Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft
File: YDE2zKT7QFWfL3V3jDicnQLCP0A.mft (raw, json)
Hash identifier: UtQaMW5JBiYU6F28FsE0ZyhQbVFnCaPHhWKrmq5M81E=
Subject key identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA
Authority key identifier: 60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40
Certificate issuer: /CN=603136CCA4FB40559F2F75778C389C9D02C23F40
Certificate serial: 20
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft
Manifest number: 20
Signing time: Sat 23 Aug 2025 21:13:17 +0000
Manifest this update: Sat 23 Aug 2025 21:13:17 +0000
Manifest next update: Sun 24 Aug 2025 03:13:17 +0000
Files and hashes: 1: YDE2zKT7QFWfL3V3jDicnQLCP0A.crl (hash: pxsoqS2Ca8UhbYaADpoEsFGlWX40KuB7kBcQ/Vo5Ii4=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 32 (0x20)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603136CCA4FB40559F2F75778C389C9D02C23F40
Validity
Not Before: Aug 23 21:13:17 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=53DAF623C1C685E4DD2F5C13F663FE40502D03FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b7:42:57:78:9d:12:90:10:c8:03:dc:7a:0c:
d3:d1:0a:be:83:22:a3:bb:a6:27:60:15:13:f8:03:
74:c1:fe:08:0e:a8:65:6f:32:0d:6a:54:95:6f:7e:
44:94:f4:f2:0c:b2:48:08:ba:14:89:46:5b:25:37:
72:aa:74:c9:66:2c:a8:0f:8f:b6:d1:b4:28:dc:6e:
87:79:a1:4f:b8:a0:d6:5f:53:47:0e:f1:8b:85:ad:
08:3f:ac:09:05:92:7e:a6:77:e4:cf:d1:86:01:9b:
1f:fb:b5:e6:d2:2a:7e:9c:78:26:1f:2e:ee:4f:d5:
f7:c0:63:2b:2a:97:62:92:df:f3:17:1a:60:e7:83:
18:1d:44:82:68:47:cf:74:de:cd:83:e3:10:f4:0f:
ff:f7:5a:ba:9f:a7:a5:4a:0e:0b:50:be:78:f0:34:
19:dd:39:a6:ac:fa:ea:97:c6:5a:a9:63:92:f3:15:
47:09:85:a6:33:05:1c:37:e7:24:99:b1:db:ab:c0:
bb:58:d9:96:43:d7:a3:8a:a0:c8:a2:2e:24:d9:72:
83:83:f2:ce:37:80:4a:5c:43:9f:c6:f9:ae:2e:2e:
8b:04:6f:36:4f:58:09:39:07:1f:95:52:35:e8:67:
93:11:bb:5e:70:6a:69:58:f6:5d:84:ad:a5:7e:ed:
7c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA
X509v3 Authority Key Identifier:
keyid:60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
22:c2:0f:66:34:f0:fb:2a:0f:6d:72:ca:5f:a7:27:8e:28:11:
f3:28:bb:ab:74:93:48:ea:2e:c7:62:e0:25:cb:8c:89:48:d7:
2a:24:27:ec:fe:6f:84:78:4e:2a:e0:94:89:f5:6a:ba:75:25:
c4:61:3a:2f:ec:55:05:c8:bb:74:b0:d4:1e:9a:d8:69:ec:81:
bb:92:e9:bb:8b:78:99:26:c0:ce:a1:7e:3d:b4:c1:0e:7f:9e:
a3:a0:61:88:36:61:31:09:9b:ea:f1:ab:bc:b9:22:82:ed:40:
02:ec:7d:53:65:c9:c7:fb:38:08:af:00:59:5f:9d:48:a6:5d:
5a:b6:ce:db:bf:c8:91:8b:5c:34:87:e2:8d:00:da:58:89:eb:
11:67:e9:17:ee:df:45:29:49:d9:92:b1:3b:30:5c:65:44:79:
ab:88:2d:3e:59:ba:a2:ad:75:4b:15:ad:5c:11:43:be:23:df:
90:04:8d:18:39:a8:eb:12:0f:13:6b:87:c1:73:6d:0c:31:50:
37:a3:04:41:4a:72:b9:21:4a:73:ac:18:d1:0a:c4:5a:e2:bb:
94:d5:b5:cb:eb:8d:bf:91:20:42:b9:ce:ff:49:1a:fb:e0:0e:
5b:79:3c:be:b1:bd:b6:88:61:fc:2d:d1:ad:9d:6b:ee:fa:7d:
87:e4:d4:85
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sun Aug 24 03:38:33 2025 by rpki-client