This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft File: RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft (raw, json) Hash identifier: ug/lsj3D9PoVG8+Eq9OTnFyRw5Dug0mFwDWAGPDKl+E= Subject key identifier: EB:A3:97:2C:CF:2A:C1:97:E5:86:C0:AD:8B:74:0D:C3:6C:79:B1:B3 Authority key identifier: 46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B Certificate issuer: /CN=4640D988EC8146BA430596012122D1A1CFC1C36B Certificate serial: 0DE3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft Manifest number: 0DC1 Signing time: Sat 10 Jan 2026 10:13:34 +0000 Manifest this update: Sat 10 Jan 2026 10:13:34 +0000 Manifest next update: Mon 12 Jan 2026 10:13:34 +0000 Files and hashes: 1: FYcm3-BAzLarrqeCYV2whY0U-zo.roa (hash: BaTk+IlRTMk3VliwXqlPH52YkxVtp5DBAOqd4jq6OiU=) 2: RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl (hash: h4BQYalK60VWALbvXpIopQtFGf5ERmS6vLJjtT+9r6o=) 3: TsN0H5pD6Qm0_O0vCqm-6LmqAwg.roa (hash: QK6bO3POqwYLqN6of1UT1LdwgPFXVK0OJbizi519XWY=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 11 Jan 2026 21:13:49 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3555 (0xde3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4640D988EC8146BA430596012122D1A1CFC1C36B Validity Not Before: Jan 10 10:13:34 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EBA3972CCF2AC197E586C0AD8B740DC36C79B1B3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:1c:70:15:e8:47:0b:5c:cf:90:8c:df:cd:69: 20:52:4c:f0:94:21:ba:af:0c:c8:7d:b3:9b:43:3f: a9:ba:1e:ea:bc:53:ef:72:c0:4f:fc:bb:b9:9a:63: 79:52:fb:a7:80:e8:c1:45:c6:9f:2b:43:84:a0:c5: 20:e4:5a:c2:1f:e2:2f:06:cf:d2:d6:16:05:26:af: e6:d6:76:af:7b:84:98:e9:6d:b6:84:92:6e:0b:b1: f7:2a:ab:94:42:e0:f3:c1:28:a4:7d:ce:c5:f8:f3: 9f:b6:1e:78:f0:7f:9b:f2:1d:4e:23:b0:22:0b:cf: 90:b5:e3:4f:ab:e9:1e:9b:c3:da:13:ce:3b:20:c2: 56:9c:d7:48:31:f2:1c:f3:95:6e:63:09:be:69:92: fa:07:ca:5d:c5:72:72:26:72:b5:f9:f5:4b:ac:40: b1:5a:53:c3:7b:be:8c:5e:cd:fb:81:9a:aa:3f:f3: de:98:2d:3e:77:8f:d9:20:67:13:31:1f:47:ad:a1: 87:11:a7:34:8c:72:b1:03:28:9b:b8:7d:4b:28:ed: 0c:37:e8:ea:75:bb:56:19:d8:b9:76:70:39:cc:11: 35:de:13:3d:c1:36:5b:5b:5e:7f:8f:7e:b9:4e:b7: a4:aa:a5:25:16:70:65:b2:40:fa:01:44:f0:f8:7c: 9d:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EB:A3:97:2C:CF:2A:C1:97:E5:86:C0:AD:8B:74:0D:C3:6C:79:B1:B3 X509v3 Authority Key Identifier: keyid:46:40:D9:88:EC:81:46:BA:43:05:96:01:21:22:D1:A1:CF:C1:C3:6B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RkDZiOyBRrpDBZYBISLRoc_Bw2s.