$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft File: tKZaDrhmkhnEGFRC1J_J1vgltmU.mft (raw, json) Hash identifier: iSHddC4M+vkvh9oABfpYfrsVUTflll1wAIFdXp67uRU= Subject key identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 Authority key identifier: B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 Certificate issuer: /CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Certificate serial: 0F29 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft Manifest number: 0E53 Signing time: Mon 25 Nov 2024 11:54:07 +0000 Manifest this update: Mon 25 Nov 2024 11:54:07 +0000 Manifest next update: Wed 27 Nov 2024 11:54:07 +0000 Files and hashes: 1: -DfPZoSf9iG6CH-WIe9lBz48SNA.roa (hash: mIIFaqSx2gEqw0eHi1CVxnaBJwypk2GLQVpFXi7jbbE=) 2: 16gXSVu5aRMj0B23kCNG-HfAu3k.roa (hash: 1z0QHYt8c6eFmwJxBiLxs/nAo7oo1vLkRxlV4s4BMLU=) 3: 5X8-IlRpVuQ1rHEXtcMozJHeoy4.roa (hash: rFGpOPNfwEX8DB0HY1uJyY1PV6kSq7YF4QWLB96j8tg=) 4: 8xiEIHudYwzOwyhdq0eHsjr_p2g.roa (hash: Gf8kwBwoY9q2qrmEp08fL3FNgItHutQy0liJJl1FggM=) 5: 9BTLCUzW_cSeDRmr-xkKKBVNFFA.roa (hash: egOWplg1oXc3PaQOdQXvJKGvZ08etiR34ytcpn9Y+Pg=) 6: CUQvwNRbcKDD5Xeq-BFalJBgmzY.roa (hash: PjPWWhz8SzJ9jkDCYBHrgQJNNLOSPiHHx8hBySG3HRs=) 7: ELbvA8vKhR2ivQifJqNZbUkEZyA.roa (hash: GdCBxQ83+awFqg/cg4F4z3ZEpsXk5S0F5RvUaQ+A+T0=) 8: EYCyL0YAgIZY2sFQyi2oFPistQs.roa (hash: 37rD4OJi9son9gBDWH9whkkmLPS5vwcdEupxDqz5mO4=) 9: JSRtLubIG7ZR_nn90an33lh2epI.roa (hash: SsFEe9v18wNlqaWpiU8a/1AvwwW9LHyIPkL4TXIkpjQ=) 10: KmTayuH13oeGwcbiE-XDcaxdwKw.roa (hash: HezlPeJ7qLE+eZ7oTay5QHyHavlp2rw3Q6oUiBr66ss=) 11: PM-khAd8UJiTc9vAB2O_BiFRWGY.roa (hash: q4L+u6+7RAfYaxws35syJ0pFlz1XhZyBRDIbg8dojmY=) 12: PzCnumNVNZXhq6ESAvU3928ifTg.roa (hash: omDDPmYdjAeCc2thPhEctmLcBCilL+J1HLlop0ZHYFM=) 13: Qgy68yjkPAiXln-t2sl62FoGB7M.roa (hash: kJ11MZsDIzDWBTr/2ZWlaB8d0mN2Wg/pPG5N2bOg8Fs=) 14: SLOAUQOOekQRO_cDjfs2lEcfDxc.roa (hash: WWpLz6TwPH26d7napnKLxvsWRdDnybtKeqW88XDFNfY=) 15: T5C1_VDEeq3BeFUGRYSDCOk8Keg.roa (hash: V6IcciS6DQid62qkm18pKkMRU/Xdrt3gP2GTnW0fgKw=) 16: TZTPoIte2WVuaUPMUvBPtvb6UlA.roa (hash: XqGDdn1hYLm0F0BEV2QyP7YO8gt8F5h4wl+onReC/v0=) 17: VN9HrL6AGisEuybJk91W0uqArx0.roa (hash: HGFoBGLVUJD4TUhsZK3fXCFnw1jXXV4N/m+rfIr+vTk=) 18: Wn1YElWCGXQhZQjbb-NiGXZ3oPE.roa (hash: nc4Ls+3UMFs9W6qOk5YSvYfJx0OXoVmw1MY0532mWyo=) 19: bcVI7uh8YH_rRkKt--69gu64eRc.roa (hash: 77k1COlF19VFJFLP9oQy0cqW3o8IFTib3YBky1uipTU=) 