This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft File: T7OmmWT36W2ws1gTKPAG28oaupc.mft (raw, json) Hash identifier: HytSbb0SJKWiCyU7COBZxlQjgZr84DE8Y8MSmPhAbBA= Subject key identifier: 85:71:F1:A9:69:10:DF:3A:50:E8:C7:1C:3B:F0:35:48:02:A5:5D:8E Authority key identifier: 4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 Certificate issuer: /CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Certificate serial: 0EE3 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft Manifest number: 0DF2 Signing time: Wed 24 Dec 2025 22:11:36 +0000 Manifest this update: Wed 24 Dec 2025 22:11:36 +0000 Manifest next update: Fri 26 Dec 2025 22:11:36 +0000 Files and hashes: 1: 43I79_TjHFmrCPknJkHL79ndk2w.roa (hash: 1PdHBu05RcWVsts+6smHqKkMzUMSg3V8Gf+CQT2V/ks=) 2: 4to_EBWNFvhuC7MdYnGsIDUAeN0.roa (hash: xgrARI/yzuov9A6xEfCD2TDEHo6wDQbSDf5obMJjloQ=) 3: 5aHYpROCZEo9wIYQihJ7XzNxzt0.roa (hash: ajGK1utJ6Ajn8r4oRaNOl5iDEmMGXofU/HXago00M2Q=) 4: 9sXuZ2KbAGLPU3baRmi8DVq9aIo.roa (hash: Qr3fvqPvt7SS/O589HCX7D+AJwiWEsPJL9ak+oVQk00=) 5: C8iRXCfqhssSBRhIEnrCDDkPTsM.roa (hash: OWzAuKwnu7+193BwT4u5mYNFWN2M8PExFaGwLAaHIys=) 6: D95rP_i5bI_VhgVTa5boYv4tDIw.roa (hash: qQ6k2939/UVYM1adrboSWLKDyj5nf/GUagMQYpGZGak=) 7: FcedMacqkhBbyS1PYTJvRVdQhYg.roa (hash: vBJzxVCDJ4wt08gTBp7CULYwB8Oj8RCKXlBRkt7xWCA=) 8: Fm3UnLOSh9pEq1nV6cWq47DlUMw.roa (hash: fCaW7SXraNQ+h8aZc+TUQlbj2RJ07exodqkzUlKZqB8=) 9: IvfIGXc00GAvBFT9vUz8lRkh24A.roa (hash: dDTT4OPBBSRASGFSbq/Hksr5HfYqc5WAgR9FGgcFVSo=) 10: JALGYLJ6AkQm1cvnFYrxD7pcxmk.roa (hash: UD75Um7/WTwP/MMP6A6q5U+QUZ29oRGHdrcPpWaOzxE=) 11: LcWPkmCL2XtdWIqK6c9_WjS6mEo.roa (hash: CWi3rnSOMsQ8Cc+LR82nyN+ZkWegfF0zchJcakqAxmY=) 12: MNH8MnCQhK1FLW9t-s9D60gpHLQ.roa (hash: BNoOFJKZu4btITbkiLy5wsI/UU5c9pwD6e7jYJBgKtE=) 13: RX5-SMTlsUXnPJfAXlwX9tyks0g.roa (hash: QlgJDuge/r4AoLSUZwoN053s8JXETNVwSULDOVpSbFE=) 14: T7OmmWT36W2ws1gTKPAG28oaupc.crl (hash: aMeFxGXVpgJx3njAur5H9Kh5FxnkGLE4LVnTs/Cz3fo=) 15: TzJSzzeHobsqjOVM2qxVNeoa5eU.roa (hash: zbasWfcpWfJ3KYupuO6sUOxYNCE7ltFbGRA9Wvb9hDk=) 16: Z-KU2BaqSGrqNrQSpxPVuDAf5Q4.roa (hash: o4M/7MPAs9WJkdeUIzIVImeCknUl7qciwhcNfFVuAZg=) 17: Z3xz7_XuLtI_lblK3Qp6gIifkm4.roa (hash: eEufI3ANbY20kdd3iNz5gieHEFF2MH/bVbLVPYRi/DA=) 18: ZrxjeWOWdE8sP069zYhdh2H1gcY.roa (hash: 8JFFkILCr3t7TNfRuxwX48geZ48S4DAV7skkcqlyj/I=) 19: _0M3N120tqk6divbB4k_8TyqIPQ.roa (hash: P52CagfkvyL4UzAZ/zladA1uTZZvdW7BOHVwW+cfzYI=) 20: _1MGSDDTIi7CHPlvLWFr-g-Ap0Q.roa (hash: SAbSpgbuZlLEmDI1YoyecWf5B8E6w7BxzFFNJG1IJ0M=) 21: fjAUCJNzthTwsTAWyOaTVcB4q2s.roa (hash: X3TFE5J2DR7FL24kLcQctjPCBDbGQegRM/QYxMIR+1o=) 22: hIXqqGZPwSAGSgEQ8Z70iIFKePM.roa (hash: a/sucm14l8DEXHnD5Nm8NbpXqE5kkXg+hEtN2euu6zs=) 23: iPoo0ktszpmhyLPzkQOFIIZjAic.roa (hash: pvkh0DEez03l71f2+mRTXwaKSeZgV1EuEJ9H2z8Muk8=) 24: jDkDAIoqgp6yGjAkc73AHt0sSOA.roa (hash: oHl3qTG4MSRZSMTWLx3M33ZuqbNakRAqnIQ1PDxQjdE=) 25: lXHfla8_yXv5slrSPc5TFAO3bPw.roa (hash: pPlsQrYDAVc7R/POm1fLSDYbO5v/DghFong6Qm6wnIM=) 26: tB2SCRr9zTP6aiBQyloaMBOnDn4.roa (hash: zRSQ2+xzHA2rRWcKYdnROqcAzyhVX+4nYUd+CzkRBGA=) 27: yBMuFQIuvpBPydUCTWFS-loClNo.roa (hash: FeQA3UCaprhNVzF0PIxLzOQxlge98rznWGlCRFkTefE=) 28: z0dDfMyZipxFEkESnr-uh8lJNNs.roa (hash: XCmeay7YrJW2bLHHiCNL646jqVs0jpzFNwuF2zt4rHs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 06:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3811 (0xee3) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=4FB3A69964F7E96DB0B3581328F006DBCA1ABA97 Validity Not Before: Dec 24 22:11:36 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=8571F1A96910DF3A50E8C71C3BF0354802A55D8E Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:bb:92:87:cc:56:73:bd:62:44:5b:02:1c:3a: 91:6c:b1:b6:7b:a3:60:bc:00:6f:ee:23:35:ce:4b: 53:03:ed:e2:5c:15:7d:99:82:1b:ba:bc:a6:29:84: e6:a5:62:a3:ab:49:7f:a4:19:a8:d1:d5:90:ee:6b: e6:ec:b8:39:d3:19:e7:17:08:50:b8:83:00:4d:f3: 88:12:87:41:0e:76:34:3f:b0:aa:99:e5:57:a2:77: f6:7f:a6:30:b0:ca:60:04:d6:be:10:e1:7a:57:33: 8c:1c:46:4c:a4:b4:64:9b:df:d6:f3:b2:79:bc:fb: 33:2a:39:53:a2:9d:b2:8d:90:84:bb:81:6d:a2:ea: 3d:c5:23:b2:1a:62:c8:04:64:4d:c7:38:fe:af:f8: 9a:a6:36:12:d1:15:c2:8b:e7:e9:f2:71:d2:78:e5: 01:dc:73:06:ce:9e:58:07:22:fa:e7:61:f8:a1:da: ad:8b:4c:bc:a9:f4:d6:30:45:8a:b7:2d:3f:05:cc: 9d:c2:10:88:fe:fa:0f:b7:91:2f:b9:54:ba:c6:14: b0:cd:76:d2:09:56:dd:f4:21:80:0b:ee:a0:a3:1e: 15:b1:d5:97:64:4d:68:57:cb:37:ad:91:45:c0:37: fc:27:56:9d:4c:0c:40:f5:d6:b3:16:cc:4d:97:94: a7:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 85:71:F1:A9:69:10:DF:3A:50:E8:C7:1C:3B:F0:35:48:02:A5:5D:8E X509v3 Authority Key Identifier: keyid:4F:B3:A6:99:64:F7:E9:6D:B0:B3:58:13:28:F0:06:DB:CA:1A:BA:97 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/T7OmmWT36W2ws1gTKPAG28oaupc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DYXNET/T7OmmWT36W2ws1gTKPAG28oaupc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1e:35:46:84:90:c0:7e:71:26:69:7c:1d:6d:51:06:02:2a:37: 