$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/XINANG/2yFBWO5LGnCY21Hjh11M0D1zRjs.mft File: 2yFBWO5LGnCY21Hjh11M0D1zRjs.mft (raw, json) Hash identifier: ryiB57NiWr0OzTh16UbkqBmhpeTHxthtwsUrg5D/mY4= Subject key identifier: 3A:4B:E1:27:05:80:6D:55:B1:C2:4A:D1:EF:BE:56:82:3F:3E:C9:49 Authority key identifier: DB:21:41:58:EE:4B:1A:70:98:DB:51:E3:87:5D:4C:D0:3D:73:46:3B Certificate issuer: /CN=DB214158EE4B1A7098DB51E3875D4CD03D73463B Certificate serial: 50 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2yFBWO5LGnCY21Hjh11M0D1zRjs.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/2yFBWO5LGnCY21Hjh11M0D1zRjs.mft Manifest number: 4F Signing time: Fri 22 Nov 2024 07:22:56 +0000 Manifest this update: Fri 22 Nov 2024 07:22:56 +0000 Manifest next update: Fri 22 Nov 2024 13:22:56 +0000 Files and hashes: 1: 15hIa4O1NhV5r6Nb2chk6Bg7nNc.roa (hash: qAGeYy89TYtaG+0lW+n9SUUKnK9myyyQ/kFiPi5fbUU=) 2: 2yFBWO5LGnCY21Hjh11M0D1zRjs.crl (hash: v27uWPZgrH04tn73FmgDQINdoEJ+So92JtrbmfALmGE=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/2yFBWO5LGnCY21Hjh11M0D1zRjs.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/2yFBWO5LGnCY21Hjh11M0D1zRjs.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2yFBWO5LGnCY21Hjh11M0D1zRjs.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 22 Nov 2024 13:22:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 80 (0x50) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=DB214158EE4B1A7098DB51E3875D4CD03D73463B Validity Not Before: Nov 22 07:22:56 2024 GMT Not After : Nov 4 15:30:21 2025 GMT Subject: CN=3A4BE12705806D55B1C24AD1EFBE56823F3EC949 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:9e:a9:a6:d6:08:ab:1d:1a:83:4b:28:0d:87: f6:31:54:17:f0:0f:2a:41:ca:ed:b1:cd:fa:be:95: db:84:78:c0:16:17:9a:db:eb:f4:c6:2d:39:a2:cc: 48:c2:c6:ed:67:3c:34:4d:57:a5:bb:41:ad:0a:9f: b8:cd:17:9c:4b:ea:0e:4d:fd:ce:df:76:81:71:a5: fe:7c:2f:84:b8:a7:cb:1f:11:e7:9a:2f:f9:68:d2: 45:e3:02:30:81:9d:5d:f7:7a:dc:49:de:4b:69:83: af:cb:2a:90:7d:6f:3f:d9:41:e9:e3:1b:47:9e:ca: 86:b4:ba:d3:e5:0a:09:12:f2:ed:b6:9b:a0:05:83: 6e:91:30:3c:6e:a6:ab:fd:a8:49:2c:2e:f8:fc:40: 15:76:49:1a:f1:c6:95:d2:7d:c0:47:09:15:dd:63: 7a:3b:b1:d7:eb:b1:cf:40:40:64:e7:53:08:ad:bd: 14:22:7f:e5:66:00:13:2f:82:38:c6:db:e6:77:89: 83:eb:4b:8f:a7:f9:f9:70:4b:0f:f3:1e:ac:0f:e4: 5b:e6:4e:52:99:11:fa:35:4c:29:a2:8c:9c:7b:44: 67:9d:7f:76:6f:57:e2:89:ee:1f:19:98:16:42:3e: 08:b8:18:c1:fb:c0:36:d2:5c:9d:96:4d:d6:ce:24: a5:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3A:4B:E1:27:05:80:6D:55:B1:C2:4A:D1:EF:BE:56:82:3F:3E:C9:49 X509v3 Authority Key Identifier: keyid:DB:21:41:58:EE:4B:1A:70:98:DB:51:E3:87:5D:4C:D0:3D:73:46:3B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/2yFBWO5LGnCY21Hjh11M0D1zRjs.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2yFBWO5LGnCY21Hjh11M0D1zRjs.