$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft File: gFHy7O_CQumvnx5FSk-3llkbjas.mft (raw, json) Hash identifier: Sry74niY+gF3BQy9dICKixRmEBtjuFQizd3eu4FG+IA= Subject key identifier: B3:F4:1E:4B:D4:12:F0:37:18:44:B2:30:AC:07:B4:A4:B3:4E:4E:0F Authority key identifier: 80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB Certificate issuer: /CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Certificate serial: 1336 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft Manifest number: 1314 Signing time: Thu 21 Nov 2024 07:23:13 +0000 Manifest this update: Thu 21 Nov 2024 07:23:13 +0000 Manifest next update: Sat 23 Nov 2024 07:23:13 +0000 Files and hashes: 1: -8oNsnl0ou9P4132nVLoyujfFJk.roa (hash: sDNeISvSTXyoUYlLSlbmz5X5QoKJSsquh2izLB6oMjc=) 2: gFHy7O_CQumvnx5FSk-3llkbjas.crl (hash: XvhPMDhHoq5UJcda6wI2yL5aVUIwAMHQq8/H/0USgsY=) 3: qJSVNDMVIBKEhAmnmum8Mxf5Ie0.roa (hash: ZiN23hU1Q77ZVRrZI4J5S9z4U/f/yCqcKlD0Bxenaag=) 4: sRg2XlieAO2a9AX6D1Nl9IqEvqA.roa (hash: mm1H1t+bgtqAtSukSKbWzeIs5R0FrD0rZH27ftDyp6s=) 5: tCn5GVdb8smMgK6t_m9afMsuO3U.roa (hash: 1MeUY4RbmfLyZPsM4JhV3oWbnXgxfkAWPXGI/vamNmQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4918 (0x1336) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8051F2ECEFC242E9AF9F1E454A4FB796591B8DAB Validity Not Before: Nov 21 07:23:13 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=B3F41E4BD412F0371844B230AC07B4A4B34E4E0F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:bb:c8:a4:92:b6:18:8b:21:23:0d:eb:65:b6: c0:c0:b2:90:1b:32:af:50:df:84:ca:45:a1:f7:48: 3d:96:c1:e1:de:d5:74:1b:67:9b:23:75:d1:bc:f0: e2:bb:aa:14:7e:15:63:3c:af:29:d2:2b:76:82:cf: 8c:a5:56:b6:29:d1:b9:68:30:68:90:d6:d3:70:f1: c7:9c:48:b5:37:e0:e4:2a:97:63:be:22:97:d7:47: 19:69:af:ee:c0:8b:75:ad:c6:db:68:7d:5f:e2:7e: 25:c6:bc:81:a5:29:9b:09:f0:94:d5:64:a8:9d:a9: 82:68:20:84:69:5b:56:c2:9b:dc:92:4e:b6:6e:50: 06:be:7c:10:4b:a1:05:9e:34:f7:40:86:e6:5c:d9: 49:a8:df:d8:39:3d:92:2b:0b:75:3f:b6:9c:1e:8a: 96:79:24:3c:d5:3c:2f:1c:0c:2d:c3:9e:dd:fe:c6: 79:27:f0:5f:7d:19:39:26:90:63:67:6b:92:c7:a7: 2c:dd:0a:c6:8c:f4:4b:11:0c:43:28:f3:91:b7:e2: f5:7e:f6:35:20:01:8c:78:67:a5:f5:ee:56:af:63: 0c:9b:69:c1:b5:a9:a1:f3:10:5d:e1:ab:58:33:31: e4:55:38:bb:d5:cc:95:6f:ec:62:e2:ef:d5:15:07: 89:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B3:F4:1E:4B:D4:12:F0:37:18:44:B2:30:AC:07:B4:A4:B3:4E:4E:0F X509v3 Authority Key Identifier: keyid:80:51:F2:EC:EF:C2:42:E9:AF:9F:1E:45:4A:4F:B7:96:59:1B:8D:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/gFHy7O_CQumvnx5FSk-3llkbjas.