This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft File: O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft (raw, json) Hash identifier: qO1qEhjgt/VDg5HLWBh/EDG505py95Icwc8pyBi9bes= Subject key identifier: A1:5E:FD:94:FE:3E:5E:B8:DA:5C:47:9C:AA:3E:5C:15:DE:6B:F3:0F Authority key identifier: 3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 Certificate issuer: /CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Certificate serial: 03EA Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft Manifest number: 03C5 Signing time: Sat 20 Dec 2025 10:07:57 +0000 Manifest this update: Sat 20 Dec 2025 10:07:57 +0000 Manifest next update: Mon 22 Dec 2025 10:07:57 +0000 Files and hashes: 1: GgEo2w9T_fXVha4PVN2E6dKjRJg.roa (hash: Xc/PD6ve9+6gF85azmsEeKYeLcGCQzz88booj8gOLug=) 2: O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl (hash: HSOFCstGXsKX6vmKYe2nb3aDHLVmkzdOlrX1N75mjX8=) 3: QZN53ARWSHPoZybZituovHv2VMA.roa (hash: xpV2mADjKRF8dmb+rzuDG/kcLz+vEDvLmEfLcpG16fA=) 4: i8dKOZXv1vhIMXMiLXLxGftsai4.roa (hash: dCnmF49hVZrcW6hE5UyiIonjm5uD2CJYDBTlbJ/5LU8=) 5: rdynvpc7L5PxuXFZYLeP_1xMbhk.roa (hash: OlM+PcqVLvkOU0WnIl8F6nZSw+Ule3NLPBLVX57QAjE=) 6: tn_8c0Dou3ePetewxb4aCNtrpUk.roa (hash: qjjP4A30pUMfzrlKWDOKzR00Zluxja3jjQJz8743r4c=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 21 Dec 2025 15:39:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1002 (0x3ea) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=3BF441B57C86BD9D193451A005D26CE1A3C6DEE7 Validity Not Before: Dec 20 10:07:57 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=A15EFD94FE3E5EB8DA5C479CAA3E5C15DE6BF30F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:0e:b2:57:be:31:50:22:c6:2b:24:5f:23:17: 0d:f8:fb:aa:e5:83:4b:64:8b:c9:60:45:ca:14:ce: 8f:da:c3:ec:84:6e:4b:34:3d:f8:7f:3e:ab:e3:36: ad:dd:9e:13:68:21:cb:70:7c:00:d2:c7:54:b3:f1: 7c:c2:36:4c:d1:30:4b:aa:e2:cc:bb:85:25:b6:d1: 2a:14:99:1c:81:38:73:ba:a9:c5:9c:33:aa:5e:9c: 16:ea:c4:59:83:5e:e8:7b:3f:3f:42:a0:1a:fe:30: d7:9e:b3:b5:52:3e:c0:44:2a:f7:bc:e8:36:79:c6: fd:a7:a6:63:5b:f2:ae:b8:28:4d:53:71:1d:4f:24: 21:4d:a7:a8:6c:0d:66:3f:8c:ce:d5:5d:a2:13:c2: ae:60:5a:a6:a3:6f:b1:86:1d:2a:fe:ce:b5:d5:b9: 9a:67:e8:03:54:fc:d3:5e:b9:48:66:c4:64:19:27: 13:ad:ac:b8:01:5d:ab:5d:f7:1e:c5:c8:92:36:0a: 24:0a:0f:79:5b:e6:f9:d0:b6:72:ee:94:d4:b6:8c: 7c:51:be:a8:ff:17:43:e1:88:60:a3:f7:87:02:9d: 7a:96:93:bb:ca:6e:22:88:90:5b:a7:2d:8b:0c:d3: d7:85:8d:2c:d7:1d:6e:99:bc:0c:e5:9b:c3:9f:79: 38:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A1:5E:FD:94:FE:3E:5E:B8:DA:5C:47:9C:AA:3E:5C:15:DE:6B:F3:0F X509v3 Authority Key Identifier: keyid:3B:F4:41:B5:7C:86:BD:9D:19:34:51:A0:05:D2:6C:E1:A3:C6:DE:E7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ERAYINFO/O_RBtXyGvZ0ZNFGgBdJs4aPG3uc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption b0:5c:28:1f:92:1d:00:80:d1:dc:69:99:14:e4:ab:a9:44:e8: b4:25:11:40:e1:70:43:d2:ba:85:02:cb:ae:52:9f:1b:9b:09: 6e:39:fc:99:a6:33:8c:63:4c:64:5b:56:dd:45:e7:6c:9a:f5: fd:59:dd:a6:11:05:4f:6b:c4:81:cd:17:c2:9f:cf:74:e4:90: 18:fa:b2:b5:aa:18:cb:a9:06:02:ab:9d:49:75:47:05:d3:90: e4:33:fe:2e:f0:a4:03:dd:dd:30:d5:88:25:03:73:0a:12:b8: 1c:48:f3:ea:c5:97:1e:57:d3:65:48:ba:e0:ea:fd:a7:ee:de: d6:22:09:e5:cd:ee:15:74:6b:51:c4:0c:be:87:46:6f:6e:4b: 37:c0:8a:b8:c9:96:5e:58:ac:f6:b3:b9:77:80:31:3e:d2:f2: fe:c6:51:82:5d:8d:80:22:37:cc:9d:a8:a1:53:6b:7d:5a:dc: 1b:d2:67:41:70:01:ec:bb:1d:4f:b3:75:41:6f:a6:99:6a:06: 69:b4:a8:f4:b4:5b:0f:87:06:d3:df:cc:08:fd:5d:11:be:0e: 65:28:ab:78:66:de:58:c7:e5:1f:f2:0d:40:5f:8c:23:c9:d4: f5:36:4c:c3:36:30:64:26:37:7b:e5:24:8d:72:d2:81:61:1a: 4a:98:84:e6 -----BEGIN CERTIFICATE----- MIIE7zCCA9egAwIBAgICA+owDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoM0JG NDQxQjU3Qzg2QkQ5RDE5MzQ1MUEwMDVEMjZDRTFBM0M2REVFNzAeFw0yNTEyMjAx MDA3NTdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEExNUVGRDk0RkUzRTVF QjhEQTVDNDc5Q0FBM0U1QzE1REU2QkYzMEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDbDrJXvjFQIsYrJF8jFw34+6rlg0tki8lgRcoUzo/aw+yEbks0 Pfh/PqvjNq3dnhNoIctwfADSx1Sz8XzCNkzRMEuq4sy7hSW20SoUmRyBOHO6qcWc M6penBbqxFmDXuh7Pz9CoBr+MNees7VSPsBEKve86DZ5xv2npmNb8q64KE1TcR1P JCFNp6hsDWY/jM7VXaITwq5gWqajb7GGHSr+zrXVuZpn6ANU/NNeuUhmxGQZJxOt rLgBXatd9x7FyJI2CiQKD3lb5vnQtnLulNS2jHxRvqj/F0PhiGCj94cCnXqWk7vK biKIkFunLYsM09eFjSzXHW6ZvAzlm8OfeTifAgMBAAGjggILMIICBzAdBgNVHQ4E FgQUoV79lP4+XrjaXEecqj5cFd5r8w8wHwYDVR0jBBgwFoAUO/RBtXyGvZ0ZNFGg BdJs4aPG3ucwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBeBgNVHR8EVzBVMFOg UaBPhk1yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvRVJBWUlO Rk8vT19SQnRYeUd2WjBaTkZHZ0JkSnM0YVBHM3VjLmNybDBgBggrBgEFBQcBAQRU MFIwUAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdO SUNDQS9PX1JCdFh5R3ZaMFpORkdnQmRKczRhUEczdWMuY2VyMA4GA1UdDwEB/wQE AwIHgDCBngYIKwYBBQUHAQsEgZEwgY4wWQYIKwYBBQUHMAuGTXJzeW5jOi8vcnBr aWNhLnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9FUkFZSU5GTy9PX1JCdFh5R3ZaMFpO RkdnQmRKczRhUEczdWMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHdu aWMudHcvcnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYI KwYBBQUHAQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOC AQEAsFwoH5IdAIDR3GmZFOSrqUTotCURQOFwQ9K6hQLLrlKfG5sJbjn8maYzjGNM ZFtW3UXnbJr1/VndphEFT2vEgc0Xwp/PdOSQGPqytaoYy6kGAqudSXVHBdOQ5DP+ LvCkA93dMNWIJQNzChK4HEjz6sWXHlfTZUi64Or9p+7e1iIJ5c3uFXRrUcQMvodG b25LN8CKuMmWXlis9rO5d4AxPtLy/sZRgl2NgCI3zJ2ooVNrfVrcG9JnQXAB7Lsd T7N1QW+mmWoGabSo9LRbD4cG09/MCP1dEb4OZSireGbeWMflH/INQF+MI8nU9TZM wzYwZCY3e+UkjXLSgWEaSpiE5g== -----END CERTIFICATE-----Generated at Sun Dec 21 12:01:32 2025 by rpki-client