$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft File: HpTC6b92VEpaAMOici0QgCJOwA4.mft (raw, json) Hash identifier: O8nc9h0bY+AqASXxcvU7G4n8EuNseynCa92WO+b9xIc= Subject key identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC Authority key identifier: 1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E Certificate issuer: /CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Certificate serial: 0152 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft Manifest number: 0152 Signing time: Mon 20 Oct 2025 11:55:03 +0000 Manifest this update: Mon 20 Oct 2025 11:55:03 +0000 Manifest next update: Mon 20 Oct 2025 17:55:03 +0000 Files and hashes: 1: HpTC6b92VEpaAMOici0QgCJOwA4.crl (hash: 8GiPmgmH4JBOWhngcjF0e7iX0ZVZIOciiPgYmeghqo4=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 20 Oct 2025 17:55:03 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 338 (0x152) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Validity Not Before: Oct 20 11:55:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BEED3C841F9D8994442239C237DE55EADB5FDBEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:18:37:f4:2f:66:58:8d:30:6b:37:13:7c: b6:4e:01:75:a9:ac:b7:94:02:c5:bf:81:56:33:28: b8:89:5b:a7:e6:e4:78:71:3d:57:43:ec:db:8a:44: 76:05:67:41:4d:ec:00:7b:8e:29:28:ce:bf:2a:9c: ba:62:50:ab:c2:13:00:8e:bd:0c:b0:d8:64:1e:eb: bb:a5:54:59:8a:56:62:e3:4b:43:44:af:1d:3b:da: 8c:8e:76:07:99:ff:9f:5b:49:50:b7:d4:88:a6:3f: 86:cc:13:ec:da:ec:09:f0:ae:e1:59:1c:e8:b0:d1: 57:bc:dd:26:03:03:ef:f8:ec:a4:53:34:4d:05:54: 32:fa:61:57:b3:6a:7f:2f:72:fc:fc:aa:dc:d2:9f: c0:45:53:8c:c4:45:6c:8e:52:67:a2:20:12:46:18: 80:8a:1a:79:22:b6:5d:11:b2:80:5a:e9:9a:ab:79: 01:c2:a9:51:8b:38:3a:d6:00:2b:3c:5e:d6:7a:6e: c8:0a:64:d8:ee:8a:87:a3:06:d5:2e:77:44:a6:e3: 26:36:b3:2c:60:26:75:76:c4:e1:7d:a2:20:cd:1f: a2:f2:da:ce:aa:2c:77:84:61:2f:d1:18:f6:d2:b9: be:99:da:0a:ab:6c:ff:cc:b0:5e:5d:34:63:e1:f3: 3e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC X509v3 Authority Key Identifier: keyid:1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 50:ea:a6:58:21:77:de:19:e2:a7:78:1c:5f:36:5a:5f:80:9a: c9:b2:ee:7b:6d:51:97:1d:a0:f6:b3:ee:7e:67:72:c7:6c:c2: c1:78:a4:4c:74:3b:1f:61:74:8c:f8:c5:d7:63:68:c8:4d:9d: e0:a5:5c:fe:b2:de:bf:3d:c2:f9:7a:11:17:fd:a2:a6:0d:ff: 63:73:9e:22:8f:48:4a:5c:6a:f1:3b:5f:3e:89:5d:84:23:fd: 3b:22:15:35:a9:0f:0c:a6:7f:96:9d:e3:d6:dc:2a:d9:b5:26: 64:a8:d2:e2:84:ff:ec:f3:dd:cd:73:eb:d1:d8:7d:10:c4:06: db:76:f8:ff:de:9e:50:e9:16:36:f9:0f:89:0e:f5:f2:a1:58: d6:de:fc:83:47:f8:20:93:2d:8c:5a:b3:0c:b0:99:21:79:69: b8:ed:21:08:ad:28:72:fe:66:da:46:91:df:cd:e6:e5:61:99: 4e:99:a3:a9:73:68:ba:8a:1b:15:5d:6e:9b:d7:ed:1b:68:90: dd:90:b1:db:26:86:52:c1:0b:54:49:53:3a:26:63:56:95:a0: 11:fc:ad:91:29:48:1c:6e:de:87:91:a4:05:b4:16:6e:ef:25: 77:cf:f1:2e:23:17:7c:fb:14:46:c0:1c:bf:d8:2d:1c:61:dc: f6:f7:cd:98 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAVIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUU5 NEMyRTlCRjc2NTQ0QTVBMDBDM0EyNzIyRDEwODAyMjRFQzAwRTAeFw0yNTEwMjAx MTU1MDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJFRUQzQzg0MUY5RDg5 OTQ0NDIyMzlDMjM3REU1NUVBREI1RkRCRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIJRg39C9mWI0wazcTfLZOAXWprLeUAsW/gVYzKLiJW6fm5Hhx PVdD7NuKRHYFZ0FN7AB7jikozr8qnLpiUKvCEwCOvQyw2GQe67ulVFmKVmLjS0NE rx072oyOdgeZ/59bSVC31IimP4bME+za7AnwruFZHOiw0Ve83SYDA+/47KRTNE0F VDL6YVezan8vcvz8qtzSn8BFU4zERWyOUmeiIBJGGICKGnkitl0RsoBa6ZqreQHC qVGLODrWACs8XtZ6bsgKZNjuioejBtUud0Sm4yY2syxgJnV2xOF9oiDNH6Ly2s6q LHeEYS/RGPbSub6Z2gqrbP/MsF5dNGPh8z6nAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUvu08hB+diZREIjnCN95V6ttf2+wwHwYDVR0jBBgwFoAUHpTC6b92VEpaAMOi ci0QgCJOwA4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFO S1RXL0hwVEM2YjkyVkVwYUFNT2ljaTBRZ0NKT3dBNC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvSHBUQzZiOTJWRXBhQU1PaWNpMFFnQ0pPd0E0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFOS1RXL0hwVEM2YjkyVkVw YUFNT2ljaTBRZ0NKT3dBNC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBQ6qZYIXfeGeKneBxfNlpfgJrJsu57bVGXHaD2s+5+Z3LHbMLBeKRMdDsf YXSM+MXXY2jITZ3gpVz+st6/PcL5ehEX/aKmDf9jc54ij0hKXGrxO18+iV2EI/07 IhU1qQ8Mpn+WnePW3CrZtSZkqNLihP/s893Nc+vR2H0QxAbbdvj/3p5Q6RY2+Q+J DvXyoVjW3vyDR/ggky2MWrMMsJkheWm47SEIrShy/mbaRpHfzeblYZlOmaOpc2i6 ihsVXW6b1+0baJDdkLHbJoZSwQtUSVM6JmNWlaAR/K2RKUgcbt6HkaQFtBZu7yV3 z/EuIxd8+xRGwBy/2C0cYdz2982Y -----END CERTIFICATE-----Generated at Mon Oct 20 14:23:09 2025 by rpki-client