$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft File: 36jEVIFcMBdFbqO0p9ACE7uFyWU.mft (raw, json) Hash identifier: xuU8xr/gXNZ5OLxWrdXjJgcK3kDMInv1DIrVC7LFCjQ= Subject key identifier: E3:D8:A0:FB:CF:FB:30:39:E9:A8:1A:F6:06:A6:70:73:E1:15:85:5F Authority key identifier: DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 Certificate issuer: /CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Certificate serial: 131B Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft Manifest number: 1091 Signing time: Fri 22 Nov 2024 03:23:19 +0000 Manifest this update: Fri 22 Nov 2024 03:23:19 +0000 Manifest next update: Sun 24 Nov 2024 03:23:19 +0000 Files and hashes: 1: 0hVhEC1G23IYg-9_24o8fgvLnNM.roa (hash: nNHi5LVGyhLoe5oGbm1pbWFNL/DmE07s9dKfeiFopGM=) 2: 1aMUolWyTRNoo_RgeWlVhbuVN-U.roa (hash: lEvD0eJTbGVejCzkQCPR72VUpUAchnpZRut9c/DPxFg=) 3: 36jEVIFcMBdFbqO0p9ACE7uFyWU.crl (hash: TvLlneTHW1f34gIn0PMsNqW6NIACkAvH89ijusCNdlM=) 4: 6LVSIALAZUau6oV6NZ-8yYVbcU0.roa (hash: 5hlTH1YGOmYVHY8L3EU4T3ry/gSFJ8bKBtk4PsAaqE8=) 5: 7tX0r5nQP-QrtegWTSmn1D0ulA4.roa (hash: 5gKLF/ymxlvMoEbVARrJ1fG7uhPrngVYL8zdL+XHCJw=) 6: DV2qoKpeJSUNGzYbWyOmJlWk76A.roa (hash: EOhPp4FGS4TVJUZcwoY9eybO9MvdfLBWJh8e/GyRw80=) 7: I3uPBf2OuYEr-eMp9abjj-XgqWs.roa (hash: srTfKbGbJ3SgSA5xI37fAZFA0zZRfrkP/b1Xt88WunI=) 8: M_LLu_jS03is1be-N-9cb7MAgEk.roa (hash: trR5hWHCDc81ubrVuioiDnQa61ckc+Pq1NpX6GHxZyY=) 9: MogQit98IbgTdcg7PxwXx4GpO-g.roa (hash: 5fwf4uq9HEschhxe4yxhS1e3qBs5BbhDQ3W2PQRJ+vE=) 10: OL9Rh5L7w4EgomU7xH4udM9ggVs.roa (hash: dH+TBovbnW1OuAEbE/MKgzSOsIJ8YzmYxBJQWB0Z50k=) 11: SBJCxFUCVL9zof9UWf7rcyEHIAY.roa (hash: B2nVTz56QjQvAhS9CU0Zz9H7/N1iWc8uCCNrqEoYmwE=) 12: X77p89oWCka5b1Gj0NHPhlZbz6A.roa (hash: sZdkMGUW1yN2uadzLII0Vv9MawoNg2Q2WqTweiw3FWs=) 13: ZnK9JgZYTsfv_FrdpO_szNWK_WE.roa (hash: MegBc9C89Ke8zhecntJeUMeQYjGYoRvxsFiyhlULHxE=) 14: ZzKF2AHdSLyVzSIwVrw4P6vM1qk.roa (hash: jSi1dByO+ZHvPNyOdgCs0LLKowtX92o5ZwP2yA2GSzE=) 15: ffIa2KR6Aj7h7s3-w4bbu4GZBkc.roa (hash: UvUKUBMCmw9ceAa5jndy1iefdmUmheb1aePDK8Nba7s=) 16: hpL3ZtIGVoo_FHSmUAYlC787dMU.roa (hash: hybdDFD6bQpJPYX+tKBTCyV6FVJmTgwP22bXWIjVsxM=) 17: kxTjUbZ2SvOkWMGddLkPc7xlY0E.roa (hash: MG8hX4OnI/l15DTmieSgrOk+6K+5AO8V8yQ1EKUR8+g=) 18: lPjjQAa9YjMY3PXnYpR1IOY7-6I.roa (hash: sfIxAt+svBBFa/KEcFp7lApoeHX5O6HWW+80fq+2oeE=) 19: mzoGZVDKggrQ6WMRHubSOfh5RrI.roa (hash: Z6VB2tlxnfYwhMvF/TqM2mFFA++GkPcOtNJJjG+xuMo=) 20: ombhiwVnXK1K4y6NI-fJLgRVEOM.roa (hash: WN28jQy3RDJtZs0Xvg58uWk4+I5dEvXYClLuKOBIkio=) 21: oqL4GG55yuFwSZ-Hwc79xBPZrxY.roa (hash: o9r/HicinzelOLCTWIYhbhxSk7aKIQnwSGTt0E0xGiI=) 22: sc8v15c0TO83pfglST_EzqQXaVM.roa (hash: 3c/KbiuDmJhv3wWSOxSZ+ueOZ3oE1u32D4oe6wdlQ3Y=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 11:24:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4891 (0x131b) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DFA8C454815C3017456EA3B4A7D00213BB85C965 Validity Not Before: Nov 22 03:23:19 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=E3D8A0FBCFFB3039E9A81AF606A67073E115855F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:6d:4c:96:9d:90:56:1e:17:3a:7d:ad:d1:c9: 37:4c:e8:b9:74:39:be:5d:e2:9c:46:0a:06:a6:af: 53:57:b8:c9:18:60:67:9b:a1:56:2b:cb:24:4d:0e: 06:fd:a5:5e:f7:4e:ab:c4:2d:77:d1:55:8c:32:c2: 28:50:95:25:a3:51:c7:a8:ec:f2:66:69:1b:2f:46: 43:b3:64:2e:6f:33:76:cf:45:23:2c:55:1b:db:4a: 65:91:f8:f0:d1:1c:16:a0:55:73:25:ba:07:fe:f7: bb:7d:be:67:90:3d:d5:bf:4e:95:c6:b3:64:8d:d1: 79:33:3a:b4:05:04:5f:ec:df:ba:c5:12:0a:1b:3f: b5:bf:ed:fa:80:d7:17:72:2f:25:e1:02:cf:38:e8: c4:53:f2:b7:20:09:7a:2c:43:df:e0:b1:f9:40:7d: 7a:d0:b5:ad:87:72:8d:3f:1b:1d:16:9a:22:87:69: eb:e6:28:a0:8a:12:7f:cf:69:c0:83:ef:5c:10:8b: 60:52:8b:9a:a7:2f:8c:6a:f2:11:ef:9f:66:15:03: 56:c1:e7:30:6e:cc:41:42:f6:1b:3f:b2:95:67:b0: 91:69:bb:c3:f6:ab:2f:63:af:b2:5f:23:0f:37:ae: 21:74:a0:76:aa:b7:bd:13:9d:95:62:b6:90:d7:e5: cd:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:D8:A0:FB:CF:FB:30:39:E9:A8:1A:F6:06:A6:70:73:E1:15:85:5F X509v3 Authority Key Identifier: keyid:DF:A8:C4:54:81:5C:30:17:45:6E:A3:B4:A7:D0:02:13:BB:85:C9:65 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/36jEVIFcMBdFbqO0p9ACE7uFyWU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNIC/36jEVIFcMBdFbqO0p9ACE7uFyWU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 12:69:7e:dc:07:ab:c0:61:07:52:fc:3b:87:66:f5:3d:fc:5c: ef:95:e4:5e:db:8b:9b:92:8d:f7:1a:66:ed:9a:3c:d0:f7:56: 3f:23:3e:0f:77:86:9d:cd:e5:1e:b6:a9:1f:5c:81:70:6f:4c: e3:0c:75:fa:4a:58:4c:ab:48:4f:74:e8:93:0b:7a:fd:4d:a9: 75:95:3d:ae:df:74:e2:49:3b:19:9b:49:b4:e2:ca:23:6a:00: f0:67:00:d1:f0:4e:84:98:2c:07:f9:15:b7:e1:92:d0:83:84: 6a:ef:93:c7:96:c9:98:a7:28:0d:f4:a9:a3:2e:da:19:a4:58: ac:b7:fb:d7:62:d1:ac:b2:55:4b:9e:dc:da:6c:f4:17:02:40: 4a:01:aa:7b:51:8b:9e:52:0c:4b:4d:3d:8f:2b:28:4c:4f:81: 34:fb:be:01:f7:bc:12:6c:dd:ea:98:11:9d:67:11:a7:8e:d0: d0:90:aa:58:aa:26:f7:91:cc:29:81:95:a0:11:08:2e:89:cd: b2:c3:8b:b9:7b:9f:55:a9:ab:a2:24:23:5b:d2:4f:6a:51:59: 2d:99:92:58:44:0c:59:35:94:4b:21:33:69:37:f9:a0:b6:72: 46:18:89:cb:6b:40:57:88:d5:a3:fa:a0:2e:5d:11:20:61:4b: db:d4:42:9b -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICExswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoREZB OEM0NTQ4MTVDMzAxNzQ1NkVBM0I0QTdEMDAyMTNCQjg1Qzk2NTAeFw0yNDExMjIw MzIzMTlaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKEUzRDhBMEZCQ0ZGQjMw MzlFOUE4MUFGNjA2QTY3MDczRTExNTg1NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC4bUyWnZBWHhc6fa3RyTdM6Ll0Ob5d4pxGCgamr1NXuMkYYGeb oVYryyRNDgb9pV73TqvELXfRVYwywihQlSWjUceo7PJmaRsvRkOzZC5vM3bPRSMs VRvbSmWR+PDRHBagVXMlugf+97t9vmeQPdW/TpXGs2SN0XkzOrQFBF/s37rFEgob P7W/7fqA1xdyLyXhAs846MRT8rcgCXosQ9/gsflAfXrQta2Hco0/Gx0WmiKHaevm KKCKEn/PacCD71wQi2BSi5qnL4xq8hHvn2YVA1bB5zBuzEFC9hs/spVnsJFpu8P2 qy9jr7JfIw83riF0oHaqt70TnZVitpDX5c2RAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU49ig+8/7MDnpqBr2BqZwc+EVhV8wHwYDVR0jBBgwFoAU36jEVIFcMBdFbqO0 p9ACE7uFyWUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOSUMv MzZqRVZJRmNNQmRGYnFPMHA5QUNFN3VGeVdVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8zNmpFVklGY01CZEZicU8wcDlBQ0U3dUZ5V1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9UV05JQy8zNmpFVklGY01CZEZicU8wcDlB Q0U3dUZ5V1UubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAEml+ 3AerwGEHUvw7h2b1Pfxc75XkXtuLm5KN9xpm7Zo80PdWPyM+D3eGnc3lHrapH1yB cG9M4wx1+kpYTKtIT3Tokwt6/U2pdZU9rt904kk7GZtJtOLKI2oA8GcA0fBOhJgs B/kVt+GS0IOEau+Tx5bJmKcoDfSpoy7aGaRYrLf712LRrLJVS57c2mz0FwJASgGq e1GLnlIMS009jysoTE+BNPu+Afe8Emzd6pgRnWcRp47Q0JCqWKom95HMKYGVoBEI LonNssOLuXufVamroiQjW9JPalFZLZmSWEQMWTWUSyEzaTf5oLZyRhiJy2tAV4jV o/qgLl0RIGFL29RCmw== -----END CERTIFICATE-----Generated at Fri Nov 22 08:22:31 2024 by rpki-client on console-fra.rpki-client.org