This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DOME/Zz_LhYKOJG-LuohZFc4VnHkH5GM.mft File: Zz_LhYKOJG-LuohZFc4VnHkH5GM.mft (raw, json) Hash identifier: tkDaerZ+PS9QMCLoeSWmSFv9DhW4EFy2tDVbc3npr9w= Subject key identifier: 04:3E:C4:E3:06:C5:FC:8F:84:5D:3F:2E:18:8B:F4:6C:DB:6D:39:F2 Authority key identifier: 67:3F:CB:85:82:8E:24:6F:8B:BA:88:59:15:CE:15:9C:79:07:E4:63 Certificate issuer: /CN=673FCB85828E246F8BBA885915CE159C7907E463 Certificate serial: 0D58 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Zz_LhYKOJG-LuohZFc4VnHkH5GM.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOME/Zz_LhYKOJG-LuohZFc4VnHkH5GM.mft Manifest number: 0D58 Signing time: Mon 15 Dec 2025 22:37:52 +0000 Manifest this update: Mon 15 Dec 2025 22:37:52 +0000 Manifest next update: Wed 17 Dec 2025 22:37:52 +0000 Files and hashes: 1: Zz_LhYKOJG-LuohZFc4VnHkH5GM.crl (hash: o77JTFsVYzGiEEAMSRd0jmU7tTa9sjRCyloSsu4D4RQ=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/DOME/Zz_LhYKOJG-LuohZFc4VnHkH5GM.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/DOME/Zz_LhYKOJG-LuohZFc4VnHkH5GM.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Zz_LhYKOJG-LuohZFc4VnHkH5GM.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 06:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3416 (0xd58) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=673FCB85828E246F8BBA885915CE159C7907E463 Validity Not Before: Dec 15 22:37:52 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=043EC4E306C5FC8F845D3F2E188BF46CDB6D39F2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:3a:ca:b0:9b:36:dc:0c:45:5b:93:bf:a2:45: 95:e3:ce:c1:04:f1:53:48:d9:ee:4c:b5:90:f6:7f: 49:a3:42:69:90:91:45:44:07:79:32:f0:59:5d:b7: b7:83:7b:7f:b8:b1:55:f7:e2:08:fa:b9:e0:56:91: 26:71:0f:21:f4:fb:37:96:49:7e:28:88:6b:af:a1: b9:86:f1:ec:1c:8e:3c:9a:69:e9:c2:6c:6c:82:3c: 30:72:f1:7f:99:5b:8d:8e:27:d1:45:c7:bd:ef:61: 91:e5:3d:6b:c9:49:c1:39:d1:c6:3b:dd:b0:80:a3: 5a:65:25:06:35:b7:84:8d:56:96:ef:02:f6:6a:02: 40:53:47:e7:25:88:e4:1b:2f:28:64:f0:1e:ec:b7: 51:69:d0:df:e1:63:c5:24:4a:f0:b3:c7:46:20:34: c9:86:87:26:35:bc:bd:b2:0e:18:da:ac:7a:5a:2e: 04:dc:31:38:6f:88:db:a6:fe:c5:29:c3:d9:92:b2: 51:21:b8:d4:98:14:e7:96:8a:13:8c:dd:a9:93:bc: ee:eb:85:ac:9f:29:02:08:21:11:2d:4d:1d:3f:54: d9:da:b2:7c:bb:f7:85:97:a6:3d:17:a2:be:33:bb: 7c:2c:35:88:f2:f6:e8:95:ea:55:4a:70:2a:5f:24: 89:c3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 04:3E:C4:E3:06:C5:FC:8F:84:5D:3F:2E:18:8B:F4:6C:DB:6D:39:F2 X509v3 Authority Key Identifier: keyid:67:3F:CB:85:82:8E:24:6F:8B:BA:88:59:15:CE:15:9C:79:07:E4:63 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOME/Zz_LhYKOJG-LuohZFc4VnHkH5GM.