$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RAID/PalqMYeFDKwQFQruNLuY3YHdups.mft File: PalqMYeFDKwQFQruNLuY3YHdups.mft (raw, json) Hash identifier: NhvtTht8aaYu57Hdlepw6R1Z1UrlfQ+C88OLoUDerac= Subject key identifier: 64:81:D0:D7:57:88:DC:AC:68:A8:E9:81:D6:31:90:D2:E2:BE:B0:08 Authority key identifier: 3D:A9:6A:31:87:85:0C:AC:10:15:0A:EE:34:BB:98:DD:81:DD:BA:9B Certificate issuer: /CN=3DA96A3187850CAC10150AEE34BB98DD81DDBA9B Certificate serial: 17 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PalqMYeFDKwQFQruNLuY3YHdups.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RAID/PalqMYeFDKwQFQruNLuY3YHdups.mft Manifest number: 17 Signing time: Sun 24 Nov 2024 19:24:21 +0000 Manifest this update: Sun 24 Nov 2024 19:24:21 +0000 Manifest next update: Tue 26 Nov 2024 19:24:21 +0000 Files and hashes: 1: PalqMYeFDKwQFQruNLuY3YHdups.crl (hash: +yIuO47X+9RtSIf+b+aVC/m2kde+cYbmKIjo18e+HkA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/RAID/PalqMYeFDKwQFQruNLuY3YHdups.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/RAID/PalqMYeFDKwQFQruNLuY3YHdups.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/PalqMYeFDKwQFQruNLuY3YHdups.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 23 (0x17) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3DA96A3187850CAC10150AEE34BB98DD81DDBA9B Validity Not Before: Nov 24 19:24:21 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=6481D0D75788DCAC68A8E981D63190D2E2BEB008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:7a:2d:40:90:4c:94:ce:b5:6b:8b:d4:d4:b1: 40:37:bc:04:5e:9a:2c:fe:30:94:d9:08:3a:94:b1: 7e:70:e5:a0:b3:67:da:ee:a2:f6:b5:30:9d:b1:d0: 92:62:71:79:be:22:b7:eb:a4:d0:0c:f8:d8:73:9b: 57:2b:97:01:c1:de:f1:27:22:d5:79:22:61:87:99: 18:ef:64:7f:02:fe:5d:4c:c5:f6:39:00:03:1c:0d: 14:f4:92:7b:75:b7:9b:5e:5e:da:e8:43:9a:cb:ea: d0:8c:e9:cb:4b:34:75:8d:fb:32:74:ce:5d:de:6b: 91:39:89:ef:32:6d:03:7b:aa:23:16:a4:ef:f6:08: 9d:a0:cf:c6:73:91:fd:bb:44:52:5c:41:4b:71:56: fb:7c:ff:56:2b:8e:80:bc:15:f2:8a:cf:a9:36:3f: ae:2c:dc:e0:d2:ff:89:64:a3:cd:c0:ca:c2:f4:98: 4a:59:37:c7:b1:5a:9f:41:0b:f7:07:09:f3:03:82: db:70:19:60:29:91:25:33:c7:40:c4:77:7c:b6:41: 42:d7:d0:cf:3b:69:df:01:de:f9:86:da:50:7e:8d: a5:34:ad:a0:22:7a:43:8e:9c:53:2e:3b:77:30:32: 68:7c:c0:66:05:f1:ce:b7:fd:d8:ea:51:2b:54:ff: 73:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:81:D0:D7:57:88:DC:AC:68:A8:E9:81:D6:31:90:D2:E2:BE:B0:08 X509v3 Authority Key Identifier: keyid:3D:A9:6A:31:87:85:0C:AC:10:15:0A:EE:34:BB:98:DD:81:DD:BA:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RAID/PalqMYeFDKwQFQruNLuY3YHdups.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PalqMYeFDKwQFQruNLuY3YHdups.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RAID/PalqMYeFDKwQFQruNLuY3YHdups.