$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft File: O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft (raw, json) Hash identifier: A2T3EaVbnsmaksPG++bx3Q1gHcuMAohfCDDwBNgtpks= Subject key identifier: 09:E3:94:D0:E0:D6:A4:CD:B8:E9:63:53:BF:A6:5E:0B:46:4C:7E:2A Authority key identifier: 3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 Certificate issuer: /CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Certificate serial: 0D1C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft Manifest number: 0C79 Signing time: Sun 24 Nov 2024 07:24:24 +0000 Manifest this update: Sun 24 Nov 2024 07:24:24 +0000 Manifest next update: Tue 26 Nov 2024 07:24:24 +0000 Files and hashes: 1: 1aeEECTOprUJZ6my6r6d3HuKwLs.roa (hash: C3nKMLYkqypgkiLAltwBxM0cT6EYjZrWsD3+qADzC5o=) 2: 2J6y7QQyUuPDuThPxITvhchhvGw.roa (hash: cquIH1YoewPPhtc+UC5q2xjer+XJFiF9X9ar/1bNark=) 3: 4S0Rf3yknLIek5qO167x0s13tY8.roa (hash: 5dHW9CQZn66PKSQKZxKegP0pjT+B4S4GvFAby2Ng9AY=) 4: AeSk5rq1wAr9K7pvJfmmMbuOv2A.roa (hash: NzWiboIplrpqNMPp47J6nj++/jtk4lewfQl8eX4poMg=) 5: E03l4rr3fqQOSqfIZa-XqPfE-7E.roa (hash: 5VOeTtBIKNPVY5WEkB3qJfbSrh+bb+8rM5XXU9fXS9o=) 6: EgbNNe1nNJ4tQqmgwnGl7IMhPzc.roa (hash: eRB6e/vc33KZ5NzTBrp49Ls2apnzRHKkAnJAZ9dB0W4=) 7: IHrDal9t6MTSF2G_fg_5T_Reoag.roa (hash: YFM5ybvyixKGgH2oVE0FjLC7qD9tF7j6R6W0NnrUhxI=) 8: JVerigVF4n_XwzXVKHNPQ8rw7w0.roa (hash: BYbkN7jhQmiiK3uq6LDzPTuVQnZpX9lZlZP+utw9I9w=) 9: O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl (hash: xLSRLQ+kvzGoV2/+PQ/UVz3G7rGih8Y93o28hUeh+20=) 10: SYE21j_i3a-vbSOF2Gx5UMTLLV8.roa (hash: 89TT+3NZYs41B/cr51KUzsIA8BcT1Z5B92Dn5VJ4i34=) 11: Y0r8rvG_6YQRwMaFR14yBp00EhA.roa (hash: hJQEx9GjhkDFxMvD4FSqiIfDlBui3mxX5FBJAQ7kGS4=) 12: ayHkt3mtTWx33a2gGfdwSuNPqE0.roa (hash: AeAKx32NXK9HdEt+tGyHf67pkPv9djpMZd3GDevnyUk=) 13: bJb00xs51HmNix5KqVn57fYCL7o.roa (hash: da3xe1pUUWYTbybVYCxh+noMNMnSvFdufchLG0OWGmc=) 14: fw03j8ZrUSbPPgpLftO_Ji-HmEs.roa (hash: LTfENIq8lVv2P7A1/ECSHpNRIShWFvLwKZVZYUEcdtc=) 15: gcjhZuci9w4K-fIIycB3DkfVYxQ.roa (hash: q2txcUCOB5VXWr9EkKFPDb2VzKoKR/aSyvq8c1kMVE8=) 16: glgZrbOwUaBL_WAZC3ZNmcWLL-U.roa (hash: 2VOu4wjSfFZgPdL9jvRQoMLqW02bTb0HYDJvoNTmkO0=) 17: hS4xZj1UQmnEzsNoQfQhRUvIlU0.roa (hash: QadKmkBPoKOzVu8MMFrQRbxa9f2OxOE1qD0CSvizhp8=) 18: jDb9ir3XH-aq3U2bk9W59Tt0PIM.roa (hash: fwBJjeRg7PDt/L8go08QRMWlZrcLXpRGkUetCMQoQ70=) 19: m3T8czL5hfiwqlgv7_uCSawg6Zo.roa (hash: 9lSVzsjyKnMFhabRTDECrO03QpWpygadi0KwP1Y5amE=) 20: uEHpqIbPD-Dc5XfD5O5fwX_vaTo.roa (hash: 2H3QPDNALaIIogCeybew+JxextLtC0wAMPDDJ98SA68=) 21: xs5eCUbALLApBtRtCzGGEihC3FY.roa (hash: lVgRqUQn164M1M2b1vRGCsRnhaNYgEz9LHmpdJnDvn0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3356 (0xd1c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BE6C651350E8FA1FC7D0A3EABCF98F81B3119D3 Validity Not Before: Nov 24 07:24:24 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=09E394D0E0D6A4CDB8E96353BFA65E0B464C7E2A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:68:21:ff:2f:7f:7e:0a:f0:22:fb:b4:01:88: dd:dc:76:b5:be:28:fc:86:b9:f8:4e:62:4e:3f:41: 47:c6:6c:01:dd:22:5a:51:ef:cc:dc:41:b3:14:c8: f4:4b:1b:6d:db:dd:10:ac:c0:12:9c:5b:de:48:ec: 19:b4:b4:ed:19:18:34:70:35:aa:93:27:63:1b:4a: ad:59:3f:6e:66:f5:44:5c:c3:4d:d2:7b:c6:38:08: 99:67:6b:fa:ac:56:fc:b1:d0:c3:9c:f7:87:86:ed: 