$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft File: 4CWCsCflcDjqAKPoSE1V3uouGio.mft (raw, json) Hash identifier: 1kFWgicQ6OLKBV4XxgMfo5GNmxS985isKtYksNZtcX8= Subject key identifier: 94:3B:8F:F0:2A:79:12:CE:0F:09:D8:47:BE:42:D0:BA:8D:19:AC:F3 Authority key identifier: E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A Certificate issuer: /CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Certificate serial: 0D04 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft Manifest number: 0C6E Signing time: Thu 21 Nov 2024 07:23:55 +0000 Manifest this update: Thu 21 Nov 2024 07:23:55 +0000 Manifest next update: Sat 23 Nov 2024 07:23:55 +0000 Files and hashes: 1: 0eZjMYT5aMNaSEMMydkJmwpUE1k.roa (hash: RyNNdGi9mvuqJSrIxjq5Z0P52UkZJVPLVxs3LnuVJzg=) 2: 3otmX6Tc9b1Z9M7Oi0SnlmABVsE.roa (hash: h0o1Znfv4oK33HIpXBLkKAuaRAyRUBC3JkknKSBdZh0=) 3: 4CWCsCflcDjqAKPoSE1V3uouGio.crl (hash: rrKc5pIM8TdRX+kt6thvO6h1HrCTrNYwdqp0BUFvQ3E=) 4: 54Wa6YGzUqwYXA8GqGXUGWPJ9Gw.roa (hash: CHjw1KJEFQhzPurkivsDH7A9aIEFzTEqb9UuTq8HCJ8=) 5: FyTkcLhymBjkY5A5C6YPsxlF1gE.roa (hash: DU3VpO781Ls0Xg9jFTfWxgNv1QlxeJJJqN5Pf2blJdg=) 6: H9DgnlCwwQHloflbGPLgT67SMxc.roa (hash: euCricQrCZA9Socdpg9tegY2rrJM9TEZuLMLyRGfMPg=) 7: HWAz5VsfZMhRPSDro7WHG_qodTM.roa (hash: QnMCwACk1rCxjWeO0jMyXiANrqXHKmXFVcrgKnm+vG4=) 8: L4lHqUALI275s612ocjnsFKm4cs.roa (hash: GXUsEVyookZ/T6Tv5KNHuA/sjA58WKYmqRsAUDrho30=) 9: LufS7rjwt6omIxovOheDd_DcsOk.roa (hash: 5uhqJbi0lZoEKlWfu28cy9Jt08/erDlFRsD+0m7XbUs=) 10: QAUnf-b0CMQ6tOnRgeoC0OteAwg.roa (hash: pqjmap2otYMJn3nw5gMGNnl5ciuJyBI3TFUgPi5gF/k=) 11: Suapg-ovLGbJxX-MIyzobilrg9M.roa (hash: 9JmDrKwKtlMrU4g9qzG7CF6nclPa3Dyyfxi6JNbZ0V4=) 12: ZYkAD3QJcz4j-67niuW9bZbNcVI.roa (hash: GabJfibDXa3vQSLRWhyT9n58gom55Krwo1ryRgv4cXk=) 13: _7_72oNTDBq_SYT0gBwhQJOdRDo.roa (hash: svjTMsLPtxUzXr55Ef4WYIA7Xm/cevNTHg9Lxgu0OIU=) 14: _C7dHdLSJibWr-6WCEbzd0RZqVg.roa (hash: LWkCyqP+eOHzjiG5Wjz7vjx8Uxv1VGgW1uQ7AI9BdRU=) 15: _o9znJcIkbVcdhRfm2rU4R0tal8.roa (hash: uQK0qI3PEzKjXMCeVXEMEv6CFLAphxs84CVN/gykPaE=) 16: aNmKW74K53deTX3-DJV9EFGs7UI.roa (hash: mhfk+GDb2Rqg6bhwZ0S/ycD//BoIZUoIDIfRMRToogA=) 17: biDJbBGAFU4KV7b_CLHyS0h75x0.roa (hash: KIFS0RP5AR3gugs/csqOFnbtAeg4Y9aZsp9rFKEs12U=) 18: