This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft File: IKzKhxhQA3Ov93tBSyPcal8UdO4.mft (raw, json) Hash identifier: Un5ocVOYMvmq3JfaYMn/vvI6vMUfea8jAF4vyXIuJzU= Subject key identifier: 63:74:34:BF:3B:34:05:E7:71:25:FE:E5:E8:A7:A7:A8:09:46:E0:F7 Authority key identifier: 20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE Certificate issuer: /CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Certificate serial: 03BE Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft Manifest number: 03B2 Signing time: Sat 20 Dec 2025 08:37:45 +0000 Manifest this update: Sat 20 Dec 2025 08:37:45 +0000 Manifest next update: Mon 22 Dec 2025 08:37:45 +0000 Files and hashes: 1: 8eQHvE5ba-O0_WE2XxhvrVPIDxE.roa (hash: AfAHjTEg+GdsHsUoe5gR4L9h7tpfLbQlG69JIrV3s54=) 2: FJkrjvet6pnYVHl1JNbcizxL0g8.roa (hash: BzeMzMG841+F32q3IBheqxZDU5E0CWxvuV3d5ezHa3s=) 3: IKzKhxhQA3Ov93tBSyPcal8UdO4.crl (hash: cdH7ajDk2BB/NiGQ64F6HCmvbS6Ei7EI8A+Zv5DrN9E=) 4: Qt7hv1NDZ7Gd2WjM9G6YzzXrHwg.roa (hash: nb/dxdNTZanfGhB+PaoPWWRNDU9iTCTUbpnKTXzELgY=) 5: gn1GKghR4XaGzZzd9cX9fOI1Ek4.roa (hash: Eezi5ToGvvbLs3N8RzG6qj/i/tM/Y7p/7lECmZ5IsHE=) 6: s9tu_pDnJrSyKspE2pwZIYBI6D0.roa (hash: 77p9GLnmkRIDPz0ypfQ8Zc8Oh+HTvViv2j8ygqdj+Pg=) 7: wXFlY0DS7Tk9YVdbACjaAPlhD4M.roa (hash: UwyRgcLRscTitWw39H2TO4FRgn7CFSoaLuxrQlQibBg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 01:39:10 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 958 (0x3be) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=20ACCA8718500373AFF77B414B23DC6A5F1474EE Validity Not Before: Dec 20 08:37:45 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=637434BF3B3405E77125FEE5E8A7A7A80946E0F7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:78:74:48:cc:64:3a:a9:1e:7b:4b:a2:fc:06: 0c:d3:28:19:9c:e0:4f:77:be:b4:98:24:2d:4a:2a: c8:39:4a:2c:16:95:9a:a7:6f:a7:15:21:ba:05:b5: 43:04:10:65:e2:f2:34:2a:90:32:12:80:a2:3a:30: b5:35:a8:1a:bf:29:b0:01:c3:1b:7b:07:75:fb:b1: 7c:db:72:54:69:49:0a:d6:cf:de:ff:f5:72:4c:a3: c1:04:88:1e:dc:37:70:0e:9e:76:60:03:1b:d7:53: c6:cc:12:8d:28:df:db:dd:92:d7:71:d1:49:75:09: 5e:cb:b2:48:bb:11:46:ca:c3:4a:1a:e3:d1:a8:5e: 49:16:22:ab:f1:52:d8:1b:83:19:60:b6:b5:98:9f: db:52:3a:bc:db:26:20:7d:92:12:d6:77:ed:64:56: dc:77:0f:67:f0:27:9f:96:44:41:65:ab:31:1e:9c: eb:20:51:79:68:0f:fe:04:d1:9f:35:d7:47:c4:42: b2:2a:26:33:22:2d:ee:c1:de:e9:8c:67:af:34:b0: c5:50:9c:e0:48:4a:c6:bb:8b:31:b0:bc:67:0d:33: f5:b4:0e:ee:5d:4f:7c:50:20:93:9c:a3:c1:cd:42: 3a:d1:7a:a6:6a:3b:d7:1b:05:99:7e:79:71:6f:4a: 7c:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 63:74:34:BF:3B:34:05:E7:71:25:FE:E5:E8:A7:A7:A8:09:46:E0:F7 X509v3 Authority Key Identifier: keyid:20:AC:CA:87:18:50:03:73:AF:F7:7B:41:4B:23:DC:6A:5F:14:74:EE X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/IKzKhxhQA3Ov93tBSyPcal8UdO4.