$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TDTGROUP/fgiPiaYWMuF9kZ-UPpegmr0DyTs.mft File: fgiPiaYWMuF9kZ-UPpegmr0DyTs.mft (raw, json) Hash identifier: Z+rEJHMDyj+FirZ8AcDJM+5+hocKd+bKH0aKJVSqUfE= Subject key identifier: 17:D5:1F:95:C1:39:70:EF:EF:2C:73:09:91:E3:6A:0C:D2:11:22:21 Authority key identifier: 7E:08:8F:89:A6:16:32:E1:7D:91:9F:94:3E:97:A0:9A:BD:03:C9:3B Certificate issuer: /CN=7E088F89A61632E17D919F943E97A09ABD03C93B Certificate serial: 0C26 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/fgiPiaYWMuF9kZ-UPpegmr0DyTs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDTGROUP/fgiPiaYWMuF9kZ-UPpegmr0DyTs.mft Manifest number: 0C26 Signing time: Mon 25 Nov 2024 16:55:29 +0000 Manifest this update: Mon 25 Nov 2024 16:55:29 +0000 Manifest next update: Wed 27 Nov 2024 16:55:29 +0000 Files and hashes: 1: fgiPiaYWMuF9kZ-UPpegmr0DyTs.crl (hash: GwY0h6t03hDxJ4dVgtD4b5LzmDu85hgq1+7cncsF0QU=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TDTGROUP/fgiPiaYWMuF9kZ-UPpegmr0DyTs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TDTGROUP/fgiPiaYWMuF9kZ-UPpegmr0DyTs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/fgiPiaYWMuF9kZ-UPpegmr0DyTs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3110 (0xc26) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=7E088F89A61632E17D919F943E97A09ABD03C93B Validity Not Before: Nov 25 16:55:29 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=17D51F95C13970EFEF2C730991E36A0CD2112221 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a3:3b:c1:83:27:26:00:8d:2d:23:18:9b:b8:ff: 82:76:95:14:a0:a3:01:1a:94:de:38:f9:b7:ef:97: 3e:e0:76:13:c5:d3:0f:71:0c:e9:b6:b9:f1:98:c3: 92:11:d2:3a:19:ff:f7:89:ce:11:a2:3e:d7:22:57: 37:74:ea:e8:b2:44:71:8d:c2:69:b6:d8:bc:7c:5f: d7:3c:51:23:7b:a2:c6:f1:fb:22:6d:1a:85:ad:81: ae:d5:bd:f3:0c:3b:2b:e1:88:ca:57:5f:63:27:7f: 1d:f6:75:fc:dc:84:a0:64:34:83:5b:7b:c0:a7:e4: 25:d8:88:bb:a1:2e:ec:2c:ed:fc:7c:9e:61:b8:a9: d1:9b:b7:c7:d6:42:57:6b:b3:39:da:45:57:97:60: 5d:59:f1:e3:68:01:44:3f:73:8d:7b:33:88:5f:9d: fe:8a:a8:3c:b7:d4:b8:b4:5d:cb:6c:7f:52:d4:03: 63:35:b3:89:bc:2a:77:50:b5:e2:87:c1:16:00:51: 3d:fb:35:04:68:63:40:70:3e:07:b1:52:fa:98:f3: 0e:e6:d9:80:a3:1d:e5:b0:14:89:00:58:9f:0e:68: 3c:60:b2:12:5c:85:2f:09:10:2d:b3:78:57:7a:eb: 39:43:55:db:fd:ba:c5:46:8f:d2:2c:66:fa:63:89: 2d:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 17:D5:1F:95:C1:39:70:EF:EF:2C:73:09:91:E3:6A:0C:D2:11:22:21 X509v3 Authority Key Identifier: keyid:7E:08:8F:89:A6:16:32:E1:7D:91:9F:94:3E:97:A0:9A:BD:03:C9:3B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDTGROUP/fgiPiaYWMuF9kZ-UPpegmr0DyTs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/fgiPiaYWMuF9kZ-UPpegmr0DyTs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TDTGROUP/fgiPiaYWMuF9kZ-UPpegmr0DyTs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 68:14:fd:cb:07:02:b4:d5:5c:3d:54:44:91:8d:57:c7:55:c7: 3a:60:e9:7a:82:67:ff:ea:f3:a0:1f:69:b7:a9:80:2e:ce:1d: 18:a4:89:37:f6:ab:16:2e:13:a8:21:e4:70:a1:43:ed:5b:6d: 76:15:05:7c:02:06:b0:0c:34:60:62:07:8e:a3:d6:64:06:ab: 88:17:9e:a3:da:2a:cf:ac:e1:af:c7:84:12:db:6f:2c:54:28: d1:60:81:9f:05:41:0f:ea:d3:13:51:63:d9:b0:d5:95:fc:bb: e9:7e:f4:d6:0e:ef:6e:9c:6e:fa:a1:ef:a7:e0:ac:10:f0:2e: 6d:e7:2f:a4:58:39:2c:76:c2:b0:99:8b:42:40:ce:e6:28:e2: 38:b2:ef:49:16:61:24:5b:cf:76:40:17:56:5b:a2:f3:f1:91: d1:f6:d8:1d:45:db:d3:24:17:f0:1b:c6:f9:f2:26:7e:3d:15: e1:91:15:cf:53:f5:00:2c:dc:a2:39:a5:0a:49:3d:5f:f5:69: eb:58:79:d4:9b:d1:9c:6a:e0:d6:98:2f:32:d7:5e:ac:a8:52: af:a9:e9:8f:90:bb:c3:50:bb:a7:9c:2e:a7:7e:df:e8:1c:bc: 2e:15:48:7e:5b:38:ad:39:d8:e2:e5:5c:b0:59:c9:92:08:91: d5:7a:0b:a4 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICDCYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoN0Uw ODhGODlBNjE2MzJFMTdEOTE5Rjk0M0U5N0EwOUFCRDAzQzkzQjAeFw0yNDExMjUx NjU1MjlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE3RDUxRjk1QzEzOTcw RUZFRjJDNzMwOTkxRTM2QTBDRDIxMTIyMjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCjO8GDJyYAjS0jGJu4/4J2lRSgowEalN44+bfvlz7gdhPF0w9x DOm2ufGYw5IR0joZ//eJzhGiPtciVzd06uiyRHGNwmm22Lx8X9c8USN7osbx+yJt GoWtga7VvfMMOyvhiMpXX2Mnfx32dfzchKBkNINbe8Cn5CXYiLuhLuws7fx8nmG4 qdGbt8fWQldrsznaRVeXYF1Z8eNoAUQ/c417M4hfnf6KqDy31Li0Xctsf1LUA2M1 s4m8KndQteKHwRYAUT37NQRoY0BwPgexUvqY8w7m2YCjHeWwFIkAWJ8OaDxgshJc hS8JEC2zeFd66zlDVdv9usVGj9IsZvpjiS37AgMBAAGjggILMIICBzAdBgNVHQ4E FgQUF9UflcE5cO/vLHMJkeNqDNIRIiEwHwYDVR0jBBgwFoAUfgiPiaYWMuF9kZ+U Ppegmr0DyTswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVERUR1JP VVAvZmdpUGlhWVdNdUY5a1otVVBwZWdtcjBEeVRzLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9mZ2lQaWFZV011RjlrWi1VUHBlZ21yMER5VHMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9URFRHUk9VUC9mZ2lQaWFZV011Rjlr Wi1VUHBlZ21yMER5VHMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAaBT9ywcCtNVcPVREkY1Xx1XHOmDpeoJn/+rzoB9pt6mALs4dGKSJN/arFi4T qCHkcKFD7VttdhUFfAIGsAw0YGIHjqPWZAariBeeo9oqz6zhr8eEEttvLFQo0WCB nwVBD+rTE1Fj2bDVlfy76X701g7vbpxu+qHvp+CsEPAubecvpFg5LHbCsJmLQkDO 5ijiOLLvSRZhJFvPdkAXVlui8/GR0fbYHUXb0yQX8BvG+fImfj0V4ZEVz1P1ACzc ojmlCkk9X/Vp61h51JvRnGrg1pgvMtderKhSr6npj5C7w1C7p5wup37f6By8LhVI fls4rTnY4uVcsFnJkgiR1XoLpA== -----END CERTIFICATE-----Generated at Mon Nov 25 19:59:01 2024 by rpki-client on console-ams.rpki-client.org