This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft File: B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft (raw, json) Hash identifier: 5A8FbRRGHUXZXWOgTOonNA7uNKmX8IwtyP4gkt9+fzU= Subject key identifier: 2C:50:7E:10:C9:72:DD:D4:CA:DF:1C:39:42:A2:EC:FA:A7:9B:B0:E8 Authority key identifier: 07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C Certificate issuer: /CN=07D3E73EC5EB3D704863889E221845B7695D409C Certificate serial: 0242 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft Manifest number: 0234 Signing time: Sat 10 Jan 2026 10:42:26 +0000 Manifest this update: Sat 10 Jan 2026 10:42:26 +0000 Manifest next update: Mon 12 Jan 2026 10:42:26 +0000 Files and hashes: 1: 5d0DMUSn7LM_hvq7kYVWGYrbGxg.roa (hash: y0CHuJQMMilSIZ9UVWVQe9OP7VITUk1M2Wl8Tyw7hqs=) 2: B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl (hash: RdxLMQFOV+e2F3lHNaLedYTTNNqL3O1RV8KRu64cpyc=) 3: H03zGJR4JzrdpOBn8gEb3LyMmOY.roa (hash: J0PLlsyLM6MnFrPMtvhaey1DCBu3gjOSz45UTsZtaCI=) 4: g_1Ymf_bQjUgkOmBlknnGtHLDe8.roa (hash: kRKYcsGpQgL1SqyljOqGJhyghBvkSsyDGunAjkDhX2E=) 5: z_k5BaajG_dnYSMKj3tUGE5B-kU.roa (hash: 8nJ2GeAM8p4JgFdru7DTU1hVDZSDf4B0vSWUBpEXY2I=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.mft rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/FDE5Ly-m0Y9mdB4uoa7qF4GGF0M.cer rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.crl rsync://rpki.apnic.net/repository/B3A24F201D6611E28AC8837C72FD1FF2/dAFlqA0QcZcKvAnAK3HBrHwdbg4.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/dAFlqA0QcZcKvAnAK3HBrHwdbg4.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 12 Jan 2026 01:13:47 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 578 (0x242) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=07D3E73EC5EB3D704863889E221845B7695D409C Validity Not Before: Jan 10 10:42:26 2026 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=2C507E10C972DDD4CADF1C3942A2ECFAA79BB0E8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:33:ce:77:71:d4:55:fe:b0:40:06:c3:96:17: a0:00:3e:48:6b:d9:cf:21:aa:c2:21:9a:74:95:c8: 0e:67:a9:5e:d4:3e:85:9f:02:85:91:0b:e1:8f:78: 49:2f:5d:be:31:c7:3d:96:86:2d:04:d5:88:c4:26: a8:30:a0:66:a9:16:e0:61:e5:e3:d9:29:6c:ff:7f: a2:00:0f:7a:2c:65:0b:14:65:b8:51:8d:b8:8f:72: e1:be:f7:fd:e4:d8:d2:6d:4c:f0:94:7d:98:79:e3: 6e:27:3c:ab:81:7d:55:d2:1a:17:a4:99:1f:1b:6f: 7d:30:7a:89:29:a4:3b:a4:ea:f6:17:ab:f4:25:36: b4:33:dc:49:b4:34:c8:49:2d:89:38:1d:97:1a:ab: 01:49:06:89:28:4b:eb:37:90:88:41:7b:e6:16:28: fc:23:77:e0:03:d2:92:d0:68:59:8d:5e:4f:f5:66: de:08:17:6b:f6:3d:41:73:1e:66:03:8d:3e:3d:e0: 77:38:10:0a:3f:91:2e:91:76:cf:80:21:f3:78:70: 97:aa:2a:95:fd:a5:b2:36:d2:3e:cd:ed:e5:b6:ee: 7d:8b:9d:14:90:8a:84:78:bc:2f:ca:55:56:a5:b3: 75:4b:26:1b:70:b0:c7:c4:56:9b:f5:b6:d7:e6:41: 63:97 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2C:50:7E:10:C9:72:DD:D4:CA:DF:1C:39:42:A2:EC:FA:A7:9B:B0:E8 X509v3 Authority Key Identifier: keyid:07:D3:E7:3E:C5:EB:3D:70:48:63:88:9E:22:18:45:B7:69:5D:40:9C X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/B9PnPsXrPXBIY4ieIhhFt2ldQJw.