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5e:67:fc:f0:d6:c1:d5:d9:75:e1:49:56:53:ce:89:38:58:24: da:c0:76:34:e4:7c:87:5c:a8:95:2e:3d:e6:56:96:cd:66:82: d7:c7:e4:42:58:66:35:1e:3e:43:e5:a3:05:e9:27:39:40:68: 62:a6:0d:33:f3:5a:6b:42:79:6e:1d:54:3d:4a:ea:2c:f7:06: cd:8a:47:d6:a0:fd:14:cb:c1:99:80:94:75:8c:0c:52:17:dd: b3:2e:61:1e:bd:8b:79:11:5d:11:9d:8c:05:e3:33:88:de:9d: 6d:a8:fb:f6:f7:aa:6e:52:e6:65:4d:38:6e:59:ef:c3:90:5e: 9e:15:cc:fe:07:06:a5:e8:3f:16:1c:59:fa:f7:3f:07:95:51: da:e0:1c:03:49:28:ea:e1:d6:77:2d:ad:a6:9b:9c:d1:e9:3e: 28:5c:82:27:68:f0:aa:b0:40:8c:5c:47:65:03:68:cf:75:4c: be:95:f7:5e:be:fb:5b:ef:7d:84:bb:01:23:08:3a:f3:84:6d: d2:83:b9:f5:fa:73:20:77:c6:53:f8:79:0e:ce:41:7c:df:5a: 40:60:ee:5e:28:22:71:e5:82:5c:98:52:c9:13:35:89:c2:dd: 02:99:36:cf:01:c8:d1:fc:8b:4e:b4:cc:3f:ad:65:1e:e3:8e: 07:52:a3:69 -----BEGIN CERTIFICATE----- MIIE5jCCA86gAwIBAgIBFzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzREE5 NkEzMTg3ODUwQ0FDMTAxNTBBRUUzNEJCOThERDgxRERCQTlCMB4XDTI0MTEyNDE5 MjQyMVoXDTI1MDgyNjAxNTcwM1owMzExMC8GA1UEAxMoNjQ4MUQwRDc1Nzg4RENB QzY4QThFOTgxRDYzMTkwRDJFMkJFQjAwODCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBANJ6LUCQTJTOtWuL1NSxQDe8BF6aLP4wlNkIOpSxfnDloLNn2u6i 9rUwnbHQkmJxeb4it+uk0Az42HObVyuXAcHe8Sci1XkiYYeZGO9kfwL+XUzF9jkA AxwNFPSSe3W3m15e2uhDmsvq0Izpy0s0dY37MnTOXd5rkTmJ7zJtA3uqIxak7/YI naDPxnOR/btEUlxBS3FW+3z/ViuOgLwV8orPqTY/rizc4NL/iWSjzcDKwvSYSlk3 x7Fan0EL9wcJ8wOC23AZYCmRJTPHQMR3fLZBQtfQzztp3wHe+YbaUH6NpTStoCJ6 Q46cUy47dzAyaHzAZgXxzrf92OpRK1T/c9MCAwEAAaOCAgMwggH/MB0GA1UdDgQW BBRkgdDXV4jcrGio6YHWMZDS4r6wCDAfBgNVHSMEGDAWgBQ9qWoxh4UMrBAVCu40 u5jdgd26mzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFoGA1UdHwRTMFEwT6BN oEuGSXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9SQUlEL1Bh bHFNWWVGREt3UUZRcnVOTHVZM1lIZHVwcy5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev UGFscU1ZZUZES3dRRlFydU5MdVkzWUhkdXBzLmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZoGCCsGAQUFBwELBIGNMIGKMFUGCCsGAQUFBzALhklyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvUkFJRC9QYWxxTVllRkRLd1FGUXJ1Tkx1WTNZ SGR1cHMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcvcnJk cC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUHAQcB Af8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAXmf88NbB 1dl14UlWU86JOFgk2sB2NOR8h1yolS495laWzWaC18fkQlhmNR4+Q+WjBeknOUBo YqYNM/Naa0J5bh1UPUrqLPcGzYpH1qD9FMvBmYCUdYwMUhfdsy5hHr2LeRFdEZ2M BeMziN6dbaj79veqblLmZU04blnvw5BenhXM/gcGpeg/FhxZ+vc/B5VR2uAcA0ko 6uHWdy2tppuc0ek+KFyCJ2jwqrBAjFxHZQNoz3VMvpX3Xr77W+99hLsBIwg684Rt 0oO59fpzIHfGU/h5Ds5BfN9aQGDuXigiceWCXJhSyRM1icLdApk2zwHI0fyLTrTM P61lHuOOB1KjaQ== -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:43 2024 by rpki-client on console-fra.rpki-client.org