5c:ed:7f:a4:56:1a:28:03:78:7d:3a:f6:bc:91:49: ae:fa:bd:b5:46:1d:16:bf:f0:43:89:37:fb:03:60: 83:c8:8d:4e:8b:ac:ac:99:55:9c:d3:26:3d:cf:79: d3:8c:c5:38:3f:86:d4:29:06:cf:a7:e4:1a:45:9c: a2:ea:4e:25:ab:0c:d4:f0:79:89:c8:0a:46:f5:43: 79:e8:96:4c:25:ca:54:e5:ec:ec:a2:24:11:0e:fd: 50:d6:9e:60:67:70:01:a5:13:fc:45:2f:b5:8e:1e: 2e:8b:3f:98:98:18:86:3d:53:c5:05:f4:ee:3c:55: 46:d8:14:a9:b3:d7:fe:d8:c0:5f:b9:df:3d:f2:34: a5:1a:a6:98:45:30:7b:a3:3d:f7:7b:d9:de:18:f4: bf:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 09:E3:94:D0:E0:D6:A4:CD:B8:E9:63:53:BF:A6:5E:0B:46:4C:7E:2A X509v3 Authority Key Identifier: keyid:3B:E6:C6:51:35:0E:8F:A1:FC:7D:0A:3E:AB:CF:98:F8:1B:31:19:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIGMA/O-bGUTUOj6H8fQo-q8-Y-BsxGdM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 88:4a:d1:77:68:28:40:50:e4:f1:9f:2c:a3:1c:c5:db:0f:79: 36:b5:1a:c9:10:de:04:4f:65:07:7e:25:f5:36:b7:0e:4a:5a: c7:70:19:7c:49:5d:b1:52:e6:94:2b:a2:1f:67:b3:59:48:ac: 65:b2:28:c8:69:c3:b6:40:2b:cb:4c:a8:5b:17:38:bb:d4:5d: a2:4d:14:1d:95:4f:57:b6:70:f7:67:91:c2:2b:7d:b1:f2:1c: c3:23:b7:ea:c2:db:a9:3d:eb:38:9d:f6:18:09:a6:ed:be:36: eb:2a:c8:82:c5:13:87:66:af:5f:21:3f:c2:ec:6d:21:e6:2d: 80:28:d4:d7:e5:3f:d3:c8:b8:5c:e9:4b:19:a4:a3:b1:e0:66: e7:26:70:58:6d:4b:3e:7c:e1:97:5d:81:18:c2:cb:fd:8e:34: 7e:9f:75:c5:97:38:94:c4:10:8b:d5:69:1e:d3:02:17:38:b9: 5a:5f:e4:44:e9:cf:f5:76:01:7c:44:29:ed:a9:b5:26:fc:c4: 0e:16:a0:05:02:79:e1:69:cc:1d:8e:70:ca:4a:06:7d:1c:12: d3:a2:41:2a:98:be:cd:ec:15:07:43:58:6a:33:25:2d:da:ea: eb:1c:46:f1:e3:f8:af:3d:af:42:53:ad:74:f8:ba:db:03:ec: 5d:67:21:a0 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDRwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JF NkM2NTEzNTBFOEZBMUZDN0QwQTNFQUJDRjk4RjgxQjMxMTlEMzAeFw0yNDExMjQw NzI0MjRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDA5RTM5NEQwRTBENkE0 Q0RCOEU5NjM1M0JGQTY1RTBCNDY0QzdFMkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqaCH/L39+CvAi+7QBiN3cdrW+KPyGufhOYk4/QUfGbAHdIlpR 78zcQbMUyPRLG23b3RCswBKcW95I7Bm0tO0ZGDRwNaqTJ2MbSq1ZP25m9URcw03S e8Y4CJlna/qsVvyx0MOc94eG7Vztf6RWGigDeH069ryRSa76vbVGHRa/8EOJN/sD YIPIjU6LrKyZVZzTJj3PedOMxTg/htQpBs+n5BpFnKLqTiWrDNTweYnICkb1Q3no lkwlylTl7OyiJBEO/VDWnmBncAGlE/xFL7WOHi6LP5iYGIY9U8UF9O48VUbYFKmz 1/7YwF+53z3yNKUapphFMHujPfd72d4Y9L+LAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUCeOU0ODWpM246WNTv6ZeC0ZMfiowHwYDVR0jBBgwFoAUO+bGUTUOj6H8fQo+ q8+Y+BsxGdMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0lHTUEv Ty1iR1VUVU9qNkg4ZlFvLXE4LVktQnN4R2RNLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9PLWJHVVRVT2o2SDhmUW8tcTgtWS1Cc3hHZE0uY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSUdNQS9PLWJHVVRVT2o2SDhmUW8tcTgt WS1Cc3hHZE0ubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAiErR d2goQFDk8Z8soxzF2w95NrUayRDeBE9lB34l9Ta3Dkpax3AZfEldsVLmlCuiH2ez WUisZbIoyGnDtkAry0yoWxc4u9Rdok0UHZVPV7Zw92eRwit9sfIcwyO36sLbqT3r OJ32GAmm7b426yrIgsUTh2avXyE/wuxtIeYtgCjU1+U/08i4XOlLGaSjseBm5yZw WG1LPnzhl12BGMLL/Y40fp91xZc4lMQQi9VpHtMCFzi5Wl/kROnP9XYBfEQp7am1 JvzEDhagBQJ54WnMHY5wykoGfRwS06JBKpi+zewVB0NYajMlLdrq6xxG8eP4rz2v QlOtdPi62wPsXWchoA== -----END CERTIFICATE-----Generated at Mon Nov 25 17:14:14 2024 by rpki-client on console-ams.rpki-client.org