$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft File: YDE2zKT7QFWfL3V3jDicnQLCP0A.mft (raw, json) Hash identifier: yHVc0OKFAW/8+/f8nwSRxPko0saab6xdule8xQ+Ugh0= Subject key identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA Authority key identifier: 60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 Certificate issuer: /CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Certificate serial: 052C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft Manifest number: 0528 Signing time: Wed 22 Apr 2026 00:33:56 +0000 Manifest this update: Wed 22 Apr 2026 00:33:56 +0000 Manifest next update: Wed 22 Apr 2026 06:33:56 +0000 Files and hashes: 1: C0FQft0AjWQ2pEDZCizD4M5gFb8.roa (hash: KXqYa+r+A3uRe7SjI8SZk8eNluJdkH6RPhdKASp5Xio=) 2: YDE2zKT7QFWfL3V3jDicnQLCP0A.crl (hash: VkCjZpT5+ZGma9fBMyCCfsANWnvhXNUWMzK5ceLbL9w=) 3: mYwIH9t8tfTovniDxBXdxS67N8o.roa (hash: uOfvi1QUFYZPq6yyqhx97ar+CpMs0NYFxsvJdwQMn48=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 22 Apr 2026 06:33:56 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1324 (0x52c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=603136CCA4FB40559F2F75778C389C9D02C23F40 Validity Not Before: Apr 22 00:33:56 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=53DAF623C1C685E4DD2F5C13F663FE40502D03FA Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:b7:42:57:78:9d:12:90:10:c8:03:dc:7a:0c: d3:d1:0a:be:83:22:a3:bb:a6:27:60:15:13:f8:03: 74:c1:fe:08:0e:a8:65:6f:32:0d:6a:54:95:6f:7e: 44:94:f4:f2:0c:b2:48:08:ba:14:89:46:5b:25:37: 72:aa:74:c9:66:2c:a8:0f:8f:b6:d1:b4:28:dc:6e: 87:79:a1:4f:b8:a0:d6:5f:53:47:0e:f1:8b:85:ad: 08:3f:ac:09:05:92:7e:a6:77:e4:cf:d1:86:01:9b: 1f:fb:b5:e6:d2:2a:7e:9c:78:26:1f:2e:ee:4f:d5: f7:c0:63:2b:2a:97:62:92:df:f3:17:1a:60:e7:83: 18:1d:44:82:68:47:cf:74:de:cd:83:e3:10:f4:0f: ff:f7:5a:ba:9f:a7:a5:4a:0e:0b:50:be:78:f0:34: 19:dd:39:a6:ac:fa:ea:97:c6:5a:a9:63:92:f3:15: 47:09:85:a6:33:05:1c:37:e7:24:99:b1:db:ab:c0: bb:58:d9:96:43:d7:a3:8a:a0:c8:a2:2e:24:d9:72: 83:83:f2:ce:37:80:4a:5c:43:9f:c6:f9:ae:2e:2e: 8b:04:6f:36:4f:58:09:39:07:1f:95:52:35:e8:67: 93:11:bb:5e:70:6a:69:58:f6:5d:84:ad:a5:7e:ed: 7c:43 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA X509v3 Authority Key Identifier: keyid:60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:f0:c1:be:c8:7b:25:d1:3f:09:7f:1e:d8:ce:ee:2d:6d:32: f1:81:48:69:b1:94:ce:56:a4:1a:7d:06:53:70:32:c2:eb:46: 9d:ad:6b:11:cc:6c:b2:e3:bb:e2:a2:98:2c:2d:ce:77:0b:4e: 68:5f:96:14:b9:5e:7d:59:9e:b0:e2:f6:54:db:54:a4:b3:61: 52:83:a9:a2:62:d3:bc:f5:94:6f:5f:4b:3b:7e:e1:39:18:15: c4:bc:ce:7d:6f:06:ac:79:9d:9c:ea:22:fb:b3:e4:e0:2e:37: b1:e6:84:81:7c:68:45:1a:95:38:44:40:fb:bc:38:63:4d:af: c5:6a:f1:14:be:9c:de:10:07:2b:a2:57:03:a3:23:fd:ef:a8: d9:b1:51:cb:27:5f:b0:63:91:58:4d:88:e7:b9:79:b2:e2:a7: 5e:a5:a4:a6:d2:08:9d:c3:79:af:37:29:52:70:aa:ea:23:98: 6f:0f:e9:55:91:0c:ec:22:62:78:08:27:b3:ab:39:49:92:09: 6b:8c:de:2f:c0:e9:b3:1a:f1:6b:67:b5:8d:d2:ba:bc:f7:a0: 1d:f3:b0:b6:a7:f2:9a:51:17:34:99:80:c7:5a:91:e6:af:a1: 78:e1:1a:ce:15:1b:44:2d:23:20:ca:4d:b1:fc:ac:99:f1:d0: fc:2c:48:a5 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBSwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjAz MTM2Q0NBNEZCNDA1NTlGMkY3NTc3OEMzODlDOUQwMkMyM0Y0MDAeFw0yNjA0MjIw MDMzNTZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDUzREFGNjIzQzFDNjg1 RTRERDJGNUMxM0Y2NjNGRTQwNTAyRDAzRkEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCat0JXeJ0SkBDIA9x6DNPRCr6DIqO7pidgFRP4A3TB/ggOqGVv Mg1qVJVvfkSU9PIMskgIuhSJRlslN3KqdMlmLKgPj7bRtCjcbod5oU+4oNZfU0cO 8YuFrQg/rAkFkn6md+TP0YYBmx/7tebSKn6ceCYfLu5P1ffAYysql2KS3/MXGmDn gxgdRIJoR8903s2D4xD0D//3Wrqfp6VKDgtQvnjwNBndOaas+uqXxlqpY5LzFUcJ haYzBRw35ySZsdurwLtY2ZZD16OKoMiiLiTZcoOD8s43gEpcQ5/G+a4uLosEbzZP WAk5Bx+VUjXoZ5MRu15wamlY9l2EraV+7XxDAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUU9r2I8HGheTdL1wT9mP+QFAtA/owHwYDVR0jBBgwFoAUYDE2zKT7QFWfL3V3 jDicnQLCP0AwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFO S1NHL1lERTJ6S1Q3UUZXZkwzVjNqRGljblFMQ1AwQS5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvWURFMnpLVDdRRldmTDNWM2pEaWNuUUxDUDBBLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvREJTQkFOS1NHL1lERTJ6S1Q3UUZX ZkwzVjNqRGljblFMQ1AwQS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQB88MG+yHsl0T8Jfx7Yzu4tbTLxgUhpsZTOVqQafQZTcDLC60adrWsRzGyy 47viopgsLc53C05oX5YUuV59WZ6w4vZU21Sks2FSg6miYtO89ZRvX0s7fuE5GBXE vM59bwaseZ2c6iL7s+TgLjex5oSBfGhFGpU4RED7vDhjTa/FavEUvpzeEAcrolcD oyP976jZsVHLJ1+wY5FYTYjnuXmy4qdepaSm0gidw3mvNylScKrqI5hvD+lVkQzs ImJ4CCezqzlJkglrjN4vwOmzGvFrZ7WN0rq896Ad87C2p/KaURc0mYDHWpHmr6F4 4RrOFRtELSMgyk2x/KyZ8dD8LEil -----END CERTIFICATE-----Generated at Wed Apr 22 06:31:58 2026 by rpki-client