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/APPIER/RkDZiOyBRrpDBZYBISLRoc_Bw2s.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 25:0d:da:bc:70:2b:ed:27:f5:fb:23:9a:8a:0f:5f:81:df:05: 75:ce:69:81:c7:ec:f0:84:77:59:07:85:89:aa:3e:84:43:ee: e7:e3:6e:ba:cd:19:2a:5a:a9:fa:80:20:40:96:a9:94:73:9f: 8f:cb:19:f0:ba:ea:c3:35:6a:5c:37:10:ae:9d:0b:01:5f:19: bf:2a:2c:6f:98:ce:be:91:fe:16:49:cd:13:5b:1e:3b:8b:4f: 4f:85:61:32:f5:bf:53:be:7b:5a:ff:da:3f:aa:cd:0c:60:87: 1c:58:c6:b2:02:6d:14:99:d2:0d:d2:19:b8:3f:ef:cf:c6:13: 16:ab:71:92:f4:9d:cb:3b:4c:9b:12:91:59:ad:e8:ab:4d:78: b0:b9:08:9a:14:c1:a5:ee:f2:da:85:d6:76:c9:7d:38:86:77: b2:65:e2:3a:fc:6b:50:87:de:90:07:95:6a:74:d6:1d:ec:31: 1b:7e:2f:7e:4d:87:ec:e6:08:7c:58:e2:f6:91:20:9c:24:12: 81:ab:13:df:71:c1:9b:1e:33:83:5e:cd:1d:79:67:fe:bd:4e: d5:72:cd:27:d4:30:4e:51:1a:60:39:29:70:27:e9:13:77:72: d7:8d:92:d1:70:c5:26:7c:a4:99:1e:e0:29:72:2a:64:c9:bd: 20:92:93:64 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDeMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDY0 MEQ5ODhFQzgxNDZCQTQzMDU5NjAxMjEyMkQxQTFDRkMxQzM2QjAeFw0yNjAxMTAx MDEzMzRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVCQTM5NzJDQ0YyQUMx OTdFNTg2QzBBRDhCNzQwREMzNkM3OUIxQjMwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCqHHAV6EcLXM+QjN/NaSBSTPCUIbqvDMh9s5tDP6m6Huq8U+9y wE/8u7maY3lS+6eA6MFFxp8rQ4SgxSDkWsIf4i8Gz9LWFgUmr+bWdq97hJjpbbaE km4Lsfcqq5RC4PPBKKR9zsX485+2Hnjwf5vyHU4jsCILz5C140+r6R6bw9oTzjsg wlac10gx8hzzlW5jCb5pkvoHyl3FcnImcrX59UusQLFaU8N7voxezfuBmqo/896Y LT53j9kgZxMxH0etoYcRpzSMcrEDKJu4fUso7Qw36Op1u1YZ2Ll2cDnMETXeEz3B NltbXn+PfrlOt6SqpSUWcGWyQPoBRPD4fJ0nAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQU66OXLM8qwZflhsCti3QNw2x5sbMwHwYDVR0jBBgwFoAURkDZiOyBRrpDBZYB ISLRoc/Bw2swGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVS L1JrRFppT3lCUnJwREJaWUJJU0xSb2NfQncycy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUmtEWmlPeUJScnBEQlpZQklTTFJvY19CdzJzLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQVBQSUVSL1JrRFppT3lCUnJwREJaWUJJ U0xSb2NfQncycy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAl Ddq8cCvtJ/X7I5qKD1+B3wV1zmmBx+zwhHdZB4WJqj6EQ+7n4266zRkqWqn6gCBA lqmUc5+PyxnwuurDNWpcNxCunQsBXxm/KixvmM6+kf4WSc0TWx47i09PhWEy9b9T vnta/9o/qs0MYIccWMayAm0UmdIN0hm4P+/PxhMWq3GS9J3LO0ybEpFZreirTXiw uQiaFMGl7vLahdZ2yX04hneyZeI6/GtQh96QB5VqdNYd7DEbfi9+TYfs5gh8WOL2 kSCcJBKBqxPfccGbHjODXs0deWf+vU7Vcs0n1DBOURpgOSlwJ+kTd3LXjZLRcMUm fKSZHuApcipkyb0gkpNk -----END CERTIFICATE-----Generated at Sun Jan 11 20:09:57 2026 by rpki-client