$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft File: YDE2zKT7QFWfL3V3jDicnQLCP0A.mft (raw, json) Hash identifier: UMfR5Og9rpzPN0hborX/xJt8QZgXaMo/ev/vGRo6GBA= Subject key identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA Authority key identifier: 60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 Certificate issuer: /CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Certificate serial: 01B0 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft Manifest number: 01AC Signing time: Wed 05 Nov 2025 05:58:23 +0000 Manifest this update: Wed 05 Nov 2025 05:58:23 +0000 Manifest next update: Wed 05 Nov 2025 11:58:23 +0000 Files and hashes: 1: C0FQft0AjWQ2pEDZCizD4M5gFb8.roa (hash: KXqYa+r+A3uRe7SjI8SZk8eNluJdkH6RPhdKASp5Xio=) 2: YDE2zKT7QFWfL3V3jDicnQLCP0A.crl (hash: QUxSRwS0k1t0cy41YCW/GmIHb+ukFIQOx7lskAPiRyc=) 3: mYwIH9t8tfTovniDxBXdxS67N8o.roa (hash: uOfvi1QUFYZPq6yyqhx97ar+CpMs0NYFxsvJdwQMn48=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 11:29:32 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 432 (0x1b0) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Validity Not Before: Nov 5 05:58:23 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=53DAF623C1C685E4DD2F5C13F663FE40502D03FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b7:42:57:78:9d:12:90:10:c8:03:dc:7a:0c: d3:d1:0a:be:83:22:a3:bb:a6:27:60:15:13:f8:03: 74:c1:fe:08:0e:a8:65:6f:32:0d:6a:54:95:6f:7e: 44:94:f4:f2:0c:b2:48:08:ba:14:89:46:5b:25:37: 72:aa:74:c9:66:2c:a8:0f:8f:b6:d1:b4:28:dc:6e: 87:79:a1:4f:b8:a0:d6:5f:53:47:0e:f1:8b:85:ad: 08:3f:ac:09:05:92:7e:a6:77:e4:cf:d1:86:01:9b: 1f:fb:b5:e6:d2:2a:7e:9c:78:26:1f:2e:ee:4f:d5: f7:c0:63:2b:2a:97:62:92:df:f3:17:1a:60:e7:83: 18:1d:44:82:68:47:cf:74:de:cd:83:e3:10:f4:0f: ff:f7:5a:ba:9f:a7:a5:4a:0e:0b:50:be:78:f0:34: 19:dd:39:a6:ac:fa:ea:97:c6:5a:a9:63:92:f3:15: 47:09:85:a6:33:05:1c:37:e7:24:99:b1:db:ab:c0: bb:58:d9:96:43:d7:a3:8a:a0:c8:a2:2e:24:d9:72: 83:83:f2:ce:37:80:4a:5c:43:9f:c6:f9:ae:2e:2e: 8b:04:6f:36:4f:58:09:39:07:1f:95:52:35:e8:67: 93:11:bb:5e:70:6a:69:58:f6:5d:84:ad:a5:7e:ed: 7c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA X509v3 Authority Key Identifier: keyid:60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5f:4e:eb:c3:91:e0:29:85:96:1e:ea:2a:5d:75:47:3d:b7:42: 94:91:d7:3e:9f:20:64:4e:7b:a7:25:d5:f1:b8:d9:d7:99:39: 8a:fd:8f:9b:f2:82:28:5a:ea:10:e8:76:62:c3:98:6f:c9:c9: 3f:05:e1:4b:80:51:c9:72:0f:58:fe:a9:e0:14:54:97:6d:06: 81:5f:1d:ea:9e:24:6b:34:95:84:8d:82:fe:ad:3a:67:f4:5d: 1e:ef:ac:6d:17:e3:36:c5:35:20:71:bc:48:a3:55:90:c7:80: ff:40:97:33:e9:38:1e:a2:c5:7c:fe:e2:e6:75:7a:0f:35:ee: be:d2:ca:75:b9:c1:14:f0:19:87:86:3a:29:70:7e:52:c7:93: 74:73:a5:e0:ae:12:99:ab:de:dd:7a:8a:08:08:2f:59:6d:5a: 65:a3:71:74:2c:a6:22:c7:51:a1:b5:9a:5c:3c:46:8a:30:2c: 39:d6:cc:c5:af:3f:7a:ae:92:c0:db:47:7a:68:eb:c7:ac:80: 77:21:30:51:bf:f4:fa:ed:5a:3d:fa:1a:23:14:e1:3a:c0:08: 00:77:9a:2f:ff:b0:23:41:7c:97:84:26:3b:7d:82:ef:9f:19: 8b:d7:af:96:8a:0d:90:77:6c:ba:65:6f:8b:f1:9b:15:03:f0: 81:73:15:7b -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAbAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAz MTM2Q0NBNEZCNDA1NTlGMkY3NTc3OEMzODlDOUQwMkMyM0Y0MDAeFw0yNTExMDUw NTU4MjNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUzREFGNjIzQzFDNjg1 RTRERDJGNUMxM0Y2NjNGRTQwNTAyRDAzRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCat0JXeJ0SkBDIA9x6DNPRCr6DIqO7pidgFRP4A3TB/ggOqGVv Mg1qVJVvfkSU9PIMskgIuhSJRlslN3KqdMlmLKgPj7bRtCjcbod5oU+4oNZfU0cO 8YuFrQg/rAkFkn6md+TP0YYBmx/7tebSKn6ceCYfLu5P1ffAYysql2KS3/MXGmDn gxgdRIJoR8903s2D4xD0D//3Wrqfp6VKDgtQvnjwNBndOaas+uqXxlqpY5LzFUcJ haYzBRw35ySZsdurwLtY2ZZD16OKoMiiLiTZcoOD8s43gEpcQ5/G+a4uLosEbzZP WAk5Bx+VUjXoZ5MRu15wamlY9l2EraV+7XxDAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUU9r2I8HGheTdL1wT9mP+QFAtA/owHwYDVR0jBBgwFoAUYDE2zKT7QFWfL3V3 jDicnQLCP0AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFO S1NHL1lERTJ6S1Q3UUZXZkwzVjNqRGljblFMQ1AwQS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvWURFMnpLVDdRRldmTDNWM2pEaWNuUUxDUDBBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFOS1NHL1lERTJ6S1Q3UUZX ZkwzVjNqRGljblFMQ1AwQS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQBfTuvDkeAphZYe6ipddUc9t0KUkdc+nyBkTnunJdXxuNnXmTmK/Y+b8oIo WuoQ6HZiw5hvyck/BeFLgFHJcg9Y/qngFFSXbQaBXx3qniRrNJWEjYL+rTpn9F0e 76xtF+M2xTUgcbxIo1WQx4D/QJcz6TgeosV8/uLmdXoPNe6+0sp1ucEU8BmHhjop cH5Sx5N0c6XgrhKZq97deooICC9ZbVplo3F0LKYix1GhtZpcPEaKMCw51szFrz96 rpLA20d6aOvHrIB3ITBRv/T67Vo9+hojFOE6wAgAd5ov/7AjQXyXhCY7fYLvnxmL 16+Wig2Qd2y6ZW+L8ZsVA/CBcxV7 -----END CERTIFICATE-----Generated at Wed Nov 5 08:08:22 2025 by rpki-client