:f5:45:72:03:50:2d:1e: e7:23:0e:08:3f:b2:f1:2d:c6:05:5c:82:5f:35:5e: 67:bc:c9:47:16:37:1a:77:d4:50:89:64:70:fd:17: 68:27:25:a2:a3:f7:2b:79:60:9a:b5:f6:e6:5d:a7: 83:17:52:b5:7e:fb:23:95:9e:10:fc:80:91:47:f1: ab:2c:e4:27:9a:0a:1e:e1:67:58:cb:ac:1c:60:b3: 2a:f5:ed:9a:e6:0f:14:c7:94:81:cd:82:20:48:0f: 0c:b3:0b:45:d3:18:12:2e:26:11:e1:61:f4:2e:92: c5:4d:fa:6f:8e:9a:0f:10:c0:3b:99:db:59:03:5b: b2:a5:47:71:78:1f:e3:75:23:0e:35:f1:87:f5:06: f7:98:fa:35:c1:5b:67:30:8f:1b:89:75:75:a3:85: bc:f1:9c:1b:ac:e1:3f:a7:1f:1a:9a:ec:f6:e7:87: fe:0e:e2:68:a4:ab:e1:ac:97:69:f1:36:0d:7c:ca: df:c5:67:ac:90:81:78:7c:a6:56:c9:f0:ad:0d:8d: af:61:4a:cf:08:79:aa:62:cd:d0:06:8b:f6:c3:a0: c9:e5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:2B:4B:A2:9E:53:32:34:E9:60:93:4A:15:48:A8:BA:60:A2:BC:2F X509v3 Authority Key Identifier: keyid:60:2C:BC:E3:2D:D7:6D:0B:B3:9F:5A:70:63:24:24:88:69:11:94:35 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YCy84y3XbQuzn1pwYyQkiGkRlDU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MEGAICBC/YCy84y3XbQuzn1pwYyQkiGkRlDU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 98:ab:9f:8d:47:9e:70:22:36:58:57:c6:4a:ef:23:a2:13:95: 8d:d2:ca:17:38:cb:3e:98:24:bc:c5:01:d8:54:58:60:c0:a0: a6:fc:34:4a:41:c3:03:dc:18:b4:36:52:d2:02:27:5c:24:9c: ff:a9:f1:43:78:9e:44:d8:14:b0:53:ce:39:5f:5b:28:2e:ca: 76:ea:6a:52:42:47:59:ab:53:1a:1f:8d:c2:63:76:e3:fe:ab: f7:7c:93:50:f8:78:0f:fe:5f:02:37:ac:2e:af:4e:31:2a:ad: 2d:d7:56:8c:25:0c:5a:9c:67:30:e3:1c:c8:20:21:6f:3b:af: c3:27:8f:9d:4f:d4:6e:8b:4a:53:cc:cf:54:77:ef:13:c9:b7: 34:91:67:ea:b6:09:99:76:43:05:35:87:61:51:c3:c0:0b:2c: a2:8f:94:bc:04:38:d1:32:30:fc:e4:a3:69:17:8e:41:2a:a3: 0a:74:db:b4:67:f6:6e:e8:c2:56:2a:e1:2b:97:f1:12:f7:8e: 19:7e:13:c0:59:85:ee:88:73:60:4b:d8:62:66:dc:16:3c:a5: 5e:15:70:46:ee:8b:f0:2c:b1:2c:2e:a0:b2:5a:c3:48:75:12: 03:51:3b:3a:7a:50:17:3f:53:19:e2:5d:c1:87:d6:1e:b7:a8: 72:2a:fb:4b -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDF8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAy Q0JDRTMyREQ3NkQwQkIzOUY1QTcwNjMyNDI0ODg2OTExOTQzNTAeFw0yNDExMjEw NjUzMzZaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDFFMkI0QkEyOUU1MzMy MzRFOTYwOTM0QTE1NDhBOEJBNjBBMkJDMkYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCh6uhLWPaTgLNN0E9pAmz6/l/SHyCon5yCOZRyniZH0ndqFrHf 9UVyA1AtHucjDgg/svEtxgVcgl81Xme8yUcWNxp31FCJZHD9F2gnJaKj9yt5YJq1 9uZdp4MXUrV++yOVnhD8gJFH8ass5CeaCh7hZ1jLrBxgsyr17ZrmDxTHlIHNgiBI DwyzC0XTGBIuJhHhYfQuksVN+m+Omg8QwDuZ21kDW7KlR3F4H+N1Iw418Yf1BveY +jXBW2cwjxuJdXWjhbzxnBus4T+nHxqa7Pbnh/4O4mikq+Gsl2nxNg18yt/FZ6yQ gXh8plbJ8K0Nja9hSs8IeapizdAGi/bDoMnlAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUHitLop5TMjTpYJNKFUioumCivC8wHwYDVR0jBBgwFoAUYCy84y3XbQuzn1pw YyQkiGkRlDUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUVHQUlD QkMvWUN5ODR5M1hiUXV6bjFwd1l5UWtpR2tSbERVLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9ZQ3k4NHkzWGJRdXpuMXB3WXlRa2lHa1JsRFUuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NRUdBSUNCQy9ZQ3k4NHkzWGJRdXpu MXB3WXlRa2lHa1JsRFUubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAmKufjUeecCI2WFfGSu8johOVjdLKFzjLPpgkvMUB2FRYYMCgpvw0SkHDA9wY tDZS0gInXCSc/6nxQ3ieRNgUsFPOOV9bKC7KdupqUkJHWatTGh+NwmN24/6r93yT UPh4D/5fAjesLq9OMSqtLddWjCUMWpxnMOMcyCAhbzuvwyePnU/UbotKU8zPVHfv E8m3NJFn6rYJmXZDBTWHYVHDwAssoo+UvAQ40TIw/OSjaReOQSqjCnTbtGf2bujC VirhK5fxEveOGX4TwFmF7ohzYEvYYmbcFjylXhVwRu6L8CyxLC6gslrDSHUSA1E7 OnpQFz9TGeJdwYfWHreocir7Sw== -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:52 2024 by rpki-client on console-fra.rpki-client.org