20: gny9E3gFR888C93bJnhWVwlgVzU.roa (hash: JQTJNUKjQTjSAfkmdSwQIiF/jCip8g4cx/QckpNei7Q=) 21: jGZKI3ObvB4dHN71oVD6pQkrlsI.roa (hash: aKKArVsmj+jKef6jU5PMWOSEgfQkTkxCQRn7vAUcSYg=) 22: o-jtkVRpiNOjGZvm__7GG3MpPrI.roa (hash: 8SoVE34XEvC8bRRoufDgpwmEXgqek9x8Bt/wQ3jX/N0=) 23: oIiFyBIDDun4tZE5U3f5Se4vZpQ.roa (hash: rOjY4OFDMG7u15i6RFfZ6sH10Gg/f5qLSG+gLp7FOfQ=) 24: re73EV7StBJ_KkwW3dfUNRYgJgA.roa (hash: uaHMbEINnldNnP0AMli8UWVoT/OAW3Viip8ds8LDHSQ=) 25: tKZaDrhmkhnEGFRC1J_J1vgltmU.crl (hash: +72ZiR8NjeuPbQ06tzUbcOhcubdHg7cHuun0Q76SGjQ=) 26: uqBLvWKidkJtDn4Uj9bwARdtpbw.roa (hash: u0wThK7s8vyGTaOYLm0acDWtkzcKcwYemcm4ysi6LEE=) 27: wjvEeRIoLGsGHCNRLT1MNx4StTk.roa (hash: llnGmbfQabCJwg4gEasvZWBEXdimHi87lw5NWLW6JJ0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3881 (0xf29) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=B4A65A0EB8669219C4185442D49FC9D6F825B665 Validity Not Before: Nov 25 11:54:07 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=0E53CFF1D0181F272D8AA565C2A113F9F95BAB28 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:89:75:40:22:61:58:f1:31:e1:0d:ed:89:c7: 1c:c2:a7:48:ec:32:66:b0:0c:77:66:f9:c0:10:73: 43:71:67:86:f0:e2:f9:e6:a8:a3:b8:93:ea:61:8b: fc:b0:b8:f6:3f:c2:1b:69:1e:d6:5d:65:ca:37:5e: ba:46:d9:c4:f2:3e:05:48:7a:7e:27:53:2c:68:c7: 1b:e6:02:61:18:e7:8d:3f:0e:23:3b:4e:cb:01:43: 0b:8f:05:e1:5e:3c:bc:9b:33:45:f4:db:cf:ee:5e: 9e:18:80:3a:fe:bc:fb:d3:34:c7:d5:ca:35:93:11: c9:78:3a:df:ac:fc:69:69:a5:74:c4:da:0a:08:ab: e4:9e:fd:53:2c:9a:52:15:35:8c:26:79:4d:69:78: 3e:7a:98:f0:bd:f6:e1:c0:18:a6:44:96:5c:d8:93: a0:f9:4e:ff:4d:fe:4f:ed:72:03:ac:3f:1e:19:62: ae:49:01:42:1a:2f:b1:e6:51:12:2e:e9:3c:6a:62: dd:45:18:9c:31:88:6a:95:05:ff:2e:59:d4:86:96: 36:2e:17:8e:51:25:25:97:fe:83:c0:35:5e:c5:78: 53:3a:2c:c0:63:fa:d6:e1:2b:ad:61:43:f6:c3:bd: e7:bc:10:3b:a7:7d:16:f5:08:2e:49:be:06:69:1f: 51:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0E:53:CF:F1:D0:18:1F:27:2D:8A:A5:65:C2:A1:13:F9:F9:5B:AB:28 X509v3 Authority Key Identifier: keyid:B4:A6:5A:0E:B8:66:92:19:C4:18:54:42:D4:9F:C9:D6:F8:25:B6:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/tKZaDrhmkhnEGFRC1J_J1vgltmU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NCIC/tKZaDrhmkhnEGFRC1J_J1vgltmU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 9f:9e:3b:6c:76:c2:8d:a9:a6:99:a6:f1:c3:88:66:8f:76:db: 