This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.mft File: HZK-Cs-Yh7GoGSh1z-cyI43jIqk.mft (raw, json) Hash identifier: NdQ+rtYi+NBuojj5pCrfFifJlh4ehvOrY4zV517GTZA= Subject key identifier: 70:4A:36:96:F2:28:35:EA:5A:0B:27:27:1E:18:C2:E9:8E:9A:D4:38 Authority key identifier: 1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9 Certificate issuer: /CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9 Certificate serial: 0DAF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.mft Manifest number: 0D99 Signing time: Sat 20 Dec 2025 10:07:59 +0000 Manifest this update: Sat 20 Dec 2025 10:07:59 +0000 Manifest next update: Mon 22 Dec 2025 10:07:59 +0000 Files and hashes: 1: HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl (hash: dbWJ94/3ZNQsCgX6EOn8/HYOG0Rp5ddBYChV0B2tRNQ=) 2: J0pWNyrCWIY5k8mT7IBIHZfpIjs.roa (hash: WEYg+S9Vq+N0Tlw4O8T7f46l6ys1QRnoL/fR7I/cM2A=) 3: bi_TDVubJ9njomx5EkHYpLdeCa8.roa (hash: DS7gFBCUdGBOKW8JeVI0o+OQfH3D+ozjXhDup8iSXDI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 20:09:22 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3503 (0xdaf) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D92BE0ACF9887B1A8192875CFE732238DE322A9 Validity Not Before: Dec 20 10:07:59 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=704A3696F22835EA5A0B27271E18C2E98E9AD438 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d8:ea:c5:a6:90:83:ba:c9:33:73:e8:69:43:f8: bb:83:eb:a6:a2:4a:28:ce:b5:e4:27:a2:bb:07:2a: 49:83:99:dd:f9:1b:95:6d:13:a9:90:73:56:f8:81: c5:bd:c3:b0:6c:18:54:d3:e6:64:20:84:17:a6:28: 7f:ab:4c:7b:33:a5:16:48:5b:83:a8:ba:17:9c:28: 33:bc:43:92:f7:f2:04:68:1e:f4:aa:4c:0d:d4:5d: 6a:35:02:99:3c:d1:93:2c:f2:4e:e7:d6:ea:82:ee: 93:fc:6c:65:da:9b:c4:3a:53:e9:11:4f:7b:30:09: 37:34:85:48:eb:34:e2:16:40:c0:a7:33:71:eb:98: 1a:73:75:d7:1a:f3:29:5b:6d:4d:6d:c9:43:00:4e: 12:72:9d:0a:0b:a5:82:31:0c:3e:0a:69:0d:df:54: 83:e7:ca:d8:96:e9:c9:1f:05:09:8d:b2:4b:3b:a8: be:de:8d:2c:35:58:6e:37:05:08:d5:f7:b8:e8:f1: c9:16:11:1e:a4:79:08:1f:19:74:47:ba:6e:1e:b1: 6d:fe:7c:c0:e7:23:cf:27:7d:cc:9d:b4:bc:cc:90: ee:52:f1:1b:e2:49:27:77:22:2b:7f:c0:d0:a1:ef: 63:b8:cf:40:3b:69:0b:24:48:31:9a:db:1e:29:c3: 0b:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 70:4A:36:96:F2:28:35:EA:5A:0B:27:27:1E:18:C2:E9:8E:9A:D4:38 X509v3 Authority Key Identifier: keyid:1D:92:BE:0A:CF:98:87:B1:A8:19:28:75:CF:E7:32:23:8D:E3:22:A9 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/TWNCTU/HZK-Cs-Yh7GoGSh1z-cyI43jIqk.