$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft File: oY6zd90DGK5GXY8_fW4K0KTp7R4.mft (raw, json) Hash identifier: EBPzPkBCWaSoklTrKrix1fkDMEp5lPS0MhOQZpEQElE= Subject key identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 Authority key identifier: A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E Certificate issuer: /CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Certificate serial: 0E9C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft Manifest number: 0E85 Signing time: Sun 24 Nov 2024 22:54:17 +0000 Manifest this update: Sun 24 Nov 2024 22:54:17 +0000 Manifest next update: Tue 26 Nov 2024 22:54:17 +0000 Files and hashes: 1: -3LxK32AeFuFm89gEwURENPphuY.roa (hash: 72NsdiBehjUzOFFo6gpeiuLwx/DAMK3ARKmnMrd1dLk=) 2: -5PAdznEXGVSx12__68QSoTSNmI.roa (hash: +IyYa4HkviEwm5tTkw+u2dplztdCh/ospJqC+/OAJIY=) 3: 4pcLQVnlANjeBPZwJlyUnPjv62A.roa (hash: BxqhitfK2KIBIoUdc7c7bjvDGjmd2OXkTb7UbmD3hzw=) 4: IEtv2X4qz7kbR0EVNQ87jtBc1vc.roa (hash: BMu7+ONZlELqWHM2a3EmoIXmwLPwaATuwg1Dj68qJtA=) 5: St-H5LkcX_BGDNr3AFRCA1M8s7s.roa (hash: KVRR5lsTvnmp6OkBc0ZHyRGfBSSKuL+MHJHzXf4LoG0=) 6: j1q9mCwFbrnac_XKfDmnKyM-Joo.roa (hash: 0daZ4uWa5EugMJIHQuy+A93HfRI5nf9i0dGo2c9QBH4=) 7: oY6zd90DGK5GXY8_fW4K0KTp7R4.crl (hash: +U0X07ifh1mtXb2nun7uOUEwW96WyPlb9M29WlBz2Cc=) 8: qcA4Dy-TEFr4MHq0T2I3bZoFJTw.roa (hash: cSTwhOlRid74enSYGREauGNM1uaaeuj0IWoSjii85ME=) 9: s5LIrTjAFWmbDffj4YRenkIEOWs.roa (hash: iskWNYTiSudpEK0tG6UV0xWnDgpNaFm5ZcV1jb9Dwac=) 10: vhRpulrTUW6inaXt7I44C29_ln8.roa (hash: ZE+V99wVZtSQ7d4KdTJUmCpGl4+KVkeHaDOoCLk7hP4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3740 (0xe9c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A18EB377DD0318AE465D8F3F7D6E0AD0A4E9ED1E Validity Not Before: Nov 24 22:54:17 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B0FBBD3D590D48A1A30B70313F514E1E038590C8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:63:27:d7:0b:a8:24:ea:9c:4f:c1:43:11:ca: b3:45:5d:08:03:35:03:49:a0:63:2f:7a:09:e3:80: 9c:4f:c5:61:3c:d1:62:1c:e0:93:96:bf:bb:7b:87: 5c:61:54:b9:2a:d1:73:a3:9d:2d:e9:81:14:76:05: d3:3d:00:3a:67:60:6d:b2:5a:13:2a:84:3f:cb:5e: 58:e4:7d:48:c2:d5:0f:ae:8d:99:de:65:4f:c5:6f: f7:37:21:8d:17:05:58:7a:17:eb:d9:c9:bd:d2:98: 1f:c6:60:6a:8a:e9:3c:fb:ba:0b:f2:99:2e:c5:2b: a0:5b:70:1b:de:cb:9c:39:af:ce:74:0c:93:94:e3: 31:a4:0c:77:48:7b:d9:cd:52:3f:89:88:f0:47:de: 82:9e:2e:9a:87:09:94:7f:47:62:ef:2b:f5:8d:38: 42:30:35:46:5b:62:b5:26:4e:f4:e3:d1:9d:05:e6: 81:31:69:38:05:6c:99:91:9d:2d:c4:ca:21:06:43: 14:10:1e:82:6d:0c:02:d1:1a:af:b3:92:46:31:5a: 5f:f7:5b:df:c4:a3:7a:15:11:2b:46:78:06:89:b1: b2:7a:07:d4:7b:e9:14:06:77:f6:f4:65:a1:d3:4e: 68:59:cc:85:a2:fa:f6:bd:e8:9c:3f:f0:3a:b5:8f: 42:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B0:FB:BD:3D:59:0D:48:A1:A3:0B:70:31:3F:51:4E:1E:03:85:90:C8 