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/CATHDD/IKzKhxhQA3Ov93tBSyPcal8UdO4.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 55:66:db:f0:1f:b7:d9:3a:a8:8c:0d:52:35:7f:2d:85:de:bf: 21:40:05:45:7b:9e:da:ce:6f:1a:1a:76:f9:62:90:27:f7:8d: 36:67:d0:6e:34:7f:86:bf:ad:42:9f:96:bf:16:0b:05:50:bf: ca:df:9e:c9:c2:56:7c:ca:15:73:de:19:4c:8e:2b:18:10:d4: f7:54:b1:4d:01:3f:ad:25:a9:9e:f0:85:9a:f1:c2:16:2c:24: e4:85:c2:ec:e5:df:b4:4c:10:f6:69:80:d9:41:fa:b9:c4:51: 03:2b:d0:2e:37:76:41:f4:f9:15:9c:ad:1d:0b:16:c3:3a:6d: 2b:70:3b:64:e3:31:e5:bf:11:e7:d5:2a:39:27:c4:44:85:64: 4b:17:a0:9f:e1:ab:60:82:00:a9:5a:11:e3:1b:af:dc:56:7b: 3e:70:c3:46:65:88:32:e7:a2:c3:f7:3d:37:29:fc:48:c6:b2: bb:4e:a8:bc:10:ba:c1:68:b3:e9:5b:c3:98:a3:bc:2a:15:c7: 56:cc:9b:3b:03:75:cc:44:3d:57:78:1a:09:22:fa:59:3b:ac: b0:b5:8e:05:c1:57:cc:66:c2:82:a0:81:5d:68:26:9d:c7:7a: 7f:1e:20:98:b7:e7:06:de:8f:23:73:b2:eb:75:95:e4:da:be: 3d:ce:ec:2d -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICA74wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjBB Q0NBODcxODUwMDM3M0FGRjc3QjQxNEIyM0RDNkE1RjE0NzRFRTAeFw0yNTEyMjAw ODM3NDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYzNzQzNEJGM0IzNDA1 RTc3MTI1RkVFNUU4QTdBN0E4MDk0NkUwRjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDHeHRIzGQ6qR57S6L8BgzTKBmc4E93vrSYJC1KKsg5SiwWlZqn b6cVIboFtUMEEGXi8jQqkDISgKI6MLU1qBq/KbABwxt7B3X7sXzbclRpSQrWz97/ 9XJMo8EEiB7cN3AOnnZgAxvXU8bMEo0o39vdktdx0Ul1CV7Lski7EUbKw0oa49Go XkkWIqvxUtgbgxlgtrWYn9tSOrzbJiB9khLWd+1kVtx3D2fwJ5+WREFlqzEenOsg UXloD/4E0Z8110fEQrIqJjMiLe7B3umMZ680sMVQnOBISsa7izGwvGcNM/W0Du5d T3xQIJOco8HNQjrReqZqO9cbBZl+eXFvSnyxAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUY3Q0vzs0BedxJf7l6KenqAlG4PcwHwYDVR0jBBgwFoAUIKzKhxhQA3Ov93tB SyPcal8UdO4wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSERE L0lLektoeGhRQTNPdjkzdEJTeVBjYWw4VWRPNC5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSUt6S2h4aFFBM092OTN0QlN5UGNhbDhVZE80LmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvQ0FUSEREL0lLektoeGhRQTNPdjkzdEJT eVBjYWw4VWRPNC5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQBV ZtvwH7fZOqiMDVI1fy2F3r8hQAVFe57azm8aGnb5YpAn9402Z9BuNH+Gv61Cn5a/ FgsFUL/K357JwlZ8yhVz3hlMjisYENT3VLFNAT+tJame8IWa8cIWLCTkhcLs5d+0 TBD2aYDZQfq5xFEDK9AuN3ZB9PkVnK0dCxbDOm0rcDtk4zHlvxHn1So5J8REhWRL F6Cf4atgggCpWhHjG6/cVns+cMNGZYgy56LD9z03KfxIxrK7Tqi8ELrBaLPpW8OY o7wqFcdWzJs7A3XMRD1XeBoJIvpZO6ywtY4FwVfMZsKCoIFdaCadx3p/HiCYt+cG 3o8jc7LrdZXk2r49zuwt -----END CERTIFICATE-----Generated at Sat Dec 20 22:41:50 2025 by rpki-client