This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft File: 9aRLXgeIZbrvk1E2nZYda6JVbUc.mft (raw, json) Hash identifier: HiWz6UNexUHsVxBLU/RyvtotB+KtlZ+EaOpUVSQTF5I= Subject key identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C Authority key identifier: F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 Certificate issuer: /CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Certificate serial: 030C Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft Manifest number: 02FB Signing time: Mon 15 Dec 2025 22:08:48 +0000 Manifest this update: Mon 15 Dec 2025 22:08:47 +0000 Manifest next update: Wed 17 Dec 2025 22:08:47 +0000 Files and hashes: 1: 9aRLXgeIZbrvk1E2nZYda6JVbUc.crl (hash: K39k3vfThifOJPFc/ODSpdr6IYrcDtxXFEbBmhoRGvs=) 2: Fn_SwMpljpxFXXkEr0N3Tnom6l0.roa (hash: J8NqRwUakfp20kauS9hO5Z6ALEpdTtWVeeb6uoJlqi4=) 3: H07fZhQO_Q3aLfPPmvyYIFeRwGw.roa (hash: gJFfn7EGGkpzbinWsWT20Cv8c18u4ouHFdJoO33imR0=) 4: dZZ1tLqfRCfsc9yQ3sZh0Ekjhbw.roa (hash: ozHd0L+pcha4PL1xuqajnr/AbCxPZE/RVw2HVfQ6ddk=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 06:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 780 (0x30c) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F5A44B5E078865BAEF9351369D961D6BA2556D47 Validity Not Before: Dec 15 22:08:47 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=78C626456BAE94BA36466BD1EDB2D798BFFF017C Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:d2:a1:96:40:32:ef:af:64:da:c6:70:cd:e5: 42:ce:86:f9:47:4a:20:bb:49:3a:e0:39:71:3a:e3: 82:0d:d6:09:bf:c6:fa:b6:6e:89:79:fc:ee:b7:0f: 73:6b:5b:e8:3e:1e:c6:f9:03:f5:e5:59:ba:8b:2b: b0:13:41:63:52:26:bf:34:d4:ed:13:62:42:8e:9c: 0a:ab:de:43:8b:df:92:61:a3:6a:7a:10:02:56:8f: 87:27:ca:b9:16:e7:5a:77:c1:89:3b:6f:fa:3c:ab: 25:47:5c:ed:7a:86:a0:f0:d4:23:e4:e9:ce:b9:b3: 1f:82:98:57:6d:05:51:1a:d9:48:17:79:e7:82:f2: 8e:b1:37:76:d4:ad:dd:40:19:0d:fc:8e:ed:2a:a6: 37:bb:2b:a8:72:f5:e4:0a:b4:0a:7e:07:12:2b:5c: cb:d7:90:6b:21:4f:73:12:64:dd:ec:40:84:c8:5f: ca:a0:a7:49:09:36:02:ba:d5:d8:67:f8:48:e2:00: 54:dc:b8:c1:34:db:01:17:58:a8:8d:03:d2:78:78: 06:f8:0f:1a:2b:07:4c:18:23:43:c8:05:89:43:d2: a9:fb:06:3d:35:71:ec:8b:8a:e6:37:7b:bd:52:81: 83:3c:e4:39:8f:2f:97:b3:8a:d1:3b:f1:b8:82:76: f3:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 78:C6:26:45:6B:AE:94:BA:36:46:6B:D1:ED:B2:D7:98:BF:FF:01:7C X509v3 Authority Key Identifier: keyid:F5:A4:4B:5E:07:88:65:BA:EF:93:51:36:9D:96:1D:6B:A2:55:6D:47 