$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft File: HpTC6b92VEpaAMOici0QgCJOwA4.mft (raw, json) Hash identifier: UJahOkPhoU8CziAMDAoaYOUZ7c3eZuz3FXaBQlLCEo0= Subject key identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC Authority key identifier: 1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E Certificate issuer: /CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Certificate serial: 01A7 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft Manifest number: 01A7 Signing time: Wed 05 Nov 2025 10:28:27 +0000 Manifest this update: Wed 05 Nov 2025 10:28:27 +0000 Manifest next update: Wed 05 Nov 2025 16:28:27 +0000 Files and hashes: 1: HpTC6b92VEpaAMOici0QgCJOwA4.crl (hash: Xc2o4xbunPgm62BOAuP5OdNMT2EWtfYeMBpj3BeRD/A=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 05 Nov 2025 16:00:44 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 423 (0x1a7) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Validity Not Before: Nov 5 10:28:27 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BEED3C841F9D8994442239C237DE55EADB5FDBEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:18:37:f4:2f:66:58:8d:30:6b:37:13:7c: b6:4e:01:75:a9:ac:b7:94:02:c5:bf:81:56:33:28: b8:89:5b:a7:e6:e4:78:71:3d:57:43:ec:db:8a:44: 76:05:67:41:4d:ec:00:7b:8e:29:28:ce:bf:2a:9c: ba:62:50:ab:c2:13:00:8e:bd:0c:b0:d8:64:1e:eb: bb:a5:54:59:8a:56:62:e3:4b:43:44:af:1d:3b:da: 8c:8e:76:07:99:ff:9f:5b:49:50:b7:d4:88:a6:3f: 86:cc:13:ec:da:ec:09:f0:ae:e1:59:1c:e8:b0:d1: 57:bc:dd:26:03:03:ef:f8:ec:a4:53:34:4d:05:54: 32:fa:61:57:b3:6a:7f:2f:72:fc:fc:aa:dc:d2:9f: c0:45:53:8c:c4:45:6c:8e:52:67:a2:20:12:46:18: 80:8a:1a:79:22:b6:5d:11:b2:80:5a:e9:9a:ab:79: 01:c2:a9:51:8b:38:3a:d6:00:2b:3c:5e:d6:7a:6e: c8:0a:64:d8:ee:8a:87:a3:06:d5:2e:77:44:a6:e3: 26:36:b3:2c:60:26:75:76:c4:e1:7d:a2:20:cd:1f: a2:f2:da:ce:aa:2c:77:84:61:2f:d1:18:f6:d2:b9: be:99:da:0a:ab:6c:ff:cc:b0:5e:5d:34:63:e1:f3: 3e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC X509v3 Authority Key Identifier: keyid:1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 06:28:22:83:e3:62:ce:7b:12:dd:b2:e8:c1:71:7c:d8:50:fa: 6e:e8:8e:53:c9:00:56:68:b9:ac:5d:be:78:84:1e:7d:d7:24: 18:59:3d:22:0a:85:ad:93:ea:65:32:9f:0d:47:a3:4b:e7:96: 09:a1:88:38:31:2f:62:6c:f8:67:04:b2:6a:98:27:f2:1b:0b: ed:5a:38:97:d9:7e:7a:8d:50:c4:c5:49:47:e1:a9:50:4b:2b: c1:86:2e:eb:b2:46:a1:04:89:0f:42:f2:e3:3e:f9:65:0f:6e: 34:3b:36:0c:b6:2c:14:05:89:fa:a9:b3:30:95:98:ed:ef:cc: 2c:03:e0:8d:01:86:7d:59:d3:17:34:08:25:ff:84:78:78:eb: af:b8:ed:45:7b:99:7b:02:88:e4:dd:e3:af:6b:3a:e1:7e:c5: 7c:c5:70:96:b0:56:29:7e:4b:8a:ed:af:91:93:d1:ba:6c:ef: 73:67:93:50:ec:a7:20:68:9e:66:c8:e1:7d:4d:5e:89:78:93: df:31:af:60:b8:11:c8:f3:e2:37:49:86:70:a6:f6:44:dd:11: e8:98:63:c1:55:31:d6:59:a9:b5:9b:d6:20:32:df:7d:a7:0e: 84:68:71:94:00:b0:c2:86:fc:4e:73:80:13:28:34:39:44:39: e5:d7:69:cd -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAacwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUU5 NEMyRTlCRjc2NTQ0QTVBMDBDM0EyNzIyRDEwODAyMjRFQzAwRTAeFw0yNTExMDUx MDI4MjdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJFRUQzQzg0MUY5RDg5 OTQ0NDIyMzlDMjM3REU1NUVBREI1RkRCRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIJRg39C9mWI0wazcTfLZOAXWprLeUAsW/gVYzKLiJW6fm5Hhx PVdD7NuKRHYFZ0FN7AB7jikozr8qnLpiUKvCEwCOvQyw2GQe67ulVFmKVmLjS0NE rx072oyOdgeZ/59bSVC31IimP4bME+za7AnwruFZHOiw0Ve83SYDA+/47KRTNE0F VDL6YVezan8vcvz8qtzSn8BFU4zERWyOUmeiIBJGGICKGnkitl0RsoBa6ZqreQHC qVGLODrWACs8XtZ6bsgKZNjuioejBtUud0Sm4yY2syxgJnV2xOF9oiDNH6Ly2s6q LHeEYS/RGPbSub6Z2gqrbP/MsF5dNGPh8z6nAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUvu08hB+diZREIjnCN95V6ttf2+wwHwYDVR0jBBgwFoAUHpTC6b92VEpaAMOi ci0QgCJOwA4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFO S1RXL0hwVEM2YjkyVkVwYUFNT2ljaTBRZ0NKT3dBNC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvSHBUQzZiOTJWRXBhQU1PaWNpMFFnQ0pPd0E0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFOS1RXL0hwVEM2YjkyVkVw YUFNT2ljaTBRZ0NKT3dBNC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAGKCKD42LOexLdsujBcXzYUPpu6I5TyQBWaLmsXb54hB591yQYWT0iCoWt k+plMp8NR6NL55YJoYg4MS9ibPhnBLJqmCfyGwvtWjiX2X56jVDExUlH4alQSyvB hi7rskahBIkPQvLjPvllD240OzYMtiwUBYn6qbMwlZjt78wsA+CNAYZ9WdMXNAgl /4R4eOuvuO1Fe5l7Aojk3eOvazrhfsV8xXCWsFYpfkuK7a+Rk9G6bO9zZ5NQ7Kcg aJ5myOF9TV6JeJPfMa9guBHI8+I3SYZwpvZE3RHomGPBVTHWWam1m9YgMt99pw6E aHGUALDChvxOc4ATKDQ5RDnl12nN -----END CERTIFICATE-----Generated at Wed Nov 5 13:13:32 2025 by rpki-client