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/M2NIM/B9PnPsXrPXBIY4ieIhhFt2ldQJw.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7f:c6:46:bb:f9:d6:23:90:46:fb:cc:0b:ed:07:3c:84:05:83: 2d:f6:53:fc:83:99:cb:95:68:f0:f3:96:ba:af:f8:d1:81:99: 43:40:88:e0:41:55:41:52:5e:e4:ef:e9:b7:5d:ba:a8:fc:67: 3e:cc:94:3d:2b:1f:81:ee:b8:9f:a6:90:7f:1a:ad:a7:03:23: 2b:5c:6c:c8:35:ce:fd:30:c9:07:07:93:0e:e9:55:57:28:bd: 46:ba:9c:a3:a3:f5:0b:60:71:3f:58:f6:bd:7b:be:75:39:a4: dd:4c:70:14:3b:4f:40:ea:26:ff:56:89:b3:7c:33:49:7b:14: 3e:37:20:21:b4:83:91:66:01:40:96:f9:e6:5b:3a:e0:38:a4: 55:cd:10:69:4c:91:15:66:e2:84:8e:c6:0e:85:27:68:f6:61: 31:90:cd:0c:d1:0f:18:82:40:19:77:96:b1:6c:2e:74:4f:d2: 1e:42:1b:63:84:a2:1a:b9:1c:e5:58:4b:7b:e9:9e:49:48:b8: 08:ac:ce:3e:73:e1:0b:1f:07:53:87:a6:4f:88:be:49:c9:b7: 5a:fe:e9:14:a4:d4:13:eb:8b:79:56:7b:84:30:1e:a4:42:56: 4b:a1:d0:df:19:6d:8d:c2:02:7e:1d:b5:63:c0:e2:e2:bf:b5: c6:8f:4d:cf -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAkIwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMDdE M0U3M0VDNUVCM0Q3MDQ4NjM4ODlFMjIxODQ1Qjc2OTVENDA5QzAeFw0yNjAxMTAx MDQyMjZaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDJDNTA3RTEwQzk3MkRE RDRDQURGMUMzOTQyQTJFQ0ZBQTc5QkIwRTgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDXM853cdRV/rBABsOWF6AAPkhr2c8hqsIhmnSVyA5nqV7UPoWf AoWRC+GPeEkvXb4xxz2Whi0E1YjEJqgwoGapFuBh5ePZKWz/f6IAD3osZQsUZbhR jbiPcuG+9/3k2NJtTPCUfZh5424nPKuBfVXSGhekmR8bb30weokppDuk6vYXq/Ql NrQz3Em0NMhJLYk4HZcaqwFJBokoS+s3kIhBe+YWKPwjd+AD0pLQaFmNXk/1Zt4I F2v2PUFzHmYDjT494Hc4EAo/kS6Rds+AIfN4cJeqKpX9pbI20j7N7eW27n2LnRSQ ioR4vC/KVVals3VLJhtwsMfEVpv1ttfmQWOXAgMBAAGjggIFMIICATAdBgNVHQ4E FgQULFB+EMly3dTK3xw5QqLs+qebsOgwHwYDVR0jBBgwFoAUB9PnPsXrPXBIY4ie IhhFt2ldQJwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTTJOSU0v QjlQblBzWHJQWEJJWTRpZUloaEZ0MmxkUUp3LmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9COVBuUHNYclBYQklZNGllSWhoRnQybGRRSncuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9NMk5JTS9COVBuUHNYclBYQklZNGllSWho RnQybGRRSncubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAf8ZG u/nWI5BG+8wL7Qc8hAWDLfZT/IOZy5Vo8POWuq/40YGZQ0CI4EFVQVJe5O/pt126 qPxnPsyUPSsfge64n6aQfxqtpwMjK1xsyDXO/TDJBweTDulVVyi9Rrqco6P1C2Bx P1j2vXu+dTmk3UxwFDtPQOom/1aJs3wzSXsUPjcgIbSDkWYBQJb55ls64DikVc0Q aUyRFWbihI7GDoUnaPZhMZDNDNEPGIJAGXeWsWwudE/SHkIbY4SiGrkc5VhLe+me SUi4CKzOPnPhCx8HU4emT4i+Scm3Wv7pFKTUE+uLeVZ7hDAepEJWS6HQ3xltjcIC fh21Y8Di4r+1xo9Nzw== -----END CERTIFICATE-----Generated at Mon Jan 12 00:03:06 2026 by rpki-client