$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft File: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft (raw, json) Hash identifier: C5VAPz2lGuqaEwWz3IvxSePUybgK4gqBV7LMUEsYcAw= Subject key identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Certificate serial: 73 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft Manifest number: 71 Signing time: Thu 21 Nov 2024 04:23:58 +0000 Manifest this update: Thu 21 Nov 2024 04:23:58 +0000 Manifest next update: Sat 23 Nov 2024 04:23:58 +0000 Files and hashes: 1: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl (hash: UE1xSfIOVCme5TisL9O1PI/uTgLci1jprnjkRkEh2SM=) 2: bdZqr9bNbyN1GWHZaBMNFiBhFho.roa (hash: mT9vDpTLDrLx6q/n6Z9qgX6Bi5eAnbdszLmZUKhmfS8=) 3: xHoCBhWfrKfryOMM-VHf5BBfkXc.roa (hash: dwoT/GXDAkv7EryV+bo5Nrpne0F7mzyz62MUQw0tOn0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 115 (0x73) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Validity Not Before: Nov 21 04:23:58 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=EAF2BE883EF8ED0C1C90C3D05D111B8539F37A69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b5:3e:8b:b8:23:d0:67:20:07:ec:8a:ac:1d: e4:82:63:90:b5:bd:e0:39:64:00:a9:a4:04:a5:e8: 32:34:38:0f:ad:0b:f1:dd:bf:6d:52:4d:5e:98:cd: bd:83:9d:40:9a:ae:40:0e:c6:e6:df:2f:ca:36:02: 96:ba:a1:3d:b3:d1:66:f9:3c:2e:63:d4:3a:95:c4: 4d:b9:cc:57:07:4c:72:12:e1:15:50:6c:14:72:41: 58:79:2d:09:03:55:e3:f8:65:8b:9f:28:9a:09:80: 6b:ef:6b:4c:4d:2d:cc:9c:3b:39:00:3f:99:35:00: f9:2a:92:95:51:e8:42:56:64:12:94:d2:43:f5:60: 79:65:56:27:e6:20:8d:0f:30:0c:92:fe:6c:2e:f4: 1f:09:0f:ab:9c:22:2d:e2:73:ef:dd:09:97:d3:35: 83:ef:81:75:33:60:63:83:81:2b:91:1c:55:f8:8c: 48:7e:db:af:79:b6:82:ba:65:79:cd:98:36:a9:b4: dd:28:ef:8d:bd:e7:46:d5:da:79:d5:30:58:89:5c: 58:95:a8:1b:d0:57:e1:7e:d7:ce:1d:80:99:ee:ae: 00:20:12:45:a5:f3:37:69:71:b6:27:45:32:46:55: 8c:f9:ea:86:77:07:bd:c9:68:9c:15:29:02:f2:d5: df:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 X509v3 Authority Key Identifier: keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 49:e0:3a:ee:e4:69:a0:6c:6e:bc:7c:fa:3a:58:e2:3c:20:ac: c8:72:c9:87:e4:d0:12:aa:ee:6d:d8:60:cf:6b:a6:26:0c:9f: 01:59:ae:d8:21:30:d6:c0:20:54:00:34:e7:12:a1:9d:07:6e: cb:4d:97:49:a6:a4:74:fc:c9:3a:e2:01:40:6e:38:ae:99:c3: bf:ef:8b:b9:9e:33:ca:66:6d:5f:e5:44:b7:21:da:7c:0c:40: 2e:15:00:34:1d:7c:8e:ca:15:ea:8b:fa:36:4c:70:75:39:37: 7d:44:6f:17:93:de:51:b0:10:20:b7:3d:34:a4:ee:fe:a2:d9: ec:aa:5c:8c:c2:fd:63:30:85:73:92:25:98:21:78:d6:f0:d0: b5:5e:00:dc:66:47:e4:96:ab:63:5c:c0:d5:b5:7b:13:60:3f: ed:b0:79:48:7a:70:61:2b:d9:2c:8f:a5:95:56:d4:23:b6:5d: 15:3d:e6:36:b3:0d:28:56:d3:a7:ed:96:ec:51:0c:1c:2b:5f: ea:88:ee:41:e9:6d:db:04:01:f6:ad:66:49:51:f4:d6:5f:fd: 1e:f6:8e:61:f7:92:6f:09:8b:36:50:2a:46:aa:f2:43:3d:e2: 20:d1:18:eb:a8:58:b0:91:3d:a6:65:9b:b4:b0:b3:5b:ea:cc: bd:73:8d:bb -----BEGIN CERTIFICATE----- MIIE6DCCA9CgAwIBAgIBczANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyg0M0VC RDM5RkI1MThCNTVEQTAwNzQyQUVFQzdCMERBNkFBQkE2MUY3MB4XDTI0MTEyMTA0 MjM1OFoXDTI1MDgyNjAxNTcwM1owMzExMC8GA1UEAxMoRUFGMkJFODgzRUY4RUQw QzFDOTBDM0QwNUQxMTFCODUzOUYzN0E2OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAN+1Pou4I9BnIAfsiqwd5IJjkLW94DlkAKmkBKXoMjQ4D60L8d2/ bVJNXpjNvYOdQJquQA7G5t8vyjYClrqhPbPRZvk8LmPUOpXETbnMVwdMchLhFVBs FHJBWHktCQNV4/hli58omgmAa+9rTE0tzJw7OQA/mTUA+SqSlVHoQlZkEpTSQ/Vg eWVWJ+YgjQ8wDJL+bC70HwkPq5wiLeJz790Jl9M1g++BdTNgY4OBK5EcVfiMSH7b r3m2grplec2YNqm03Sjvjb3nRtXaedUwWIlcWJWoG9BX4X7Xzh2Ame6uACASRaXz N2lxtidFMkZVjPnqhncHvclonBUpAvLV34ECAwEAAaOCAgUwggIBMB0GA1UdDgQW BBTq8r6IPvjtDByQw9BdERuFOfN6aTAfBgNVHSMEGDAWgBRD69OftRi1XaAHQq7s ew2mqrph9zAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFsGA1UdHwRUMFIwUKBO oEyGSnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQUVMVy9R LXZUbjdVWXRWMmdCMEt1N0hzTnBxcTZZZmMuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1EtdlRuN1VZdFYyZ0IwS3U3SHNOcHFxNllmYy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGbBggrBgEFBQcBCwSBjjCBizBWBggrBgEFBQcwC4ZKcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1NBRUxXL1EtdlRuN1VZdFYyZ0IwS3U3SHNO cHFxNllmYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9y cmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcB BwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBJ4Dru 5GmgbG68fPo6WOI8IKzIcsmH5NASqu5t2GDPa6YmDJ8BWa7YITDWwCBUADTnEqGd B27LTZdJpqR0/Mk64gFAbjiumcO/74u5njPKZm1f5US3Idp8DEAuFQA0HXyOyhXq i/o2THB1OTd9RG8Xk95RsBAgtz00pO7+otnsqlyMwv1jMIVzkiWYIXjW8NC1XgDc ZkfklqtjXMDVtXsTYD/tsHlIenBhK9ksj6WVVtQjtl0VPeY2sw0oVtOn7ZbsUQwc K1/qiO5B6W3bBAH2rWZJUfTWX/0e9o5h95JvCYs2UCpGqvJDPeIg0RjrqFiwkT2m ZZu0sLNb6sy9c427 -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org