This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.mft File: NdY_KFQm2dVyCdQsRrkSWyOnjsE.mft (raw, json) Hash identifier: n68VfDMAxFhn7O2K5I/I/JVxYg0F3MSkOHDs926RalI= Subject key identifier: E0:76:13:60:14:88:9F:56:41:15:A5:76:BD:3D:9A:DB:26:C0:54:7C Authority key identifier: 35:D6:3F:28:54:26:D9:D5:72:09:D4:2C:46:B9:12:5B:23:A7:8E:C1 Certificate issuer: /CN=35D63F285426D9D57209D42C46B9125B23A78EC1 Certificate serial: 0325 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.mft Manifest number: 0316 Signing time: Sat 20 Dec 2025 09:38:19 +0000 Manifest this update: Sat 20 Dec 2025 09:38:19 +0000 Manifest next update: Mon 22 Dec 2025 09:38:19 +0000 Files and hashes: 1: -PlEVlx6TY9SP1WPGXsjNpJJeEo.roa (hash: r88qAAw4kvrkZKuOfw9fM5MbV5AxQ3cq5vt8EQ4uLKc=) 2: NdY_KFQm2dVyCdQsRrkSWyOnjsE.crl (hash: AdiVEKSlXep0foCmxJ3atosd6pK2fo0IZ97RsesvM84=) 3: TbB5fEybQTDjmCWGYymqmvMJhOs.roa (hash: vNB4b7hvOQwX8oLbaz4eHpVTVD7KkWDN8ZOjVPSBWTw=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 15:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 805 (0x325) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=35D63F285426D9D57209D42C46B9125B23A78EC1 Validity Not Before: Dec 20 09:38:19 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=E076136014889F564115A576BD3D9ADB26C0547C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:e1:d1:4d:83:ac:22:dc:4c:97:7c:68:a1:0c: 91:14:39:9c:c2:3f:83:42:55:41:5b:4e:df:83:9e: 75:26:c7:19:b1:48:66:52:d7:90:ad:46:ba:ac:f7: b0:da:89:74:3d:a0:d5:e2:2f:aa:2a:0f:a1:da:02: 33:4b:fa:d0:61:59:e2:2f:7a:e2:c0:8b:7f:a0:9c: bc:d4:e9:95:72:11:8c:d2:62:cd:dc:71:cd:ca:ac: 70:1b:c6:84:44:6d:f1:4a:a8:86:f4:0d:17:22:96: f6:8c:4c:c9:24:0a:da:07:d3:32:a6:7e:88:2f:68: a6:58:70:c8:77:f6:c6:b0:68:e3:03:ab:42:5f:43: c3:6d:12:7d:99:96:2e:99:6e:0d:64:36:7e:82:74: 6e:dc:b5:60:0e:bc:b3:e2:18:8d:ac:25:db:2d:f5: de:15:5d:42:14:c9:66:f3:06:fd:7e:d0:b6:a1:1e: 76:97:b5:de:74:52:e5:23:fa:cb:b3:24:3e:07:7c: 55:f7:87:6b:dd:d8:fc:93:27:8a:6a:03:d8:32:8c: 7c:d7:d0:d0:cd:87:f9:f7:5c:0e:f5:a7:33:04:fe: 96:67:c3:41:5a:6f:2b:c2:55:df:27:b2:ad:b4:49: 32:bc:7f:2b:71:b4:9a:8e:f8:40:6b:c5:3a:d9:48: e7:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E0:76:13:60:14:88:9F:56:41:15:A5:76:BD:3D:9A:DB:26:C0:54:7C X509v3 Authority Key Identifier: keyid:35:D6:3F:28:54:26:D9:D5:72:09:D4:2C:46:B9:12:5B:23:A7:8E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NdY_KFQm2dVyCdQsRrkSWyOnjsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TUCD/NdY_KFQm2dVyCdQsRrkSWyOnjsE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b7:62:ef:5f:ea:87:69:11:b4:f5:de:5f:bb:91:a3:a2:36:b6: 