$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft File: phUjeyjUzviv-UIYFwShhwsPP3A.mft (raw, json) Hash identifier: haMCg/ZbNsZUDEk0hYbbwhNyEMzDMuTNCk8Ee08jOyQ= Subject key identifier: 46:08:62:5F:4E:05:32:43:3F:66:B0:1A:DC:F4:A5:CF:9A:A9:AA:85 Authority key identifier: A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70 Certificate issuer: /CN=A615237B28D4CEF8AFF942181704A1870B0F3F70 Certificate serial: 1189 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft Manifest number: 1181 Signing time: Sun 24 Nov 2024 06:54:25 +0000 Manifest this update: Sun 24 Nov 2024 06:54:25 +0000 Manifest next update: Tue 26 Nov 2024 06:54:25 +0000 Files and hashes: 1: lhimt4XmP6zcknByAZEBvOOludw.roa (hash: jHiModbSYNaOx5Ql0HKckC5aPP3kvMpSt3dZsqs+eEc=) 2: phUjeyjUzviv-UIYFwShhwsPP3A.crl (hash: cEPlrSrQHt+mxHjDfFJs9XnDDgMSZg7MS0qCpBGl/wo=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4489 (0x1189) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A615237B28D4CEF8AFF942181704A1870B0F3F70 Validity Not Before: Nov 24 06:54:25 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=4608625F4E0532433F66B01ADCF4A5CF9AA9AA85 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:eb:c1:75:36:53:1b:2b:e4:c7:b8:62:b1:5b: 19:cf:02:5a:f0:47:58:58:56:9b:4b:55:b6:64:8f: ca:13:3d:3f:d7:d0:4b:93:2a:a5:6d:02:cc:8a:80: 43:04:e4:ef:15:d2:51:60:60:f3:af:da:4e:ec:ad: 83:e1:de:61:bc:28:dd:c9:30:bc:7e:84:19:5c:94: 02:9e:cf:05:2b:be:ab:62:69:d0:7c:e8:72:7c:87: 7b:03:a3:47:9a:9a:41:b9:5b:0f:aa:8e:4c:8c:c8: b8:44:45:64:39:af:ce:6c:53:c0:fc:40:3a:9e:d6: 41:2a:e6:7e:db:bc:97:44:d8:06:3b:ca:4a:55:86: 39:7c:3f:ff:da:5e:50:0f:7b:63:2b:a5:f7:3d:dc: 47:7b:20:d9:dc:6b:3b:93:f4:c6:7c:7a:50:7c:7c: 93:73:8d:09:b6:08:e4:5a:b8:d0:e7:5f:cf:13:c4: 99:ac:c9:86:a9:01:7f:6d:96:85:4f:c0:9e:ac:5f: 8a:0d:29:2d:0e:10:ba:ef:8b:00:dd:77:99:3a:aa: 2c:31:69:6b:11:13:04:8e:88:ea:b3:08:11:98:ec: 7d:3f:ac:a1:51:9b:cf:fe:a8:2e:a9:fb:52:7c:98: a8:0c:9e:c5:65:aa:28:64:49:fc:30:6b:a2:6e:ef: 14:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 46:08:62:5F:4E:05:32:43:3F:66:B0:1A:DC:F4:A5:CF:9A:A9:AA:85 X509v3 Authority Key Identifier: keyid:A6:15:23:7B:28:D4:CE:F8:AF:F9:42:18:17:04:A1:87:0B:0F:3F:70 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/phUjeyjUzviv-UIYFwShhwsPP3A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NWCATVISP/phUjeyjUzviv-UIYFwShhwsPP3A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:16:65:e3:c3:d7:2d:46:09:72:84:d8:21:f2:ce:56:e4:58: 