$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft File: LXIEYXNU1wUjtvZaJwcStrGdgV4.mft (raw, json) Hash identifier: kX3yyjr7rTfEVrymDyvKG4R9E4GuRRTO08RdlA7/PsM= Subject key identifier: 8F:B2:4E:0D:84:0F:96:0E:B9:E5:37:63:48:52:37:10:2D:DB:46:37 Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E Certificate serial: 0C9B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft Manifest number: 0C5D Signing time: Thu 21 Nov 2024 07:24:44 +0000 Manifest this update: Thu 21 Nov 2024 07:24:44 +0000 Manifest next update: Sat 23 Nov 2024 07:24:44 +0000 Files and hashes: 1: 3QjKBJJloJmWm8ujilwpXML3tRI.roa (hash: el5DSZyOlFFZZO23/jDA9Ix+cjMPUM4Ii24K31ssI8Q=) 2: 67fI6_uBM_Da3bMaXyK8Yttm_3o.roa (hash: nl4ZusLSEZQ+r3yg5BLCrUU+Mb9X/TXeGQjujeHEpqE=) 3: LXIEYXNU1wUjtvZaJwcStrGdgV4.crl (hash: Vy/kVMO7ufoJL4kbx8Jifb7ouCVoodxy5PUN8XfsJGA=) 4: OmdASh_dKW8oRD92SCGLcywyX_8.roa (hash: VrqA6H/tsLKr3fLXrdIgD+7L6WAozfwbD2DTXprYTzo=) 5: c_eTt3M5AJdzz4nd2DxxgP_uId8.roa (hash: hEj9EQbLNXtUwRC2sEpwaW2/gRpt7271kTlZWX4gJ7o=) 6: dx_gHYVTQqvl321cd3KcxULrv7M.roa (hash: d7lm5Qyy6ceG6vRO6g+2v6K362TeBORi1EZ7UF9UzGc=) 7: oZd82siWv-A4-MgCBO8u6JX9v3U.roa (hash: 66qd4xHlRDmIIv49fcUdPfF6z6L3ZsxwA+bUxOUfFBY=) 8: opqsMlfox4AqcCgNt4KijB6o_r4.roa (hash: RCwoGDqpjCPRGSX93tQjmS9rha0E5FY1iUChMNag+4w=) 9: wPoYX9RHsUsMk4PGTjoy9cPrHzg.roa (hash: 1noYCAGTfKfimS4L8PcXBeqqcncCz2J2i7bubNaXJV0=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3227 (0xc9b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E Validity Not Before: Nov 21 07:24:44 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=8FB24E0D840F960EB9E53763485237102DDB4637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:26:2f:a2:8e:26:81:03:aa:24:8f:e4:9f:7f: 81:98:f3:97:3c:da:8e:dc:ed:8f:03:07:1d:77:b1: 5a:49:c3:3d:f6:ef:84:88:f6:28:be:4c:43:e9:74: 29:fe:59:b0:99:b7:cc:21:76:35:21:ef:53:e0:4a: 30:6c:f6:e4:d4:44:e6:51:a9:22:17:c8:98:9d:d2: 87:9b:6f:fc:cf:be:23:a7:d1:97:b0:d7:fe:89:b7: 9b:54:a3:f5:56:00:58:23:71:00:41:67:8a:b5:1c: d3:bc:97:ea:30:2f:20:a3:dc:ea:94:57:05:cd:87: f1:49:35:69:a0:64:11:9c:b5:d4:09:25:22:a6:cf: 82:72:2a:b6:21:f1:75:01:80:0b:b2:12:0d:d6:55: ca:f1:91:ac:80:bf:8d:bd:91:fa:d1:3c:8f:42:60: e4:2c:05:f5:95:67:86:d7:85:a4:24:6d:9d:9a:f5: fd:f5:90:c1:03:80:9a:33:8a:f6:ec:ba:d2:f5:62: f9:24:e5:05:3e:f2:a9:ec:e7:5e:b9:30:d8:69:f1: 98:b3:30:4c:50:98:22:9c:78:ce:2f:0c:01:02:69: 68:f3:3a:47:47:ae:85:ed:d9:68:6f:ff:6f:ce:04: ea:48:68:fd:a4:53:2c:fc:ba:fd:17:05:49:55:16: 32:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B2:4E:0D:84:0F:96:0E:B9:E5:37:63:48:52:37:10:2D:DB:46:37 