$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.mft File: 7hlBw3vR4s8SUS-YqzZsKdp5txg.mft (raw, json) Hash identifier: +xYsXILTzhhcll/nD8DC6j60SNE0VawNEj69YDUq6o8= Subject key identifier: D5:DF:0F:7C:01:4A:8C:87:2F:3B:4E:76:51:55:75:4E:C0:3D:DC:EA Authority key identifier: EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18 Certificate issuer: /CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718 Certificate serial: 4C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.mft Manifest number: 48 Signing time: Thu 21 Nov 2024 03:23:49 +0000 Manifest this update: Thu 21 Nov 2024 03:23:49 +0000 Manifest next update: Sat 23 Nov 2024 03:23:49 +0000 Files and hashes: 1: 0dF6Mx5mnfJTOuEusCVRWd-G8s4.roa (hash: lCvUeOqFD2pUTSaQvD3Nuj//MJQ78KbbLWQrEncG7tY=) 2: 7hlBw3vR4s8SUS-YqzZsKdp5txg.crl (hash: J0sb9MGQO66qQYPCpx1ulLuoc8DjO6QlHWy+kx5kQxg=) 3: VAzBKal5G8fcU-ZLqYdSnnkvWjc.roa (hash: hG4zuHbI2+a/dfqSZEE8dY24d160G1nHsUZag1g4tb8=) 4: eChv3yeMDxsJeyRbijPFxGnLdMY.roa (hash: MB3LFsSufhxdf94hMwC5rKH27zGySvg/BimFg4vn/ns=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:59 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 76 (0x4c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=EE1941C37BD1E2CF12512F98AB366C29DA79B718 Validity Not Before: Nov 21 03:23:49 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=D5DF0F7C014A8C872F3B4E765155754EC03DDCEA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:0a:78:93:dc:aa:bf:81:24:26:6e:55:29:aa: c4:53:41:7c:4d:94:bf:c6:51:69:4d:57:9b:22:d0: 17:7b:ff:e5:37:6e:a4:ad:bf:c7:91:8b:6e:b9:d8: d7:7a:b6:c4:f5:04:c4:c5:c4:a6:2f:91:0c:9f:84: 88:f8:50:46:a1:b1:7b:ed:1f:d4:ef:dc:ce:c8:36: af:22:f8:eb:28:1c:22:03:f7:65:f2:d5:6f:d0:5a: 5d:35:f1:79:4c:de:a1:a0:48:a7:5f:16:46:f5:12: 5e:11:32:e1:bc:7d:78:be:1e:ae:44:23:c0:5b:9f: b4:b6:10:57:22:1e:73:82:cd:e1:04:58:db:01:b4: f0:14:9c:5d:7c:de:aa:4d:22:97:7e:b9:68:f1:8b: 49:0f:f6:3f:af:44:47:76:86:92:f5:c9:40:ad:c8: dd:58:ae:e1:5b:3b:96:bb:73:26:d9:17:5e:a2:12: 34:82:d9:ab:a2:bf:9a:ee:5e:fd:3a:98:92:61:74: 2c:0b:24:12:f7:7d:89:0c:2f:dd:d7:64:06:6b:ad: b5:be:df:51:c9:93:aa:40:91:3e:dc:34:5a:00:fe: 95:de:92:5e:3b:91:ba:9c:70:bf:f7:07:59:77:f6: 2a:51:f2:f7:9e:38:fa:bd:40:4c:ee:c1:21:53:b3: 69:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:DF:0F:7C:01:4A:8C:87:2F:3B:4E:76:51:55:75:4E:C0:3D:DC:EA X509v3 Authority Key Identifier: keyid:EE:19:41:C3:7B:D1:E2:CF:12:51:2F:98:AB:36:6C:29:DA:79:B7:18 