Manifest

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.mft
File:                     QNpOLMsDK23HfGWArizi-A3M_iE.mft (raw, json)
Hash identifier:          AckYb2WVtGnOq/E/XrFVguTNFfoMJSYqjgIhxLVM0wE=
Subject key identifier:   95:66:6F:6F:ED:09:F5:F2:EC:4E:2F:DE:20:51:E3:CC:2D:00:4C:64
Authority key identifier: 40:DA:4E:2C:CB:03:2B:6D:C7:7C:65:80:AE:2C:E2:F8:0D:CC:FE:21
Certificate issuer:       /CN=40DA4E2CCB032B6DC77C6580AE2CE2F80DCCFE21
Certificate serial:       0C19
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/QNpOLMsDK23HfGWArizi-A3M_iE.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.mft
Manifest number:          0C19
Signing time:             Sun 10 Nov 2024 15:51:38 +0000
Manifest this update:     Sun 10 Nov 2024 15:51:38 +0000
Manifest next update:     Tue 12 Nov 2024 15:51:38 +0000
Files and hashes:         1: QNpOLMsDK23HfGWArizi-A3M_iE.crl (hash: S7DC8Hllzf6qI4Zd+/o3vaeB4yjcHcsq0CgJHn+iAzg=)

Validation:               OK
Signature path:           rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.mft
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/QNpOLMsDK23HfGWArizi-A3M_iE.cer
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl
                          rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl
                          rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl
                          rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl
                          rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft
                          rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer
Signature path expires:   Sun 10 Nov 2024 22:51:57 +0000

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 3097 (0xc19)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=40DA4E2CCB032B6DC77C6580AE2CE2F80DCCFE21
        Validity
            Not Before: Nov 10 15:51:38 2024 GMT
            Not After : Aug 26 01:57:03 2025 GMT
        Subject: CN=95666F6FED09F5F2EC4E2FDE2051E3CC2D004C64
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e2:65:a1:1a:9a:e3:29:03:e4:91:4c:cb:6d:f8:
                    00:26:8f:16:4b:53:c7:7b:5d:f3:7a:b3:da:1e:e8:
                    a4:7c:ba:79:32:91:6d:78:57:a3:92:b3:e2:9d:6a:
                    04:8b:47:30:ad:96:77:de:a5:16:51:64:4f:b8:49:
                    02:6f:85:dd:15:6e:ad:44:af:b6:e2:99:37:09:56:
                    77:8d:52:da:64:e8:65:6b:4f:b3:bf:6c:c2:d9:b3:
                    96:db:40:fd:05:26:f0:d0:cc:81:8d:5b:1e:45:89:
                    4a:70:91:f1:02:de:9b:82:67:b7:90:16:2e:f0:f7:
                    95:ef:40:2c:1f:11:96:52:5f:2d:ba:2c:ae:e8:75:
                    61:23:46:0b:7a:e5:ab:9c:d3:00:a9:04:1c:0f:eb:
                    13:4d:72:4a:31:f8:db:48:a4:3a:ae:60:22:03:fa:
                    8d:c2:e8:51:62:c4:64:48:fd:ee:d1:e5:a3:81:8d:
                    5f:69:7e:ca:52:04:70:cd:8e:25:11:13:88:39:13:
                    f5:0f:89:37:f5:34:50:e3:b8:3b:55:41:09:07:e1:
                    52:c4:ee:a1:c1:d4:34:24:68:b9:c2:29:ac:55:de:
                    f7:59:a6:d9:e1:37:f1:d3:00:32:d8:16:22:90:f2:
                    db:ed:43:98:0c:21:6d:d5:15:c3:a4:77:88:7d:bb:
                    06:cb
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                95:66:6F:6F:ED:09:F5:F2:EC:4E:2F:DE:20:51:E3:CC:2D:00:4C:64
            X509v3 Authority Key Identifier:
                keyid:40:DA:4E:2C:CB:03:2B:6D:C7:7C:65:80:AE:2C:E2:F8:0D:CC:FE:21

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QNpOLMsDK23HfGWArizi-A3M_iE.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.mft
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-autonomousSysNum: critical
                Autonomous System Numbers:
                  inherit

            sbgp-ipAddrBlock: critical
                IPv4: inherit
                IPv6: inherit

    Signature Algorithm: sha256WithRSAEncryption
         b3:b4:14:d2:e5:6f:ab:ee:9c:9c:7a:e6:f0:ba:a9:63:19:f2:
         04:fd:47:c5:a9:53:e2:f8:00:3a:84:c8:e9:bd:eb:f4:65:c6:
         af:bf:19:7c:19:6a:20:b4:cb:8e:1e:87:1d:3d:a2:dd:59:08:
         3e:10:38:87:37:7c:96:24:da:ac:6d:c3:f2:67:1c:d3:1c:8e:
         04:87:52:06:99:65:cf:03:5e:b0:83:b8:c4:31:ac:e1:60:e7:
         8f:30:de:47:6a:6b:d0:e4:8a:68:46:87:31:20:56:ef:1d:6a:
         ae:d5:ce:70:f2:79:15:9a:03:5a:70:64:e6:dd:7f:23:33:39:
         5d:db:c4:1c:86:50:cb:f0:4f:7e:94:5e:56:4e:e0:ed:96:d6:
         d1:5a:2f:b3:db:6a:a9:41:19:bd:82:a7:e3:8e:cf:22:88:39:
         f5:0a:c5:89:ec:9e:08:0f:cc:24:a9:3f:95:a9:0f:2d:c5:c6:
         be:a3:de:3c:00:c8:fc:fb:3d:8a:a6:6a:92:8d:d3:ec:d3:a0:
         83:1d:e1:94:9c:4c:74:45:e1:aa:0f:5b:32:a5:48:14:87:4e:
         7b:5a:84:66:d0:70:3e:0b:3a:bd:0a:a1:27:be:31:6a:a8:c7:
         7a:f8:39:97:63:79:ae:51:71:c1:e1:dd:3e:ba:3c:39:6e:1c:
         c9:65:ab:73
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Nov 10 19:35:49 2024 by rpki-client on console-ams.rpki-client.org