This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft File: paasOO5ow2TPeRiPBkJ-nHZtTBo.mft (raw, json) Hash identifier: MLoVoqhrZtjZqY2qfahVVR0G22+bXDtxYDFrFEUqVTY= Subject key identifier: 33:32:3B:FC:44:4C:8F:10:31:AF:8A:F5:A8:65:57:05:2A:54:31:3D Authority key identifier: A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A Certificate issuer: /CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Certificate serial: 0365 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft Manifest number: 034F Signing time: Tue 09 Dec 2025 20:06:39 +0000 Manifest this update: Tue 09 Dec 2025 20:06:39 +0000 Manifest next update: Thu 11 Dec 2025 20:06:39 +0000 Files and hashes: 1: Qt9atZ3GcC-y3iBsCuaMHsUopwI.roa (hash: LUMGOFfqaa3HagbagohUH6ixJDCnZTF4hbvYcOb/iu4=) 2: Z6ycjfuTcBGPJZzYsGzXqbfpoRo.roa (hash: KzPOBIDBX88MEw59F18toZ52VsgESFMtcMEmagXtMcA=) 3: bXWQ0rXcaoaHeNvxC-BHcAoiLxY.roa (hash: QRsF3kucUP+OXMuqwL3AiP/lc97FNfrCz9ZSRSQBvSw=) 4: jqtTJhcdV-81ChC3Gbo1Af4A6fs.roa (hash: zC3ANtNrrUq/EYkMZgwbMolrgVeo1/t8ESla62SW+so=) 5: paasOO5ow2TPeRiPBkJ-nHZtTBo.crl (hash: 3+4YBiTKqvaFrbNGgjvHTYm4GPSbrN5DaphQNQ4iXVo=) 6: xxdB5TOoAzsa1oSkjoxT3mZ7aWs.roa (hash: UPiW5YYI1M/2XeF4T9kswVLihQKqmykSfxSuMCGaeFc=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 12:06:58 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 869 (0x365) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A5A6AC38EE68C364CF79188F06427E9C766D4C1A Validity Not Before: Dec 9 20:06:39 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=33323BFC444C8F1031AF8AF5A86557052A54313D Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:e1:25:7e:e6:d6:f7:02:0e:63:5d:5c:72:3e: 23:11:dc:ee:cf:d2:be:cc:e4:52:09:90:ce:13:51: 50:df:b1:6d:d7:2c:8d:a5:6a:82:57:5b:f4:f3:99: 80:32:17:48:2f:13:55:cf:55:d3:fd:34:18:f2:21: a5:cf:ff:c3:01:dc:46:db:71:d1:89:77:6d:b8:ba: 85:cc:a2:6d:d5:b9:29:e3:19:a8:78:72:16:2e:dd: 46:42:96:21:f2:05:14:5d:71:73:18:76:d9:eb:7d: 21:60:fd:86:c6:3f:51:8a:49:d2:46:86:9a:13:cd: cd:10:43:98:d0:cb:bc:30:32:31:6b:99:a0:fd:1c: c0:de:3b:a4:85:10:58:c5:76:a4:5a:cd:f2:11:e7: 15:69:92:68:a8:91:35:95:bf:af:5b:51:d7:2c:cf: cb:9c:5f:2b:b0:06:98:b2:70:f9:ef:86:9d:70:2a: dc:e5:ae:66:ac:0d:a1:e9:2b:7d:da:cf:2a:39:8f: 60:53:3c:75:8c:ce:b6:ca:52:11:af:1d:9b:70:54: 98:8e:72:4b:0b:8c:bc:bb:e5:c4:ca:e3:39:35:7e: 3b:d5:e0:39:b1:ea:40:40:0e:c8:fb:d4:0b:7a:b5: fe:42:5e:b0:73:a8:af:8d:84:58:71:1b:65:79:3b: 6b:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:32:3B:FC:44:4C:8F:10:31:AF:8A:F5:A8:65:57:05:2A:54:31:3D X509v3 Authority Key Identifier: keyid:A5:A6:AC:38:EE:68:C3:64:CF:79:18:8F:06:42:7E:9C:76:6D:4C:1A X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/paasOO5ow2TPeRiPBkJ-nHZtTBo.