ctgoFYcM9j4miKGRjdzgihMd_Jg.roa (hash: 4+Lp5LOKuxACdGJsQGBTvqSZp/POF2IOgq/tZVdYCXY=) 19: inV1REwscC4f8j9g73U0rL0mSRM.roa (hash: RV59Y29UFwPuE4YCpqpM9nVfNwqew1N8AAPwPJlCtHE=) 20: qxSRsbVHLkiIpcQ25jhqMxSn6gg.roa (hash: XReWDZI4RrlH8ILzIwtUxih7s/vdaHZNBlaJcmiTa7Y=) 21: xRQmviVX2zDMfqnTgVz01rtUh8o.roa (hash: 6CLiUayOdOBmbcnh2VVbIAczsqEdMCVug1QnPD/zAM4=) 22: xs0VDiNwtneOIUcinlexMMfl6mA.roa (hash: Iy96rHoeZkNrm+OW9EeGG046tedDIUjHDQDNC+UIGqM=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3332 (0xd04) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=E02582B027E57038EA00A3E8484D55DEEA2E1A2A Validity Not Before: Nov 21 07:23:55 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=943B8FF02A7912CE0F09D847BE42D0BA8D19ACF3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:78:21:51:1d:61:2c:a9:38:49:fc:a7:e2:d5: b4:64:e0:15:75:84:48:55:4b:7f:3f:47:12:1b:f2: f8:ed:51:09:08:2d:6c:11:1d:99:14:e2:46:f3:f9: e3:e5:18:5a:d8:78:ad:e3:77:71:b6:2e:9a:fa:73: 66:03:c7:d7:eb:28:a8:cc:d6:30:41:dd:d0:26:59: 35:3e:37:81:da:db:e7:d1:2c:45:ab:c8:34:04:f7: 55:bf:d9:de:4e:c1:60:c6:5f:e7:8d:5b:2b:ed:4a: e1:51:a5:27:a8:55:6c:e7:63:07:9f:93:74:50:2f: bb:1e:d4:c2:00:2a:7d:8c:7c:e3:9e:75:f8:b1:46: cf:8b:43:ff:08:0f:60:a6:d9:28:34:bd:7f:17:44: 0c:f6:a0:96:f3:6a:c5:60:d4:b5:9f:93:e2:7b:f6: 6b:6a:03:a3:9d:6b:34:ab:ff:e7:04:77:03:81:5c: ad:a8:1f:b5:9f:b3:42:d3:e0:c5:a8:5c:f4:99:ea: e2:8d:fb:8f:6b:c3:c6:35:f9:cc:15:01:40:5c:28: 1a:dd:a4:15:ec:81:f4:c0:28:be:08:93:83:91:2e: 13:0b:e6:74:c4:71:f3:22:fa:84:f6:d7:42:6f:90: ca:8a:25:c2:a3:14:fd:10:29:43:33:14:9f:93:28: cf:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 94:3B:8F:F0:2A:79:12:CE:0F:09:D8:47:BE:42:D0:BA:8D:19:AC:F3 X509v3 Authority Key Identifier: keyid:E0:25:82:B0:27:E5:70:38:EA:00:A3:E8:48:4D:55:DE:EA:2E:1A:2A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4CWCsCflcDjqAKPoSE1V3uouGio.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TINP/4CWCsCflcDjqAKPoSE1V3uouGio.