Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft
File: YDE2zKT7QFWfL3V3jDicnQLCP0A.mft (raw, json)
Hash identifier: h4wQQ9iuf9WvAHpA40/KteGqIQMMJT3kT6RRp4Zg4aQ=
Subject key identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA
Authority key identifier: 60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40
Certificate issuer: /CN=603136CCA4FB40559F2F75778C389C9D02C23F40
Certificate serial: 0166
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft
Manifest number: 0162
Signing time: Wed 22 Oct 2025 08:55:24 +0000
Manifest this update: Wed 22 Oct 2025 08:55:24 +0000
Manifest next update: Wed 22 Oct 2025 14:55:24 +0000
Files and hashes: 1: C0FQft0AjWQ2pEDZCizD4M5gFb8.roa (hash: KXqYa+r+A3uRe7SjI8SZk8eNluJdkH6RPhdKASp5Xio=)
2: YDE2zKT7QFWfL3V3jDicnQLCP0A.crl (hash: tD6I8jQbg8v3Rrk5Hh3VoYhH+QG6d8Ym+pHLR3LYqjo=)
3: mYwIH9t8tfTovniDxBXdxS67N8o.roa (hash: uOfvi1QUFYZPq6yyqhx97ar+CpMs0NYFxsvJdwQMn48=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 358 (0x166)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603136CCA4FB40559F2F75778C389C9D02C23F40
Validity
Not Before: Oct 22 08:55:24 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=53DAF623C1C685E4DD2F5C13F663FE40502D03FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b7:42:57:78:9d:12:90:10:c8:03:dc:7a:0c:
d3:d1:0a:be:83:22:a3:bb:a6:27:60:15:13:f8:03:
74:c1:fe:08:0e:a8:65:6f:32:0d:6a:54:95:6f:7e:
44:94:f4:f2:0c:b2:48:08:ba:14:89:46:5b:25:37:
72:aa:74:c9:66:2c:a8:0f:8f:b6:d1:b4:28:dc:6e:
87:79:a1:4f:b8:a0:d6:5f:53:47:0e:f1:8b:85:ad:
08:3f:ac:09:05:92:7e:a6:77:e4:cf:d1:86:01:9b:
1f:fb:b5:e6:d2:2a:7e:9c:78:26:1f:2e:ee:4f:d5:
f7:c0:63:2b:2a:97:62:92:df:f3:17:1a:60:e7:83:
18:1d:44:82:68:47:cf:74:de:cd:83:e3:10:f4:0f:
ff:f7:5a:ba:9f:a7:a5:4a:0e:0b:50:be:78:f0:34:
19:dd:39:a6:ac:fa:ea:97:c6:5a:a9:63:92:f3:15:
47:09:85:a6:33:05:1c:37:e7:24:99:b1:db:ab:c0:
bb:58:d9:96:43:d7:a3:8a:a0:c8:a2:2e:24:d9:72:
83:83:f2:ce:37:80:4a:5c:43:9f:c6:f9:ae:2e:2e:
8b:04:6f:36:4f:58:09:39:07:1f:95:52:35:e8:67:
93:11:bb:5e:70:6a:69:58:f6:5d:84:ad:a5:7e:ed:
7c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA
X509v3 Authority Key Identifier:
keyid:60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
6e:c6:8a:67:c7:c9:ef:a2:f2:05:21:b4:46:56:54:c2:c3:20:
e0:d7:a7:4b:92:c2:7e:00:dc:66:d9:7e:16:b1:35:47:34:d7:
d0:6f:a4:5d:fa:c4:6c:27:00:57:01:46:f6:a3:0a:d5:1e:b1:
cd:55:5b:cc:7e:a9:ad:5c:61:4e:b8:02:d1:7c:4f:91:58:ad:
d5:56:41:34:b7:f5:41:86:d8:b0:f7:07:04:bd:2b:ea:e0:83:
4a:f2:8c:94:3f:20:a6:b6:d1:c0:6f:c6:ef:12:99:96:1f:32:
5f:15:69:74:30:ac:6b:ba:cc:6f:e7:5f:b6:2d:23:e6:18:5c:
42:68:d3:be:26:9a:67:3a:3a:f1:86:22:94:d9:5d:b4:b3:e4:
e6:c1:14:c3:8c:d5:06:8f:fa:26:5f:14:22:93:8c:76:4b:5f:
c1:17:26:2f:66:7b:00:47:57:c8:b9:4a:4f:9d:4a:3c:46:23:
a0:d3:32:d7:d6:2d:01:67:f1:6e:e2:9c:9d:4c:95:19:b3:3a:
0b:9a:83:2c:f6:c1:43:d8:03:91:ba:aa:13:23:9b:59:40:23:
07:66:9c:6b:5f:b9:0d:d1:2d:2e:b8:04:cf:32:64:22:da:a1:
f7:ab:8c:ab:27:f8:71:cb:d2:a3:85:b4:c4:7c:cc:57:df:67:
8b:b3:7b:0e
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 15:14:11 2025 by rpki-client