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKBNET/gFHy7O_CQumvnx5FSk-3llkbjas.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 8d:cd:29:f0:c4:73:26:bb:a1:e0:2c:18:a3:ff:5e:15:03:0b: f6:b7:65:45:f6:b6:eb:3a:1b:ae:c5:ab:cf:27:4c:3b:fb:07: 70:f5:eb:1f:3d:69:da:d7:81:b9:44:ff:a5:76:54:8e:07:a9: a4:07:fe:8d:2b:9c:fc:97:7e:f1:a9:20:71:36:8a:ab:2c:14: d3:af:59:74:5a:a3:59:d7:3a:1c:5b:a9:52:d3:44:23:c6:8e: cb:55:29:2b:aa:16:d7:f2:cf:ec:79:ed:49:de:8a:44:86:57: a7:a8:31:d6:62:b4:a4:ab:d8:53:9d:bf:f3:f3:ee:95:5e:09: e4:90:22:4e:2b:4b:92:46:2e:a7:b1:90:da:42:5b:ef:ee:94: ff:03:7c:3f:c8:f0:50:1d:58:c3:e8:4f:a6:71:0c:c3:3e:fe: 69:7b:ae:a5:57:49:d4:1b:29:84:2c:7b:be:a0:17:c9:5e:7b: e0:69:bf:cb:4f:76:99:d5:98:85:42:c9:ee:64:bf:8c:a9:46: 77:7b:f1:27:e7:aa:af:bb:f3:d3:17:91:e1:99:6a:8e:b7:2b: 56:0b:07:f3:a4:a6:ff:0d:20:f4:a8:eb:03:95:ee:5a:e2:c3: 27:b9:3f:a4:73:82:1a:e8:db:5b:86:ac:d4:e7:8a:b4:bc:c9: 9d:d1:5e:d5 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICEzYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODA1 MUYyRUNFRkMyNDJFOUFGOUYxRTQ1NEE0RkI3OTY1OTFCOERBQjAeFw0yNDExMjEw NzIzMTNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEIzRjQxRTRCRDQxMkYw MzcxODQ0QjIzMEFDMDdCNEE0QjM0RTRFMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDVu8ikkrYYiyEjDetltsDAspAbMq9Q34TKRaH3SD2WweHe1XQb Z5sjddG88OK7qhR+FWM8rynSK3aCz4ylVrYp0bloMGiQ1tNw8cecSLU34OQql2O+ IpfXRxlpr+7Ai3WtxttofV/ifiXGvIGlKZsJ8JTVZKidqYJoIIRpW1bCm9ySTrZu UAa+fBBLoQWeNPdAhuZc2Umo39g5PZIrC3U/tpweipZ5JDzVPC8cDC3Dnt3+xnkn 8F99GTkmkGNna5LHpyzdCsaM9EsRDEMo85G34vV+9jUgAYx4Z6X17lavYwybacG1 qaHzEF3hq1gzMeRVOLvVzJVv7GLi79UVB4k9AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUs/QeS9QS8DcYRLIwrAe0pLNOTg8wHwYDVR0jBBgwFoAUgFHy7O/CQumvnx5F Sk+3llkbjaswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVU L2dGSHk3T19DUXVtdm54NUZTay0zbGxrYmphcy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvZ0ZIeTdPX0NRdW12bng1RlNrLTNsbGtiamFzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktCTkVUL2dGSHk3T19DUXVtdm54NUZT ay0zbGxrYmphcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCN zSnwxHMmu6HgLBij/14VAwv2t2VF9rbrOhuuxavPJ0w7+wdw9esfPWna14G5RP+l dlSOB6mkB/6NK5z8l37xqSBxNoqrLBTTr1l0WqNZ1zocW6lS00Qjxo7LVSkrqhbX 8s/see1J3opEhlenqDHWYrSkq9hTnb/z8+6VXgnkkCJOK0uSRi6nsZDaQlvv7pT/ A3w/yPBQHVjD6E+mcQzDPv5pe66lV0nUGymELHu+oBfJXnvgab/LT3aZ1ZiFQsnu ZL+MqUZ3e/En56qvu/PTF5HhmWqOtytWCwfzpKb/DSD0qOsDle5a4sMnuT+kc4Ia 6NtbhqzU54q0vMmd0V7V -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org