$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft File: m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft (raw, json) Hash identifier: C4cYwg2ol6sE7RqEBS6py3AyPiFLfb4g6qBkbJ5Csyg= Subject key identifier: 79:5D:90:5E:77:95:2D:D1:FE:C2:8C:6A:56:DA:1F:DD:CF:1E:0C:6B Authority key identifier: 9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 Certificate issuer: /CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Certificate serial: 01F4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft Manifest number: 01E7 Signing time: Sun 24 Nov 2024 07:24:33 +0000 Manifest this update: Sun 24 Nov 2024 07:24:33 +0000 Manifest next update: Tue 26 Nov 2024 07:24:33 +0000 Files and hashes: 1: SOMkqKu_Rcj27cY_M3zIAochgBk.roa (hash: wohYzkyQddXzlpSUNbao3VeRGRJU0I2mLXVuaJWFWg8=) 2: XEoCGWd0ivjIO-VUiI60UpF6_OY.roa (hash: FLjGD1MLmWaAJvZMSHmRahUZcfhcgL2vQAztP8+Mvhc=) 3: i1sHBzLD63tyMs77E56IrBNVNeg.roa (hash: mdJu1JlqnSzMLgxg/3dGX+UTKja1MSkqbRVxv/NeM8U=) 4: i_JpZZFaV2su4hSHIuz_VyDZEIM.roa (hash: rF6RzlHkJPADIX0P0yNLC/s0joI2sabDwElMEd7z6fk=) 5: m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl (hash: LekxQNbmIOKwnYfBUVt50A8LL6zOHQ99MbGuje0fX8U=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 25 Nov 2024 20:24:55 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 500 (0x1f4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=9BFCFAA2106742B2C099E3F4C2A50428E5CD62D3 Validity Not Before: Nov 24 07:24:33 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=795D905E77952DD1FEC28C6A56DA1FDDCF1E0C6B Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:39:bb:30:78:4f:5e:c4:e7:47:9e:70:1b:2a: d2:fc:24:de:98:60:2f:fc:73:5a:7f:3a:94:74:4a: a8:cf:a5:6c:26:b5:7e:90:27:e3:1f:f5:5e:c4:c3: 62:de:e1:c8:07:f8:9f:ed:b9:cc:5c:43:3b:fc:1d: f5:74:12:ab:fe:a6:e9:ec:fb:95:fb:e2:e6:2d:18: 71:14:b8:75:36:f1:25:b0:fa:09:4b:89:28:97:fa: 34:c0:dc:fb:0f:74:e5:e9:82:e3:e3:3c:b9:44:31: ab:d7:ec:25:43:d4:b4:87:5b:bd:66:de:30:b2:1b: 4c:cb:c3:6d:ae:99:12:bc:80:95:46:76:39:e0:59: b1:fb:79:b5:4f:c9:c0:5d:05:a9:4b:e9:48:1c:9c: 47:f4:35:81:7c:72:d5:25:5b:9b:ce:c4:2b:1a:a4: 6f:d6:90:e1:95:bc:19:b1:3e:00:3e:b2:9e:63:b7: b7:64:68:7c:f8:18:2f:6b:8d:fa:11:7c:82:df:8b: 72:7b:1f:9a:fb:7f:17:11:73:42:64:b0:28:70:91: 14:ef:48:da:e9:82:6b:93:03:81:48:fc:03:9f:8a: 36:2e:de:af:ff:2e:01:1e:e2:60:05:62:b5:c5:a4: 3f:8d:d9:fc:77:e5:1c:59:bb:be:67:03:e6:18:d5: 95:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 79:5D:90:5E:77:95:2D:D1:FE:C2:8C:6A:56:DA:1F:DD:CF:1E:0C:6B X509v3 Authority Key Identifier: keyid:9B:FC:FA:A2:10:67:42:B2:C0:99:E3:F4:C2:A5:04:28:E5:CD:62:D3 