This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft File: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft (raw, json) Hash identifier: Tkp0SdB5yxwmXcLlNnmXUALtt0WHALh32WpZ6h+gTR4= Subject key identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 Authority key identifier: D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 Certificate issuer: /CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Certificate serial: 021D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft Manifest number: 0210 Signing time: Sat 20 Dec 2025 09:38:54 +0000 Manifest this update: Sat 20 Dec 2025 09:38:54 +0000 Manifest next update: Mon 22 Dec 2025 09:38:54 +0000 Files and hashes: 1: 2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl (hash: rzfc+kMnJ9aatWmGlxvyFwOWr3YVMU6HWdaH979vPTk=) 2: Cg7tohmMh5saCNIzU2ngrmhS4hQ.roa (hash: xLFhUUQSzCZzSuN6C34hcq+pSFhdqgsCF6lBLi1RME0=) 3: UKiAu9DBouIS6MzSfFnTOhCKjk8.roa (hash: HUOCS7o68Oz0egV5TPUT3GtLtUMosl436IdLe3HoVt8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 06:09:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 541 (0x21d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D966B55909324180A88A45E1F683CF4D2ED9BCA5 Validity Not Before: Dec 20 09:38:54 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=721BD71397601F82691E128A2782C35B4FC3AC40 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:85:dd:8e:40:a6:72:e5:c1:f7:b8:37:1b:68: c8:64:1b:d0:2a:24:ac:4d:57:74:67:03:07:e8:a4: 6b:2b:d7:0b:62:1b:78:1f:73:05:95:f3:23:86:27: 5f:9b:ab:4a:67:34:ea:8a:1d:12:78:76:b0:df:78: 86:eb:a3:a8:31:65:3c:48:08:da:6c:06:fe:5c:6a: 59:16:be:af:39:2d:60:6a:ad:be:7e:15:e4:0c:81: cf:e8:05:89:05:3e:cd:f7:7d:9a:9b:c0:02:55:4c: f1:4a:ef:73:ff:0d:d8:16:f2:58:b4:a5:b7:5f:d3: f6:a1:18:77:ce:48:4a:7c:ee:bf:cf:a8:34:82:a8: b5:a0:d3:1f:6d:86:8b:9c:b2:0b:2e:4d:f0:60:4f: 3f:b7:c4:91:cb:07:70:f1:dd:82:da:5d:b8:a5:21: 1a:9f:5e:7c:87:30:4a:0a:a2:c7:4f:61:d0:b7:43: de:db:c8:20:05:7d:e6:ce:b8:17:3f:85:cd:b9:0f: de:cf:7c:ce:63:7a:25:28:3e:81:5d:85:cf:eb:7d: 48:e1:44:22:52:cb:32:95:aa:70:a3:42:df:98:23: 4d:ca:fe:70:4c:d0:9a:24:ff:b9:23:f4:6c:7c:b4: 42:39:a5:82:b2:11:58:a7:e7:6c:3c:c8:ad:1d:24: c7:a7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:1B:D7:13:97:60:1F:82:69:1E:12:8A:27:82:C3:5B:4F:C3:AC:40 X509v3 Authority Key Identifier: keyid:D9:66:B5:59:09:32:41:80:A8:8A:45:E1:F6:83:CF:4D:2E:D9:BC:A5 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/LIRUN/2Wa1WQkyQYCoikXh9oPPTS7ZvKU.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 2f:7f:ce:b5:cf:63:ea:83:47:4c:42:4f:e0:5a:62:1a:5d:82: 4f:b5:fc:3b:1c:0e:03:3a:fb:e2:1a:a2:1e:05:c1:d6:46:fe: 68:5b:5e:c2:93:a2:fd:7a:a0:67:5b:ca:5e:9c:e3:70:63:d8: 71:b7:0f:91:2b:56:ab:bf:e5:a4:a7:94:75:a3:8e:bc:72:13: cc:5d:74:0d:c1:3b:dc:b7:0d:27:6e:c6:82:c8:4e:2a:3f:be: 0c:9f:35:75:53:b0:4b:9e:77:15:99:ea:2f:23:4c:3a:12:70: a9:88:bb:ba:4d:b2:18:c8:c2:13:d2:8b:c2:cf:82:83:01:02: f0:ce:e1:ca:a3:18:17:19:4b:a4:bd:c5:b5:70:53:f0:03:cf: e2:36:37:a7:79:95:75:33:e1:87:e7:1a:20:53:ea:27:05:3b: a6:d6:4a:89:11:52:a3:a9:73:1b:1b:fa:1e:79:0f:50:ac:9c: f4:05:dd:8c:90:f1:17:53:0f:30:f6:09:c9:10:f2:8a:7c:b5: 63:61:7b:89:fe:40:55:11:c2:e3:96:0e:3f:d2:aa:b8:f6:b1: c4:f5:cf:5a:ce:64:31:e3:66:03:f6:67:2b:9e:a7:53:92:4b: 03:67:47:34:d5:44:0c:44:a6:b9:0c:2e:df:c8:1b:8a:08:65: ab:61:c2:54 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAh0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDk2 NkI1NTkwOTMyNDE4MEE4OEE0NUUxRjY4M0NGNEQyRUQ5QkNBNTAeFw0yNTEyMjAw OTM4NTRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcyMUJENzEzOTc2MDFG ODI2OTFFMTI4QTI3ODJDMzVCNEZDM0FDNDAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCdhd2OQKZy5cH3uDcbaMhkG9AqJKxNV3RnAwfopGsr1wtiG3gf cwWV8yOGJ1+bq0pnNOqKHRJ4drDfeIbro6gxZTxICNpsBv5calkWvq85LWBqrb5+ FeQMgc/oBYkFPs33fZqbwAJVTPFK73P/DdgW8li0pbdf0/ahGHfOSEp87r/PqDSC qLWg0x9thoucsgsuTfBgTz+3xJHLB3Dx3YLaXbilIRqfXnyHMEoKosdPYdC3Q97b yCAFfebOuBc/hc25D97PfM5jeiUoPoFdhc/rfUjhRCJSyzKVqnCjQt+YI03K/nBM 0Jok/7kj9Gx8tEI5pYKyEVin52w8yK0dJMenAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUchvXE5dgH4JpHhKKJ4LDW0/DrEAwHwYDVR0jBBgwFoAU2Wa1WQkyQYCoikXh 9oPPTS7ZvKUwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTElSVU4v MldhMVdRa3lRWUNvaWtYaDlvUFBUUzdadktVLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8yV2ExV1FreVFZQ29pa1hoOW9QUFRTN1p2S1UuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9MSVJVTi8yV2ExV1FreVFZQ29pa1hoOW9Q UFRTN1p2S1UubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAL3/O tc9j6oNHTEJP4FpiGl2CT7X8OxwOAzr74hqiHgXB1kb+aFtewpOi/XqgZ1vKXpzj cGPYcbcPkStWq7/lpKeUdaOOvHITzF10DcE73LcNJ27GgshOKj++DJ81dVOwS553 FZnqLyNMOhJwqYi7uk2yGMjCE9KLws+CgwEC8M7hyqMYFxlLpL3FtXBT8APP4jY3 p3mVdTPhh+caIFPqJwU7ptZKiRFSo6lzGxv6HnkPUKyc9AXdjJDxF1MPMPYJyRDy iny1Y2F7if5AVRHC45YOP9KquPaxxPXPWs5kMeNmA/ZnK56nU5JLA2dHNNVEDESm uQwu38gbighlq2HCVA== -----END CERTIFICATE-----Generated at Sun Dec 21 02:15:07 2025 by rpki-client