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/7hlBw3vR4s8SUS-YqzZsKdp5txg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SIMPLE/7hlBw3vR4s8SUS-YqzZsKdp5txg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 03:ff:82:e4:c3:1b:8b:ee:50:62:8e:2a:f2:a7:c3:ee:92:65: 55:3e:7c:7a:d3:d4:51:11:e3:43:11:9f:e5:05:36:fa:66:40: 09:1c:21:3e:d6:65:56:1e:81:89:59:3c:2a:b1:b4:f5:ae:f3: d0:2b:cb:ce:8b:4c:78:5c:e1:75:5d:ce:65:11:f5:3c:f8:37: 16:56:32:ee:60:12:d7:05:66:18:86:5f:01:79:68:86:68:6e: 94:a5:ca:47:4a:5c:ad:d6:9f:20:cb:1b:47:d0:20:ba:74:3a: 37:03:c9:d9:3f:86:81:d1:91:de:df:b6:9a:5c:a1:44:a0:e3: 6d:fb:31:ac:44:8f:03:97:cf:6a:d7:33:39:4b:1e:1c:17:57: 0d:73:76:f5:fe:fb:e5:d2:d3:b2:a1:0c:37:d0:4b:5d:10:66: 5c:49:e4:fd:72:e5:8f:47:6d:4a:04:ec:93:9d:8d:23:fe:f8: 28:e7:28:df:b1:7d:d0:24:1a:ca:8f:3d:19:a7:58:a2:b6:05: d7:ff:e4:b3:b1:57:a3:de:3c:e4:ac:73:a4:70:f2:a3:4f:b3: 43:a4:ce:8e:08:6c:5a:4f:0f:62:59:c6:d0:42:21:42:d3:1d: d5:8c:87:4f:d1:21:df:10:d3:4a:20:a1:3b:6f:ba:6b:4f:39: fc:3a:c2:b5 -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIBTDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhFRTE5 NDFDMzdCRDFFMkNGMTI1MTJGOThBQjM2NkMyOURBNzlCNzE4MB4XDTI0MTEyMTAz MjM0OVoXDTI1MDgyNjAxNTcwM1owMzExMC8GA1UEAxMoRDVERjBGN0MwMTRBOEM4 NzJGM0I0RTc2NTE1NTc1NEVDMDNERENFQTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALcKeJPcqr+BJCZuVSmqxFNBfE2Uv8ZRaU1XmyLQF3v/5TdupK2/ x5GLbrnY13q2xPUExMXEpi+RDJ+EiPhQRqGxe+0f1O/czsg2ryL46ygcIgP3ZfLV b9BaXTXxeUzeoaBIp18WRvUSXhEy4bx9eL4erkQjwFuftLYQVyIec4LN4QRY2wG0 8BScXXzeqk0il365aPGLSQ/2P69ER3aGkvXJQK3I3Viu4Vs7lrtzJtkXXqISNILZ q6K/mu5e/TqYkmF0LAskEvd9iQwv3ddkBmuttb7fUcmTqkCRPtw0WgD+ld6SXjuR upxwv/cHWXf2KlHy9544+r1ATO7BIVOzaRcCAwEAAaOCAgcwggIDMB0GA1UdDgQW BBTV3w98AUqMhy87TnZRVXVOwD3c6jAfBgNVHSMEGDAWgBTuGUHDe9HizxJRL5ir Nmwp2nm3GDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSU1QTEUv N2hsQnczdlI0czhTVVMtWXF6WnNLZHA1dHhnLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS83aGxCdzN2UjRzOFNVUy1ZcXpac0tkcDV0eGcuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TSU1QTEUvN2hsQnczdlI0czhTVVMtWXF6 WnNLZHA1dHhnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAAP/ guTDG4vuUGKOKvKnw+6SZVU+fHrT1FER40MRn+UFNvpmQAkcIT7WZVYegYlZPCqx tPWu89Ary86LTHhc4XVdzmUR9Tz4NxZWMu5gEtcFZhiGXwF5aIZobpSlykdKXK3W nyDLG0fQILp0OjcDydk/hoHRkd7ftppcoUSg4237MaxEjwOXz2rXMzlLHhwXVw1z dvX+++XS07KhDDfQS10QZlxJ5P1y5Y9HbUoE7JOdjSP++CjnKN+xfdAkGsqPPRmn WKK2Bdf/5LOxV6PePOSsc6Rw8qNPs0Okzo4IbFpPD2JZxtBCIULTHdWMh0/RId8Q 00ogoTtvumtPOfw6wrU= -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:35 2024 by rpki-client on console-ams.rpki-client.org