This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft File: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft (raw, json) Hash identifier: GuIGxLX9FhYuuTvnh8l0yHpsmzBnhgvEObnoBKPqfLg= Subject key identifier: 77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A Authority key identifier: D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 Certificate issuer: /CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Certificate serial: 02B4 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft Manifest number: 02AB Signing time: Tue 23 Dec 2025 09:40:03 +0000 Manifest this update: Tue 23 Dec 2025 09:40:03 +0000 Manifest next update: Thu 25 Dec 2025 09:40:03 +0000 Files and hashes: 1: 0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl (hash: Hnrzlge7WkkyIk5VEhTcQdkxGOto0oLZofEINbF7X9I=) 2: P1ZKyfvag6UsPC4dNJOSlY3e4jI.roa (hash: 1vRlxS13uFPFd7r4WDxgL7pRnrmfLKWCBZB3Vu33Hnc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 18:39:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 692 (0x2b4) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D330BC4E137B1512E2E4506806B870A4EAA860D7 Validity Not Before: Dec 23 09:40:03 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=770707B2FDD87DCEE7497AC682964243F898389A Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:28:b9:82:cf:c5:d4:72:69:c6:f5:70:48:14: 0a:c1:74:e9:f2:9a:34:17:2b:3b:04:30:4a:0c:da: 27:91:c6:e5:6f:35:35:03:da:31:3c:e1:53:24:31: c5:97:ee:50:f9:02:71:04:88:08:11:9c:6e:b8:e8: d9:e6:8c:93:54:a2:d9:0a:3e:ed:37:ca:07:85:14: 3a:90:de:5b:6a:0f:21:d3:f8:a0:22:02:51:c5:58: f2:35:7a:16:0f:b0:c3:4d:ed:2f:41:9b:ec:b0:30: 47:14:ad:f6:0f:ac:97:42:6f:f7:6c:c0:60:56:2b: 7a:0b:91:e0:a2:6f:82:6d:4d:59:02:59:88:01:50: b2:28:e5:97:cd:a3:8c:09:68:0d:84:d7:b4:30:2b: 82:3b:68:5e:13:3d:c9:6f:6d:bd:c3:8c:0d:3e:6f: bd:61:6c:7e:97:65:0a:5e:01:7d:66:47:26:37:af: 1a:44:61:0c:43:93:00:e2:38:1f:c5:d6:37:42:49: a9:cd:bb:30:1e:a8:1c:b5:3a:f7:96:bb:e2:07:fc: a9:0b:e0:01:de:9f:e3:51:dd:57:71:bd:15:81:71: da:60:5b:a7:2e:0e:e5:2d:04:60:d7:c6:39:44:95: 84:a1:47:85:7c:dd:08:2c:5c:9d:93:45:78:7e:e1: 2e:a1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:07:07:B2:FD:D8:7D:CE:E7:49:7A:C6:82:96:42:43:F8:98:38:9A X509v3 Authority Key Identifier: keyid:D3:30:BC:4E:13:7B:15:12:E2:E4:50:68:06:B8:70:A4:EA:A8:60:D7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0zC8ThN7FRLi5FBoBrhwpOqoYNc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BESTBASIS/0zC8ThN7FRLi5FBoBrhwpOqoYNc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1b:49:15:e2:e6:dc:6d:0d:7c:cd:1d:a5:44:64:89:1e:97:be: 8f:8c:b9:e0:16:5f:96:97:30:06:54:9c:04:da:cf:16:7a:8d: c9:8e:cf:08:14:16:95:aa:47:ac:84:c8:7b:ee:55:38:c1:29: 7e:4c:93:a7:69:3d:92:8f:67:77:de:87:99:2b:f0:c1:2f:fc: ce:08:95:11:12:07:bc:e6:57:73:68:ac:31:60:07:49:93:0d: 42:fe:b8:88:81:24:e4:5a:fa:b3:75:d7:0e:b0:c3:d6:b9:72: 66:0b:14:05:5c:73:73:8c:89:0e:47:0e:db:22:49:eb:c0:c7: 6b:f7:75:f6:6c:8d:55:1a:d3:31:3b:eb:3f:4d:6d:fa:24:b3: 31:2c:21:38:aa:87:37:94:1f:15:56:56:e6:71:3a:96:83:58: a8:74:dd:54:58:f2:20:c4:1d:6f:32:a2:26:06:cb:96:63:e5: 34:4d:64:cb:aa:1c:19:73:1f:b3:ef:2b:d9:9a:8b:06:e8:7e: 2d:bc:54:22:d4:06:d3:1e:62:18:a6:d8:44:d8:47:01:48:31: 99:e4:06:5a:1b:39:d4:0e:82:f8:1d:a6:15:2a:5d:40:7a:52: bb:04:49:b0:7d:68:1a:e7:15:de:20:67:4e:b3:c3:c7:50:cd: 69:e8:35:73 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICArQwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDMz MEJDNEUxMzdCMTUxMkUyRTQ1MDY4MDZCODcwQTRFQUE4NjBENzAeFw0yNTEyMjMw OTQwMDNaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc3MDcwN0IyRkREODdE Q0VFNzQ5N0FDNjgyOTY0MjQzRjg5ODM4OUEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDIKLmCz8XUcmnG9XBIFArBdOnymjQXKzsEMEoM2ieRxuVvNTUD 2jE84VMkMcWX7lD5AnEEiAgRnG646NnmjJNUotkKPu03ygeFFDqQ3ltqDyHT+KAi AlHFWPI1ehYPsMNN7S9Bm+ywMEcUrfYPrJdCb/dswGBWK3oLkeCib4JtTVkCWYgB ULIo5ZfNo4wJaA2E17QwK4I7aF4TPclvbb3DjA0+b71hbH6XZQpeAX1mRyY3rxpE YQxDkwDiOB/F1jdCSanNuzAeqBy1OveWu+IH/KkL4AHen+NR3VdxvRWBcdpgW6cu DuUtBGDXxjlElYShR4V83QgsXJ2TRXh+4S6hAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUdwcHsv3Yfc7nSXrGgpZCQ/iYOJowHwYDVR0jBBgwFoAU0zC8ThN7FRLi5FBo BrhwpOqoYNcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJB U0lTLzB6QzhUaE43RlJMaTVGQm9Ccmh3cE9xb1lOYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvMHpDOFRoTjdGUkxpNUZCb0JyaHdwT3FvWU5jLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQkVTVEJBU0lTLzB6QzhUaE43RlJM aTVGQm9Ccmh3cE9xb1lOYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAbSRXi5txtDXzNHaVEZIkel76PjLngFl+WlzAGVJwE2s8Weo3Jjs8IFBaV qkeshMh77lU4wSl+TJOnaT2Sj2d33oeZK/DBL/zOCJUREge85ldzaKwxYAdJkw1C /riIgSTkWvqzddcOsMPWuXJmCxQFXHNzjIkORw7bIknrwMdr93X2bI1VGtMxO+s/ TW36JLMxLCE4qoc3lB8VVlbmcTqWg1iodN1UWPIgxB1vMqImBsuWY+U0TWTLqhwZ cx+z7yvZmosG6H4tvFQi1AbTHmIYpthE2EcBSDGZ5AZaGznUDoL4HaYVKl1AelK7 BEmwfWga5xXeIGdOs8PHUM1p6DVz -----END CERTIFICATE-----Generated at Tue Dec 23 18:17:46 2025 by rpki-client