8d:1c:3a:09:72:96:b8:f6:f4:e1:a0:69:82:8b:17:95:66:31: e4:8e:5e:38:c3:e5:99:5e:a8:d7:4c:d6:3d:9a:b5:7a:45:f3: 37:fc:97:a4:93:05:12:d0:71:09:2c:ef:18:c1:7e:f3:c4:f1: 6f:f3:95:76:03:f5:af:b7:21:66:01:e0:09:1c:34:1b:d8:6f: e2:9d:49:3e:e9:d1:d3:81:a7:00:21:10:a7:83:a2:b1:2a:62: 52:83:6a:f5:eb:58:dc:09:66:15:90:51:3b:96:2e:bd:a7:94: 47:60:54:b0:7c:f3:c3:a5:2a:d9:07:68:b6:71:15:b8:a3:fd: 20:7a:a3:4c:b0:6b:10:c6:69:bd:83:34:c3:a4:9a:0b:00:75: e4:c8:2f:c4:86:7e:e9:f2:93:bf:8c:53:2a:70:da:fe:b5:d1: 60:f9:8b:7e:a7:d1:ab:6a:da:40:80:25:73:6b:1d:eb:8c:81: 1e:7c:6b:1d:4d:58:68:9b:f4:66:73:62:30:4f:13:41:80:ca: 58:2b:06:e9:c0:76:39:b4:9f:1b:98:47:aa:24:b5:5a:d3:68: e5:12:39:3f:87:8f:74:0e:9c:5f:0f:fa:5a:3f:1f:01:d5:d8: e6:aa:0d:54 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAyUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMzVE NjNGMjg1NDI2RDlENTcyMDlENDJDNDZCOTEyNUIyM0E3OEVDMTAeFw0yNTEyMjAw OTM4MTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEUwNzYxMzYwMTQ4ODlG NTY0MTE1QTU3NkJEM0Q5QURCMjZDMDU0N0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDL4dFNg6wi3EyXfGihDJEUOZzCP4NCVUFbTt+DnnUmxxmxSGZS 15CtRrqs97DaiXQ9oNXiL6oqD6HaAjNL+tBhWeIveuLAi3+gnLzU6ZVyEYzSYs3c cc3KrHAbxoREbfFKqIb0DRcilvaMTMkkCtoH0zKmfogvaKZYcMh39sawaOMDq0Jf Q8NtEn2Zli6Zbg1kNn6CdG7ctWAOvLPiGI2sJdst9d4VXUIUyWbzBv1+0LahHnaX td50UuUj+suzJD4HfFX3h2vd2PyTJ4pqA9gyjHzX0NDNh/n3XA71pzME/pZnw0Fa byvCVd8nsq20STK8fytxtJqO+EBrxTrZSOcLAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQU4HYTYBSIn1ZBFaV2vT2a2ybAVHwwHwYDVR0jBBgwFoAUNdY/KFQm2dVyCdQs RrkSWyOnjsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFVDRC9O ZFlfS0ZRbTJkVnlDZFFzUnJrU1d5T25qc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L05kWV9LRlFtMmRWeUNkUXNScmtTV3lPbmpzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL1RVQ0QvTmRZX0tGUW0yZFZ5Q2RRc1Jya1NX eU9uanNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBALdi71/q h2kRtPXeX7uRo6I2to0cOglylrj29OGgaYKLF5VmMeSOXjjD5ZleqNdM1j2atXpF 8zf8l6STBRLQcQks7xjBfvPE8W/zlXYD9a+3IWYB4AkcNBvYb+KdST7p0dOBpwAh EKeDorEqYlKDavXrWNwJZhWQUTuWLr2nlEdgVLB888OlKtkHaLZxFbij/SB6o0yw axDGab2DNMOkmgsAdeTIL8SGfunyk7+MUypw2v610WD5i36n0atq2kCAJXNrHeuM gR58ax1NWGib9GZzYjBPE0GAylgrBunAdjm0nxuYR6oktVrTaOUSOT+Hj3QOnF8P +lo/HwHV2OaqDVQ= -----END CERTIFICATE-----Generated at Sun Dec 21 10:47:58 2025 by rpki-client