$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft File: NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft (raw, json) Hash identifier: 4ZKxC+Fms7ZO0I8P5j8Hkzm9gDGdiIs5RfVueZSZATg= Subject key identifier: 68:0D:D4:74:18:9B:4A:BC:B8:47:C6:6E:82:E5:06:B7:06:29:26:38 Authority key identifier: 34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 Certificate issuer: /CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Certificate serial: 13A7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft Manifest number: 1324 Signing time: Thu 21 Nov 2024 07:23:09 +0000 Manifest this update: Thu 21 Nov 2024 07:23:09 +0000 Manifest next update: Sat 23 Nov 2024 07:23:09 +0000 Files and hashes: 1: -jmlML6tC9GmJeiTo_PITrjrKEM.roa (hash: fwjevavb9+Cmi4GWTY98ft0AEUUm/ePHhRPEtHx7A7I=) 2: 1QIB4zUapelWSQjkx3mMlmDlujY.roa (hash: 1Foq2n+EgTaDLLvEREMsW+wC69z06cd6pIHlDnhegqI=) 3: 1ZsBw48JGzvIR3fSJKy27u50ukk.roa (hash: 01ObNjiikq7cliaZ77selaoiDxzzvIKz9GmMfrspfE8=) 4: 1egI-mDSxArOgBV3lLuc3lRL_h4.roa (hash: Z82HydLwq9WUmWvay7XBfo0Gdv+fp2rQc5tr+68I57I=) 5: 4rRGzn7xZtQ_u3WOlNywQPIcxi0.roa (hash: ANLy5bqZ3tGwuMzP6XASwCk0xiRgtOeQOoI5y3ft8S0=) 6: 9-Td1NYWvuQlEX5fy3l2SU76_8U.roa (hash: +FXoP7sDc0q4o9kuSEZy/DIDMR+Xl8KV2AIFgK+x4X0=) 7: 9ioTFegA-h7De6F_6B0Sm10Cl0o.roa (hash: JSWvcDkOncRXra+qib3rsagW/IlRv296ySaIxAg5rFk=) 8: BjSSZy8_RowvIw31AtvPAfDEFEw.roa (hash: 4ONNB8RsfqgDXFOZxzUYnLenmNtlQ2pPie2vFLuFDYw=) 9: CViv7k-guZVO7c4Rm6UfRznD2xM.roa (hash: 3JaoR3ayYU4nQ3uvnTsk7aWsEdj3IK/zF0deiSt4cIY=) 10: L04X9V37JWt8euwubv8lyfLUBZQ.roa (hash: 4kjoxtbegsNTOSaYIKtpO0roAeB326DnrVMTEEykS80=) 11: LndGobw4KPq9rudPieuKfNFfn5A.roa (hash: gxNotrNBScGVXMVXhUtCDCOq2wnJmqtzqbqd+ylGmZY=) 12: NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl (hash: OwEvHarccvdGiGqren2TyUblvB/ea+x9wWvMhAwh47M=) 13: RnpQ61SrmOEucUuX-ZVrz0Wr7JA.roa (hash: LQ/Nm2hu+6qUZlQydiXDuDY8G1AZjxvS8YJ1E360SMo=) 14: SrhwyBpySEsvdbsisUPL3VJlibg.roa (hash: MgRqjCsrX2jao9ZLjz/aTHKxth0XmrNrGAdtW3jd7UU=) 15: U_g4k_hQlsV6sQxTxK5bPqG5Shw.roa (hash: abheNLOXrr9gSgxCesoFIpYHfBYxXtPqC6deACYlcnY=) 16: WrNo-lKOcx7rrKD74n3tcO5bhus.roa (hash: VcO6iybEFZH7+Wd8gDwxfPoZ9CWJvwcT0eYrKXtgg2s=) 17: Y2JPffOb82G-1WIGTpgXGc8Traw.roa (hash: tb63tEeelCFza/OXJVsO2VvWz/OCM/GWlXADFzMyVvM=) 18: _XQwEd27PnxkWrF1cpvQ8Jh14Og.roa (hash: Ns+stcq03tXYI/2vjAHiv8F2CAjgvV9huQ9iB6U+drg=) 19: dCibnFgLdNckAYrmuK0QH7e2Ruk.roa (hash: