Manifest
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft
File: MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft (raw, json)
Hash identifier: ze185u1/Zm7Qul5NrNmxMXxkdasMfvj/LgzxI7NEzDI=
Subject key identifier: 1B:C9:F6:3A:73:30:80:5E:48:E6:F9:07:D0:36:FC:78:07:6C:A0:31
Authority key identifier: 30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99
Certificate issuer: /CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99
Certificate serial: 0163
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft
Manifest number: 0160
Signing time: Wed 22 Oct 2025 08:55:27 +0000
Manifest this update: Wed 22 Oct 2025 08:55:27 +0000
Manifest next update: Wed 22 Oct 2025 14:55:27 +0000
Files and hashes: 1: 4sPB_u7fbVKrz8PvJ2ANd5wmvN4.roa (hash: d22YNx89jY5XnBKXsXej+Z6EGmQRxBE0r5TbQJ3GCZc=)
2: MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl (hash: lNVzHchobyFHvovV3OpzpyLcVLSyCxMavSBIienJSJg=)
3: Sg5T9EB1MarDInUIhbPko52VS3o.roa (hash: e9ocAxS5rq4dSA0hejCpBmkwVoD5lcM3dG/p61jeJ/Q=)
Validation: Failed, CRL has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 355 (0x163)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=307E1DEA08C58B5FCEC8F57CBB774EEE8E515C99
Validity
Not Before: Oct 22 08:55:27 2025 GMT
Not After : Aug 22 08:14:28 2026 GMT
Subject: CN=1BC9F63A7330805E48E6F907D036FC78076CA031
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cd:6a:8b:9c:dd:35:6e:66:f6:40:24:9e:24:42:
a7:ae:c8:45:0b:e1:02:03:7e:8b:c1:d8:48:d0:a6:
3e:aa:a5:8a:69:53:a4:e7:13:de:7d:82:15:2b:cb:
6d:7e:94:ac:ef:fc:06:55:79:fc:9e:22:72:97:79:
f1:0f:dd:c8:05:fb:23:be:58:12:c8:88:85:3b:c6:
e3:25:50:56:1c:4a:2f:cb:55:9a:25:b7:4b:cd:68:
83:1f:d5:66:20:30:3b:c5:fb:45:01:ad:9a:11:0b:
70:7a:d6:6a:dc:c8:73:f5:14:11:e1:03:62:1c:60:
37:52:d7:4a:e4:e5:ff:c0:a0:40:54:6b:37:60:7f:
ad:25:57:5e:bd:d7:c6:82:1d:7d:7c:f5:62:4c:bf:
6f:78:8e:df:cb:71:f6:68:64:35:32:fc:ae:2f:e7:
96:68:7b:35:bc:10:92:fb:29:ea:eb:f3:88:da:80:
b8:1a:36:64:1c:f8:87:09:ae:f0:0b:e2:2a:6c:e7:
92:59:53:1a:1a:17:c7:d1:11:39:99:87:7a:50:06:
1b:41:dc:fc:c8:fe:5d:43:c1:ad:73:70:bb:b2:c1:
fe:8b:8a:d9:92:aa:5c:41:73:d6:e1:37:82:ed:fc:
54:1e:e4:0a:8b:2e:51:ca:e8:23:7b:fd:52:5f:9b:
fb:bd
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:C9:F6:3A:73:30:80:5E:48:E6:F9:07:D0:36:FC:78:07:6C:A0:31
X509v3 Authority Key Identifier:
keyid:30:7E:1D:EA:08:C5:8B:5F:CE:C8:F5:7C:BB:77:4E:EE:8E:51:5C:99
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MH4d6gjFi1_OyPV8u3dO7o5RXJk.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DBSBANKTW/MH4d6gjFi1_OyPV8u3dO7o5RXJk.mft
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
Signature Algorithm: sha256WithRSAEncryption
0e:13:09:ea:ef:a0:ff:9c:c7:0b:a4:65:3f:1e:02:40:ab:34:
ef:b1:38:45:b3:4c:80:02:c8:df:41:4c:91:d0:17:dc:24:31:
d3:e0:b2:55:18:cb:39:c6:a9:0b:c2:2a:33:86:34:4d:77:f1:
72:7c:06:db:15:b1:15:1a:28:ab:a8:99:af:76:86:a5:d5:e2:
33:54:fa:e8:71:63:e5:70:db:67:5d:e9:ef:ec:e5:97:7e:8c:
d2:61:e0:0b:45:53:dd:05:2f:48:99:a1:65:7f:00:34:4b:94:
61:b7:88:9e:5b:c2:b8:77:f2:d4:57:69:92:6e:fc:89:d7:16:
e6:5d:f4:5c:45:60:f9:e9:43:4b:70:c9:7b:a6:67:b8:80:97:
7c:a1:50:84:8d:ed:f7:ac:a2:19:5f:bf:14:dd:8e:09:77:cf:
64:8d:e8:db:fe:7c:38:a0:9a:04:62:e8:97:9d:f5:b5:f2:c8:
7a:db:17:22:b1:f5:29:c9:52:5c:80:8a:0f:c1:7c:f1:e9:9d:
71:c6:48:a8:29:9d:3f:12:46:34:4f:3c:8a:98:ef:26:1e:c2:
0e:2f:77:a9:6c:32:91:e6:b7:1c:fe:fc:70:3e:7f:d6:56:ab:
d1:c6:70:8f:ef:b2:a3:d7:d7:cb:99:53:54:6b:f3:d5:e8:9e:
19:1b:76:c5
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Oct 22 15:11:24 2025 by rpki-client