$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.mft File: wU-s_UXCwCdo6CcvT7g_su2vdDk.mft (raw, json) Hash identifier: a2Xx+mpmV+Pbq1Bftc6IJxd+GMSBdt6cS7ZLOiiZFEo= Subject key identifier: 55:02:EE:6C:7E:82:70:64:BF:3A:60:1C:76:B2:3D:67:C3:A7:D6:FE Authority key identifier: C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39 Certificate issuer: /CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439 Certificate serial: 0F0F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.mft Manifest number: 0EC3 Signing time: Sun 02 Jun 2024 04:03:06 +0000 Manifest this update: Sun 02 Jun 2024 04:03:06 +0000 Manifest next update: Tue 04 Jun 2024 04:03:06 +0000 Files and hashes: 1: 0yiBVG_CNhJ_nxquhJ6PFN2J4-k.roa (hash: pvOibs+AkdniZ4bSYFIZgIs7p6zpQa+f/cfQE1jSgEE=) 2: 3jzslE02LW9hdKThFuhdAsey5_c.roa (hash: l+FsbzA3K5rS8YTlNL/rgwkVi4JhsO4gugPhAZzF2Fo=) 3: 8hhrrRWVDDXGc9xI5Ez8WoFPDQA.roa (hash: 9Dq0YjgR0uXeAA8GSwCRkSdGPP8riHaICDG8dBrDlYo=) 4: wU-s_UXCwCdo6CcvT7g_su2vdDk.crl (hash: naim7iM5t1yljvaWLz53KKJfluDW0WGkTr9K8YxgIVg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 04 Jun 2024 04:03:06 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3855 (0xf0f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=C14FACFD45C2C02768E8272F4FB83FB2EDAF7439 Validity Not Before: Jun 2 04:03:06 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=5502EE6C7E827064BF3A601C76B23D67C3A7D6FE Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:cc:3f:d0:2a:1b:4d:80:af:04:a3:28:07:c0: 08:fb:35:ff:a4:8f:e9:16:65:7d:57:d9:af:64:c9: ef:05:67:cd:2e:c4:9f:8c:41:6f:58:59:7f:79:cc: 34:2f:e4:c3:43:9f:46:1f:af:d9:22:66:e1:e0:38: b8:3e:5d:b5:13:a9:f8:d8:7c:c9:de:5d:bd:d9:a0: 69:64:ca:a5:44:a5:b2:7e:00:2d:44:18:03:d3:63: 6e:7e:2b:24:aa:bf:d0:7f:91:87:38:81:e7:1f:5e: 8a:3f:48:2d:c0:d3:10:fd:e4:76:4d:b0:2d:5f:a4: 3d:1d:7c:15:0f:04:a8:25:9c:18:1c:7e:0c:af:ff: 2c:8e:db:01:bd:ab:2b:b6:ae:2c:bb:44:e7:dc:04: 04:40:01:4a:9d:95:79:29:56:51:51:ea:00:1d:9b: 2a:a3:f6:ec:5e:26:b2:9c:7d:f2:1c:f2:3c:ce:89: eb:bb:1f:3f:70:aa:55:4b:52:8f:17:a5:d8:68:85: 9b:95:cd:43:88:d5:9d:ce:a5:b0:06:5d:66:26:61: aa:1b:c6:70:a8:0b:a6:84:ee:b5:92:d7:8d:47:04: ef:71:15:ec:06:ab:42:0d:a1:c9:02:71:4f:d4:19: b9:4e:99:a7:72:67:ac:a5:95:b1:57:46:c6:7f:48: 95:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:02:EE:6C:7E:82:70:64:BF:3A:60:1C:76:B2:3D:67:C3:A7:D6:FE X509v3 Authority Key Identifier: keyid:C1:4F:AC:FD:45:C2:C0:27:68:E8:27:2F:4F:B8:3F:B2:ED:AF:74:39 