X509v3 Authority Key Identifier: keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a6:46:4f:85:e0:6e:f8:ca:cf:24:32:be:ae:1d:d7:08:80:23: e3:3d:cb:ba:d6:ad:b0:eb:a1:8a:ba:ad:e8:50:8b:cd:10:13: 51:bc:73:65:e5:53:37:a4:e8:ad:3b:66:ff:88:ef:e4:10:d1: 8c:02:9c:3a:c9:cc:0f:01:f2:6d:30:25:e6:8c:c8:b3:4d:3f: be:e8:f5:bf:56:eb:18:ee:0f:73:73:b8:cc:25:2c:66:bd:1f: 9b:2d:c3:7b:fc:07:02:7b:8c:95:be:e0:ea:2c:3e:64:f7:94: 54:00:cd:d7:3a:1d:d5:00:96:51:5c:50:1c:9f:bb:d3:d0:ee: 83:07:63:10:be:52:16:0a:4f:99:e4:cf:4b:63:96:98:4f:0b: b6:c1:d8:ba:50:82:f5:0c:46:d2:7e:d8:59:31:85:64:00:5e: 14:46:8a:51:5f:0f:c6:8f:0b:ff:41:38:7e:55:74:45:62:ce: 78:fe:c1:4d:70:ec:33:ec:7a:50:74:4a:b3:07:d9:bd:74:cf: f9:e6:d5:4d:86:21:f8:b5:4a:32:37:89:f3:19:21:68:cf:8f: 83:cf:6f:e7:a8:79:3e:2e:9d:8e:fc:0a:d8:c5:a7:76:0d:3c: 08:a3:72:c7:89:f5:c2:22:2c:aa:cc:c7:e0:d0:1e:6d:ed:b0: 75:50:2b:40 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICDJswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkQ3 MjA0NjE3MzU0RDcwNTIzQjZGNjVBMjcwNzEyQjZCMTlEODE1RTAeFw0yNDExMjEw NzI0NDRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDhGQjI0RTBEODQwRjk2 MEVCOUU1Mzc2MzQ4NTIzNzEwMkREQjQ2MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzJi+ijiaBA6okj+Sff4GY85c82o7c7Y8DBx13sVpJwz3274SI 9ii+TEPpdCn+WbCZt8whdjUh71PgSjBs9uTUROZRqSIXyJid0oebb/zPviOn0Zew 1/6Jt5tUo/VWAFgjcQBBZ4q1HNO8l+owLyCj3OqUVwXNh/FJNWmgZBGctdQJJSKm z4JyKrYh8XUBgAuyEg3WVcrxkayAv429kfrRPI9CYOQsBfWVZ4bXhaQkbZ2a9f31 kMEDgJozivbsutL1Yvkk5QU+8qns5165MNhp8ZizMExQmCKceM4vDAECaWjzOkdH roXt2Whv/2/OBOpIaP2kUyz8uv0XBUlVFjLLAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUj7JODYQPlg655TdjSFI3EC3bRjcwHwYDVR0jBBgwFoAULXIEYXNU1wUjtvZa JwcStrGdgV4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xY SUVZWE5VMXdVanR2WmFKd2NTdHJHZGdWNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TFhJRVlYTlUxd1VqdHZaYUp3Y1N0ckdkZ1Y0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xYSUVZWE5VMXdVanR2WmFKd2NTdHJH ZGdWNC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCmRk+F4G74 ys8kMr6uHdcIgCPjPcu61q2w66GKuq3oUIvNEBNRvHNl5VM3pOitO2b/iO/kENGM Apw6ycwPAfJtMCXmjMizTT++6PW/VusY7g9zc7jMJSxmvR+bLcN7/AcCe4yVvuDq LD5k95RUAM3XOh3VAJZRXFAcn7vT0O6DB2MQvlIWCk+Z5M9LY5aYTwu2wdi6UIL1 DEbSfthZMYVkAF4URopRXw/Gjwv/QTh+VXRFYs54/sFNcOwz7HpQdEqzB9m9dM/5 5tVNhiH4tUoyN4nzGSFoz4+Dz2/nqHk+Lp2O/ArYxad2DTwIo3LHifXCIiyqzMfg 0B5t7bB1UCtA -----END CERTIFICATE-----Generated at Fri Nov 22 07:03:33 2024 by rpki-client on console-fra.rpki-client.org