$ rpki-client -vvf rpkica.twnic.tw/rpki/DBSBANKSG/0/8A5BF47A3B6A668B6CB32369F52B9EA035390709.mft File: 8A5BF47A3B6A668B6CB32369F52B9EA035390709.mft (raw, json) Hash identifier: bmuvPXqesOGiqVTssOVOXd0fSFYARqd5rZcc6wtOLcM= Subject key identifier: 5E:D2:C3:FE:6C:54:CC:42:B5:94:2E:33:22:1F:AA:B3:31:1D:05:98 Authority key identifier: 8A:5B:F4:7A:3B:6A:66:8B:6C:B3:23:69:F5:2B:9E:A0:35:39:07:09 Certificate issuer: /CN=8A5BF47A3B6A668B6CB32369F52B9EA035390709 Certificate serial: 52CCEFE33331A49E8D80615DE6D5A91A884D0A6A Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0/8A5BF47A3B6A668B6CB32369F52B9EA035390709.cer Subject info access: rsync://rpkica.twnic.tw/rpki/DBSBANKSG/0/8A5BF47A3B6A668B6CB32369F52B9EA035390709.mft Manifest number: 05 Signing time: Wed 13 May 2026 05:27:06 +0000 Manifest this update: Wed 13 May 2026 05:22:06 +0000 Manifest next update: Thu 14 May 2026 06:13:06 +0000 Files and hashes: 1: 3136352e39392e3137312e302f32342d3234203d3e20313336313639.roa (hash: q9UjmvJwNAMJDhH+w0KMZQuvWn/uIydpcDzvsEdzi6I=) 2: 8A5BF47A3B6A668B6CB32369F52B9EA035390709.crl (hash: 37ujLwhe16HIEpTlJIJcFbmkF57YG7sRFcP/Gmi7eDM=) 3: 3136352e39392e3137302e302f32342d3234203d3e203536323839.roa (hash: b1hJ1UWBsgGqGfOSqptJzMGf24IDTaPm8yd1KL/ET2M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/DBSBANKSG/0/8A5BF47A3B6A668B6CB32369F52B9EA035390709.crl rsync://rpkica.twnic.tw/rpki/DBSBANKSG/0/8A5BF47A3B6A668B6CB32369F52B9EA035390709.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0/8A5BF47A3B6A668B6CB32369F52B9EA035390709.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/0/C3F27ABBA40D0C146E6599E319B2F8B79656A6F3.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/w_J6u6QNDBRuZZnjGbL4t5ZWpvM.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 13 May 2026 20:10:20 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 52:cc:ef:e3:33:31:a4:9e:8d:80:61:5d:e6:d5:a9:1a:88:4d:0a:6a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=8A5BF47A3B6A668B6CB32369F52B9EA035390709 Validity Not Before: May 13 05:22:06 2026 GMT Not After : May 14 06:13:06 2026 GMT Subject: CN=5ED2C3FE6C54CC42B5942E33221FAAB3311D0598 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:44:a7:99:f2:af:60:9b:3e:b2:90:98:74:47: a5:7b:89:ad:a4:87:84:51:72:6c:b5:b3:57:eb:7b: d7:50:7f:ed:cb:3f:56:04:de:1a:cf:3a:f7:56:a1: c7:34:15:da:51:34:e5:7b:8a:07:10:7e:b7:9a:6d: 46:48:1d:69:09:ba:7b:37:9a:31:95:89:5b:fa:e2: ba:ff:07:19:85:e3:19:58:6d:7a:45:d5:6e:3a:65: 0b:a7:59:ff:a4:9d:90:fd:6f:da:4e:67:b1:f7:c1: f2:2d:73:e8:f5:04:51:c9:c1:0b:73:98:ac:2e:67: 3b:99:e1:08:d4:d7:d6:f1:6b:3b:24:ae:86:95:29: 79:85:2c:4d:e9:90:a6:3f:24:12:39:28:8e:49:5a: 83:a2:9c:36:ba:2c:eb:04:24:af:57:c8:2e:26:13: 88:5d:61:44:15:26:4e:71:9f:95:d5:af:a8:6a:15: 9b:69:1f:b9:e0:53:eb:c6:7f:7b:61:7c:9a:7c:dc: bf:30:6b:5c:47:8f:2d:08:a0:5e:14:c3:ee:df:15: 21:32:b2:be:1e:3f:2d:d3:77:80:b1:31:8e:7c:07: 44:70:79:00:65:68:60:1c:43:55:84:61:a3:2f:d5: fa:7f:19:c9:33:92:dc:4f:c8:e7:ab:45:47:15:69: e1:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 5E:D2:C3:FE:6C:54:CC:42:B5:94:2E:33:22:1F:AA:B3:31:1D:05:98 X509v3 Authority Key Identifier: keyid:8A:5B:F4:7A:3B:6A:66:8B:6C:B3:23:69:F5:2B:9E:A0:35:39:07:09 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/DBSBANKSG/0/8A5BF47A3B6A668B6CB32369F52B9EA035390709.