$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft File: pkjm4cnjtwsVKT38bA44MEeRldw.mft (raw, json) Hash identifier: oNl8begq2cEo2ed2f9uaGo92zp9e7fC/VJFNdQw2ESk= Subject key identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 Authority key identifier: A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC Certificate issuer: /CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Certificate serial: 0C1B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft Manifest number: 0C1B Signing time: Thu 21 Nov 2024 03:53:43 +0000 Manifest this update: Thu 21 Nov 2024 03:53:43 +0000 Manifest next update: Sat 23 Nov 2024 03:53:43 +0000 Files and hashes: 1: pkjm4cnjtwsVKT38bA44MEeRldw.crl (hash: B7vDk2iK8e1SHPmiDu7c0qtKZ6CP9x+Y9wbQhf+9LzA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3099 (0xc1b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A648E6E1C9E3B70B15293DFC6C0E3830479195DC Validity Not Before: Nov 21 03:53:43 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=2665389E1A6AE7CCA08C1D0390597B23BF20EEA9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:4a:4c:31:b0:63:ef:b3:1c:f3:34:74:4a:3d: b2:5c:39:c2:b2:7e:41:df:93:1c:4f:f7:43:32:95: 6c:dd:76:d4:7f:15:36:e7:34:d0:b7:aa:d2:03:2b: da:c8:35:94:67:be:88:d6:20:0c:e7:2d:c4:af:64: c0:fb:67:55:e3:20:f6:71:c0:7c:d5:ab:c0:f3:3f: 5e:49:05:33:32:42:fe:69:b1:78:34:ec:1c:7b:7d: 8d:43:04:aa:80:74:1b:81:13:41:1e:64:10:f7:6c: 34:e6:89:03:cf:a6:a2:16:8e:8e:84:dd:db:c5:0b: 4c:4d:f0:03:df:5f:5a:66:f5:b9:b0:a4:16:81:f1: c0:06:03:8b:0e:d0:1c:87:61:e4:fa:92:ca:4a:54: 36:36:46:b8:be:14:67:4c:2c:37:60:0d:b4:0f:3f: fb:8b:19:cb:49:44:77:b8:2c:35:44:e4:1a:6c:da: 75:4f:2f:06:f1:bf:2b:34:ad:cc:4d:b4:40:3c:6d: aa:5b:46:71:94:79:c6:52:0c:a3:1c:f4:b1:19:21: 35:d0:b9:64:61:e5:bb:c8:75:ef:89:d2:92:59:65: bb:75:be:e7:37:ca:e5:29:f8:2e:90:d4:38:63:64: 8a:18:37:e9:d8:8f:b9:88:48:db:ba:74:de:dc:a4: ea:07 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 26:65:38:9E:1A:6A:E7:CC:A0:8C:1D:03:90:59:7B:23:BF:20:EE:A9 X509v3 Authority Key Identifier: keyid:A6:48:E6:E1:C9:E3:B7:0B:15:29:3D:FC:6C:0E:38:30:47:91:95:DC X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/pkjm4cnjtwsVKT38bA44MEeRldw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NKCATV/pkjm4cnjtwsVKT38bA44MEeRldw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 66:87:3b:81:35:9e:9d:1f:39:0c:2d:5d:83:2b:1a:ba:68:d0: eb:31:81:35:ca:4b:aa:65:cb:f7:29:c1:1b:17:ae:1a:47:6e: 05:b1:4a:35:74:77:6e:8c:a8:44:6a:a1:13:41:7a:06:e6:82: e9:0b:7e:aa:7b:07:b2:b3:a3:62:15:06:e2:7f:d9:b6:5a:9b: 64:1c:10:07:6c:8c:5d:95:44:34:2f:f8:80:12:0b:a3:4d:39: 73:70:a6:fe:75:7a:ab:54:54:1b:14:17:b1:e1:3f:33:f3:88: 37:fa:2f:f3:8f:89:fe:3b:75:30:38:44:03:d4:30:ff:5c:1c: d7:be:6b:34:18:24:e8:df:7a:5e:2a:95:96:13:87:3c:cb:62: 5f:39:4c:50:18:4d:a6:43:f7:72:42:7e:b5:f9:fa:45:7e:1f: d2:7b:c9:b9:09:b7:c0:5b:24:8c:57:92:83:8e:57:46:95:61: d5:34:34:f8:35:8a:1b:27:a4:ef:0a:fd:84:c7:71:fd:01:b2: 2f:3e:72:01:5e:87:64:6d:97:95:ba:14:5b:b4:13:5a:9f:bd: 83:b2:20:6b:73:23:21:9e:dc:85:50:be:40:61:11:87:48:38: 89:3d:53:b9:3c:ea:63:93:b0:8c:42:0a:5c:89:30:45:ee:e5: f8:dc:3f:0e -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDBswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTY0 OEU2RTFDOUUzQjcwQjE1MjkzREZDNkMwRTM4MzA0NzkxOTVEQzAeFw0yNDExMjEw MzUzNDNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDI2NjUzODlFMUE2QUU3 Q0NBMDhDMUQwMzkwNTk3QjIzQkYyMEVFQTkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCxSkwxsGPvsxzzNHRKPbJcOcKyfkHfkxxP90MylWzddtR/FTbn NNC3qtIDK9rINZRnvojWIAznLcSvZMD7Z1XjIPZxwHzVq8DzP15JBTMyQv5psXg0 7Bx7fY1DBKqAdBuBE0EeZBD3bDTmiQPPpqIWjo6E3dvFC0xN8APfX1pm9bmwpBaB 8cAGA4sO0ByHYeT6kspKVDY2Rri+FGdMLDdgDbQPP/uLGctJRHe4LDVE5Bps2nVP Lwbxvys0rcxNtEA8bapbRnGUecZSDKMc9LEZITXQuWRh5bvIde+J0pJZZbt1vuc3 yuUp+C6Q1DhjZIoYN+nYj7mISNu6dN7cpOoHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUJmU4nhpq58ygjB0DkFl7I78g7qkwHwYDVR0jBBgwFoAUpkjm4cnjtwsVKT38 bA44MEeRldwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRW L3Bram00Y25qdHdzVktUMzhiQTQ0TUVlUmxkdy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvcGtqbTRjbmp0d3NWS1QzOGJBNDRNRWVSbGR3LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvTktDQVRWL3Bram00Y25qdHdzVktUMzhi QTQ0TUVlUmxkdy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBm hzuBNZ6dHzkMLV2DKxq6aNDrMYE1ykuqZcv3KcEbF64aR24FsUo1dHdujKhEaqET QXoG5oLpC36qeweys6NiFQbif9m2WptkHBAHbIxdlUQ0L/iAEgujTTlzcKb+dXqr VFQbFBex4T8z84g3+i/zj4n+O3UwOEQD1DD/XBzXvms0GCTo33peKpWWE4c8y2Jf OUxQGE2mQ/dyQn61+fpFfh/Se8m5CbfAWySMV5KDjldGlWHVNDT4NYobJ6TvCv2E x3H9AbIvPnIBXodkbZeVuhRbtBNan72DsiBrcyMhntyFUL5AYRGHSDiJPVO5POpj k7CMQgpciTBF7uX43D8O -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:53 2024 by rpki-client on console-fra.rpki-client.org