$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft File: HpTC6b92VEpaAMOici0QgCJOwA4.mft (raw, json) Hash identifier: 9+uKYAoOJhQFTE3CPjIHOQs9xwlppAKINq9VtAJTy68= Subject key identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC Authority key identifier: 1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E Certificate issuer: /CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Certificate serial: 0494 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft Manifest number: 0494 Signing time: Thu 26 Mar 2026 19:28:10 +0000 Manifest this update: Thu 26 Mar 2026 19:28:10 +0000 Manifest next update: Fri 27 Mar 2026 01:28:10 +0000 Files and hashes: 1: HpTC6b92VEpaAMOici0QgCJOwA4.crl (hash: E0oQVyAlQ4IwQdzMR07LI2TxdDao84T/o+l4TqQzB3M=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Fri 27 Mar 2026 01:28:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1172 (0x494) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Validity Not Before: Mar 26 19:28:10 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BEED3C841F9D8994442239C237DE55EADB5FDBEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:18:37:f4:2f:66:58:8d:30:6b:37:13:7c: b6:4e:01:75:a9:ac:b7:94:02:c5:bf:81:56:33:28: b8:89:5b:a7:e6:e4:78:71:3d:57:43:ec:db:8a:44: 76:05:67:41:4d:ec:00:7b:8e:29:28:ce:bf:2a:9c: ba:62:50:ab:c2:13:00:8e:bd:0c:b0:d8:64:1e:eb: bb:a5:54:59:8a:56:62:e3:4b:43:44:af:1d:3b:da: 8c:8e:76:07:99:ff:9f:5b:49:50:b7:d4:88:a6:3f: 86:cc:13:ec:da:ec:09:f0:ae:e1:59:1c:e8:b0:d1: 57:bc:dd:26:03:03:ef:f8:ec:a4:53:34:4d:05:54: 32:fa:61:57:b3:6a:7f:2f:72:fc:fc:aa:dc:d2:9f: c0:45:53:8c:c4:45:6c:8e:52:67:a2:20:12:46:18: 80:8a:1a:79:22:b6:5d:11:b2:80:5a:e9:9a:ab:79: 01:c2:a9:51:8b:38:3a:d6:00:2b:3c:5e:d6:7a:6e: c8:0a:64:d8:ee:8a:87:a3:06:d5:2e:77:44:a6:e3: 26:36:b3:2c:60:26:75:76:c4:e1:7d:a2:20:cd:1f: a2:f2:da:ce:aa:2c:77:84:61:2f:d1:18:f6:d2:b9: be:99:da:0a:ab:6c:ff:cc:b0:5e:5d:34:63:e1:f3: 3e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC X509v3 Authority Key Identifier: keyid:1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a5:c4:ce:3b:c6:d9:2d:93:a0:20:2d:cc:3e:66:1d:c0:92:30: a5:9e:fa:45:c4:d9:76:13:9b:f5:8f:54:06:fd:8d:69:b2:8c: f0:5d:ac:40:d1:19:bb:a7:44:69:3d:e9:ea:bd:c6:be:c2:c8: 9c:8d:f2:6e:02:e5:8b:c6:32:e8:45:3e:1d:f4:15:03:5f:6b: 94:f2:0b:17:9d:1c:a4:80:0e:27:cc:ae:38:d5:6f:9f:3c:08: 0c:e7:6e:27:55:56:6c:a8:0e:34:7c:18:70:f5:ae:84:24:33: 9b:49:46:6d:28:7b:ec:59:89:da:66:20:12:05:a3:78:aa:36: e4:83:63:f2:e0:45:06:e2:4c:56:6c:6a:00:d9:5a:d3:22:c5: 28:bc:56:85:94:17:18:14:71:54:70:48:45:c1:dc:83:23:bf: 9e:cd:49:a6:ee:5e:d9:11:b5:26:6a:58:e5:f3:ba:64:31:b3: 5e:ab:d7:8b:24:01:79:78:41:89:6a:a2:87:a3:d1:17:d4:b3: c9:74:be:84:38:0b:36:be:78:dd:1c:dd:bc:87:d0:aa:f5:d6: 54:17:50:3e:77:6b:81:53:3e:0d:23:e2:9b:e1:09:5e:7e:ac: 37:b9:c3:c2:b4:ed:07:9c:20:88:df:60:15:51:84:b1:83:81: 1e:2b:c8:a4 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBJQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUU5 NEMyRTlCRjc2NTQ0QTVBMDBDM0EyNzIyRDEwODAyMjRFQzAwRTAeFw0yNjAzMjYx OTI4MTBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJFRUQzQzg0MUY5RDg5 OTQ0NDIyMzlDMjM3REU1NUVBREI1RkRCRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIJRg39C9mWI0wazcTfLZOAXWprLeUAsW/gVYzKLiJW6fm5Hhx PVdD7NuKRHYFZ0FN7AB7jikozr8qnLpiUKvCEwCOvQyw2GQe67ulVFmKVmLjS0NE rx072oyOdgeZ/59bSVC31IimP4bME+za7AnwruFZHOiw0Ve83SYDA+/47KRTNE0F VDL6YVezan8vcvz8qtzSn8BFU4zERWyOUmeiIBJGGICKGnkitl0RsoBa6ZqreQHC qVGLODrWACs8XtZ6bsgKZNjuioejBtUud0Sm4yY2syxgJnV2xOF9oiDNH6Ly2s6q LHeEYS/RGPbSub6Z2gqrbP/MsF5dNGPh8z6nAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUvu08hB+diZREIjnCN95V6ttf2+wwHwYDVR0jBBgwFoAUHpTC6b92VEpaAMOi ci0QgCJOwA4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFO S1RXL0hwVEM2YjkyVkVwYUFNT2ljaTBRZ0NKT3dBNC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvSHBUQzZiOTJWRXBhQU1PaWNpMFFnQ0pPd0E0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFOS1RXL0hwVEM2YjkyVkVw YUFNT2ljaTBRZ0NKT3dBNC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQClxM47xtktk6AgLcw+Zh3AkjClnvpFxNl2E5v1j1QG/Y1psozwXaxA0Rm7 p0RpPenqvca+wsicjfJuAuWLxjLoRT4d9BUDX2uU8gsXnRykgA4nzK441W+fPAgM 524nVVZsqA40fBhw9a6EJDObSUZtKHvsWYnaZiASBaN4qjbkg2Py4EUG4kxWbGoA 2VrTIsUovFaFlBcYFHFUcEhFwdyDI7+ezUmm7l7ZEbUmaljl87pkMbNeq9eLJAF5 eEGJaqKHo9EX1LPJdL6EOAs2vnjdHN28h9Cq9dZUF1A+d2uBUz4NI+Kb4Qlefqw3 ucPCtO0HnCCI32AVUYSxg4EeK8ik -----END CERTIFICATE-----Generated at Fri Mar 27 00:56:07 2026 by rpki-client