$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft File: MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft (raw, json) Hash identifier: 3q6BbQbKxcG8sMvLGwBG5Sll+sTk6JJd6iQhG12CTQg= Subject key identifier: 1B:C9:F6:3A:73:30:80:5E:48:E6:F9:07:D0:36:FC:78:07:6C:A0:31 Authority key identifier: 30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99 Certificate issuer: /CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99 Certificate serial: 6F Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft Manifest number: 6C Signing time: Sat 06 Sep 2025 14:15:48 +0000 Manifest this update: Sat 06 Sep 2025 14:15:48 +0000 Manifest next update: Sat 06 Sep 2025 20:15:48 +0000 Files and hashes: 1: 4sPB_u7fbVKrz8PvJ2ANd5wmvN4.roa (hash: d22YNx89jY5XnBKXsXej+Z6EGmQRxBE0r5TbQJ3GCZc=) 2: MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl (hash: bklHOGMgHARVDTq/oQVZKKk6PPwcfJm6O+zsa87Sv3o=) 3: Sg5T9EB1MarDInUIhbPko52VS3o.roa (hash: e9ocAxS5rq4dSA0hejCpBmkwVoD5lcM3dG/p61jeJ/Q=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 06 Sep 2025 20:15:48 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 111 (0x6f) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99 Validity Not Before: Sep 6 14:15:48 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=1BC9F63A7330805E48E6F907D036FC78076CA031 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:6a:8b:9c:dd:35:6e:66:f6:40:24:9e:24:42: a7:ae:c8:45:0b:e1:02:03:7e:8b:c1:d8:48:d0:a6: 3e:aa:a5:8a:69:53:a4:e7:13:de:7d:82:15:2b:cb: 6d:7e:94:ac:ef:fc:06:55:79:fc:9e:22:72:97:79: f1:0f:dd:c8:05:fb:23:be:58:12:c8:88:85:3b:c6: e3:25:50:56:1c:4a:2f:cb:55:9a:25:b7:4b:cd:68: 83:1f:d5:66:20:30:3b:c5:fb:45:01:ad:9a:11:0b: 70:7a:d6:6a:dc:c8:73:f5:14:11:e1:03:62:1c:60: 37:52:d7:4a:e4:e5:ff:c0:a0:40:54:6b:37:60:7f: ad:25:57:5e:bd:d7:c6:82:1d:7d:7c:f5:62:4c:bf: 6f:78:8e:df:cb:71:f6:68:64:35:32:fc:ae:2f:e7: 96:68:7b:35:bc:10:92:fb:29:ea:eb:f3:88:da:80: b8:1a:36:64:1c:f8:87:09:ae:f0:0b:e2:2a:6c:e7: 92:59:53:1a:1a:17:c7:d1:11:39:99:87:7a:50:06: 1b:41:dc:fc:c8:fe:5d:43:c1:ad:73:70:bb:b2:c1: fe:8b:8a:d9:92:aa:5c:41:73:d6:e1:37:82:ed:fc: 54:1e:e4:0a:8b:2e:51:ca:e8:23:7b:fd:52:5f:9b: fb:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1B:C9:F6:3A:73:30:80:5E:48:E6:F9:07:D0:36:FC:78:07:6C:A0:31 X509v3 Authority Key Identifier: keyid:30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption c3:4a:94:85:ae:90:39:09:8d:4d:d7:b2:0c:68:eb:4e:46:7f: 54:a5:63:4d:0b:17:c1:6a:d9:2a:17:c3:62:b2:66:ed:70:fd: d1:20:e8:98:a9:01:5f:8b:68:6f:a2:51:ba:8c:18:b2:46:17: 9a:3d:9a:08:2c:fd:57:b5:f4:9f:57:81:94:a1:4a:ec:69:a5: c9:2d:de:6c:24:bd:79:05:e1:b6:ee:5f:3a:ba:b2:90:1d:c6: 27:1a:cb:d7:eb:64:5e:38:1b:01:0a:39:29:b2:95:a5:e5:d8: 39:6b:51:80:57:06:42:32:70:d0:36:55:be:6b:f2:af:6b:36: 9a:e3:b8:d4:56:37:3c:07:08:f4:0a:e4:d2:02:e3:0d:73:52: 42:58:b5:f4:69:5f:64:64:3a:86:d0:cf:ed:ed:4d:e0:b4:f9: e4:1a:00:20:63:45:5d:9c:8c:b0:22:80:9c:fe:f9:f9:90:db: ee:9e:10:4a:61:bb:65:53:fd:a9:30:96:96:54:41:b5:1f:71: 65:1b:d7:d9:86:16:93:cf:5b:75:bf:8c:61:cf:24:78:97:12: b1:86:d8:85:01:38:30:6e:5d:9e:c7:c2:11:e5:4b:03:35:cc: a2:3b:9b:9d:51:73:a4:9c:05:4d:fc:85:3f:9b:93:35:c4:90: 9c:a1:7c:92 -----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgIBbzANBgkqhkiG9w0BAQsFADAzMTEwLwYDVQQDEygzMDdF MURFQTA4QzU4QjVGQ0VDOEY1N0NCQjc3NEVFRThFNTE1Qzk5MB4XDTI1MDkwNjE0 MTU0OFoXDTI2MDgyMjA4MTQyOFowMzExMC8GA1UEAxMoMUJDOUY2M0E3MzMwODA1 RTQ4RTZGOTA3RDAzNkZDNzgwNzZDQTAzMTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAM1qi5zdNW5m9kAkniRCp67IRQvhAgN+i8HYSNCmPqqlimlTpOcT 3n2CFSvLbX6UrO/8BlV5/J4icpd58Q/dyAX7I75YEsiIhTvG4yVQVhxKL8tVmiW3 S81ogx/VZiAwO8X7RQGtmhELcHrWatzIc/UUEeEDYhxgN1LXSuTl/8CgQFRrN2B/ rSVXXr3XxoIdfXz1Yky/b3iO38tx9mhkNTL8ri/nlmh7NbwQkvsp6uvziNqAuBo2 ZBz4hwmu8AviKmznkllTGhoXx9EROZmHelAGG0Hc/Mj+XUPBrXNwu7LB/ouK2ZKq XEFz1uE3gu38VB7kCosuUcroI3v9Ul+b+70CAwEAAaOCAg0wggIJMB0GA1UdDgQW BBQbyfY6czCAXkjm+QfQNvx4B2ygMTAfBgNVHSMEGDAWgBQwfh3qCMWLX87I9Xy7 d07ujlFcmTAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMF8GA1UdHwRYMFYwVKBS oFCGTnJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5L VFcvTUg0ZDZnakZpMV9PeVBWOHUzZE83bzVSWEprLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9NSDRkNmdqRmkxX095UFY4dTNkTzdvNVJYSmsuY2VyMA4GA1UdDwEB/wQE AwIHgDCBnwYIKwYBBQUHAQsEgZIwgY8wWgYIKwYBBQUHMAuGTnJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9EQlNCQU5LVFcvTUg0ZDZnakZpMV9P eVBWOHUzZE83bzVSWEprLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3 bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEG CCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQAD ggEBAMNKlIWukDkJjU3Xsgxo605Gf1SlY00LF8Fq2SoXw2KyZu1w/dEg6JipAV+L aG+iUbqMGLJGF5o9mggs/Ve19J9XgZShSuxppckt3mwkvXkF4bbuXzq6spAdxica y9frZF44GwEKOSmylaXl2DlrUYBXBkIycNA2Vb5r8q9rNprjuNRWNzwHCPQK5NIC 4w1zUkJYtfRpX2RkOobQz+3tTeC0+eQaACBjRV2cjLAigJz++fmQ2+6eEEphu2VT /akwlpZUQbUfcWUb19mGFpPPW3W/jGHPJHiXErGG2IUBODBuXZ7HwhHlSwM1zKI7 m51Rc6ScBU38hT+bkzXEkJyhfJI= -----END CERTIFICATE-----Generated at Sat Sep 6 18:36:30 2025 by rpki-client