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption a4:c2:32:24:e4:27:97:24:5a:85:33:1a:93:a0:3c:da:ae:7b: a3:a7:df:14:56:be:8c:93:d9:ae:5f:71:6f:fb:0d:19:bd:91: 53:22:f1:cb:96:cf:18:fb:d3:c9:b6:2d:52:6f:ce:e1:0b:5a: 86:09:07:87:39:af:af:7c:86:7e:8c:dd:05:3c:0c:0d:e4:38: 96:9d:74:2c:50:23:0e:e1:8d:78:92:e8:e4:47:a2:bf:3c:2a: 30:cc:bb:42:ef:27:32:02:d7:f7:83:50:a5:9b:cf:15:4e:c8: 63:9b:ff:96:8c:19:9d:cd:a8:e1:0f:0d:c1:18:89:a9:05:58: c9:61:29:03:9f:d3:23:9c:a6:53:e4:a6:2d:00:ed:6e:65:08: d2:db:e8:fd:6b:bd:66:3e:e1:65:b0:ea:29:d9:d9:ae:e4:60: f0:84:95:f8:80:89:e1:76:a3:2d:9c:26:b0:4d:0f:f4:d3:c0: 51:f5:16:f8:96:a0:e0:42:46:60:d3:3f:1a:e2:f1:55:b5:7f: 8d:6d:4a:d8:a9:79:fd:fc:5d:8c:b9:36:c5:6e:c8:f4:f7:d2: a2:fe:b0:f2:14:05:18:87:0b:4a:b3:be:f2:a2:e7:a0:c8:77: 00:24:68:e8:fe:89:71:35:37:c5:a8:68:08:3a:ff:da:53:d3: ae:f1:6f:89 -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDa8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ5 MkJFMEFDRjk4ODdCMUE4MTkyODc1Q0ZFNzMyMjM4REUzMjJBOTAeFw0yNTEyMjAx MDA3NTlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDcwNEEzNjk2RjIyODM1 RUE1QTBCMjcyNzFFMThDMkU5OEU5QUQ0MzgwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDY6sWmkIO6yTNz6GlD+LuD66aiSijOteQnorsHKkmDmd35G5Vt E6mQc1b4gcW9w7BsGFTT5mQghBemKH+rTHszpRZIW4OouhecKDO8Q5L38gRoHvSq TA3UXWo1Apk80ZMs8k7n1uqC7pP8bGXam8Q6U+kRT3swCTc0hUjrNOIWQMCnM3Hr mBpzddca8ylbbU1tyUMAThJynQoLpYIxDD4KaQ3fVIPnytiW6ckfBQmNsks7qL7e jSw1WG43BQjV97jo8ckWER6keQgfGXRHum4esW3+fMDnI88nfcydtLzMkO5S8Rvi SSd3Iit/wNCh72O4z0A7aQskSDGa2x4pwwvHAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUcEo2lvIoNepaCycnHhjC6Y6a1DgwHwYDVR0jBBgwFoAUHZK+Cs+Yh7GoGSh1 z+cyI43jIqkwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RV L0haSy1Dcy1ZaDdHb0dTaDF6LWN5STQzaklxay5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvSFpLLUNzLVloN0dvR1NoMXotY3lJNDNqSXFrLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvVFdOQ1RVL0haSy1Dcy1ZaDdHb0dTaDF6 LWN5STQzaklxay5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCk wjIk5CeXJFqFMxqToDzarnujp98UVr6Mk9muX3Fv+w0ZvZFTIvHLls8Y+9PJti1S b87hC1qGCQeHOa+vfIZ+jN0FPAwN5DiWnXQsUCMO4Y14kujkR6K/PCowzLtC7ycy Atf3g1Clm88VTshjm/+WjBmdzajhDw3BGImpBVjJYSkDn9MjnKZT5KYtAO1uZQjS 2+j9a71mPuFlsOop2dmu5GDwhJX4gInhdqMtnCawTQ/008BR9Rb4lqDgQkZg0z8a 4vFVtX+NbUrYqXn9/F2MuTbFbsj099Ki/rDyFAUYhwtKs77youegyHcAJGjo/olx NTfFqGgIOv/aU9Ou8W+J -----END CERTIFICATE-----Generated at Sun Dec 21 16:51:41 2025 by rpki-client