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0/8A5BF47A3B6A668B6CB32369F52B9EA035390709.cer Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/DBSBANKSG/0/8A5BF47A3B6A668B6CB32369F52B9EA035390709.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 59:e8:ad:c5:41:2f:c0:0b:8f:19:eb:ec:cb:8f:6f:b2:18:44: 73:9c:c7:b7:cf:14:96:3e:22:5f:0a:7d:96:23:43:d8:c2:0c: 52:68:cd:2d:46:a8:43:04:65:c7:40:36:24:be:85:56:d8:ab: b4:3c:8d:53:5b:e1:b1:9d:67:cb:99:2b:4c:00:be:76:17:5e: 92:90:04:64:dd:e8:8f:09:1a:89:b9:8e:37:6c:b5:3e:c1:a6: d0:cc:b0:4a:2f:23:a6:44:30:c5:82:c0:32:b3:3c:6c:11:c2: fd:fb:b4:7d:62:a8:71:6a:1a:1e:b1:f2:12:47:b0:e2:ca:27: c5:70:72:86:bc:f3:51:17:1d:13:65:0c:4d:d9:fc:bb:a8:c1: d1:d6:52:e9:0a:5d:c0:c3:d4:e2:12:61:ac:3c:3d:13:0e:01: 7c:0b:71:7c:ac:01:4b:56:6b:a9:3f:82:86:6a:d7:b1:06:11: 3e:14:73:95:8b:ac:38:00:da:bf:f6:3d:7f:78:87:04:71:25: 9b:82:93:f6:c4:20:0f:c2:a7:04:df:d6:ba:32:04:56:7c:bf: 4e:c8:17:92:41:b0:06:d7:61:41:2a:a6:30:df:6d:f3:75:2c: c9:7a:9b:58:2a:a0:b3:14:2c:c2:c1:66:91:e9:d5:31:1c:82: c3:c6:9a:8e -----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIUUszv4zMxpJ6NgGFd5tWpGohNCmowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoOEE1QkY0N0EzQjZBNjY4QjZDQjMyMzY5RjUyQjlFQTAz NTM5MDcwOTAeFw0yNjA1MTMwNTIyMDZaFw0yNjA1MTQwNjEzMDZaMDMxMTAvBgNV BAMTKDVFRDJDM0ZFNkM1NENDNDJCNTk0MkUzMzIyMUZBQUIzMzExRDA1OTgwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCzRKeZ8q9gmz6ykJh0R6V7ia2k h4RRcmy1s1fre9dQf+3LP1YE3hrPOvdWocc0FdpRNOV7igcQfreabUZIHWkJuns3 mjGViVv64rr/BxmF4xlYbXpF1W46ZQunWf+knZD9b9pOZ7H3wfItc+j1BFHJwQtz mKwuZzuZ4QjU19bxazskroaVKXmFLE3pkKY/JBI5KI5JWoOinDa6LOsEJK9XyC4m E4hdYUQVJk5xn5XVr6hqFZtpH7ngU+vGf3thfJp83L8wa1xHjy0IoF4Uw+7fFSEy sr4ePy3Td4CxMY58B0RweQBlaGAcQ1WEYaMv1fp/GckzktxPyOerRUcVaeHtAgMB AAGjggH0MIIB8DAdBgNVHQ4EFgQUXtLD/mxUzEK1lC4zIh+qszEdBZgwHwYDVR0j BBgwFoAUilv0ejtqZotssyNp9SueoDU5BwkwDgYDVR0PAQH/BAQDAgeAMGYGA1Ud HwRfMF0wW6BZoFeGVXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvREJTQkFO S1NHLzAvOEE1QkY0N0EzQjZBNjY4QjZDQjMyMzY5RjUyQjlFQTAzNTM5MDcwOS5j cmwwbwYIKwYBBQUHAQEEYzBhMF8GCCsGAQUFBzAChlNyc3luYzovL3Jwa2ljYS50 d25pYy50dy9ycGtpL1RXTklDQ0EvMC84QTVCRjQ3QTNCNkE2NjhCNkNCMzIzNjlG NTJCOUVBMDM1MzkwNzA5LmNlcjBxBggrBgEFBQcBCwRlMGMwYQYIKwYBBQUHMAuG VXJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvREJTQkFOS1NHLzAvOEE1QkY0 N0EzQjZBNjY4QjZDQjMyMzY5RjUyQjlFQTAzNTM5MDcwOS5tZnQwGAYDVR0gAQH/ BA4wDDAKBggrBgEFBQcOAjAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIA AgUAMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwDQYJKoZIhvcNAQELBQADggEBAFno rcVBL8ALjxnr7MuPb7IYRHOcx7fPFJY+Il8KfZYjQ9jCDFJozS1GqEMEZcdANiS+ hVbYq7Q8jVNb4bGdZ8uZK0wAvnYXXpKQBGTd6I8JGom5jjdstT7BptDMsEovI6ZE MMWCwDKzPGwRwv37tH1iqHFqGh6x8hJHsOLKJ8Vwcoa881EXHRNlDE3Z/LuowdHW UukKXcDD1OISYaw8PRMOAXwLcXysAUtWa6k/goZq17EGET4Uc5WLrDgA2r/2PX94 hwRxJZuCk/bEIA/CpwTf1royBFZ8v07IF5JBsAbXYUEqpjDfbfN1LMl6m1gqoLMU LMLBZpHp1TEcgsPGmo4= -----END CERTIFICATE-----Generated at Wed May 13 08:40:00 2026 by rpki-client