$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft File: LXIEYXNU1wUjtvZaJwcStrGdgV4.mft (raw, json) Hash identifier: BWivtLkYc2AQ4FRV4B/VG/kQ7y4MHqD7EYbZjHdN3J4= Subject key identifier: 8F:B2:4E:0D:84:0F:96:0E:B9:E5:37:63:48:52:37:10:2D:DB:46:37 Authority key identifier: 2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E Certificate issuer: /CN=2D7204617354D70523B6F65A270712B6B19D815E Certificate serial: 0BEA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft Manifest number: 0BC1 Signing time: Thu 18 Apr 2024 17:26:40 +0000 Manifest this update: Thu 18 Apr 2024 17:26:40 +0000 Manifest next update: Sat 20 Apr 2024 17:26:40 +0000 Files and hashes: 1: 1kLdBKw8Jie3wKLvzUvnB578VmE.roa (hash: cVIscnTpjD+XKnKic8Mh6k2dLSpakiESOGHwEYGC2Kw=) 2: 2M644Owz-KEhZkoe5GtegSYKm_8.roa (hash: 5oGBJIsF1jIk+fuY2Smqdifgzs8+i2Dk3sYviLF+4vo=) 3: 7G5KIjSjB-M60Nkzeym0yy-QC_M.roa (hash: ppNkOH2WXBoSuPZcghO3FtD9y8EPCpV9whuNz4uhSkY=) 4: AFu7Vkk0Eq1WN6U2CukKS3KkmQU.roa (hash: T2uL6prVj/pUWYI3MNSiG7FZmrwo8GCKdLknmVM7Nf8=) 5: HSprM-I1Bj5R_IrZgCbeLMIhsd4.roa (hash: q9sU2R+KmVlKhtBXEEwUdOieLzQwiIes5lstCke4io0=) 6: LI7bcfTDbYcs10A9q7EKfZXK5-E.roa (hash: BrY1SW7TM/qy2HD7oRe81lyayZYv/KtgYcm+DJsMUR4=) 7: LXIEYXNU1wUjtvZaJwcStrGdgV4.crl (hash: TovMYG1H4X1It2ll+igdbpqDTYd+YrMV39vM8ukKPmI=) 8: NSOvMn7pkk3KKz_xRMq70bugFbs.roa (hash: /bIrEIANxL5yipaUdkZOysvDrg2VGQFDgYclQvAtUs8=) 9: _jfgeqZHPYWERFxj6xpB0WEKkqk.roa (hash: pBre5Wz4tf6vB+V4YZsVXidU2e/6JPFUB/Amw2UkO+s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 20 Apr 2024 17:26:40 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3050 (0xbea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2D7204617354D70523B6F65A270712B6B19D815E Validity Not Before: Apr 18 17:26:40 2024 GMT Not After : Aug 31 03:10:53 2024 GMT Subject: CN=8FB24E0D840F960EB9E53763485237102DDB4637 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:26:2f:a2:8e:26:81:03:aa:24:8f:e4:9f:7f: 81:98:f3:97:3c:da:8e:dc:ed:8f:03:07:1d:77:b1: 5a:49:c3:3d:f6:ef:84:88:f6:28:be:4c:43:e9:74: 29:fe:59:b0:99:b7:cc:21:76:35:21:ef:53:e0:4a: 30:6c:f6:e4:d4:44:e6:51:a9:22:17:c8:98:9d:d2: 87:9b:6f:fc:cf:be:23:a7:d1:97:b0:d7:fe:89:b7: 9b:54:a3:f5:56:00:58:23:71:00:41:67:8a:b5:1c: d3:bc:97:ea:30:2f:20:a3:dc:ea:94:57:05:cd:87: f1:49:35:69:a0:64:11:9c:b5:d4:09:25:22:a6:cf: 82:72:2a:b6:21:f1:75:01:80:0b:b2:12:0d:d6:55: ca:f1:91:ac:80:bf:8d:bd:91:fa:d1:3c:8f:42:60: e4:2c:05:f5:95:67:86:d7:85:a4:24:6d:9d:9a:f5: fd:f5:90:c1:03:80:9a:33:8a:f6:ec:ba:d2:f5:62: f9:24:e5:05:3e:f2:a9:ec:e7:5e:b9:30:d8:69:f1: 98:b3:30:4c:50:98:22:9c:78:ce:2f:0c:01:02:69: 68:f3:3a:47:47:ae:85:ed:d9:68:6f:ff:6f:ce:04: ea:48:68:fd:a4:53:2c:fc:ba:fd:17:05:49:55:16: 32:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:B2:4E:0D:84:0F:96:0E:B9:E5:37:63:48:52:37:10:2D:DB:46:37 X509v3 Authority Key Identifier: keyid:2D:72:04:61:73:54:D7:05:23:B6:F6:5A:27:07:12:B6:B1:9D:81:5E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LXIEYXNU1wUjtvZaJwcStrGdgV4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TIH/LXIEYXNU1wUjtvZaJwcStrGdgV4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 73:cc:87:d1:43:b5:65:e7:40:e2:73:fb:05:0d:c2:8b:cb:b1: dc:51:19:bb:d1:5a:37:18:28:97:8e:1d:30:87:0b:f8:8f:fd: 82:d5:b4:19:cd:67:07:f6:4a:db:40:bc:a4:14:78:f6:6e:6d: b2:09:1c:5e:b2:14:47:9d:e3:85:e3:5c:7c:f3:04:96:91:69: 62:ec:d1:b7:4c:9e:6b:68:d0:5b:1e:bc:af:61:cf:fc:bc:77: 3f:c1:ee:31:4c:23:f7:67:d5:b9:91:4a:32:f8:0a:e8:ad:76: 4d:67:ff:34:5a:d3:ed:34:5f:95:ad:0d:63:31:f4:78:a7:fd: 7d:0b:f9:ae:24:7c:ab:1f:11:fc:18:88:c4:c0:0f:98:25:40: dd:a5:54:6c:60:fd:79:4a:4d:ff:3c:52:71:01:c3:18:c1:b6: d3:fb:e6:4b:5e:04:dd:ae:2c:55:f2:91:ae:d1:87:c7:85:11: c0:d1:b9:94:5e:e2:c8:95:65:67:59:4b:38:4c:7e:d0:ea:17: f4:2b:45:68:0e:33:ae:10:c1:e3:cc:f0:15:d5:04:5d:72:e0: 0b:c3:bd:1a:dd:33:ec:2a:54:9c:38:8a:aa:82:40:f0:ba:66: 95:0d:a1:84:5d:b8:aa:5f:e4:a8:7b:5d:16:ac:9e:91:8a:35: b3:e8:c5:03 -----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgICC+owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkQ3 MjA0NjE3MzU0RDcwNTIzQjZGNjVBMjcwNzEyQjZCMTlEODE1RTAeFw0yNDA0MTgx NzI2NDBaFw0yNDA4MzEwMzEwNTNaMDMxMTAvBgNVBAMTKDhGQjI0RTBEODQwRjk2 MEVCOUU1Mzc2MzQ4NTIzNzEwMkREQjQ2MzcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzJi+ijiaBA6okj+Sff4GY85c82o7c7Y8DBx13sVpJwz3274SI 9ii+TEPpdCn+WbCZt8whdjUh71PgSjBs9uTUROZRqSIXyJid0oebb/zPviOn0Zew 1/6Jt5tUo/VWAFgjcQBBZ4q1HNO8l+owLyCj3OqUVwXNh/FJNWmgZBGctdQJJSKm z4JyKrYh8XUBgAuyEg3WVcrxkayAv429kfrRPI9CYOQsBfWVZ4bXhaQkbZ2a9f31 kMEDgJozivbsutL1Yvkk5QU+8qns5165MNhp8ZizMExQmCKceM4vDAECaWjzOkdH roXt2Whv/2/OBOpIaP2kUyz8uv0XBUlVFjLLAgMBAAGjggIBMIIB/TAdBgNVHQ4E FgQUj7JODYQPlg655TdjSFI3EC3bRjcwHwYDVR0jBBgwFoAULXIEYXNU1wUjtvZa JwcStrGdgV4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBZBgNVHR8EUjBQME6g TKBKhkhyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xY SUVZWE5VMXdVanR2WmFKd2NTdHJHZGdWNC5jcmwwYAYIKwYBBQUHAQEEVDBSMFAG CCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0Ev TFhJRVlYTlUxd1VqdHZaYUp3Y1N0ckdkZ1Y0LmNlcjAOBgNVHQ8BAf8EBAMCB4Aw gZkGCCsGAQUFBwELBIGMMIGJMFQGCCsGAQUFBzALhkhyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvVElIL0xYSUVZWE5VMXdVanR2WmFKd2NTdHJH ZGdWNC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50dy9ycmRw L25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEFBQcBBwEB /wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBzzIfRQ7Vl 50Dic/sFDcKLy7HcURm70Vo3GCiXjh0whwv4j/2C1bQZzWcH9krbQLykFHj2bm2y CRxeshRHneOF41x88wSWkWli7NG3TJ5raNBbHryvYc/8vHc/we4xTCP3Z9W5kUoy +ArorXZNZ/80WtPtNF+VrQ1jMfR4p/19C/muJHyrHxH8GIjEwA+YJUDdpVRsYP15 Sk3/PFJxAcMYwbbT++ZLXgTdrixV8pGu0YfHhRHA0bmUXuLIlWVnWUs4TH7Q6hf0 K0VoDjOuEMHjzPAV1QRdcuALw70a3TPsKlScOIqqgkDwumaVDaGEXbiqX+Soe10W rJ6RijWz6MUD -----END CERTIFICATE-----Generated at Fri Apr 19 06:45:48 2024 by rpki-client on console-ams.rpki-client.org