This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft File: J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft (raw, json) Hash identifier: K3I3YpsFE/J2eGqskrZEJMgQAAui/UyECZbLIEY3R+s= Subject key identifier: FA:E8:D9:1B:1D:31:8D:21:6E:C5:FF:97:B9:AC:20:17:CA:58:DE:27 Authority key identifier: 27:78:95:E6:4B:E4:1B:71:82:66:4E:13:45:CD:57:E5:D3:6A:1A:F2 Certificate issuer: /CN=277895E64BE41B7182664E1345CD57E5D36A1AF2 Certificate serial: 0310 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft Manifest number: 02FE Signing time: Sun 11 Jan 2026 22:14:14 +0000 Manifest this update: Sun 11 Jan 2026 22:14:14 +0000 Manifest next update: Tue 13 Jan 2026 22:14:14 +0000 Files and hashes: 1: J3iV5kvkG3GCZk4TRc1X5dNqGvI.crl (hash: OprdJSCWUrxo1IrJltumn+/vs/p3r0ysaNLfP9GUBqA=) 2: Ybm49pMKyKpG8z47ALbdnS-I39Q.roa (hash: 0UAmxP2EO94jC5IkOAAFcTOgnudeO4X3lYtyTw+N2L8=) 3: jR5XOBJt72et5TLWZjaUB6MjtT0.roa (hash: aRtR8WtXn6/I8iEaFHymVWC8/RRKC0MRiYkaIfbtlFw=) 4: tQsDTEBBZ1F_n_B9q-DgdEqL2bo.roa (hash: oDqEDsWQAduDrmllywzYRJrI5/FS5eroEVEVtEQo4Rg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 Jan 2026 13:44:28 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 784 (0x310) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=277895E64BE41B7182664E1345CD57E5D36A1AF2 Validity Not Before: Jan 11 22:14:14 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=FAE8D91B1D318D216EC5FF97B9AC2017CA58DE27 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b7:dc:b7:18:ff:f9:6f:7d:7d:07:e1:8b:27:3b: b2:cf:e1:74:c3:ec:ac:3e:ab:70:d4:8b:08:8e:29: f8:49:be:73:a7:cf:69:fb:54:d1:60:7e:a8:41:0c: 56:d9:4d:9f:eb:a8:20:67:b8:31:e3:0b:c0:a3:a7: c8:f3:f9:5c:a0:c6:8c:96:ac:d7:1a:c0:90:8f:19: dd:a7:88:4d:fe:d7:44:58:2d:95:89:98:b9:0e:54: 03:f9:7e:c7:8c:92:57:97:b7:49:ac:94:87:4a:c2: dd:33:25:18:a6:b9:8d:9d:73:14:04:ec:df:72:41: 92:c7:4d:3f:ea:ec:a1:49:e8:c2:56:25:c6:be:fa: 77:37:29:eb:7b:69:e0:22:78:6d:9d:34:df:9b:b8: d9:d3:62:52:95:d3:88:60:9d:71:43:79:81:2f:d8: 1d:81:f4:ad:a4:9c:ef:7e:20:f9:ac:02:f0:a9:d9: b5:0f:53:da:c7:3a:cb:3c:af:c0:b2:40:67:d7:18: 27:47:18:a6:46:66:1e:db:39:c1:d8:29:b6:5b:37: e9:bb:b1:42:03:14:62:38:2c:9e:ef:15:52:9b:dc: 88:36:ae:cf:fb:21:ba:19:74:58:c5:4a:36:82:7b: f2:90:7f:db:72:a6:c4:5e:80:77:e4:9c:7b:1d:19: 18:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:E8:D9:1B:1D:31:8D:21:6E:C5:FF:97:B9:AC:20:17:CA:58:DE:27 X509v3 Authority Key Identifier: keyid:27:78:95:E6:4B:E4:1B:71:82:66:4E:13:45:CD:57:E5:D3:6A:1A:F2 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/J3iV5kvkG3GCZk4TRc1X5dNqGvI.