$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft File: HpTC6b92VEpaAMOici0QgCJOwA4.mft (raw, json) Hash identifier: HgMp/pfSbGrmUdYYg0rSWx2QX9M9IFJZeuj7rmCOo0s= Subject key identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC Authority key identifier: 1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E Certificate issuer: /CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Certificate serial: 0511 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft Manifest number: 0511 Signing time: Sun 19 Apr 2026 08:33:24 +0000 Manifest this update: Sun 19 Apr 2026 08:33:24 +0000 Manifest next update: Sun 19 Apr 2026 14:33:24 +0000 Files and hashes: 1: HpTC6b92VEpaAMOici0QgCJOwA4.crl (hash: vqHxNpSN/x8ynBkUMZB+CZObs+Aios8AET2JTGpxZbY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 19 Apr 2026 13:34:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1297 (0x511) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1E94C2E9BF76544A5A00C3A2722D1080224EC00E Validity Not Before: Apr 19 08:33:24 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=BEED3C841F9D8994442239C237DE55EADB5FDBEC Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:25:18:37:f4:2f:66:58:8d:30:6b:37:13:7c: b6:4e:01:75:a9:ac:b7:94:02:c5:bf:81:56:33:28: b8:89:5b:a7:e6:e4:78:71:3d:57:43:ec:db:8a:44: 76:05:67:41:4d:ec:00:7b:8e:29:28:ce:bf:2a:9c: ba:62:50:ab:c2:13:00:8e:bd:0c:b0:d8:64:1e:eb: bb:a5:54:59:8a:56:62:e3:4b:43:44:af:1d:3b:da: 8c:8e:76:07:99:ff:9f:5b:49:50:b7:d4:88:a6:3f: 86:cc:13:ec:da:ec:09:f0:ae:e1:59:1c:e8:b0:d1: 57:bc:dd:26:03:03:ef:f8:ec:a4:53:34:4d:05:54: 32:fa:61:57:b3:6a:7f:2f:72:fc:fc:aa:dc:d2:9f: c0:45:53:8c:c4:45:6c:8e:52:67:a2:20:12:46:18: 80:8a:1a:79:22:b6:5d:11:b2:80:5a:e9:9a:ab:79: 01:c2:a9:51:8b:38:3a:d6:00:2b:3c:5e:d6:7a:6e: c8:0a:64:d8:ee:8a:87:a3:06:d5:2e:77:44:a6:e3: 26:36:b3:2c:60:26:75:76:c4:e1:7d:a2:20:cd:1f: a2:f2:da:ce:aa:2c:77:84:61:2f:d1:18:f6:d2:b9: be:99:da:0a:ab:6c:ff:cc:b0:5e:5d:34:63:e1:f3: 3e:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BE:ED:3C:84:1F:9D:89:94:44:22:39:C2:37:DE:55:EA:DB:5F:DB:EC X509v3 Authority Key Identifier: keyid:1E:94:C2:E9:BF:76:54:4A:5A:00:C3:A2:72:2D:10:80:22:4E:C0:0E X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HpTC6b92VEpaAMOici0QgCJOwA4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/HpTC6b92VEpaAMOici0QgCJOwA4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a8:05:91:a8:4e:86:d0:a9:93:20:50:18:ef:94:6e:7b:93:15: 08:39:8e:df:35:ff:cf:60:16:2f:59:3d:0b:49:ed:f9:67:28: f3:59:d0:26:80:06:72:ff:77:fa:b1:d3:47:92:f5:5d:88:43: 4d:05:d1:53:50:68:09:0a:28:a4:76:21:58:2c:37:bb:4e:06: 61:19:12:f1:04:dd:17:49:d3:f6:6a:ca:a7:2a:e6:b5:b1:ce: 41:21:d6:23:84:4d:72:2b:7b:2b:ed:0f:59:78:c5:b7:86:40: ab:0d:8b:55:6c:d9:02:c5:dd:8d:34:22:7a:d3:15:9b:f6:de: b0:f1:33:9a:3e:dd:bc:21:b4:52:3f:e2:d3:3b:8a:9e:00:09: 64:98:d6:7c:d6:f0:60:42:8c:cb:8b:df:bf:0a:fc:31:c2:db: e3:6c:49:48:7a:18:26:9a:41:34:1b:3f:0a:24:1e:bd:43:15: d1:8c:ba:4f:da:b0:e4:8f:54:8e:a1:e4:98:64:f3:4b:95:cd: 8e:67:a4:b4:bf:73:32:3f:d6:7b:00:1b:d2:95:a3:9c:21:73: ee:f4:60:d6:79:c8:6e:3f:0f:49:a9:a0:b1:ac:ca:3d:c3:46: 7f:1b:8c:a2:d1:8d:83:6e:63:13:77:d0:b3:4d:cb:ff:85:d5: d6:f8:bc:1d -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBREwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUU5 NEMyRTlCRjc2NTQ0QTVBMDBDM0EyNzIyRDEwODAyMjRFQzAwRTAeFw0yNjA0MTkw ODMzMjRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEJFRUQzQzg0MUY5RDg5 OTQ0NDIyMzlDMjM3REU1NUVBREI1RkRCRUMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIJRg39C9mWI0wazcTfLZOAXWprLeUAsW/gVYzKLiJW6fm5Hhx PVdD7NuKRHYFZ0FN7AB7jikozr8qnLpiUKvCEwCOvQyw2GQe67ulVFmKVmLjS0NE rx072oyOdgeZ/59bSVC31IimP4bME+za7AnwruFZHOiw0Ve83SYDA+/47KRTNE0F VDL6YVezan8vcvz8qtzSn8BFU4zERWyOUmeiIBJGGICKGnkitl0RsoBa6ZqreQHC qVGLODrWACs8XtZ6bsgKZNjuioejBtUud0Sm4yY2syxgJnV2xOF9oiDNH6Ly2s6q LHeEYS/RGPbSub6Z2gqrbP/MsF5dNGPh8z6nAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUvu08hB+diZREIjnCN95V6ttf2+wwHwYDVR0jBBgwFoAUHpTC6b92VEpaAMOi ci0QgCJOwA4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFO S1RXL0hwVEM2YjkyVkVwYUFNT2ljaTBRZ0NKT3dBNC5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvSHBUQzZiOTJWRXBhQU1PaWNpMFFnQ0pPd0E0LmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFOS1RXL0hwVEM2YjkyVkVw YUFNT2ljaTBRZ0NKT3dBNC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQCoBZGoTobQqZMgUBjvlG57kxUIOY7fNf/PYBYvWT0LSe35ZyjzWdAmgAZy /3f6sdNHkvVdiENNBdFTUGgJCiikdiFYLDe7TgZhGRLxBN0XSdP2asqnKua1sc5B IdYjhE1yK3sr7Q9ZeMW3hkCrDYtVbNkCxd2NNCJ60xWb9t6w8TOaPt28IbRSP+LT O4qeAAlkmNZ81vBgQozLi9+/CvwxwtvjbElIehgmmkE0Gz8KJB69QxXRjLpP2rDk j1SOoeSYZPNLlc2OZ6S0v3MyP9Z7ABvSlaOcIXPu9GDWechuPw9JqaCxrMo9w0Z/ G4yi0Y2DbmMTd9CzTcv/hdXW+Lwd -----END CERTIFICATE-----Generated at Sun Apr 19 11:02:52 2026 by rpki-client