$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft File: _37NtiAv_Cw033vNcaHAiIU4L7c.mft (raw, json) Hash identifier: wYmaG+l+vTf+sCBSz2Hc+s+2IaZMIwt5mFeC16kyYc8= Subject key identifier: 67:7B:AD:17:1A:92:B8:41:8B:D6:B2:B5:9D:65:52:18:F2:CF:1E:7D Authority key identifier: FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 Certificate issuer: /CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Certificate serial: 0DCC Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft Manifest number: 0CD5 Signing time: Thu 21 Nov 2024 18:23:40 +0000 Manifest this update: Thu 21 Nov 2024 18:23:40 +0000 Manifest next update: Sat 23 Nov 2024 18:23:40 +0000 Files and hashes: 1: 1beL4g16FphyZJvdXZKaIJ_Pvqs.roa (hash: Eon/VG0wa92jTK2OtLFXJGExDUPQlukka7ex13N1QSo=) 2: A4vthBK0K6fVUL1Wi-k5E87GiuY.roa (hash: a1Gm85cPr/eWgwRpvW8z/idUPblOAJqXn7pkCElXtdc=) 3: CDmGq1wPteWO8RZIsYtgBTvDAME.roa (hash: 5VwArQtgM7broaI1BIuBgexd1lrhpC1txD0dgHpF2sk=) 4: CQz02fh7Uhe7jdwAKMeepxkzQDc.roa (hash: 1HBlUzuOoZgniMEphCqUoMGgnR+eiJ11DifHDJFEv6E=) 5: GsuMuycVVSp9CIuFuH_tMQgjXdU.roa (hash: u1lj38SxCggSMSIEG+lnmAHnd1zuUGzWTnLN5gZ7fgQ=) 6: KHVBanBGLo8ZMeceI191SAwcdOc.roa (hash: Gy4xcuJ21emuDCATP7vmTlWUlJgz15p1x97mYL2Wz6k=) 7: Nz-XHA1LmTONPpFnSxlUaaL68Bk.roa (hash: 1DC/tYL/VOnA8Qp9mhIG4NkTn8ItgglR1hqC59zohMU=) 8: RLxfPysi_xF-veDeR9l980jhuvw.roa (hash: cHicUFWgmF1S7l47VEnI2EVsDvhj7YGfn/2sFbUvV9A=) 9: SA8S8_pIW1D7SX0i6RGn5qpwpSE.roa (hash: Cl0WUB2dAiNi/en0VrKtrqMToELOyfyzp07nZ/bh/Hw=) 10: T9Y5rsOP8j40LinFyURLGz-hpyo.roa (hash: iki+F9u7YN8bEPC2vA0/CpGeiGNqUXTBy+RoavRp51s=) 11: VNeESpcn5SenJMaYIOlu8tleRFQ.roa (hash: fQgHzL6U4V0N63m40Sp/lJixsS34WpFYvpiRCubdJ14=) 12: WcGukO61czpEhAEloaf4D8Ook30.roa (hash: ekHanHBgB1gQ/J7W/41BhpFkOt7GIVVbVhJn9SsLASo=) 13: Wx99br-MSDi8asDfnIEJd9dL-Eo.roa (hash: b/fuH/9WwJx5hj1yJeZkxY6hfaaAv0A0pAM+q9J+LbA=) 14: XXJ4W0z3biniCCMxobWTJXI2E58.roa (hash: dWnlID3UYD6xcZWSrVqduXY98h60n+M6VO/eqGi3Ux4=) 15: _37NtiAv_Cw033vNcaHAiIU4L7c.crl (hash: xV/NJ96MG8gnZ8gkBWdeJOfYGLjQOo1Acwu3+I5URMY=) 16: dNqNx73MybtSrY9yWLr_MAWowpE.roa (hash: iRMY/XI1v3pvuigJUFSZLyjlxeG6DObXrTaCcAU/22I=) 17: f0gTa_lzdEz3OfeazBNvz-41G84.roa (hash: 4aSkC+wT66Rq6eFQeyg4GbBigKZDOq61B2SYRtQmh/o=) 18: fRn8oip3KdmxydMW4kYd_FJLVtQ.roa (hash: A6ss3jOVbAW/rGaWU/LNUXabLNXPAdpRuqc7A8AAt4g=) 19: jAKckMjiOSrlpIcBry4J8o0eEcw.roa (hash: uKN81WJTopnUV9zmJ5nq4zG4t7xWqjmn0fuaMt70zc0=) 20: oMyi2xMdhweA1EC0lwNohs-ai3I.roa (hash: oQkzqNu1iv08rZ5fevoT0Zqw1AcHOzMKHzz4uJ//trA=) 21: oxhkklewCcRElpPHkpt28de6Z6s.roa (hash: kKusi2O0G3eeMxLBlVugvP80Us6B7P0p1du+8GhK1PI=) 22: tDlV7KYa-tok7l47TUN0g6qymxQ.roa (hash: cBiMO9n135Bw8BEhj5jGIuljFIjxB1463zWuWLic4uw=) 23: tHS_xwEGWbnOGoosOG2nqX6E13k.roa (hash: P80Brz0p6CzZEG+PDkAi/+pSLkI6jDahldSW0itvWDg=) 24: ubQAfr9h2yMUu1e2ICxxDKt1oaQ.roa (hash: 5keVWVwO0VWx3jM3Tipj8Jm6TXcLg8zQJwrBhH9LQbo=) 25: ugw1YCZ9J_eeG9-NSrikezoq-lI.roa (hash: uiKiCVOtsezaZ1u3uSlJjKWQ5xjB5Cp4mlhoWTMdWyY=) 26: yRVAlQwnZ9S4KhiLBF-tS5RprT8.roa (hash: 3bEtJr4OMX6RXWFE1hEAHCiVtQmy0b01leJi9n0Swac=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 14:39:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3532 (0xdcc) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=FF7ECDB6202FFC2C34DF7BCD71A1C08885382FB7 Validity Not Before: Nov 21 18:23:40 2024 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=677BAD171A92B8418BD6B2B59D655218F2CF1E7D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:95:b8:dc:49:0b:5f:84:f2:9a:40:13:8f:d2: 17:28:03:3b:17:ac:d3:51:8f:29:78:59:39:33:cf: 7d:a4:73:74:68:7d:99:bf:cd:fa:6d:62:7f:03:cb: 70:f6:18:01:a8:b3:d2:78:a8:e3:59:78:b2:c3:bb: 7e:3a:df:5c:7a:24:1a:3f:ac:a8:ce:40:14:7d:2e: d2:2d:9c:f1:ae:05:05:84:e3:a1:c5:94:ec:94:e2: 6e:6f:69:6c:0b:c0:54:b4:f7:66:97:63:f0:a3:b4: 77:a1:b8:10:b0:5e:5d:4e:3b:15:66:05:06:c5:64: a4:ae:4b:b9:ea:81:5c:f0:03:22:9f:be:20:92:62: 19:e7:48:26:66:8c:9b:04:41:03:fb:cd:cb:11:e9: 5e:fa:c1:15:d3:3d:b4:2b:aa:da:f0:97:03:dc:ab: 41:3d:ed:e4:75:f5:d5:a6:6a:08:46:02:6e:f6:16: 06:06:47:a5:fc:5c:8c:a5:df:f6:2f:04:82:f4:cd: 42:8d:a9:8a:87:23:e6:49:f0:1b:81:9e:bf:36:3d: e8:a7:24:db:1a:3a:c0:bc:7d:8c:45:75:48:a0:74: b1:88:7f:28:1e:8f:c4:10:4e:76:86:03:b9:b6:d2: ed:ca:e6:97:82:7a:e0:d0:05:7e:5d:d3:f5:25:14: 59:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:7B:AD:17:1A:92:B8:41:8B:D6:B2:B5:9D:65:52:18:F2:CF:1E:7D X509v3 Authority Key Identifier: keyid:FF:7E:CD:B6:20:2F:FC:2C:34:DF:7B:CD:71:A1:C0:88:85:38:2F:B7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/_37NtiAv_Cw033vNcaHAiIU4L7c.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/WEBTAIWAN/_37NtiAv_Cw033vNcaHAiIU4L7c.