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Zz_LhYKOJG-LuohZFc4VnHkH5GM.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DOME/Zz_LhYKOJG-LuohZFc4VnHkH5GM.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption af:73:e2:10:46:8d:6c:88:e5:93:b9:49:01:f1:24:a5:22:9c: b9:7d:fa:17:5d:1a:67:e1:c0:bb:b4:69:47:26:5a:c7:37:ca: 56:a2:60:81:cb:00:45:88:c1:ad:d3:57:37:c7:93:6d:31:6f: eb:75:e9:01:ee:fa:c4:2a:ec:f0:45:f0:43:3c:69:dd:f0:83: 20:a9:52:29:19:2a:f1:68:29:ab:e3:3a:8a:35:fa:cf:9c:02: 2e:6a:b0:55:c3:a3:4d:bf:98:db:29:df:17:98:f4:fe:19:e7: 57:bc:13:a2:a1:e6:e0:1c:ed:40:f8:29:7b:b7:82:1c:93:8a: 4e:6f:44:eb:3e:21:e2:e7:0c:5b:1c:87:fb:99:0c:a0:69:07: 10:c4:0a:c1:13:21:b0:be:47:34:f2:12:99:11:80:32:40:6e: 66:38:4b:8e:ba:bc:6a:10:f7:73:65:03:a1:b2:53:41:8e:0d: 3d:4d:d8:f8:28:31:99:9f:d5:bd:aa:fe:3d:86:d6:91:1b:de: 47:c2:38:5a:7c:67:e1:07:15:69:a6:49:2f:85:06:12:9e:32: 9e:58:8b:c9:87:0a:61:6f:65:8e:3f:76:61:ef:5c:b7:a4:a7: 48:7d:2c:57:4d:56:c5:63:8e:80:58:38:bf:36:a0:1d:34:30: 65:90:b6:15 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICDVgwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjcz RkNCODU4MjhFMjQ2RjhCQkE4ODU5MTVDRTE1OUM3OTA3RTQ2MzAeFw0yNTEyMTUy MjM3NTJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDA0M0VDNEUzMDZDNUZD OEY4NDVEM0YyRTE4OEJGNDZDREI2RDM5RjIwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC7OsqwmzbcDEVbk7+iRZXjzsEE8VNI2e5MtZD2f0mjQmmQkUVE B3ky8Fldt7eDe3+4sVX34gj6ueBWkSZxDyH0+zeWSX4oiGuvobmG8ewcjjyaaenC bGyCPDBy8X+ZW42OJ9FFx73vYZHlPWvJScE50cY73bCAo1plJQY1t4SNVpbvAvZq AkBTR+cliOQbLyhk8B7st1Fp0N/hY8UkSvCzx0YgNMmGhyY1vL2yDhjarHpaLgTc MThviNum/sUpw9mSslEhuNSYFOeWihOM3amTvO7rhayfKQIIIREtTR0/VNnasny7 94WXpj0Xor4zu3wsNYjy9uiV6lVKcCpfJInDAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUBD7E4wbF/I+EXT8uGIv0bNttOfIwHwYDVR0jBBgwFoAUZz/LhYKOJG+LuohZ Fc4VnHkH5GMwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRE9NRS9a el9MaFlLT0pHLUx1b2haRmM0Vm5Ia0g1R00uY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L1p6X0xoWUtPSkctTHVvaFpGYzRWbkhrSDVHTS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0RPTUUvWnpfTGhZS09KRy1MdW9oWkZjNFZu SGtINUdNLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAK9z4hBG jWyI5ZO5SQHxJKUinLl9+hddGmfhwLu0aUcmWsc3ylaiYIHLAEWIwa3TVzfHk20x b+t16QHu+sQq7PBF8EM8ad3wgyCpUikZKvFoKavjOoo1+s+cAi5qsFXDo02/mNsp 3xeY9P4Z51e8E6Kh5uAc7UD4KXu3ghyTik5vROs+IeLnDFsch/uZDKBpBxDECsET IbC+RzTyEpkRgDJAbmY4S466vGoQ93NlA6GyU0GODT1N2PgoMZmf1b2q/j2G1pEb 3kfCOFp8Z+EHFWmmSS+FBhKeMp5Yi8mHCmFvZY4/dmHvXLekp0h9LFdNVsVjjoBY OL82oB00MGWQthU= -----END CERTIFICATE-----Generated at Wed Dec 17 04:19:26 2025 by rpki-client