X509v3 Authority Key Identifier: keyid:A1:8E:B3:77:DD:03:18:AE:46:5D:8F:3F:7D:6E:0A:D0:A4:E9:ED:1E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/oY6zd90DGK5GXY8_fW4K0KTp7R4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MINGJINGEN/oY6zd90DGK5GXY8_fW4K0KTp7R4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 24:ee:a6:76:82:2b:6c:93:93:40:e3:bd:33:a5:ad:28:be:ec: f3:78:ec:61:0c:25:b5:d1:d3:64:dc:3c:34:10:b2:79:9c:47: f0:92:b4:b8:ed:6a:9c:15:af:38:3d:02:11:2e:58:1e:ad:cd: 0b:3c:c3:f4:34:da:77:93:2a:fd:c4:05:85:47:00:d9:43:ed: 24:9d:a7:59:f8:e2:6c:25:b9:df:97:06:f7:02:c8:f5:f7:87: a9:08:70:f5:fa:dd:62:a3:a8:75:fd:9c:e2:6a:4d:64:29:5a: bb:99:e3:6e:05:e6:83:f1:8f:c0:c6:5f:12:75:0c:d0:6d:c4: dd:80:14:05:0f:1b:78:26:6a:5b:d0:14:80:59:87:53:66:64: e2:ef:9a:c5:58:ad:02:6b:fe:39:0f:b0:1b:9e:36:94:83:fe: e2:bc:88:40:09:3f:3f:09:b5:a8:b1:b0:21:7e:d3:03:25:d9: 59:ee:36:82:e0:19:ce:74:89:8a:84:09:b2:33:e5:fa:e5:34: a4:f1:8b:2c:a1:7a:af:8b:69:dd:68:c7:27:43:a3:c5:3c:e3: 1f:05:14:c0:d9:6c:b9:ce:69:4d:be:fd:f4:98:a3:49:bd:d4: a0:0c:6b:21:73:01:2e:7d:1c:c4:4f:2a:d6:27:be:39:40:ad: fe:de:16:97 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDpwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTE4 RUIzNzdERDAzMThBRTQ2NUQ4RjNGN0Q2RTBBRDBBNEU5RUQxRTAeFw0yNDExMjQy MjU0MTdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIwRkJCRDNENTkwRDQ4 QTFBMzBCNzAzMTNGNTE0RTFFMDM4NTkwQzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDCYyfXC6gk6pxPwUMRyrNFXQgDNQNJoGMvegnjgJxPxWE80WIc 4JOWv7t7h1xhVLkq0XOjnS3pgRR2BdM9ADpnYG2yWhMqhD/LXljkfUjC1Q+ujZne ZU/Fb/c3IY0XBVh6F+vZyb3SmB/GYGqK6Tz7ugvymS7FK6BbcBvey5w5r850DJOU 4zGkDHdIe9nNUj+JiPBH3oKeLpqHCZR/R2LvK/WNOEIwNUZbYrUmTvTj0Z0F5oEx aTgFbJmRnS3EyiEGQxQQHoJtDALRGq+zkkYxWl/3W9/Eo3oVEStGeAaJsbJ6B9R7 6RQGd/b0ZaHTTmhZzIWi+va96Jw/8Dq1j0IxAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUsPu9PVkNSKGjC3AxP1FOHgOFkMgwHwYDVR0jBBgwFoAUoY6zd90DGK5GXY8/ fW4K0KTp7R4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUlOR0pJ TkdFTi9vWTZ6ZDkwREdLNUdYWThfZlc0SzBLVHA3UjQuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL29ZNnpkOTBER0s1R1hZOF9mVzRLMEtUcDdSNC5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL01JTkdKSU5HRU4vb1k2emQ5MERH SzVHWFk4X2ZXNEswS1RwN1I0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBACTupnaCK2yTk0DjvTOlrSi+7PN47GEMJbXR02TcPDQQsnmcR/CStLjt apwVrzg9AhEuWB6tzQs8w/Q02neTKv3EBYVHANlD7SSdp1n44mwlud+XBvcCyPX3 h6kIcPX63WKjqHX9nOJqTWQpWruZ424F5oPxj8DGXxJ1DNBtxN2AFAUPG3gmalvQ FIBZh1NmZOLvmsVYrQJr/jkPsBueNpSD/uK8iEAJPz8JtaixsCF+0wMl2VnuNoLg Gc50iYqECbIz5frlNKTxiyyheq+Lad1oxydDo8U84x8FFMDZbLnOaU2+/fSYo0m9 1KAMayFzAS59HMRPKtYnvjlArf7eFpc= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:40 2024 by rpki-client on console-fra.rpki-client.org