Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft
File: MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft (raw, json)
Hash identifier: 4XjKj5LsRBUXLyOhvXPHMTeEV32ciZEFzKzYfWQa6iE=
Subject key identifier: 1B:C9:F6:3A:73:30:80:5E:48:E6:F9:07:D0:36:FC:78:07:6C:A0:31
Authority key identifier: 30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99
Certificate issuer: /CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99
Certificate serial: 0526
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft
Manifest number: 0523
Signing time: Wed 22 Apr 2026 00:03:56 +0000
Manifest this update: Wed 22 Apr 2026 00:03:56 +0000
Manifest next update: Wed 22 Apr 2026 06:03:56 +0000
Files and hashes: 1: 4sPB_u7fbVKrz8PvJ2ANd5wmvN4.roa (hash: d22YNx89jY5XnBKXsXej+Z6EGmQRxBE0r5TbQJ3GCZc=)
2: MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl (hash: uDKMseR1gkcX/u6DL2tynJQ5C9KRBFUCZQAnmmmaT3w=)
3: Sg5T9EB1MarDInUIhbPko52VS3o.roa (hash: e9ocAxS5rq4dSA0hejCpBmkwVoD5lcM3dG/p61jeJ/Q=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 1318 (0x526)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99
Validity
Not Before: Apr 22 00:03:56 2026 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=1BC9F63A7330805E48E6F907D036FC78076CA031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6a:8b:9c:dd:35:6e:66:f6:40:24:9e:24:42:
a7:ae:c8:45:0b:e1:02:03:7e:8b:c1:d8:48:d0:a6:
3e:aa:a5:8a:69:53:a4:e7:13:de:7d:82:15:2b:cb:
6d:7e:94:ac:ef:fc:06:55:79:fc:9e:22:72:97:79:
f1:0f:dd:c8:05:fb:23:be:58:12:c8:88:85:3b:c6:
e3:25:50:56:1c:4a:2f:cb:55:9a:25:b7:4b:cd:68:
83:1f:d5:66:20:30:3b:c5:fb:45:01:ad:9a:11:0b:
70:7a:d6:6a:dc:c8:73:f5:14:11:e1:03:62:1c:60:
37:52:d7:4a:e4:e5:ff:c0:a0:40:54:6b:37:60:7f:
ad:25:57:5e:bd:d7:c6:82:1d:7d:7c:f5:62:4c:bf:
6f:78:8e:df:cb:71:f6:68:64:35:32:fc:ae:2f:e7:
96:68:7b:35:bc:10:92:fb:29:ea:eb:f3:88:da:80:
b8:1a:36:64:1c:f8:87:09:ae:f0:0b:e2:2a:6c:e7:
92:59:53:1a:1a:17:c7:d1:11:39:99:87:7a:50:06:
1b:41:dc:fc:c8:fe:5d:43:c1:ad:73:70:bb:b2:c1:
fe:8b:8a:d9:92:aa:5c:41:73:d6:e1:37:82:ed:fc:
54:1e:e4:0a:8b:2e:51:ca:e8:23:7b:fd:52:5f:9b:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C9:F6:3A:73:30:80:5E:48:E6:F9:07:D0:36:FC:78:07:6C:A0:31
X509v3 Authority Key Identifier:
keyid:30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
27:ef:3f:e5:7c:fd:13:af:a3:c7:5a:b7:ae:3a:81:39:73:9a:
25:ba:00:1b:8c:66:32:2b:15:4e:72:ab:bc:36:a4:7f:12:3a:
c2:af:e7:8d:83:77:53:c4:03:bf:ce:11:74:13:1d:a4:89:77:
28:76:45:3b:7c:a3:9b:c8:6e:67:ae:47:8a:ca:2f:31:c2:ec:
0d:e7:c6:fb:04:f4:15:3b:da:ea:b5:9d:8f:0e:6d:bb:54:26:
44:19:da:49:06:a4:b9:a5:0f:ef:a5:a5:57:e7:0b:3a:13:aa:
63:69:85:b9:b7:74:ce:23:4c:c3:86:96:1c:77:f2:43:68:67:
1e:07:3a:4f:a2:05:74:f3:73:19:27:8d:8a:ed:f9:75:fc:07:
40:bf:b3:8b:99:46:74:9f:40:f6:8b:a2:6b:46:6e:21:b4:ad:
22:c5:fc:2e:17:3c:b6:62:63:97:82:d4:98:f5:a5:dd:76:da:
da:7a:29:a6:fd:c6:77:ab:cc:96:3c:17:e1:d1:30:cd:3d:1c:
b0:2a:37:b5:6e:a0:17:05:f1:d5:8b:61:00:d5:76:c3:b1:e7:
72:ec:13:93:54:67:11:9f:d9:ff:47:5b:91:e6:26:88:b6:e3:
5c:c3:eb:5a:ea:92:64:b9:17:1d:50:7e:bb:5a:b2:6f:75:d4:
fe:cf:c4:f7
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Apr 22 06:32:05 2026 by rpki-client