$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft File: HU149WdQx1mJUzZtRZoStli3_zg.mft (raw, json) Hash identifier: 6CnCNhVZNZ2o8wqTOOUzHCeKCAtIEQLJDmkTC9xb9Us= Subject key identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38 Certificate serial: 036F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft Manifest number: 0357 Signing time: Sun 16 Feb 2025 15:26:49 +0000 Manifest this update: Sun 16 Feb 2025 15:26:49 +0000 Manifest next update: Sun 16 Feb 2025 21:26:49 +0000 Files and hashes: 1: HU149WdQx1mJUzZtRZoStli3_zg.crl (hash: TOnMdKjl829o9L8TmvmjgpfjSqvc8ZmtK3NH1Xuut1k=) 2: Vp0tdbIyOL4-H32dFyUdVvYVjqk.roa (hash: fkJN8J2uUWuCxVuI2sxY9yfcddz/Lpxc56wJetA5EnA=) 3: pnl-9MozOtSusmGAz1OhVzorX0A.roa (hash: Gx06TmUncl+coumBNPPjHm0sEHr8P4Kyk+T6g5m0MGc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 16 Feb 2025 21:26:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 879 (0x36f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38 Validity Not Before: Feb 16 15:26:49 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B8DE83E99D5444D590FD0C6AE8B9FE4B64A2518F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:c9:c6:04:db:89:a0:26:63:3a:2b:b0:b1: cb:1c:eb:9b:97:90:d0:6f:7b:8b:5e:c6:e8:9f:1d: 53:45:b9:65:57:60:84:31:de:84:07:4e:2a:27:6e: ed:e8:85:8f:29:23:09:4d:4e:2f:f9:bf:6b:ca:a6: 6c:54:03:ef:ca:e0:fb:c1:88:46:3a:3b:ca:0b:95: 89:8b:eb:08:7d:03:06:00:c1:66:2b:c3:91:4f:d9: 73:a5:03:6f:89:30:84:d5:10:58:7f:0a:0a:2f:a8: c4:a3:61:21:5d:eb:05:3a:23:47:40:4a:1d:8b:6d: 11:c4:42:c2:94:81:ab:f2:d7:d1:a5:8e:e7:d2:4a: e4:d6:ea:7f:c4:dc:fe:9e:78:a1:36:8f:0c:a6:19: 32:29:89:fd:b6:5b:ea:64:cc:05:88:2f:4a:53:a5: cc:24:6c:f5:f0:64:f8:fb:f9:53:d1:b5:78:96:bb: 04:5e:b6:8b:ac:cf:5f:03:12:dd:08:dd:88:db:74: 1d:88:5f:36:32:e0:ae:f1:b4:fe:84:b3:f7:ae:d1: 7a:81:82:23:fa:09:4a:a7:c6:f4:d0:79:17:95:d1: 78:5b:43:c0:24:9c:6e:63:1b:1d:37:7b:8b:b6:42: 57:a4:e3:05:30:cd:d4:2b:27:62:38:52:42:a5:7d: 20:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F X509v3 Authority Key Identifier: keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:3f:fe:73:65:d5:9a:6a:e0:8b:d4:c6:94:17:fc:76:82:f5: ae:b2:af:b1:8d:a8:25:28:54:6c:01:0b:08:2a:7a:1f:8c:95: 76:b9:59:9b:3e:00:86:cd:e9:89:53:34:80:39:06:f6:50:78: 80:60:2d:f8:d6:04:2f:1d:11:3e:35:d8:49:a4:a3:af:8f:3b: 8d:28:42:ee:03:35:f0:50:44:08:23:e6:8b:9d:4a:bc:ae:79: 81:9c:93:7d:24:ed:c6:6e:ba:2d:33:4f:bc:11:d4:0a:c8:20: 1c:9c:16:e4:27:bd:95:34:77:76:06:45:83:d9:88:8b:41:e1: b7:45:46:30:5f:8b:79:23:65:13:62:ec:db:0b:3e:2c:c5:9a: 6c:90:63:90:28:4e:ba:c2:d6:f7:16:8e:be:0e:35:ba:72:4f: 7e:ab:aa:9b:b8:c4:27:f4:f5:9a:02:05:56:f2:ac:8a:27:b2: dc:bc:bd:f9:3d:a4:06:ee:eb:cd:e0:d9:cc:24:f2:7a:4f:94: 2f:7a:11:2f:6b:f1:a7:2a:65:55:d5:79:f8:3a:2c:9f:a1:7c: 95:9e:c3:0b:29:03:3c:c4:46:fc:08:04:7a:a7:8f:55:b4:06: 02:49:1f:7c:9d:cd:d6:47:eb:b8:ad:de:25:0e:40:51:7a:e8: 1b:27:2b:af -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICA28wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ0 RDc4RjU2NzUwQzc1OTg5NTMzNjZENDU5QTEyQjY1OEI3RkYzODAeFw0yNTAyMTYx NTI2NDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEI4REU4M0U5OUQ1NDQ0 RDU5MEZEMEM2QUU4QjlGRTRCNjRBMjUxOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBr8nGBNuJoCZjOiuwscsc65uXkNBve4texuifHVNFuWVXYIQx 3oQHTionbu3ohY8pIwlNTi/5v2vKpmxUA+/K4PvBiEY6O8oLlYmL6wh9AwYAwWYr w5FP2XOlA2+JMITVEFh/CgovqMSjYSFd6wU6I0dASh2LbRHEQsKUgavy19GljufS SuTW6n/E3P6eeKE2jwymGTIpif22W+pkzAWIL0pTpcwkbPXwZPj7+VPRtXiWuwRe tousz18DEt0I3YjbdB2IXzYy4K7xtP6Es/eu0XqBgiP6CUqnxvTQeReV0XhbQ8Ak nG5jGx03e4u2Qlek4wUwzdQrJ2I4UkKlfSBLAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUuN6D6Z1URNWQ/Qxq6Ln+S2SiUY8wHwYDVR0jBBgwFoAUHU149WdQx1mJUzZt RZoStli3/zgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxB WC9IVTE0OVdkUXgxbUpVelp0UlpvU3RsaTNfemcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FQlVMQVgvSFUxNDlXZFF4MW1KVXpa dFJab1N0bGkzX3pnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AK8//nNl1Zpq4IvUxpQX/HaC9a6yr7GNqCUoVGwBCwgqeh+MlXa5WZs+AIbN6YlT NIA5BvZQeIBgLfjWBC8dET412Emko6+PO40oQu4DNfBQRAgj5oudSryueYGck30k 7cZuui0zT7wR1ArIIBycFuQnvZU0d3YGRYPZiItB4bdFRjBfi3kjZRNi7NsLPizF mmyQY5AoTrrC1vcWjr4ONbpyT36rqpu4xCf09ZoCBVbyrIonsty8vfk9pAbu683g 2cwk8npPlC96ES9r8acqZVXVefg6LJ+hfJWewwspAzzERvwIBHqnj1W0BgJJH3yd zdZH67it3iUOQFF66BsnK68= -----END CERTIFICATE-----Generated at Sun Feb 16 20:40:25 2025 by rpki-client