$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft File: HpTC6b92VEpaAMOici0QgCJOwA4.mft (raw, json) Hash identifier: 7hlw29/zc/t5aHqYDGg6WhjSGhFnubWlYeow51IFdYs= Subject key identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC Authority key identifier: 1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E Certificate issuer: /CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Certificate serial: 22 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft Manifest number: 22 Signing time: Sun 24 Aug 2025 06:43:01 +0000 Manifest this update: Sun 24 Aug 2025 06:43:01 +0000 Manifest next update: Sun 24 Aug 2025 12:43:01 +0000 Files and hashes: 1: HpTC6b92VEpaAMOici0QgCJOwA4.crl (hash: DdBtVCdGRZNYRJlfF3EBXfb7Vk7wCto7hLBhKuGaBkA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 24 Aug 2025 12:43:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 34 (0x22) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Validity Not Before: Aug 24 06:43:01 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BEED3C841F9D8994442239C237DE55EADB5FDBEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:18:37:f4:2f:66:58:8d:30:6b:37:13:7c: b6:4e:01:75:a9:ac:b7:94:02:c5:bf:81:56:33:28: b8:89:5b:a7:e6:e4:78:71:3d:57:43:ec:db:8a:44: 76:05:67:41:4d:ec:00:7b:8e:29:28:ce:bf:2a:9c: ba:62:50:ab:c2:13:00:8e:bd:0c:b0:d8:64:1e:eb: bb:a5:54:59:8a:56:62:e3:4b:43:44:af:1d:3b:da: 8c:8e:76:07:99:ff:9f:5b:49:50:b7:d4:88:a6:3f: 86:cc:13:ec:da:ec:09:f0:ae:e1:59:1c:e8:b0:d1: 57:bc:dd:26:03:03:ef:f8:ec:a4:53:34:4d:05:54: 32:fa:61:57:b3:6a:7f:2f:72:fc:fc:aa:dc:d2:9f: c0:45:53:8c:c4:45:6c:8e:52:67:a2:20:12:46:18: 80:8a:1a:79:22:b6:5d:11:b2:80:5a:e9:9a:ab:79: 01:c2:a9:51:8b:38:3a:d6:00:2b:3c:5e:d6:7a:6e: c8:0a:64:d8:ee:8a:87:a3:06:d5:2e:77:44:a6:e3: 26:36:b3:2c:60:26:75:76:c4:e1:7d:a2:20:cd:1f: a2:f2:da:ce:aa:2c:77:84:61:2f:d1:18:f6:d2:b9: be:99:da:0a:ab:6c:ff:cc:b0:5e:5d:34:63:e1:f3: 3e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC X509v3 Authority Key Identifier: keyid:1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 95:da:95:2f:d4:d8:34:d1:c0:61:63:cc:03:e4:9b:80:4d:7e: 8e:f4:e5:2f:33:77:51:ef:37:c3:9f:84:6a:9a:e8:cb:db:f2: 98:2a:78:72:62:6e:13:f9:48:da:40:d6:7b:af:fa:74:60:b4: 10:85:6a:98:9f:ee:51:cf:6a:5f:5a:ca:a4:0b:9d:be:14:9d: 24:53:fd:72:0c:29:db:e2:a5:54:68:90:df:36:69:ff:d0:ab: ce:00:76:47:eb:13:2f:29:a9:8d:89:e3:8a:2a:0a:34:5d:d2: be:ea:e2:78:78:a9:ec:8a:e9:e1:bc:85:3d:fe:2d:71:a6:42: 6f:f3:38:79:42:e4:bd:9d:f2:04:5b:6f:c5:95:36:d8:87:e8: 59:61:b5:32:59:22:7f:46:76:12:cb:eb:1e:b1:2b:ed:81:13: ff:8f:e9:3b:78:59:40:e8:16:4a:c7:d2:a9:21:fa:ad:bd:77: 73:9d:13:e7:1d:07:27:d6:c8:2d:2a:5e:fa:96:8f:57:34:d2: 14:78:b6:d0:f6:ca:4a:b4:13:7d:2f:67:cd:10:25:6b:f7:06: 78:53:0e:b9:7d:2b:7b:e0:23:96:05:11:4c:9a:33:9c:c7:62: 6b:99:10:e4:87:39:93:74:0f:8a:90:89:4c:43:5a:f6:36:d0: d5:da:4d:36 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIBIjANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygxRTk0 QzJFOUJGNzY1NDRBNUEwMEMzQTI3MjJEMTA4MDIyNEVDMDBFMB4XDTI1MDgyNDA2 NDMwMVoXDTI2MDgyMjA4MTQyOFowMzExMC8GA1UEAxMoQkVFRDNDODQxRjlEODk5 NDQ0MjIzOUMyMzdERTU1RUFEQjVGREJFQzCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMglGDf0L2ZYjTBrNxN8tk4Bdamst5QCxb+BVjMouIlbp+bkeHE9 V0Ps24pEdgVnQU3sAHuOKSjOvyqcumJQq8ITAI69DLDYZB7ru6VUWYpWYuNLQ0Sv HTvajI52B5n/n1tJULfUiKY/hswT7NrsCfCu4Vkc6LDRV7zdJgMD7/jspFM0TQVU MvphV7Nqfy9y/Pyq3NKfwEVTjMRFbI5SZ6IgEkYYgIoaeSK2XRGygFrpmqt5AcKp UYs4OtYAKzxe1npuyApk2O6Kh6MG1S53RKbjJjazLGAmdXbE4X2iIM0fovLazqos d4RhL9EY9tK5vpnaCqts/8ywXl00Y+HzPqcCAwEAAaOCAg0wggIJMB0GA1UdDgQW BBS+7TyEH52JlEQiOcI33lXq21/b7DAfBgNVHSMEGDAWgBQelMLpv3ZUSloAw6Jy LRCAIk7ADjAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5L VFcvSHBUQzZiOTJWRXBhQU1PaWNpMFFnQ0pPd0E0LmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9IcFRDNmI5MlZFcGFBTU9pY2kwUWdDSk93QTQuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5LVFcvSHBUQzZiOTJWRXBh QU1PaWNpMFFnQ0pPd0E0Lm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAJXalS/U2DTRwGFjzAPkm4BNfo705S8zd1HvN8OfhGqa6Mvb8pgqeHJibhP5 SNpA1nuv+nRgtBCFapif7lHPal9ayqQLnb4UnSRT/XIMKdvipVRokN82af/Qq84A dkfrEy8pqY2J44oqCjRd0r7q4nh4qeyK6eG8hT3+LXGmQm/zOHlC5L2d8gRbb8WV NtiH6FlhtTJZIn9GdhLL6x6xK+2BE/+P6Tt4WUDoFkrH0qkh+q29d3OdE+cdByfW yC0qXvqWj1c00hR4ttD2ykq0E30vZ80QJWv3BnhTDrl9K3vgI5YFEUyaM5zHYmuZ EOSHOZN0D4qQiUxDWvY20NXaTTY= -----END CERTIFICATE-----Generated at Sun Aug 24 09:08:11 2025 by rpki-client