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 91:24:89:75:3c:af:96:f6:76:09:ae:5f:c6:94:62:1e:24:4f: dc:e0:53:07:e3:4f:05:eb:55:0b:9c:30:ca:39:69:12:d3:49: 35:b6:b1:af:98:a0:91:c1:a8:61:34:c2:d4:76:a4:45:b8:b3: 28:af:11:11:87:63:51:1b:c1:8e:05:7b:a9:0a:f5:af:22:8e: 35:dc:c0:8a:4f:28:21:d4:9c:7e:81:67:42:b5:a0:a4:55:bd: 3c:e1:60:3b:5b:9a:78:db:00:80:a3:f0:e7:fa:08:02:25:1a: bb:06:29:a5:13:04:20:c4:77:04:84:c1:43:d8:66:25:35:5e: e9:da:d3:ae:8e:07:81:c2:9f:ae:7a:19:55:e8:89:a2:d4:c4: 04:a8:4a:84:01:f0:38:44:bf:e9:0b:0e:68:78:f2:fa:45:be: 5d:31:5d:6d:5e:4e:a1:c9:42:d0:f8:60:fe:10:83:9c:d1:b7: 34:65:d2:9f:5d:6c:c0:6f:0e:c4:01:70:26:63:52:58:43:b3: b0:6f:4a:c3:b0:6c:e6:44:d8:c0:e6:3d:6f:58:98:de:7d:c7: c3:00:42:c8:06:1f:95:87:08:ec:8f:28:c2:12:21:b4:1a:49: 29:d4:a8:43:50:29:27:88:6c:30:0e:15:d6:84:45:4f:70:39: d5:ff:39:c7 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICDcwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRkY3 RUNEQjYyMDJGRkMyQzM0REY3QkNENzFBMUMwODg4NTM4MkZCNzAeFw0yNDExMjEx ODIzNDBaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDY3N0JBRDE3MUE5MkI4 NDE4QkQ2QjJCNTlENjU1MjE4RjJDRjFFN0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIlbjcSQtfhPKaQBOP0hcoAzsXrNNRjyl4WTkzz32kc3RofZm/ zfptYn8Dy3D2GAGos9J4qONZeLLDu34631x6JBo/rKjOQBR9LtItnPGuBQWE46HF lOyU4m5vaWwLwFS092aXY/CjtHehuBCwXl1OOxVmBQbFZKSuS7nqgVzwAyKfviCS YhnnSCZmjJsEQQP7zcsR6V76wRXTPbQrqtrwlwPcq0E97eR19dWmaghGAm72FgYG R6X8XIyl3/YvBIL0zUKNqYqHI+ZJ8BuBnr82PeinJNsaOsC8fYxFdUigdLGIfyge j8QQTnaGA7m20u3K5peCeuDQBX5d0/UlFFmlAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUZ3utFxqSuEGL1rK1nWVSGPLPHn0wHwYDVR0jBBgwFoAU/37NtiAv/Cw033vN caHAiIU4L7cwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJ V0FOL18zN050aUF2X0N3MDMzdk5jYUhBaUlVNEw3Yy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvXzM3TnRpQXZfQ3cwMzN2TmNhSEFpSVU0TDdjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvV0VCVEFJV0FOL18zN050aUF2X0N3 MDMzdk5jYUhBaUlVNEw3Yy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCRJIl1PK+W9nYJrl/GlGIeJE/c4FMH408F61ULnDDKOWkS00k1trGvmKCR wahhNMLUdqRFuLMorxERh2NRG8GOBXupCvWvIo413MCKTygh1Jx+gWdCtaCkVb08 4WA7W5p42wCAo/Dn+ggCJRq7BimlEwQgxHcEhMFD2GYlNV7p2tOujgeBwp+uehlV 6Imi1MQEqEqEAfA4RL/pCw5oePL6Rb5dMV1tXk6hyULQ+GD+EIOc0bc0ZdKfXWzA bw7EAXAmY1JYQ7Owb0rDsGzmRNjA5j1vWJjefcfDAELIBh+VhwjsjyjCEiG0Gkkp 1KhDUCkniGwwDhXWhEVPcDnV/znH -----END CERTIFICATE-----Generated at Fri Nov 22 10:15:42 2024 by rpki-client on console-ams.rpki-client.org