UQ00uVgHzX9iCbp9TF4Lj1zwtA9MNr++GLQ8GdM4qCI=) 20: h9ZO6g9jmAooKGfKMLSm1ekw3ko.roa (hash: FBMcJfCfJN9oWItvzAxUI3y2YDZYWvdY+JlGrDADd14=) 21: jvROaNlwxzy_43ho6UyKXmDAaEA.roa (hash: y3KRxdnVwVVmlyOGx6qMz7gPRxIAzDMebhd/V3US04s=) 22: lkfdWKeNej2hofOoS_9fE6CGX8Y.roa (hash: UPj5fagpr85Sbzrtoylblqxu2YscKju9VGV+TsiWy70=) 23: m7l48i_kBH5AdSK7Uh_NIbky8xo.roa (hash: y1TR6xKwnL46CZRIeuoC4rHx5hPnrTpLbRcYYwLu68g=) 24: rUlyzciChB4lk0w74PjENW97hB4.roa (hash: EBqSgEPYDsrxw7gea56H7XPhPCcsXpGwB4mjFtgvvXQ=) 25: tF7giJjtIeyo4i5JoDJKhYYmWVE.roa (hash: G/qUpbmYZX71B5urv0D+qRv31l8swYszLvFIBuOIJJg=) 26: tMDuTUh_6OIERjSrrcoDWqzDR94.roa (hash: AKyEeu0uSK0f8URBvMTr0UCBqbOKuRx4dG+2Dt5O+io=) 27: tNV9Pns3BDoiCHl_0Wt9P7Eq8Pw.roa (hash: MBZB7eimuNsJyhfptrIax+tnLltxvYbVefUGWAJI7+Q=) 28: urK0xPrRSIid0pG-XhxchEJAyAo.roa (hash: 7VpT//11wz+o4GPcy2u/NOlPYM9B98HJl08Wox81VjQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5031 (0x13a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=349B9CE90AE03DAD19BC54DFF63AE8C41E223948 Validity Not Before: Nov 21 07:23:09 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=680DD474189B4ABCB847C66E82E506B706292638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:90:49:82:63:9a:d7:1c:24:f3:4c:a2:3d:6a: af:67:61:29:de:29:ab:a7:23:1a:c6:e1:da:63:90: 88:0b:a4:cb:09:2a:29:87:1e:ea:d8:2a:4f:2e:50: f9:ab:a4:c7:30:8d:29:d6:a2:9c:5e:8e:66:8f:a0: ae:cc:4e:d2:c3:3f:6f:14:1f:21:93:c2:0a:7e:5d: 8c:58:1d:34:99:0a:07:24:13:86:4d:35:f1:ec:b0: 54:a2:32:0d:03:93:26:4f:10:d0:af:80:ea:4a:8e: 96:47:87:9c:11:0e:ed:2f:ef:08:ff:48:f0:0b:1f: 46:6f:af:40:09:e7:d4:a5:f6:ce:6c:79:a4:f7:c9: d3:ff:b5:cd:6f:4c:4b:66:4b:ee:53:48:d8:69:c8: b2:3b:ce:8d:66:7a:ed:b1:28:f8:12:4e:cb:d8:80: 8f:cc:ed:b5:b9:5a:7d:18:a6:7c:39:72:35:45:59: 67:5a:fa:6a:d0:0b:f5:94:df:f7:74:4b:8d:ab:4b: 8c:12:41:d0:c8:9e:82:96:e1:f7:d3:1e:7d:ca:e7: 76:b5:f3:18:5b:a4:ff:bc:ad:16:00:1d:39:ee:c7: b7:5c:d4:38:0b:ab:6c:c8:dc:39:fc:fb:86:8b:07: 87:0d:c1:40:12:b9:8f:61:1e:9e:e1:55:ae:00:4b: b8:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:0D:D4:74:18:9B:4A:BC:B8:47:C6:6E:82:E5:06:B7:06:29:26:38 X509v3 Authority Key Identifier: keyid:34:9B:9C:E9:0A:E0:3D:AD:19:BC:54:DF:F6:3A:E8:C4:1E:22:39:48 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NJuc6QrgPa0ZvFTf9jroxB4iOUg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SCNET/NJuc6QrgPa0ZvFTf9jroxB4iOUg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 