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/BRICKSINC/paasOO5ow2TPeRiPBkJ-nHZtTBo.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 00:1d:b3:96:3a:34:54:f5:9b:99:e1:8c:08:cd:97:9c:75:8e: f4:e9:80:6c:4a:bc:32:66:33:c4:96:f9:03:3f:a1:b1:d8:cb: 91:cf:34:d6:45:30:29:74:d3:23:ba:5e:6a:b7:84:fe:67:22: e4:58:5e:7f:cc:8e:31:f7:28:cc:54:74:69:f2:d0:63:75:0f: a7:a0:06:a5:f8:42:0d:8d:31:a8:49:44:2f:1a:7a:50:09:1a: 29:23:bd:66:e1:40:0f:6f:bc:b0:5b:13:3f:fa:97:2d:3c:a3: d7:b5:9d:d9:2d:7d:7d:2e:39:64:f4:3c:4c:e0:44:99:9b:13: 86:41:b4:39:d7:df:a0:53:e4:ae:5e:bb:23:e8:32:57:94:fa: e8:c4:ad:13:6c:93:18:3d:3f:17:94:b9:5f:d7:b4:3d:2f:4d: 83:31:e1:8e:53:78:8b:4c:7a:88:c1:74:8b:42:46:f6:33:02: cd:17:64:85:e6:30:e5:17:b6:1d:98:5d:9c:6a:a7:fa:5e:a3: ea:36:21:91:23:fc:d2:80:93:8a:20:75:08:ac:dc:dc:ae:da: 50:f6:db:8d:df:0a:2b:fa:68:09:ae:a8:c1:33:40:78:bf:5b: 41:ed:15:cc:0b:c0:76:6a:ca:57:81:be:40:a3:2a:2c:80:dc: 59:b3:80:21 -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICA2UwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoQTVB NkFDMzhFRTY4QzM2NENGNzkxODhGMDY0MjdFOUM3NjZENEMxQTAeFw0yNTEyMDky MDA2MzlaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDMzMzIzQkZDNDQ0QzhG MTAzMUFGOEFGNUE4NjU1NzA1MkE1NDMxM0QwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCZ4SV+5tb3Ag5jXVxyPiMR3O7P0r7M5FIJkM4TUVDfsW3XLI2l aoJXW/TzmYAyF0gvE1XPVdP9NBjyIaXP/8MB3EbbcdGJd224uoXMom3VuSnjGah4 chYu3UZCliHyBRRdcXMYdtnrfSFg/YbGP1GKSdJGhpoTzc0QQ5jQy7wwMjFrmaD9 HMDeO6SFEFjFdqRazfIR5xVpkmiokTWVv69bUdcsz8ucXyuwBpiycPnvhp1wKtzl rmasDaHpK33azyo5j2BTPHWMzrbKUhGvHZtwVJiOcksLjLy75cTK4zk1fjvV4Dmx 6kBADsj71At6tf5CXrBzqK+NhFhxG2V5O2v9AgMBAAGjggINMIICCTAdBgNVHQ4E FgQUMzI7/ERMjxAxr4r1qGVXBSpUMT0wHwYDVR0jBBgwFoAUpaasOO5ow2TPeRiP BkJ+nHZtTBowGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tT SU5DL3BhYXNPTzVvdzJUUGVSaVBCa0otbkhadFRCby5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvcGFhc09PNW93MlRQZVJpUEJrSi1uSFp0VEJvLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvQlJJQ0tTSU5DL3BhYXNPTzVvdzJU UGVSaVBCa0otbkhadFRCby5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAAHbOWOjRU9ZuZ4YwIzZecdY706YBsSrwyZjPElvkDP6Gx2MuRzzTWRTAp dNMjul5qt4T+ZyLkWF5/zI4x9yjMVHRp8tBjdQ+noAal+EINjTGoSUQvGnpQCRop I71m4UAPb7ywWxM/+pctPKPXtZ3ZLX19Ljlk9DxM4ESZmxOGQbQ519+gU+SuXrsj 6DJXlProxK0TbJMYPT8XlLlf17Q9L02DMeGOU3iLTHqIwXSLQkb2MwLNF2SF5jDl F7YdmF2caqf6XqPqNiGRI/zSgJOKIHUIrNzcrtpQ9tuN3wor+mgJrqjBM0B4v1tB 7RXMC8B2aspXgb5AoyosgNxZs4Ah -----END CERTIFICATE-----Generated at Wed Dec 10 08:57:23 2025 by rpki-client