1b:28:1b:c6:c1:59:e5:fe:bc:80:2d:79:a7:f0:33:dc:99:39: 9f:11:b8:2a:db:9a:20:3e:27:3e:69:58:39:e8:84:69:5f:1c: d4:e2:ac:1d:aa:30:e2:38:b3:cb:f1:54:ea:ec:5c:e3:55:27: e1:cb:c2:4b:82:f2:db:07:e8:48:83:fb:4f:e1:2b:bc:cf:b6: 08:46:0d:00:fd:3b:8e:4f:77:46:34:61:25:d4:1f:77:f2:da: e9:eb:8a:b9:c0:ca:76:43:93:fb:e2:70:1a:83:3a:fb:36:18: 10:58:40:b7:02:89:1c:62:fb:83:2e:58:1c:23:80:2d:42:03: ae:79:8c:ee:b3:eb:d6:1a:54:c2:02:24:2f:be:0e:6d:b2:5b: 28:77:8a:d6:ae:d9:0c:f2:42:80:92:49:e9:6e:04:e2:0b:7f: c0:da:2c:da:36:b4:cf:4d:97:aa:75:58:3f:21:b3:33:60:09: f8:83:e9:d8:fc:d7:e3:d1:1c:54:f9:47:93:31:9a:86:50:57: 6c:bc:c3:88:10:b3:4b:4f:7c:94:70:00:21:98:c0:ff:92:a3: 5f:aa:32:c6:f8:3b:8d:e0:d9:ed:d3:27:e6:02:9c:68:cb:94: 9d:bb:4f:39 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDykwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQjRB NjVBMEVCODY2OTIxOUM0MTg1NDQyRDQ5RkM5RDZGODI1QjY2NTAeFw0yNDExMjUx MTU0MDdaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDBFNTNDRkYxRDAxODFG MjcyRDhBQTU2NUMyQTExM0Y5Rjk1QkFCMjgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxiXVAImFY8THhDe2JxxzCp0jsMmawDHdm+cAQc0NxZ4bw4vnm qKO4k+phi/ywuPY/whtpHtZdZco3XrpG2cTyPgVIen4nUyxoxxvmAmEY540/DiM7 TssBQwuPBeFePLybM0X028/uXp4YgDr+vPvTNMfVyjWTEcl4Ot+s/GlppXTE2goI q+Se/VMsmlIVNYwmeU1peD56mPC99uHAGKZEllzYk6D5Tv9N/k/tcgOsPx4ZYq5J AUIaL7HmURIu6TxqYt1FGJwxiGqVBf8uWdSGljYuF45RJSWX/oPANV7FeFM6LMBj +tbhK61hQ/bDvee8EDunfRb1CC5JvgZpH1ElAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUDlPP8dAYHyctiqVlwqET+flbqygwHwYDVR0jBBgwFoAUtKZaDrhmkhnEGFRC 1J/J1vgltmUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkNJQy90 S1phRHJobWtobkVHRlJDMUpfSjF2Z2x0bVUuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L3RLWmFEcmhta2huRUdGUkMxSl9KMXZnbHRtVS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05DSUMvdEtaYURyaG1raG5FR0ZSQzFKX0ox dmdsdG1VLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAJ+eO2x2 wo2pppmm8cOIZo922xsoG8bBWeX+vIAteafwM9yZOZ8RuCrbmiA+Jz5pWDnohGlf HNTirB2qMOI4s8vxVOrsXONVJ+HLwkuC8tsH6EiD+0/hK7zPtghGDQD9O45Pd0Y0 YSXUH3fy2unrirnAynZDk/vicBqDOvs2GBBYQLcCiRxi+4MuWBwjgC1CA655jO6z 69YaVMICJC++Dm2yWyh3itau2QzyQoCSSeluBOILf8DaLNo2tM9Nl6p1WD8hszNg CfiD6dj81+PRHFT5R5MxmoZQV2y8w4gQs0tPfJRwACGYwP+So1+qMsb4O43g2e3T J+YCnGjLlJ27Tzk= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:42 2024 by rpki-client on console-fra.rpki-client.org