82:24:1f:09:7c:15:29:f9:08:87:d6:84:ec:84:92:c0:ea:fe: e5:45:be:5c:3c:1c:76:dd:ed:58:e1:62:5a:b4:42:ae:fd:88: 45:95:69:97:8a:f5:0a:be:b1:5c:2d:5f:73:fa:40:c3:05:33: a9:8d:c9:68:78:a8:71:f8:cf:91:6f:d5:66:6d:8d:e9:9b:0c: 0a:97:90:01:91:b3:6c:22:de:2d:73:49:36:32:95:53:dd:22: 53:97:20:61:58:04:a3:74:81:ff:69:ce:85:36:72:73:51:8b: f6:a3:f5:b2:82:7a:16:a6:3a:27:bf:0a:d3:8c:55:f4:7c:7e: db:f2:67:e2:a3:8e:25:8b:00:0a:3f:a3:e7:0e:cf:f6:d6:9f: e1:c0:40:68:92:91:39:4e:e3:6f:f0:30:26:97:cc:84:2c:43: e1:7d:7a:21:18:7b:88:88:2a:98:fa:4b:01:84:48:6e:c7:20: 3e:41:71:bb:d8:dc:22:4c:00:48:3d:d4:2e:a2:02:78:6e:fe: 20:13:c4:85:ca:c1:b5:e6:2c:e7:6e:0d:06:35:38:97:51:02: 50:3a:97:bc:68:e9:d9:5b:8e:2b:ba:53:72:01:c8:61:80:39: 49:81:75:42 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDuMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNEZC M0E2OTk2NEY3RTk2REIwQjM1ODEzMjhGMDA2REJDQTFBQkE5NzAeFw0yNTEyMjQy MjExMzZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDg1NzFGMUE5NjkxMERG M0E1MEU4QzcxQzNCRjAzNTQ4MDJBNTVEOEUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDPu5KHzFZzvWJEWwIcOpFssbZ7o2C8AG/uIzXOS1MD7eJcFX2Z ghu6vKYphOalYqOrSX+kGajR1ZDua+bsuDnTGecXCFC4gwBN84gSh0EOdjQ/sKqZ 5Veid/Z/pjCwymAE1r4Q4XpXM4wcRkyktGSb39bzsnm8+zMqOVOinbKNkIS7gW2i 6j3FI7IaYsgEZE3HOP6v+JqmNhLRFcKL5+nycdJ45QHccwbOnlgHIvrnYfih2q2L TLyp9NYwRYq3LT8FzJ3CEIj++g+3kS+5VLrGFLDNdtIJVt30IYAL7qCjHhWx1Zdk TWhXyzetkUXAN/wnVp1MDED11rMWzE2XlKf1AgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUhXHxqWkQ3zpQ6MccO/A1SAKlXY4wHwYDVR0jBBgwFoAUT7OmmWT36W2ws1gT KPAG28oaupcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVU L1Q3T21tV1QzNlcyd3MxZ1RLUEFHMjhvYXVwYy5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvVDdPbW1XVDM2VzJ3czFnVEtQQUcyOG9hdXBjLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvRFlYTkVUL1Q3T21tV1QzNlcyd3MxZ1RL UEFHMjhvYXVwYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAe NUaEkMB+cSZpfB1tUQYCKjeCJB8JfBUp+QiH1oTshJLA6v7lRb5cPBx23e1Y4WJa tEKu/YhFlWmXivUKvrFcLV9z+kDDBTOpjcloeKhx+M+Rb9VmbY3pmwwKl5ABkbNs It4tc0k2MpVT3SJTlyBhWASjdIH/ac6FNnJzUYv2o/WygnoWpjonvwrTjFX0fH7b 8mfio44liwAKP6PnDs/21p/hwEBokpE5TuNv8DAml8yELEPhfXohGHuIiCqY+ksB hEhuxyA+QXG72NwiTABIPdQuogJ4bv4gE8SFysG15iznbg0GNTiXUQJQOpe8aOnZ W44rulNyAchhgDlJgXVC -----END CERTIFICATE-----Generated at Thu Dec 25 05:12:02 2025 by rpki-client