This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft File: D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft (raw, json) Hash identifier: obw1GWrzO0QTmiUGE255QcOfKlH1yqRWIN31XGmnZ74= Subject key identifier: C8:8F:C5:70:90:7D:EC:1F:5B:E8:6B:88:1E:6A:D5:19:A1:FB:2F:5F Authority key identifier: 0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98 Certificate issuer: /CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198 Certificate serial: 0F10 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft Manifest number: 0F06 Signing time: Wed 24 Dec 2025 22:08:39 +0000 Manifest this update: Wed 24 Dec 2025 22:08:39 +0000 Manifest next update: Fri 26 Dec 2025 22:08:39 +0000 Files and hashes: 1: D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl (hash: tNLIST60zlBEND/ooKrMTRZgaNUuiY0wmLJr4wNGLoU=) 2: ky4sut692-O_-YJp6L76tR2r2TY.roa (hash: iaNsBxG57ix79G0EGOD5rHu5efh0DQkgE+K9V6t8Crg=) 3: vNP_I5PsMAFrbuL-fCVc_DAcuas.roa (hash: APgUUdWq9/Tb8VzeXKS6YF+F0jEJbFs8Sj9SdJqqO7s=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 25 Dec 2025 06:40:13 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3856 (0xf10) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=0F7FB4302F21F301AB0EAFC5B80184BEED3FB198 Validity Not Before: Dec 24 22:08:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=C88FC570907DEC1F5BE86B881E6AD519A1FB2F5F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:2f:e4:bb:14:01:65:91:ff:33:8b:56:65:74: e6:20:32:88:12:20:83:5c:af:24:95:d8:60:86:53: db:7b:8e:82:1f:4b:cf:0f:2b:cd:48:6c:fc:74:ff: ad:a0:ed:75:bb:e5:0c:e7:92:96:a6:42:6d:fe:3a: 1c:78:bd:12:a4:46:86:51:cf:d8:17:49:90:c9:60: 88:16:5b:9a:77:d3:00:91:b5:e2:c7:3b:13:ad:0d: e6:e9:36:09:84:13:c9:13:44:8d:51:91:13:b1:b4: a2:c6:10:ab:37:87:38:46:e5:53:86:4b:76:6b:5f: 82:1a:a1:8d:a3:fb:1c:91:bf:9d:89:0e:cf:2f:44: d2:5c:98:d3:f2:35:19:74:60:c8:99:07:a4:69:45: ba:69:9e:27:e1:5c:f6:f5:81:39:0d:0a:8a:64:59: fb:e9:70:9c:d3:f7:cc:16:1a:60:3a:fc:bd:38:29: 25:e6:00:8d:ef:09:7b:4f:53:e8:e5:77:87:5f:85: b0:c4:10:5b:d1:25:38:b6:2d:4b:4c:80:3b:41:3d: 88:fe:70:8e:4f:68:05:68:45:3e:61:c8:72:b8:a9: 7f:ac:12:86:3e:c6:8b:e7:50:a3:da:59:95:92:dc: 73:81:98:12:5b:4e:f8:74:df:e5:dc:f8:b0:e8:c8: 50:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:8F:C5:70:90:7D:EC:1F:5B:E8:6B:88:1E:6A:D5:19:A1:FB:2F:5F X509v3 Authority Key Identifier: keyid:0F:7F:B4:30:2F:21:F3:01:AB:0E:AF:C5:B8:01:84:BE:ED:3F:B1:98 