89:7f:71:ad:89:73:7c:33:6e:74:41:c0:55:ed:82:5a:d3:61: 47:18:57:fb:84:a0:8a:a8:f8:b1:22:02:05:8c:75:5e:2f:69: 04:a0:75:ce:a5:c0:ff:48:3d:87:f0:02:0e:8d:14:2a:58:e5: 67:45:d8:5a:63:42:58:1b:2e:08:7a:7d:69:f2:d2:67:9e:d3: 9c:ed:3f:12:14:2e:a1:b0:31:12:b7:80:33:45:4e:00:16:65: 76:79:94:c3:96:93:ae:34:98:06:1a:61:19:22:e4:7b:9d:3a: 21:10:ab:9f:e2:7e:32:64:67:ac:7a:97:2c:58:ed:19:1c:d7: 30:51:5a:90:78:02:3d:b5:95:f6:d3:ba:4e:c5:fa:36:db:5d: 28:97:fb:f9:e5:2f:fe:12:de:04:a5:ac:8e:27:e9:ee:34:9d: f5:ef:1d:42:61:9a:fe:c2:0e:b5:11:68:58:9a:45:d0:c7:16: 0d:ca:b1:ea:09:0d:8b:4b:3c:3e:d0:4e:0f:47:fa:4c:f4:fc: 2d:68:3a:c1:ee:01:08:ae:1e:ea:7a:e8:a7:c6:49:c1:09:55: 97:6a:04:b0:b5:4c:3f:15:08:cd:ec:63:b7:60:bb:f3:3b:fa: d8:26:7f:1d:c1:cf:e5:70:50:27:8f:4a:fb:f3:80:b0:e6:09: a0:15:3b:a4 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICE6cwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzQ5 QjlDRTkwQUUwM0RBRDE5QkM1NERGRjYzQUU4QzQxRTIyMzk0ODAeFw0yNDExMjEw NzIzMDlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY4MERENDc0MTg5QjRB QkNCODQ3QzY2RTgyRTUwNkI3MDYyOTI2MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCfkEmCY5rXHCTzTKI9aq9nYSneKaunIxrG4dpjkIgLpMsJKimH HurYKk8uUPmrpMcwjSnWopxejmaPoK7MTtLDP28UHyGTwgp+XYxYHTSZCgckE4ZN NfHssFSiMg0DkyZPENCvgOpKjpZHh5wRDu0v7wj/SPALH0Zvr0AJ59Sl9s5seaT3 ydP/tc1vTEtmS+5TSNhpyLI7zo1meu2xKPgSTsvYgI/M7bW5Wn0Ypnw5cjVFWWda +mrQC/WU3/d0S42rS4wSQdDInoKW4ffTHn3K53a18xhbpP+8rRYAHTnux7dc1DgL q2zI3Dn8+4aLB4cNwUASuY9hHp7hVa4AS7ihAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUaA3UdBibSry4R8ZuguUGtwYpJjgwHwYDVR0jBBgwFoAUNJuc6QrgPa0ZvFTf 9jroxB4iOUgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0NORVQv Tkp1YzZRcmdQYTBadkZUZjlqcm94QjRpT1VnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9OSnVjNlFyZ1BhMFp2RlRmOWpyb3hCNGlPVWcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQ05FVC9OSnVjNlFyZ1BhMFp2RlRmOWpy b3hCNGlPVWcubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiX9x rYlzfDNudEHAVe2CWtNhRxhX+4Sgiqj4sSICBYx1Xi9pBKB1zqXA/0g9h/ACDo0U KljlZ0XYWmNCWBsuCHp9afLSZ57TnO0/EhQuobAxEreAM0VOABZldnmUw5aTrjSY BhphGSLke506IRCrn+J+MmRnrHqXLFjtGRzXMFFakHgCPbWV9tO6TsX6NttdKJf7 +eUv/hLeBKWsjifp7jSd9e8dQmGa/sIOtRFoWJpF0McWDcqx6gkNi0s8PtBOD0f6 TPT8LWg6we4BCK4e6nrop8ZJwQlVl2oEsLVMPxUIzexjt2C78zv62CZ/HcHP5XBQ J49K+/OAsOYJoBU7pA== -----END CERTIFICATE-----Generated at Fri Nov 22 08:22:26 2024 by rpki-client on console-fra.rpki-client.org