$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft File: YDE2zKT7QFWfL3V3jDicnQLCP0A.mft (raw, json) Hash identifier: 6CRhUeH9mTsyrsYdEVXeuzlCdNjaLAzZ/0Fr1crFl+U= Subject key identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA Authority key identifier: 60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 Certificate issuer: /CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Certificate serial: 041C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft Manifest number: 0418 Signing time: Sun 01 Mar 2026 18:53:24 +0000 Manifest this update: Sun 01 Mar 2026 18:53:24 +0000 Manifest next update: Mon 02 Mar 2026 00:53:24 +0000 Files and hashes: 1: C0FQft0AjWQ2pEDZCizD4M5gFb8.roa (hash: KXqYa+r+A3uRe7SjI8SZk8eNluJdkH6RPhdKASp5Xio=) 2: YDE2zKT7QFWfL3V3jDicnQLCP0A.crl (hash: maCgVAjZ5keu89nm8XnsCowlKre3kIN8EjUqjdaUWb8=) 3: mYwIH9t8tfTovniDxBXdxS67N8o.roa (hash: uOfvi1QUFYZPq6yyqhx97ar+CpMs0NYFxsvJdwQMn48=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 02 Mar 2026 00:53:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1052 (0x41c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Validity Not Before: Mar 1 18:53:24 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=53DAF623C1C685E4DD2F5C13F663FE40502D03FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b7:42:57:78:9d:12:90:10:c8:03:dc:7a:0c: d3:d1:0a:be:83:22:a3:bb:a6:27:60:15:13:f8:03: 74:c1:fe:08:0e:a8:65:6f:32:0d:6a:54:95:6f:7e: 44:94:f4:f2:0c:b2:48:08:ba:14:89:46:5b:25:37: 72:aa:74:c9:66:2c:a8:0f:8f:b6:d1:b4:28:dc:6e: 87:79:a1:4f:b8:a0:d6:5f:53:47:0e:f1:8b:85:ad: 08:3f:ac:09:05:92:7e:a6:77:e4:cf:d1:86:01:9b: 1f:fb:b5:e6:d2:2a:7e:9c:78:26:1f:2e:ee:4f:d5: f7:c0:63:2b:2a:97:62:92:df:f3:17:1a:60:e7:83: 18:1d:44:82:68:47:cf:74:de:cd:83:e3:10:f4:0f: ff:f7:5a:ba:9f:a7:a5:4a:0e:0b:50:be:78:f0:34: 19:dd:39:a6:ac:fa:ea:97:c6:5a:a9:63:92:f3:15: 47:09:85:a6:33:05:1c:37:e7:24:99:b1:db:ab:c0: bb:58:d9:96:43:d7:a3:8a:a0:c8:a2:2e:24:d9:72: 83:83:f2:ce:37:80:4a:5c:43:9f:c6:f9:ae:2e:2e: 8b:04:6f:36:4f:58:09:39:07:1f:95:52:35:e8:67: 93:11:bb:5e:70:6a:69:58:f6:5d:84:ad:a5:7e:ed: 7c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA X509v3 Authority Key Identifier: keyid:60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:c9:01:1d:09:b0:a1:db:0f:bb:b8:ba:b1:00:04:7d:37:c6: e7:dd:87:59:9a:36:39:43:18:ce:af:1f:99:a6:39:86:d0:49: 35:9b:f4:5c:e7:36:c9:67:6e:a0:ee:f0:e4:67:7f:c1:e9:d9: 43:1b:01:48:4a:1d:8e:8a:79:61:ac:17:29:f1:db:bf:13:68: 80:65:ff:13:0e:de:86:a7:59:00:eb:ad:19:cd:af:50:4a:d3: 8b:da:b5:95:fb:39:a1:a1:86:e1:ed:6d:5f:13:cf:89:83:95: 26:5c:1e:70:7a:80:b4:88:ab:ae:32:a5:e8:ea:99:96:9e:ad: 9f:bc:c6:dd:a3:07:e5:76:d0:78:2c:fd:16:b1:25:a4:9b:0c: cf:7d:93:f5:c6:ad:82:c3:a8:c9:63:10:91:2c:af:24:5d:16: d2:d8:98:24:2d:2a:f5:4e:ca:ab:82:ee:d0:a6:a4:ff:1d:df: 81:ea:ec:7d:fe:f2:25:e0:ce:2d:54:f5:74:35:03:a4:e0:a9: 34:09:ce:e5:b8:4b:dd:94:da:db:11:7e:ff:47:58:e2:68:5a: d1:f3:b3:83:5c:ed:fc:df:a3:01:2e:11:7d:0a:90:91:f7:66: d4:cb:bd:9a:09:81:7b:d6:8a:36:ab:52:85:8f:64:64:6e:d2: 18:17:79:91 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBBwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAz MTM2Q0NBNEZCNDA1NTlGMkY3NTc3OEMzODlDOUQwMkMyM0Y0MDAeFw0yNjAzMDEx ODUzMjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUzREFGNjIzQzFDNjg1 RTRERDJGNUMxM0Y2NjNGRTQwNTAyRDAzRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCat0JXeJ0SkBDIA9x6DNPRCr6DIqO7pidgFRP4A3TB/ggOqGVv Mg1qVJVvfkSU9PIMskgIuhSJRlslN3KqdMlmLKgPj7bRtCjcbod5oU+4oNZfU0cO 8YuFrQg/rAkFkn6md+TP0YYBmx/7tebSKn6ceCYfLu5P1ffAYysql2KS3/MXGmDn gxgdRIJoR8903s2D4xD0D//3Wrqfp6VKDgtQvnjwNBndOaas+uqXxlqpY5LzFUcJ haYzBRw35ySZsdurwLtY2ZZD16OKoMiiLiTZcoOD8s43gEpcQ5/G+a4uLosEbzZP WAk5Bx+VUjXoZ5MRu15wamlY9l2EraV+7XxDAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUU9r2I8HGheTdL1wT9mP+QFAtA/owHwYDVR0jBBgwFoAUYDE2zKT7QFWfL3V3 jDicnQLCP0AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFO S1NHL1lERTJ6S1Q3UUZXZkwzVjNqRGljblFMQ1AwQS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvWURFMnpLVDdRRldmTDNWM2pEaWNuUUxDUDBBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFOS1NHL1lERTJ6S1Q3UUZX ZkwzVjNqRGljblFMQ1AwQS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBfyQEdCbCh2w+7uLqxAAR9N8bn3YdZmjY5QxjOrx+ZpjmG0Ek1m/Rc5zbJ Z26g7vDkZ3/B6dlDGwFISh2OinlhrBcp8du/E2iAZf8TDt6Gp1kA660Zza9QStOL 2rWV+zmhoYbh7W1fE8+Jg5UmXB5weoC0iKuuMqXo6pmWnq2fvMbdowfldtB4LP0W sSWkmwzPfZP1xq2Cw6jJYxCRLK8kXRbS2JgkLSr1Tsqrgu7QpqT/Hd+B6ux9/vIl 4M4tVPV0NQOk4Kk0Cc7luEvdlNrbEX7/R1jiaFrR87ODXO3836MBLhF9CpCR92bU y72aCYF71oo2q1KFj2RkbtIYF3mR -----END CERTIFICATE-----Generated at Sun Mar 1 22:31:40 2026 by rpki-client