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/D3-0MC8h8wGrDq_FuAGEvu0_sZg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NTCL/D3-0MC8h8wGrDq_FuAGEvu0_sZg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 93:7f:7f:bb:b3:f7:34:fe:a7:71:01:ce:56:50:de:5c:0a:d3: 07:14:57:eb:30:55:70:53:4f:60:5e:4b:d0:72:f7:9a:18:66: 92:73:40:dd:a5:4c:c6:81:b0:96:0a:28:b4:e7:7e:0f:24:8f: cc:bb:66:08:02:04:35:d3:6b:40:a0:3b:97:a4:53:e2:aa:ad: b6:41:27:d6:e0:2e:c9:a5:cc:81:fe:55:66:25:e1:3c:9f:f0: 1f:e0:4f:29:bf:38:54:b2:87:1b:a0:62:81:ea:67:7f:a9:d7: d2:e7:1c:d2:d6:26:b6:f4:c0:a8:2b:61:c5:f0:0a:09:e6:51: b4:1a:72:41:95:ad:d0:44:21:ca:10:4d:96:70:9e:2b:37:b6: cc:26:aa:ea:74:21:e1:69:12:8a:9a:73:14:f1:e6:59:cd:d7: 56:dc:b0:6e:eb:09:c4:96:7e:f1:50:2d:3c:f0:39:c8:55:48: 62:83:1f:6b:4e:9c:15:7d:38:71:38:ed:ad:a3:58:fe:bc:45: 6a:1f:12:16:a4:43:b7:a7:f1:ec:cc:03:a0:41:58:bc:10:c6: 2b:33:69:26:98:09:63:10:3e:77:61:2f:6c:43:79:9b:03:3b: a7:0d:24:0b:81:ee:3c:c4:2b:c9:e6:f4:ef:66:e7:bb:78:9b: 33:ab:62:e5 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDxAwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMEY3 RkI0MzAyRjIxRjMwMUFCMEVBRkM1QjgwMTg0QkVFRDNGQjE5ODAeFw0yNTEyMjQy MjA4MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEM4OEZDNTcwOTA3REVD MUY1QkU4NkI4ODFFNkFENTE5QTFGQjJGNUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCzL+S7FAFlkf8zi1ZldOYgMogSIINcrySV2GCGU9t7joIfS88P K81IbPx0/62g7XW75QznkpamQm3+Ohx4vRKkRoZRz9gXSZDJYIgWW5p30wCRteLH OxOtDebpNgmEE8kTRI1RkROxtKLGEKs3hzhG5VOGS3ZrX4IaoY2j+xyRv52JDs8v RNJcmNPyNRl0YMiZB6RpRbppnifhXPb1gTkNCopkWfvpcJzT98wWGmA6/L04KSXm AI3vCXtPU+jld4dfhbDEEFvRJTi2LUtMgDtBPYj+cI5PaAVoRT5hyHK4qX+sEoY+ xovnUKPaWZWS3HOBmBJbTvh03+Xc+LDoyFCfAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUyI/FcJB97B9b6GuIHmrVGaH7L18wHwYDVR0jBBgwFoAUD3+0MC8h8wGrDq/F uAGEvu0/sZgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTlRDTC9E My0wTUM4aDh3R3JEcV9GdUFHRXZ1MF9zWmcuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L0QzLTBNQzhoOHdHckRxX0Z1QUdFdnUwX3NaZy5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL05UQ0wvRDMtME1DOGg4d0dyRHFfRnVBR0V2 dTBfc1pnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAJN/f7uz 9zT+p3EBzlZQ3lwK0wcUV+swVXBTT2BeS9By95oYZpJzQN2lTMaBsJYKKLTnfg8k j8y7ZggCBDXTa0CgO5ekU+KqrbZBJ9bgLsmlzIH+VWYl4Tyf8B/gTym/OFSyhxug YoHqZ3+p19LnHNLWJrb0wKgrYcXwCgnmUbQackGVrdBEIcoQTZZwnis3tswmqup0 IeFpEoqacxTx5lnN11bcsG7rCcSWfvFQLTzwOchVSGKDH2tOnBV9OHE47a2jWP68 RWofEhakQ7en8ezMA6BBWLwQxiszaSaYCWMQPndhL2xDeZsDO6cNJAuB7jzEK8nm 9O9m57t4mzOrYuU= -----END CERTIFICATE-----Generated at Thu Dec 25 02:39:15 2025 by rpki-client