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DNSNET/J3iV5kvkG3GCZk4TRc1X5dNqGvI.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a9:d5:c2:93:b8:f0:30:2e:f0:2b:b4:55:e8:f4:d6:eb:19:d7: 86:d4:df:08:e2:ce:fb:10:dc:ec:99:e1:a0:6b:99:e0:59:bf: 04:58:e8:28:02:4d:0c:67:6a:88:1f:55:d5:db:db:c5:e7:95: cb:1a:c6:58:9a:38:8f:38:1f:6c:bd:39:10:7b:df:ed:a0:eb: d8:ee:52:0a:c6:7c:1c:b7:03:40:66:f2:e9:59:46:fc:18:3d: 6b:c8:ba:c8:3b:e7:ba:82:38:ef:59:47:b1:c5:82:29:dd:f6: c9:41:37:ac:8a:5f:3d:c0:0e:c0:ad:b4:59:da:64:58:21:d8: 29:30:9f:d2:fe:28:aa:29:d5:36:14:ed:8a:47:aa:b3:08:14: 82:b8:f7:cc:cb:9a:84:12:63:03:18:d4:4f:6d:74:1f:bc:fe: 33:d1:e0:00:2d:db:2c:ba:ba:5c:d1:b2:51:00:a1:8d:84:21: d3:5d:e4:57:dc:03:fc:06:44:8e:48:b4:32:72:a7:35:dc:4a: 10:0c:ec:60:0c:d1:8a:87:20:0a:58:e8:aa:cd:68:01:ad:2b: c6:55:f8:78:6f:b3:07:72:e2:3a:3d:47:23:fd:52:b7:24:cd: be:88:27:6d:d2:97:72:1d:2f:16:8f:89:28:52:0b:89:dd:94: 30:41:61:9c -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICAxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMjc3 ODk1RTY0QkU0MUI3MTgyNjY0RTEzNDVDRDU3RTVEMzZBMUFGMjAeFw0yNjAxMTEy MjE0MTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEZBRThEOTFCMUQzMThE MjE2RUM1RkY5N0I5QUMyMDE3Q0E1OERFMjcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC33LcY//lvfX0H4YsnO7LP4XTD7Kw+q3DUiwiOKfhJvnOnz2n7 VNFgfqhBDFbZTZ/rqCBnuDHjC8Cjp8jz+VygxoyWrNcawJCPGd2niE3+10RYLZWJ mLkOVAP5fseMkleXt0mslIdKwt0zJRimuY2dcxQE7N9yQZLHTT/q7KFJ6MJWJca+ +nc3Ket7aeAieG2dNN+buNnTYlKV04hgnXFDeYEv2B2B9K2knO9+IPmsAvCp2bUP U9rHOss8r8CyQGfXGCdHGKZGZh7bOcHYKbZbN+m7sUIDFGI4LJ7vFVKb3Ig2rs/7 IboZdFjFSjaCe/KQf9typsRegHfknHsdGRh/AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQU+ujZGx0xjSFuxf+XuawgF8pY3icwHwYDVR0jBBgwFoAUJ3iV5kvkG3GCZk4T Rc1X5dNqGvIwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE5TTkVU L0ozaVY1a3ZrRzNHQ1prNFRSYzFYNWROcUd2SS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSjNpVjVrdmtHM0dDWms0VFJjMVg1ZE5xR3ZJLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE5TTkVUL0ozaVY1a3ZrRzNHQ1prNFRS YzFYNWROcUd2SS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCp 1cKTuPAwLvArtFXo9NbrGdeG1N8I4s77ENzsmeGga5ngWb8EWOgoAk0MZ2qIH1XV 29vF55XLGsZYmjiPOB9svTkQe9/toOvY7lIKxnwctwNAZvLpWUb8GD1ryLrIO+e6 gjjvWUexxYIp3fbJQTesil89wA7ArbRZ2mRYIdgpMJ/S/iiqKdU2FO2KR6qzCBSC uPfMy5qEEmMDGNRPbXQfvP4z0eAALdssurpc0bJRAKGNhCHTXeRX3AP8BkSOSLQy cqc13EoQDOxgDNGKhyAKWOiqzWgBrSvGVfh4b7MHcuI6PUcj/VK3JM2+iCdt0pdy HS8Wj4koUguJ3ZQwQWGc -----END CERTIFICATE-----Generated at Mon Jan 12 12:32:29 2026 by rpki-client