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/XINANG/2yFBWO5LGnCY21Hjh11M0D1zRjs.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 11:0e:7a:53:4e:07:67:27:e8:8e:9a:f5:10:4b:bb:80:89:62: 7c:ad:b9:2e:9a:68:4e:4d:d7:97:6c:62:c5:8f:af:c4:7d:34: 3e:fa:00:7a:7b:c0:d3:dc:6b:76:9e:19:a9:6e:24:74:4b:aa: 75:77:81:57:d3:3f:8d:c0:12:29:c6:3c:a1:5f:e5:23:cf:af: 09:0e:16:05:5a:5c:19:08:19:02:27:45:8b:25:8f:f1:5c:e6: 26:5f:c4:cd:62:28:f5:4e:16:49:f2:8d:4d:de:86:3f:59:a5: 3d:e3:76:50:51:c2:e1:ee:33:76:c2:b4:8c:e7:0a:6e:70:9f: 86:2e:68:f7:80:d6:70:a1:45:2e:ae:3b:9a:ce:0f:5e:7f:08: 4e:b4:a6:aa:17:45:a2:93:36:9a:db:b6:c1:3a:c8:85:fe:54: 2f:3a:49:64:1d:96:fb:f8:6e:c4:e6:2e:f5:7f:a9:8e:6d:5a: 9a:cd:c8:04:b8:33:d3:4c:03:a1:d3:b1:3e:1f:cc:83:f4:2d: 12:48:b8:56:db:98:37:aa:90:60:0c:52:64:f2:50:f3:b1:89: 91:2b:85:b5:0e:3b:5a:8a:43:9b:b0:fe:58:c7:64:81:2b:01: b3:cd:fa:0f:fb:4e:27:3b:a8:3a:44:87:19:1b:a0:94:2f:eb: ce:2d:53:3c -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIBUDANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEyhEQjIx NDE1OEVFNEIxQTcwOThEQjUxRTM4NzVENENEMDNENzM0NjNCMB4XDTI0MTEyMjA3 MjI1NloXDTI1MTEwNDE1MzAyMVowMzExMC8GA1UEAxMoM0E0QkUxMjcwNTgwNkQ1 NUIxQzI0QUQxRUZCRTU2ODIzRjNFQzk0OTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAL6eqabWCKsdGoNLKA2H9jFUF/APKkHK7bHN+r6V24R4wBYXmtvr 9MYtOaLMSMLG7Wc8NE1XpbtBrQqfuM0XnEvqDk39zt92gXGl/nwvhLinyx8R55ov +WjSReMCMIGdXfd63EneS2mDr8sqkH1vP9lB6eMbR57KhrS60+UKCRLy7baboAWD bpEwPG6mq/2oSSwu+PxAFXZJGvHGldJ9wEcJFd1jejux1+uxz0BAZOdTCK29FCJ/ 5WYAEy+COMbb5neJg+tLj6f5+XBLD/MerA/kW+ZOUpkR+jVMKaKMnHtEZ51/dm9X 4onuHxmYFkI+CLgYwfvANtJcnZZN1s4kpTECAwEAAaOCAgcwggIDMB0GA1UdDgQW BBQ6S+EnBYBtVbHCStHvvlaCPz7JSTAfBgNVHSMEGDAWgBTbIUFY7ksacJjbUeOH XUzQPXNGOzAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFwGA1UdHwRVMFMwUaBP oE2GS3JzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9YSU5BTkcv MnlGQldPNUxHbkNZMjFIamgxMU0wRDF6UmpzLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8yeUZCV081TEduQ1kyMUhqaDExTTBEMXpSanMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBnAYIKwYBBQUHAQsEgY8wgYwwVwYIKwYBBQUHMAuGS3JzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9YSU5BTkcvMnlGQldPNUxHbkNZMjFIamgx MU0wRDF6UmpzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3 L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUF BwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBABEO elNOB2cn6I6a9RBLu4CJYnytuS6aaE5N15dsYsWPr8R9ND76AHp7wNPca3aeGalu JHRLqnV3gVfTP43AEinGPKFf5SPPrwkOFgVaXBkIGQInRYslj/Fc5iZfxM1iKPVO FknyjU3ehj9ZpT3jdlBRwuHuM3bCtIznCm5wn4YuaPeA1nChRS6uO5rOD15/CE60 pqoXRaKTNprbtsE6yIX+VC86SWQdlvv4bsTmLvV/qY5tWprNyAS4M9NMA6HTsT4f zIP0LRJIuFbbmDeqkGAMUmTyUPOxiZErhbUOO1qKQ5uw/ljHZIErAbPN+g/7Tic7 qDpEhxkboJQv684tUzw= -----END CERTIFICATE-----Generated at Fri Nov 22 10:07:00 2024 by rpki-client on console-fra.rpki-client.org