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/9aRLXgeIZbrvk1E2nZYda6JVbUc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/ONEDEGREE/9aRLXgeIZbrvk1E2nZYda6JVbUc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 1a:3c:0d:9f:a1:c4:83:f0:35:02:31:fe:d0:b4:50:79:24:5c: ce:a0:0a:1a:ee:8b:1d:94:d1:5f:d7:b2:45:eb:66:28:b9:ec: 0e:a5:13:77:06:af:d1:40:e6:14:2a:b8:79:76:7a:d7:07:78: 4c:ff:f6:b0:b3:32:48:34:8d:4d:e2:ae:f1:11:90:de:d1:a9: 5f:04:fa:a7:d6:b8:13:04:eb:4d:7c:c7:69:d7:cf:39:0f:24: 0d:3b:d3:67:20:5b:a2:94:1c:ed:62:91:5e:50:c1:9d:f2:21: aa:0a:af:f1:e0:14:55:fb:51:8c:50:4a:9d:5c:ee:25:71:b3: 9c:a2:b0:66:36:25:af:64:66:6b:c2:29:47:2d:3f:68:00:62: 12:66:c2:48:c9:48:ce:f3:b0:96:5b:b3:03:a3:29:85:03:e5: 08:47:66:ae:59:15:ae:07:0d:c9:2b:c2:f9:93:6b:d7:a4:93: 49:99:45:7d:4e:a6:c2:36:0b:37:0d:28:62:c5:7b:b8:5b:52: fa:23:d1:3b:c8:ad:6c:c8:6a:82:aa:08:ca:02:67:da:d8:82: 3e:57:83:15:dd:e0:18:29:3c:27:23:30:48:c3:ba:59:5c:c5: 42:e8:c0:38:bf:57:96:c4:4c:98:41:7e:fb:81:da:4f:4f:6c: ae:7e:1d:7d -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICAwwwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoRjVB NDRCNUUwNzg4NjVCQUVGOTM1MTM2OUQ5NjFENkJBMjU1NkQ0NzAeFw0yNTEyMTUy MjA4NDdaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDc4QzYyNjQ1NkJBRTk0 QkEzNjQ2NkJEMUVEQjJENzk4QkZGRjAxN0MwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC20qGWQDLvr2TaxnDN5ULOhvlHSiC7STrgOXE644IN1gm/xvq2 bol5/O63D3NrW+g+Hsb5A/XlWbqLK7ATQWNSJr801O0TYkKOnAqr3kOL35Jho2p6 EAJWj4cnyrkW51p3wYk7b/o8qyVHXO16hqDw1CPk6c65sx+CmFdtBVEa2UgXeeeC 8o6xN3bUrd1AGQ38ju0qpje7K6hy9eQKtAp+BxIrXMvXkGshT3MSZN3sQITIX8qg p0kJNgK61dhn+EjiAFTcuME02wEXWKiNA9J4eAb4DxorB0wYI0PIBYlD0qn7Bj01 ceyLiuY3e71SgYM85DmPL5ezitE78biCdvPjAgMBAAGjggINMIICCTAdBgNVHQ4E FgQUeMYmRWuulLo2RmvR7bLXmL//AXwwHwYDVR0jBBgwFoAU9aRLXgeIZbrvk1E2 nZYda6JVbUcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVH UkVFLzlhUkxYZ2VJWmJydmsxRTJuWllkYTZKVmJVYy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvOWFSTFhnZUlaYnJ2azFFMm5aWWRhNkpWYlVjLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT05FREVHUkVFLzlhUkxYZ2VJWmJy dmsxRTJuWllkYTZKVmJVYy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQAaPA2focSD8DUCMf7QtFB5JFzOoAoa7osdlNFf17JF62YouewOpRN3Bq/R QOYUKrh5dnrXB3hM//awszJINI1N4q7xEZDe0alfBPqn1rgTBOtNfMdp1885DyQN O9NnIFuilBztYpFeUMGd8iGqCq/x4BRV+1GMUEqdXO4lcbOcorBmNiWvZGZrwilH LT9oAGISZsJIyUjO87CWW7MDoymFA+UIR2auWRWuBw3JK8L5k2vXpJNJmUV9TqbC Ngs3DShixXu4W1L6I9E7yK1syGqCqgjKAmfa2II+V4MV3eAYKTwnIzBIw7pZXMVC 6MA4v1eWxEyYQX77gdpPT2yufh19 -----END CERTIFICATE-----Generated at Wed Dec 17 04:19:21 2025 by rpki-client