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 56:fb:ab:85:ca:a2:d7:e1:63:78:d7:14:34:53:38:a0:96:7b: c8:7e:37:50:83:d8:75:18:b7:0e:b1:5e:68:07:91:a5:06:8d: d1:83:83:cb:17:e2:e4:d7:a5:cb:8e:8c:1e:c3:f7:93:3a:61: 25:8e:96:cd:5e:cb:d7:c1:0b:bf:76:8f:63:a6:4e:68:cf:05: 40:34:5a:75:f0:a7:f8:b3:af:f9:45:50:60:2a:90:32:5f:9e: 7d:81:26:ff:11:fe:3d:f3:e7:2b:5a:59:41:79:de:93:a0:63: 3c:67:ea:1c:e5:53:62:18:eb:61:ff:33:e9:e1:71:56:57:fd: 6a:5e:e2:6f:13:c1:9c:15:e7:17:a8:59:86:15:48:04:09:b8: 7a:62:fc:66:5a:dd:68:d0:2a:8a:45:dd:bc:fc:7c:b9:e4:f0: b5:c3:2e:99:65:65:79:05:4a:ba:a9:28:c4:29:c9:1c:53:54: 80:07:91:32:0e:84:ea:c4:94:5f:28:59:91:26:3c:60:5a:64: f8:d0:d5:d2:49:94:d2:8c:fc:d7:a9:9d:5f:2a:bf:88:2a:71: 9b:8a:b4:3c:a7:2c:2b:0a:2d:b4:fe:ce:8d:5a:7e:e1:3e:f3: 2d:af:5f:9b:20:d1:3d:20:cb:38:d5:c3:ef:b9:3d:7b:54:0d: fe:87:cd:62 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDQQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRTAy NTgyQjAyN0U1NzAzOEVBMDBBM0U4NDg0RDU1REVFQTJFMUEyQTAeFw0yNDExMjEw NzIzNTVaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDk0M0I4RkYwMkE3OTEy Q0UwRjA5RDg0N0JFNDJEMEJBOEQxOUFDRjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDMeCFRHWEsqThJ/Kfi1bRk4BV1hEhVS38/RxIb8vjtUQkILWwR HZkU4kbz+ePlGFrYeK3jd3G2Lpr6c2YDx9frKKjM1jBB3dAmWTU+N4Ha2+fRLEWr yDQE91W/2d5OwWDGX+eNWyvtSuFRpSeoVWznYwefk3RQL7se1MIAKn2MfOOedfix Rs+LQ/8ID2Cm2Sg0vX8XRAz2oJbzasVg1LWfk+J79mtqA6OdazSr/+cEdwOBXK2o H7Wfs0LT4MWoXPSZ6uKN+49rw8Y1+cwVAUBcKBrdpBXsgfTAKL4Ik4ORLhML5nTE cfMi+oT210JvkMqKJcKjFP0QKUMzFJ+TKM+1AgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUlDuP8Cp5Es4PCdhHvkLQuo0ZrPMwHwYDVR0jBBgwFoAU4CWCsCflcDjqAKPo SE1V3uouGiowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVElOUC80 Q1dDc0NmbGNEanFBS1BvU0UxVjN1b3VHaW8uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB LzRDV0NzQ2ZsY0RqcUFLUG9TRTFWM3VvdUdpby5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RJTlAvNENXQ3NDZmxjRGpxQUtQb1NFMVYz dW91R2lvLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAFb7q4XK otfhY3jXFDRTOKCWe8h+N1CD2HUYtw6xXmgHkaUGjdGDg8sX4uTXpcuOjB7D95M6 YSWOls1ey9fBC792j2OmTmjPBUA0WnXwp/izr/lFUGAqkDJfnn2BJv8R/j3z5yta WUF53pOgYzxn6hzlU2IY62H/M+nhcVZX/Wpe4m8TwZwV5xeoWYYVSAQJuHpi/GZa 3WjQKopF3bz8fLnk8LXDLpllZXkFSrqpKMQpyRxTVIAHkTIOhOrElF8oWZEmPGBa ZPjQ1dJJlNKM/NepnV8qv4gqcZuKtDynLCsKLbT+zo1afuE+8y2vX5sg0T0gyzjV w++5PXtUDf6HzWI= -----END CERTIFICATE-----Generated at Fri Nov 22 10:06:54 2024 by rpki-client on console-fra.rpki-client.org