$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft File: YDE2zKT7QFWfL3V3jDicnQLCP0A.mft (raw, json) Hash identifier: fGFiCT/Q2KrKilU04HLhRTQUfc+JnSpDhaJgwYF3NXI= Subject key identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA Authority key identifier: 60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 Certificate issuer: /CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Certificate serial: 015C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft Manifest number: 0158 Signing time: Mon 20 Oct 2025 11:55:02 +0000 Manifest this update: Mon 20 Oct 2025 11:55:02 +0000 Manifest next update: Mon 20 Oct 2025 17:55:02 +0000 Files and hashes: 1: C0FQft0AjWQ2pEDZCizD4M5gFb8.roa (hash: KXqYa+r+A3uRe7SjI8SZk8eNluJdkH6RPhdKASp5Xio=) 2: YDE2zKT7QFWfL3V3jDicnQLCP0A.crl (hash: Dtmgx0ot6IECz86x/o81hgkfSCTY/79PmjEOyd9Gny4=) 3: mYwIH9t8tfTovniDxBXdxS67N8o.roa (hash: uOfvi1QUFYZPq6yyqhx97ar+CpMs0NYFxsvJdwQMn48=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:26:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 348 (0x15c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Validity Not Before: Oct 20 11:55:02 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=53DAF623C1C685E4DD2F5C13F663FE40502D03FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b7:42:57:78:9d:12:90:10:c8:03:dc:7a:0c: d3:d1:0a:be:83:22:a3:bb:a6:27:60:15:13:f8:03: 74:c1:fe:08:0e:a8:65:6f:32:0d:6a:54:95:6f:7e: 44:94:f4:f2:0c:b2:48:08:ba:14:89:46:5b:25:37: 72:aa:74:c9:66:2c:a8:0f:8f:b6:d1:b4:28:dc:6e: 87:79:a1:4f:b8:a0:d6:5f:53:47:0e:f1:8b:85:ad: 08:3f:ac:09:05:92:7e:a6:77:e4:cf:d1:86:01:9b: 1f:fb:b5:e6:d2:2a:7e:9c:78:26:1f:2e:ee:4f:d5: f7:c0:63:2b:2a:97:62:92:df:f3:17:1a:60:e7:83: 18:1d:44:82:68:47:cf:74:de:cd:83:e3:10:f4:0f: ff:f7:5a:ba:9f:a7:a5:4a:0e:0b:50:be:78:f0:34: 19:dd:39:a6:ac:fa:ea:97:c6:5a:a9:63:92:f3:15: 47:09:85:a6:33:05:1c:37:e7:24:99:b1:db:ab:c0: bb:58:d9:96:43:d7:a3:8a:a0:c8:a2:2e:24:d9:72: 83:83:f2:ce:37:80:4a:5c:43:9f:c6:f9:ae:2e:2e: 8b:04:6f:36:4f:58:09:39:07:1f:95:52:35:e8:67: 93:11:bb:5e:70:6a:69:58:f6:5d:84:ad:a5:7e:ed: 7c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA X509v3 Authority Key Identifier: keyid:60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 44:04:1b:d6:c1:5e:1a:42:b0:bb:9d:df:c1:4d:9c:5e:fa:30: 33:6f:aa:ba:35:ee:b5:d4:b9:42:05:f2:f8:b1:b5:ed:cc:3c: 19:14:e6:b6:df:7d:02:5d:12:00:ab:9e:c3:9c:5b:c0:c8:da: 90:04:e7:aa:c7:cb:27:f2:27:7b:30:d0:4e:68:ab:bc:9d:db: 6e:a5:8d:6b:9f:e9:64:47:d0:bd:4f:d3:b3:30:e2:e1:35:05: 61:cd:19:09:f8:19:16:e9:8f:e8:56:b3:14:11:a9:28:56:7a: 0b:17:d0:d3:39:35:3a:6e:87:5c:1e:1b:02:e6:14:cd:f9:3a: de:55:a3:7d:06:70:77:d9:71:0b:4b:2e:7f:14:5a:c4:af:41: ea:33:14:06:57:d7:f9:da:4d:59:58:d9:d2:52:0b:fb:42:90: 8d:56:f8:f8:11:74:4f:b8:97:70:eb:96:ee:32:eb:84:fc:0d: cb:52:b2:50:b6:b4:e9:67:cf:7a:ac:cf:f3:64:42:df:3d:30: 3d:71:38:07:43:29:8b:97:70:03:a8:91:3e:0c:96:77:13:86: ab:b1:10:88:13:ce:73:b8:71:8a:b6:bc:05:01:21:f2:2e:ad: 30:9e:fa:38:ce:56:f1:08:f4:92:db:52:2f:80:bb:1d:fa:5a: aa:ba:61:f0 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAVwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAz MTM2Q0NBNEZCNDA1NTlGMkY3NTc3OEMzODlDOUQwMkMyM0Y0MDAeFw0yNTEwMjAx MTU1MDJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUzREFGNjIzQzFDNjg1 RTRERDJGNUMxM0Y2NjNGRTQwNTAyRDAzRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCat0JXeJ0SkBDIA9x6DNPRCr6DIqO7pidgFRP4A3TB/ggOqGVv Mg1qVJVvfkSU9PIMskgIuhSJRlslN3KqdMlmLKgPj7bRtCjcbod5oU+4oNZfU0cO 8YuFrQg/rAkFkn6md+TP0YYBmx/7tebSKn6ceCYfLu5P1ffAYysql2KS3/MXGmDn gxgdRIJoR8903s2D4xD0D//3Wrqfp6VKDgtQvnjwNBndOaas+uqXxlqpY5LzFUcJ haYzBRw35ySZsdurwLtY2ZZD16OKoMiiLiTZcoOD8s43gEpcQ5/G+a4uLosEbzZP WAk5Bx+VUjXoZ5MRu15wamlY9l2EraV+7XxDAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUU9r2I8HGheTdL1wT9mP+QFAtA/owHwYDVR0jBBgwFoAUYDE2zKT7QFWfL3V3 jDicnQLCP0AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFO S1NHL1lERTJ6S1Q3UUZXZkwzVjNqRGljblFMQ1AwQS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvWURFMnpLVDdRRldmTDNWM2pEaWNuUUxDUDBBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFOS1NHL1lERTJ6S1Q3UUZX ZkwzVjNqRGljblFMQ1AwQS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBEBBvWwV4aQrC7nd/BTZxe+jAzb6q6Ne611LlCBfL4sbXtzDwZFOa2330C XRIAq57DnFvAyNqQBOeqx8sn8id7MNBOaKu8ndtupY1rn+lkR9C9T9OzMOLhNQVh zRkJ+BkW6Y/oVrMUEakoVnoLF9DTOTU6bodcHhsC5hTN+TreVaN9BnB32XELSy5/ FFrEr0HqMxQGV9f52k1ZWNnSUgv7QpCNVvj4EXRPuJdw65buMuuE/A3LUrJQtrTp Z896rM/zZELfPTA9cTgHQymLl3ADqJE+DJZ3E4arsRCIE85zuHGKtrwFASHyLq0w nvo4zlbxCPSS21IvgLsd+lqqumHw -----END CERTIFICATE-----Generated at Mon Oct 20 17:03:03 2025 by rpki-client