Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft
File: YDE2zKT7QFWfL3V3jDicnQLCP0A.mft (raw, json)
Hash identifier: xgeRZgW8AcmQ/n0gvbGul3c/gT4oQK2S0ajKi+1y2A4=
Subject key identifier: 53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA
Authority key identifier: 60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40
Certificate issuer: /CN=603136CCA4FB40559F2F75778C389C9D02C23F40
Certificate serial: 043C
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft
Manifest number: 0438
Signing time: Sat 07 Mar 2026 19:54:42 +0000
Manifest this update: Sat 07 Mar 2026 19:54:42 +0000
Manifest next update: Sun 08 Mar 2026 01:54:42 +0000
Files and hashes: 1: C0FQft0AjWQ2pEDZCizD4M5gFb8.roa (hash: KXqYa+r+A3uRe7SjI8SZk8eNluJdkH6RPhdKASp5Xio=)
2: YDE2zKT7QFWfL3V3jDicnQLCP0A.crl (hash: KlR6CpZZTJ1we+QwEJWxLmdkfp4VxF/lni8YYCLBLD8=)
3: mYwIH9t8tfTovniDxBXdxS67N8o.roa (hash: uOfvi1QUFYZPq6yyqhx97ar+CpMs0NYFxsvJdwQMn48=)
Validation: Failed, unable to get local issuer certificate
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1084 (0x43c)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=603136CCA4FB40559F2F75778C389C9D02C23F40
Validity
Not Before: Mar 7 19:54:42 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=53DAF623C1C685E4DD2F5C13F663FE40502D03FA
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:9a:b7:42:57:78:9d:12:90:10:c8:03:dc:7a:0c:
d3:d1:0a:be:83:22:a3:bb:a6:27:60:15:13:f8:03:
74:c1:fe:08:0e:a8:65:6f:32:0d:6a:54:95:6f:7e:
44:94:f4:f2:0c:b2:48:08:ba:14:89:46:5b:25:37:
72:aa:74:c9:66:2c:a8:0f:8f:b6:d1:b4:28:dc:6e:
87:79:a1:4f:b8:a0:d6:5f:53:47:0e:f1:8b:85:ad:
08:3f:ac:09:05:92:7e:a6:77:e4:cf:d1:86:01:9b:
1f:fb:b5:e6:d2:2a:7e:9c:78:26:1f:2e:ee:4f:d5:
f7:c0:63:2b:2a:97:62:92:df:f3:17:1a:60:e7:83:
18:1d:44:82:68:47:cf:74:de:cd:83:e3:10:f4:0f:
ff:f7:5a:ba:9f:a7:a5:4a:0e:0b:50:be:78:f0:34:
19:dd:39:a6:ac:fa:ea:97:c6:5a:a9:63:92:f3:15:
47:09:85:a6:33:05:1c:37:e7:24:99:b1:db:ab:c0:
bb:58:d9:96:43:d7:a3:8a:a0:c8:a2:2e:24:d9:72:
83:83:f2:ce:37:80:4a:5c:43:9f:c6:f9:ae:2e:2e:
8b:04:6f:36:4f:58:09:39:07:1f:95:52:35:e8:67:
93:11:bb:5e:70:6a:69:58:f6:5d:84:ad:a5:7e:ed:
7c:43
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
53:DA:F6:23:C1:C6:85:E4:DD:2F:5C:13:F6:63:FE:40:50:2D:03:FA
X509v3 Authority Key Identifier:
keyid:60:31:36:CC:A4:FB:40:55:9F:2F:75:77:8C:38:9C:9D:02:C2:3F:40
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/YDE2zKT7QFWfL3V3jDicnQLCP0A.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKSG/YDE2zKT7QFWfL3V3jDicnQLCP0A.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0d:83:78:49:60:06:7b:31:a8:d4:3c:06:19:87:27:ee:9f:26:
86:be:37:c1:a0:bf:65:15:ea:39:44:cb:6a:48:c6:3d:3c:7a:
16:9a:df:5d:02:08:eb:87:06:ec:17:27:ad:d3:a7:19:e1:62:
6f:9d:91:f3:2a:16:a8:ce:d0:10:86:02:20:3e:80:20:a6:dd:
e3:82:77:49:8f:86:f3:bc:9a:22:2d:fa:33:1c:bf:4e:82:fe:
47:48:41:8e:e1:cd:b3:a4:3d:f2:90:54:90:6f:1c:f5:5f:0f:
30:8e:a9:28:8c:0f:8d:d2:3a:f8:82:80:ac:51:5d:5c:59:dc:
c1:84:fc:77:4e:b5:6a:2e:71:bb:99:98:be:a0:29:c5:ed:30:
32:ab:3c:a0:f6:8a:e3:be:97:a9:8c:d5:79:6c:af:32:0e:c0:
1b:84:d9:a9:74:d6:16:3a:ff:ec:ae:24:c7:d4:89:d5:79:1e:
e5:d5:fa:b3:7c:0d:12:be:21:14:fe:35:a9:59:a0:0d:40:48:
4f:8a:3c:2e:81:a6:78:04:f9:46:07:93:07:7c:b6:73:4a:85:
c5:af:d4:b9:39:92:6d:a5:f0:00:ea:8d:43:5d:e8:d5:33:0f:
09:62:44:37:15:a8:03:58:d5:85:60:79:4d:62:cc:5c:ea:38:
cb:1f:73:a7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Mar 7 22:30:03 2026 by rpki-client