$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft File: 9aRLXgeIZbrvk1E2nZYda6JVbUc.mft (raw, json) Hash identifier: cVv765LO0XliL3fY2GbnhqLd1pI/M4y7umIGgPeQQXU= Subject key identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Certificate serial: 0199 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft Manifest number: 018E Signing time: Thu 21 Nov 2024 06:54:09 +0000 Manifest this update: Thu 21 Nov 2024 06:54:09 +0000 Manifest next update: Sat 23 Nov 2024 06:54:09 +0000 Files and hashes: 1: 9aRLXgeIZbrvk1E2nZYda6JVbUc.crl (hash: jvyUdVIoHAFadxBpFqyOm0v0JdaUyLmQCm6oDl8YILA=) 2: BKQwMkwwoK0SneKhRFdOVYV4oa4.roa (hash: na297qZWl0Qa1/vBFajJF6Z2wQlGx99bpIDjP4/kDNk=) 3: Zd0mSL8U7Du-RZBF13Re_g-TU_I.roa (hash: tAaY2HO0yC8lY21u5TQd74Fqa1J4fgk2OC8bpaABrT0=) 4: lQwixuhQQ8iVj1KD37Izj6GnYPg.roa (hash: vgnx6jfVkI7FuqtO/00uwpgWGsmExoQ+v7J5b00pEFk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 409 (0x199) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Validity Not Before: Nov 21 06:54:09 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=78C626456BAE94BA36466BD1EDB2D798BFFF017C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:a1:96:40:32:ef:af:64:da:c6:70:cd:e5: 42:ce:86:f9:47:4a:20:bb:49:3a:e0:39:71:3a:e3: 82:0d:d6:09:bf:c6:fa:b6:6e:89:79:fc:ee:b7:0f: 73:6b:5b:e8:3e:1e:c6:f9:03:f5:e5:59:ba:8b:2b: b0:13:41:63:52:26:bf:34:d4:ed:13:62:42:8e:9c: 0a:ab:de:43:8b:df:92:61:a3:6a:7a:10:02:56:8f: 87:27:ca:b9:16:e7:5a:77:c1:89:3b:6f:fa:3c:ab: 25:47:5c:ed:7a:86:a0:f0:d4:23:e4:e9:ce:b9:b3: 1f:82:98:57:6d:05:51:1a:d9:48:17:79:e7:82:f2: 8e:b1:37:76:d4:ad:dd:40:19:0d:fc:8e:ed:2a:a6: 37:bb:2b:a8:72:f5:e4:0a:b4:0a:7e:07:12:2b:5c: cb:d7:90:6b:21:4f:73:12:64:dd:ec:40:84:c8:5f: ca:a0:a7:49:09:36:02:ba:d5:d8:67:f8:48:e2:00: 54:dc:b8:c1:34:db:01:17:58:a8:8d:03:d2:78:78: 06:f8:0f:1a:2b:07:4c:18:23:43:c8:05:89:43:d2: a9:fb:06:3d:35:71:ec:8b:8a:e6:37:7b:bd:52:81: 83:3c:e4:39:8f:2f:97:b3:8a:d1:3b:f1:b8:82:76: f3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C X509v3 Authority Key Identifier: keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 15:09:4f:d2:bc:e6:1a:7f:92:df:65:38:cc:7f:ca:c1:f1:b4: 12:17:77:f2:49:37:b7:58:9e:0f:cc:36:47:9b:25:c2:05:56: 74:87:42:b1:8f:20:38:3d:a2:fe:86:a9:69:4c:ad:55:a5:fa: 97:32:0d:56:95:b2:81:44:7b:f2:dd:3d:c7:5c:bc:c8:6a:f9: 90:06:53:ac:33:e9:f5:03:33:53:ac:0d:65:41:20:88:a8:fb: ae:63:f7:d5:b9:d7:88:6b:e7:cc:8f:0f:48:e7:e2:6c:ba:db: 53:ae:4d:52:5d:37:00:87:9e:5e:b4:1e:19:5c:0d:b3:cb:7d: 2c:c4:94:6e:8e:62:e1:19:3a:6e:d7:c7:ae:e8:49:0d:ee:29: c1:07:98:b8:f2:19:af:e0:35:16:73:16:4f:a7:c2:63:d0:b3: f5:6e:c1:e8:8d:c7:5c:68:d3:04:ef:a0:d6:c7:1c:d0:a6:53: 19:e3:b8:ff:17:e8:e8:27:65:ce:ee:38:28:dc:4a:23:08:ef: aa:fc:69:08:7b:09:ed:d1:76:2a:76:a8:c0:f2:4d:06:e7:50: 50:de:e1:50:81:fb:45:1a:50:85:54:7f:b7:b2:92:29:31:3c: ed:e4:e1:61:93:6d:85:44:82:da:31:d9:34:a0:94:1b:c5:65: 38:a5:07:4e -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAZkwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDRCNUUwNzg4NjVCQUVGOTM1MTM2OUQ5NjFENkJBMjU1NkQ0NzAeFw0yNDExMjEw NjU0MDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc4QzYyNjQ1NkJBRTk0 QkEzNjQ2NkJEMUVEQjJENzk4QkZGRjAxN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC20qGWQDLvr2TaxnDN5ULOhvlHSiC7STrgOXE644IN1gm/xvq2 bol5/O63D3NrW+g+Hsb5A/XlWbqLK7ATQWNSJr801O0TYkKOnAqr3kOL35Jho2p6 EAJWj4cnyrkW51p3wYk7b/o8qyVHXO16hqDw1CPk6c65sx+CmFdtBVEa2UgXeeeC 8o6xN3bUrd1AGQ38ju0qpje7K6hy9eQKtAp+BxIrXMvXkGshT3MSZN3sQITIX8qg p0kJNgK61dhn+EjiAFTcuME02wEXWKiNA9J4eAb4DxorB0wYI0PIBYlD0qn7Bj01 ceyLiuY3e71SgYM85DmPL5ezitE78biCdvPjAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUeMYmRWuulLo2RmvR7bLXmL//AXwwHwYDVR0jBBgwFoAU9aRLXgeIZbrvk1E2 nZYda6JVbUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVH UkVFLzlhUkxYZ2VJWmJydmsxRTJuWllkYTZKVmJVYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvOWFSTFhnZUlaYnJ2azFFMm5aWWRhNkpWYlVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVHUkVFLzlhUkxYZ2VJWmJy dmsxRTJuWllkYTZKVmJVYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAVCU/SvOYaf5LfZTjMf8rB8bQSF3fySTe3WJ4PzDZHmyXCBVZ0h0KxjyA4 PaL+hqlpTK1VpfqXMg1WlbKBRHvy3T3HXLzIavmQBlOsM+n1AzNTrA1lQSCIqPuu Y/fVudeIa+fMjw9I5+JsuttTrk1SXTcAh55etB4ZXA2zy30sxJRujmLhGTpu18eu 6EkN7inBB5i48hmv4DUWcxZPp8Jj0LP1bsHojcdcaNME76DWxxzQplMZ47j/F+jo J2XO7jgo3EojCO+q/GkIewnt0XYqdqjA8k0G51BQ3uFQgftFGlCFVH+3spIpMTzt 5OFhk22FRILaMdk0oJQbxWU4pQdO -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:34 2024 by rpki-client on console-ams.rpki-client.org