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/m_z6ohBnQrLAmeP0wqUEKOXNYtM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TECHDRIVEN/m_z6ohBnQrLAmeP0wqUEKOXNYtM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 67:44:bf:95:64:39:e7:9d:e2:ca:b9:43:58:8a:22:d9:b7:f8: b7:d4:ee:35:e4:71:1f:7e:69:13:a0:83:58:9a:8d:1f:0c:02: 91:f4:40:9a:50:d1:b2:59:bf:92:d1:eb:e3:ef:dc:95:2d:88: 8b:61:6d:57:7d:1c:42:10:8a:8b:b2:d9:9a:91:e2:bd:44:22: 16:e7:70:2d:3e:5f:14:6a:a8:75:ad:dc:3e:52:7e:9c:fc:35: 8e:c3:bd:7e:4f:f3:08:d8:aa:2e:38:00:fc:52:fa:93:f0:6b: f9:39:5c:c4:37:52:ef:8b:c9:ba:33:45:af:70:ae:b5:53:c0: de:84:1f:1f:b1:ff:4e:86:08:1c:b6:83:35:0f:e3:e6:06:de: 4d:13:77:7b:4d:53:ec:3f:91:92:cd:9f:22:fe:a6:7d:10:61: 4a:c9:22:8e:24:ed:91:a3:d8:de:7b:7d:5c:6f:c2:4c:45:24: c6:c0:03:59:44:fe:45:1d:97:86:f4:bd:85:37:3c:b6:2f:b9: 54:b3:3e:f0:e4:58:e9:96:fd:af:3d:9e:be:5e:f5:a9:3e:04: 5e:f9:88:6d:fd:e7:f7:ec:a1:08:3b:ac:4a:93:45:c9:b9:31: 5d:c9:c6:83:58:7f:a9:8e:85:29:5a:74:6d:95:50:da:53:ab: 6f:dc:27:18 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICAfQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOUJG Q0ZBQTIxMDY3NDJCMkMwOTlFM0Y0QzJBNTA0MjhFNUNENjJEMzAeFw0yNDExMjQw NzI0MzNaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDc5NUQ5MDVFNzc5NTJE RDFGRUMyOEM2QTU2REExRkREQ0YxRTBDNkIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDeObsweE9exOdHnnAbKtL8JN6YYC/8c1p/OpR0SqjPpWwmtX6Q J+Mf9V7Ew2Le4cgH+J/tucxcQzv8HfV0Eqv+puns+5X74uYtGHEUuHU28SWw+glL iSiX+jTA3PsPdOXpguPjPLlEMavX7CVD1LSHW71m3jCyG0zLw22umRK8gJVGdjng WbH7ebVPycBdBalL6UgcnEf0NYF8ctUlW5vOxCsapG/WkOGVvBmxPgA+sp5jt7dk aHz4GC9rjfoRfILfi3J7H5r7fxcRc0JksChwkRTvSNrpgmuTA4FI/AOfijYu3q// LgEe4mAFYrXFpD+N2fx35RxZu75nA+YY1ZXPAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUeV2QXneVLdH+woxqVtof3c8eDGswHwYDVR0jBBgwFoAUm/z6ohBnQrLAmeP0 wqUEKOXNYtMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVEVDSERS SVZFTi9tX3o2b2hCblFyTEFtZVAwd3FVRUtPWE5ZdE0uY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL21fejZvaEJuUXJMQW1lUDB3cVVFS09YTll0TS5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1RFQ0hEUklWRU4vbV96Nm9oQm5R ckxBbWVQMHdxVUVLT1hOWXRNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAGdEv5VkOeed4sq5Q1iKItm3+LfU7jXkcR9+aROgg1iajR8MApH0QJpQ 0bJZv5LR6+Pv3JUtiIthbVd9HEIQiouy2ZqR4r1EIhbncC0+XxRqqHWt3D5Sfpz8 NY7DvX5P8wjYqi44APxS+pPwa/k5XMQ3Uu+LybozRa9wrrVTwN6EHx+x/06GCBy2 gzUP4+YG3k0Td3tNU+w/kZLNnyL+pn0QYUrJIo4k7ZGj2N57fVxvwkxFJMbAA1lE /kUdl4b0vYU3PLYvuVSzPvDkWOmW/a89nr5e9ak+BF75iG395/fsoQg7rEqTRcm5 MV3JxoNYf6mOhSladG2VUNpTq2/cJxg= -----END CERTIFICATE-----Generated at Mon Nov 25 16:43:45 2024 by rpki-client on console-fra.rpki-client.org