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/wU-s_UXCwCdo6CcvT7g_su2vdDk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PQS/wU-s_UXCwCdo6CcvT7g_su2vdDk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption d7:78:c6:f0:ad:db:94:94:5c:cf:16:7c:bf:61:fe:cc:dc:5a: b0:42:84:75:50:be:f3:55:02:04:84:28:55:3b:dc:12:6a:fc: a8:49:48:34:59:34:04:01:1b:5f:7c:3e:51:5b:b0:3e:00:3c: e6:96:0f:6f:1f:7b:e3:f6:30:92:d3:b8:ee:49:26:d7:90:af: 7c:00:c2:85:f1:f5:ae:24:6f:3a:d8:2e:96:b3:09:8c:e7:55: a0:cd:cc:41:57:7e:5f:7a:7f:21:20:9c:86:2f:f9:19:86:a8: ae:a4:c4:aa:6b:17:c7:b3:88:6a:1f:ab:14:bb:11:2c:93:e0: cd:bd:0c:33:d3:d0:1c:e3:22:7c:9f:bc:5c:d9:b9:c4:8a:d9: bf:69:87:55:9b:08:7f:a1:ec:80:b7:f2:b6:8b:61:3c:18:57: 71:2b:33:78:cd:2e:9e:a6:fa:91:c5:d5:2c:a4:02:e7:a6:06: 5c:01:20:f3:77:ad:81:82:85:3b:f6:4e:92:f1:29:32:b8:67: 7e:b2:ff:7d:1a:8d:fa:e5:be:12:93:be:d3:d8:41:40:10:d0: 98:7b:3d:52:8e:8b:58:1f:35:2f:9f:0d:91:97:c7:6a:77:6a: 8e:4d:cc:5d:9e:6c:a3:63:b9:7f:f5:ff:ae:72:02:89:73:65: 8f:99:7d:35 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICDw8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQzE0 RkFDRkQ0NUMyQzAyNzY4RTgyNzJGNEZCODNGQjJFREFGNzQzOTAeFw0yNDA2MDIw NDAzMDZaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDU1MDJFRTZDN0U4Mjcw NjRCRjNBNjAxQzc2QjIzRDY3QzNBN0Q2RkUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDEzD/QKhtNgK8EoygHwAj7Nf+kj+kWZX1X2a9kye8FZ80uxJ+M QW9YWX95zDQv5MNDn0Yfr9kiZuHgOLg+XbUTqfjYfMneXb3ZoGlkyqVEpbJ+AC1E GAPTY25+KySqv9B/kYc4gecfXoo/SC3A0xD95HZNsC1fpD0dfBUPBKglnBgcfgyv /yyO2wG9qyu2riy7ROfcBARAAUqdlXkpVlFR6gAdmyqj9uxeJrKcffIc8jzOieu7 Hz9wqlVLUo8XpdhohZuVzUOI1Z3OpbAGXWYmYaobxnCoC6aE7rWS141HBO9xFewG q0INockCcU/UGblOmadyZ6yllbFXRsZ/SJWXAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUVQLubH6CcGS/OmAcdrI9Z8On1v4wHwYDVR0jBBgwFoAUwU+s/UXCwCdo6Ccv T7g/su2vdDkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFFTL3dV LXNfVVhDd0NkbzZDY3ZUN2dfc3UydmREay5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev d1Utc19VWEN3Q2RvNkNjdlQ3Z19zdTJ2ZERrLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvUFFTL3dVLXNfVVhDd0NkbzZDY3ZUN2dfc3Uy dmREay5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQDXeMbwrduU lFzPFny/Yf7M3FqwQoR1UL7zVQIEhChVO9wSavyoSUg0WTQEARtffD5RW7A+ADzm lg9vH3vj9jCS07juSSbXkK98AMKF8fWuJG862C6WswmM51WgzcxBV35fen8hIJyG L/kZhqiupMSqaxfHs4hqH6sUuxEsk+DNvQwz09Ac4yJ8n7xc2bnEitm/aYdVmwh/ oeyAt/K2i2E8GFdxKzN4zS6epvqRxdUspALnpgZcASDzd62BgoU79k6S8SkyuGd+ sv99Go365b4Sk77T2EFAENCYez1SjotYHzUvnw2Rl8dqd2qOTcxdnmyjY7l/9f+u cgKJc2WPmX01 -----END CERTIFICATE-----Generated at Mon Jun 3 04:21:51 2024 by rpki-client on console-ams.rpki-client.org