3e:61:81:a9:13:c2:1f:f3:e4:ce:27:a8:7e:59:69:1d:3e:15: 97:8d:c2:09:e7:e6:d6:b6:53:fa:16:8c:1a:9b:12:24:67:e5: da:9f:67:07:f9:8d:07:c9:e6:92:51:27:ea:81:90:47:8f:c1: b4:a8:d2:63:00:9c:ca:cb:30:a9:91:d5:96:cb:92:c5:2c:65: b9:c2:98:8e:9a:b1:43:5b:13:77:9a:25:7e:1e:4c:43:ba:8a: 65:ff:c1:c3:f3:d5:07:19:46:55:0a:c1:b8:99:2a:b4:56:85: 6b:31:38:1c:19:93:f9:a5:b6:c3:b0:35:66:b0:b3:a4:39:5d: c4:00:36:b8:04:57:4e:36:5b:7b:18:3d:f8:aa:4f:c5:73:b7: 23:82:33:05:18:ac:58:bf:76:39:fb:f5:0a:55:89:c1:40:35: 2d:69:d8:76:57:4b:9c:74:19:d3:60:52:d7:b3:98:ec:f9:01: 15:04:2f:35:c5:d7:c0:51:7b:d9:34:b2:c5:58:5a:bc:10:f8: fb:90:6e:ca:4b:dd:e3:bd:c3:23:5c:db:ca:d1:67:d0:29:5b: 44:34:18:d7:55:1a:64:64:5c:41:92:b1:fc:b2:ad:2b:8f:0d: b7:a4:49:80 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICEYkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTYx NTIzN0IyOEQ0Q0VGOEFGRjk0MjE4MTcwNEExODcwQjBGM0Y3MDAeFw0yNDExMjQw NjU0MjVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDQ2MDg2MjVGNEUwNTMy NDMzRjY2QjAxQURDRjRBNUNGOUFBOUFBODUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCy68F1NlMbK+THuGKxWxnPAlrwR1hYVptLVbZkj8oTPT/X0EuT KqVtAsyKgEME5O8V0lFgYPOv2k7srYPh3mG8KN3JMLx+hBlclAKezwUrvqtiadB8 6HJ8h3sDo0eamkG5Ww+qjkyMyLhERWQ5r85sU8D8QDqe1kEq5n7bvJdE2AY7ykpV hjl8P//aXlAPe2Mrpfc93Ed7INncazuT9MZ8elB8fJNzjQm2CORauNDnX88TxJms yYapAX9tloVPwJ6sX4oNKS0OELrviwDdd5k6qiwxaWsREwSOiOqzCBGY7H0/rKFR m8/+qC6p+1J8mKgMnsVlqihkSfwwa6Ju7xQVAgMBAAGjggINMIICCTAdBgNVHQ4E FgQURghiX04FMkM/ZrAa3PSlz5qpqoUwHwYDVR0jBBgwFoAUphUjeyjUzviv+UIY FwShhwsPP3AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRW SVNQL3BoVWpleWpVenZpdi1VSVlGd1NoaHdzUFAzQS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGhVamV5alV6dml2LVVJWUZ3U2hod3NQUDNBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTldDQVRWSVNQL3BoVWpleWpVenZp di1VSVlGd1NoaHdzUFAzQS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCtFmXjw9ctRglyhNgh8s5W5Fg+YYGpE8If8+TOJ6h+WWkdPhWXjcIJ5+bW tlP6FowamxIkZ+Xan2cH+Y0HyeaSUSfqgZBHj8G0qNJjAJzKyzCpkdWWy5LFLGW5 wpiOmrFDWxN3miV+HkxDuopl/8HD89UHGUZVCsG4mSq0VoVrMTgcGZP5pbbDsDVm sLOkOV3EADa4BFdONlt7GD34qk/Fc7cjgjMFGKxYv3Y5+/UKVYnBQDUtadh2V0uc dBnTYFLXs5js+QEVBC81xdfAUXvZNLLFWFq8EPj7kG7KS93jvcMjXNvK0WfQKVtE NBjXVRpkZFxBkrH8sq0rjw23pEmA -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:42 2024 by rpki-client on console-fra.rpki-client.org