This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft File: 0SSAw3OkqF1efXJZMUQ137NEBEA.mft (raw, json) Hash identifier: javLeZfdT5PXs5sikumyeD+s1eeXfj0jW5RrrI83Zj8= Subject key identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 Authority key identifier: D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 Certificate issuer: /CN=D12480C373A4A85D5E7D7259314435DFB3440440 Certificate serial: 0DAB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft Manifest number: 0DAB Signing time: Tue 23 Dec 2025 10:09:05 +0000 Manifest this update: Tue 23 Dec 2025 10:09:05 +0000 Manifest next update: Thu 25 Dec 2025 10:09:05 +0000 Files and hashes: 1: 0SSAw3OkqF1efXJZMUQ137NEBEA.crl (hash: /nOIzvbpsp28SiNwsc5srS7cJ99NZzAHEFtqO1K19po=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 23 Dec 2025 23:39:52 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3499 (0xdab) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=D12480C373A4A85D5E7D7259314435DFB3440440 Validity Not Before: Dec 23 10:09:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=679553EAF718165E2C6F7C23CBA05EE3F79704A7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:05:89:34:5d:8d:6a:29:a5:8f:c4:e1:db:fd: 5d:46:b9:22:d4:cb:84:17:df:78:5f:fb:c6:e8:46: ae:67:c7:aa:e8:45:a2:86:6b:21:1b:6e:1b:4e:82: ae:2e:50:8b:90:c0:07:27:82:10:ea:a5:5a:5d:7b: 46:e1:ce:0c:e8:ef:51:c6:de:54:4a:aa:da:0e:7e: ef:84:b7:8d:33:b9:ec:19:3a:94:4a:32:79:9f:11: cc:25:86:49:e2:df:63:af:ab:f1:f8:ab:12:c6:9d: 6e:6c:fe:46:67:c5:b1:4b:0d:47:6e:f8:1d:03:bb: 56:7e:1b:4b:5c:ea:67:45:e5:9f:d5:6b:e0:27:14: 57:b9:a9:07:9b:0c:93:c4:f1:17:37:20:cf:d6:5b: 24:32:d8:93:e6:0d:01:50:89:93:11:28:ff:9c:30: 2a:de:9f:d7:47:11:32:73:ad:16:08:5a:b0:53:5f: 67:98:f1:04:7f:56:e8:7f:62:95:23:a0:f6:5b:5b: 5f:ba:18:a3:c4:6e:67:99:61:7d:0c:d8:cc:f9:7a: 81:cd:c5:3b:ec:61:db:ac:bf:9c:50:2b:8f:8d:69: 1d:2a:8c:8d:61:5a:a5:f7:bb:69:09:54:49:77:8d: 47:41:22:a8:92:43:e5:3c:90:83:b7:fe:39:39:18: 68:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:95:53:EA:F7:18:16:5E:2C:6F:7C:23:CB:A0:5E:E3:F7:97:04:A7 X509v3 Authority Key Identifier: keyid:D1:24:80:C3:73:A4:A8:5D:5E:7D:72:59:31:44:35:DF:B3:44:04:40 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/0SSAw3OkqF1efXJZMUQ137NEBEA.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GETOP/0SSAw3OkqF1efXJZMUQ137NEBEA.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 46:8e:a3:20:1a:d3:3c:40:91:e4:fa:72:50:cb:c2:58:36:3a: 3f:f6:96:7c:f3:b5:33:ed:cf:be:85:74:a2:29:49:5a:f3:69: 21:73:e8:fb:22:4d:31:33:ee:ab:92:3e:7b:43:7d:3c:62:65: f9:13:db:bb:2e:59:2d:13:b6:03:f5:2f:e2:a2:f4:b5:f5:48: c8:53:a1:a1:16:24:cd:9d:b9:57:fc:b9:ea:49:6c:6e:2b:1c: b4:22:d8:9c:6e:cc:68:80:96:4b:0b:6b:fa:ed:ac:d1:a6:a5: ce:55:92:9b:35:88:2f:68:33:b5:ba:70:fb:bb:fb:81:74:02: bf:ec:b4:48:bf:b1:2e:7f:c8:e6:fb:46:b2:60:4f:c8:1d:4e: 37:dc:d4:8d:4d:a5:eb:e5:4d:d4:90:5d:38:db:e7:7c:55:8b: cf:33:67:b7:ef:a2:2f:39:06:be:35:18:8c:12:6a:df:90:97: 9e:58:53:00:33:f5:e4:0b:e8:2a:87:7d:44:92:d1:8b:ca:08: 2c:4c:be:f5:17:17:2d:15:03:15:65:4b:4b:9f:40:61:28:3e: 5b:f9:bf:ee:d9:6d:17:85:a5:b3:1f:02:1e:1a:44:b9:79:8e: 10:5f:f0:26:f9:8c:8e:c0:22:07:21:c5:9d:50:6a:f2:12:4a: 8f:a2:74:d8 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICDaswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRDEy NDgwQzM3M0E0QTg1RDVFN0Q3MjU5MzE0NDM1REZCMzQ0MDQ0MDAeFw0yNTEyMjMx MDA5MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDY3OTU1M0VBRjcxODE2 NUUyQzZGN0MyM0NCQTA1RUUzRjc5NzA0QTcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC2BYk0XY1qKaWPxOHb/V1GuSLUy4QX33hf+8boRq5nx6roRaKG ayEbbhtOgq4uUIuQwAcnghDqpVpde0bhzgzo71HG3lRKqtoOfu+Et40zuewZOpRK MnmfEcwlhkni32Ovq/H4qxLGnW5s/kZnxbFLDUdu+B0Du1Z+G0tc6mdF5Z/Va+An FFe5qQebDJPE8Rc3IM/WWyQy2JPmDQFQiZMRKP+cMCren9dHETJzrRYIWrBTX2eY 8QR/Vuh/YpUjoPZbW1+6GKPEbmeZYX0M2Mz5eoHNxTvsYdusv5xQK4+NaR0qjI1h WqX3u2kJVEl3jUdBIqiSQ+U8kIO3/jk5GGjVAgMBAAGjggIFMIICATAdBgNVHQ4E FgQUZ5VT6vcYFl4sb3wjy6Be4/eXBKcwHwYDVR0jBBgwFoAU0SSAw3OkqF1efXJZ MUQ137NEBEAwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvR0VUT1Av MFNTQXczT2txRjFlZlhKWk1VUTEzN05FQkVBLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS8wU1NBdzNPa3FGMWVmWEpaTVVRMTM3TkVCRUEuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9HRVRPUC8wU1NBdzNPa3FGMWVmWEpaTVVR MTM3TkVCRUEubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEARo6j IBrTPECR5PpyUMvCWDY6P/aWfPO1M+3PvoV0oilJWvNpIXPo+yJNMTPuq5I+e0N9 PGJl+RPbuy5ZLRO2A/Uv4qL0tfVIyFOhoRYkzZ25V/y56klsbisctCLYnG7MaICW Swtr+u2s0aalzlWSmzWIL2gztbpw+7v7gXQCv+y0SL+xLn/I5vtGsmBPyB1ON9zU jU2l6+VN1JBdONvnfFWLzzNnt++iLzkGvjUYjBJq35CXnlhTADP15AvoKod9RJLR i8oILEy+9RcXLRUDFWVLS59AYSg+W/m/7tltF4Wlsx8CHhpEuXmOEF/wJvmMjsAi ByHFnVBq8hJKj6J02A== -----END CERTIFICATE-----Generated at Tue Dec 23 20:39:16 2025 by rpki-client