This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/OPEN/lrigjnWckCEXMt7oT9S-JZ2qD_0.mft File: lrigjnWckCEXMt7oT9S-JZ2qD_0.mft (raw, json) Hash identifier: wfGjhdwoED8w8DuXmAaZN2+03HJ8VgWrNIAawSEA2QE= Subject key identifier: E4:73:CF:78:AA:BA:F6:F3:BE:71:70:50:9F:98:58:07:55:FB:CB:90 Authority key identifier: 96:B8:A0:8E:75:9C:90:21:17:32:DE:E8:4F:D4:BE:25:9D:AA:0F:FD Certificate issuer: /CN=96B8A08E759C90211732DEE84FD4BE259DAA0FFD Certificate serial: 01C5 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/lrigjnWckCEXMt7oT9S-JZ2qD_0.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPEN/lrigjnWckCEXMt7oT9S-JZ2qD_0.mft Manifest number: 01C2 Signing time: Wed 10 Dec 2025 04:36:41 +0000 Manifest this update: Wed 10 Dec 2025 04:36:41 +0000 Manifest next update: Wed 10 Dec 2025 10:36:41 +0000 Files and hashes: 1: 8SDdfWWdA2UKWED7VTFb-Jl53qk.roa (hash: 3TropPm4x94A2igPbqGZDYqbWA5IKl6TPjf8pTJ1xac=) 2: _S-0ytL0WjOaLeYffXv0yRPOwKE.roa (hash: 9JMMDqWGlV8+ilgzZgbJ2RGf79H5oFWYSPPlOtT3U/8=) 3: hFBgGwCt5GL_bhH_EA7ARAyo_G4.roa (hash: 0KSGzv+Oi6FSZ6T88iHICyfFFmvh2P557/puOMNwYNA=) 4: lrigjnWckCEXMt7oT9S-JZ2qD_0.crl (hash: rx4frMRV+aF85pCD7WE5pz9LlnhnQhpRKE9yxIBdhk8=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/OPEN/lrigjnWckCEXMt7oT9S-JZ2qD_0.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/OPEN/lrigjnWckCEXMt7oT9S-JZ2qD_0.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/lrigjnWckCEXMt7oT9S-JZ2qD_0.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 10 Dec 2025 10:36:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 453 (0x1c5) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=96B8A08E759C90211732DEE84FD4BE259DAA0FFD Validity Not Before: Dec 10 04:36:41 2025 GMT Not After : Sep 9 15:30:25 2026 GMT Subject: CN=E473CF78AABAF6F3BE7170509F98580755FBCB90 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d4:de:e5:a4:8c:43:88:e7:50:30:2e:ca:1f: 79:26:be:f1:7d:1e:03:56:22:96:86:02:6a:31:8d: 53:2d:e2:f3:53:c3:dd:1d:85:a4:bd:51:55:35:41: 05:e1:0a:87:1e:16:b9:03:43:5e:dd:0e:47:7c:d4: 37:f2:7c:29:24:d6:d9:a8:72:a8:75:b6:6b:d7:32: 05:75:bc:c7:8a:77:8b:85:43:3c:0d:91:fb:10:a7: c5:06:ac:73:72:d1:d2:1b:2a:03:2f:9d:93:7b:28: 99:6b:e7:6a:a2:d3:1b:e4:ea:ae:cf:3e:34:a5:d6: d7:3b:b9:b5:fb:b7:66:c6:89:78:67:87:95:55:18: 5e:f3:6a:7d:3a:7c:48:73:d1:87:21:f4:f4:54:15: 07:5f:44:23:b4:f2:06:26:69:96:22:19:0e:d7:fc: 7d:9d:53:71:59:cb:b5:a3:73:76:b7:ed:ea:74:08: 62:fd:ff:4d:5e:eb:e6:eb:ca:60:7a:0e:00:94:00: d2:9c:09:43:a2:49:ec:85:f3:4b:f8:7c:fb:97:83: 8b:21:cb:3a:0d:48:0d:93:52:c3:76:fe:53:5f:9f: a2:ff:f1:69:4a:4f:ae:02:56:92:ef:c4:34:85:02: 59:1e:ee:1d:bd:e9:b1:d5:f9:a6:5a:89:28:15:a6: 15:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:73:CF:78:AA:BA:F6:F3:BE:71:70:50:9F:98:58:07:55:FB:CB:90 X509v3 Authority Key Identifier: keyid:96:B8:A0:8E:75:9C:90:21:17:32:DE:E8:4F:D4:BE:25:9D:AA:0F:FD X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPEN/lrigjnWckCEXMt7oT9S-JZ2qD_0.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/lrigjnWckCEXMt7oT9S-JZ2qD_0.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/OPEN/lrigjnWckCEXMt7oT9S-JZ2qD_0.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 05:c8:84:83:8d:44:70:f8:e7:17:ea:b3:48:e7:32:ab:b9:2a: e4:c9:85:4b:2b:b8:35:26:2a:59:9e:bb:6c:77:23:08:53:a2: f5:7e:8b:df:2d:3a:c0:9b:29:b3:23:20:71:16:6a:b1:a6:c8: 2b:cd:b8:3f:09:30:3c:22:39:85:84:57:3a:18:fa:5f:55:75: 17:35:49:b3:22:80:0d:78:da:71:5a:37:70:1e:68:e8:cb:0f: 12:04:1c:78:a0:af:ca:95:9f:c4:75:ca:1d:c7:f4:ee:3f:e4: a3:9d:69:7c:88:59:e1:87:d8:6c:d8:75:5d:7d:26:97:7b:1a: 8b:95:89:5c:57:76:e3:9f:d3:63:53:9d:e1:24:e8:57:98:ab: 61:ab:ed:c2:af:d2:5f:bc:cd:33:e4:97:ff:b7:4a:79:c6:2f: 88:8c:f9:a3:0f:b5:82:02:73:36:73:d4:2b:ed:46:0b:ff:33: f7:90:3d:f9:c7:53:e4:93:d3:06:f4:b8:86:55:33:06:2b:f7: de:80:64:50:62:c0:31:65:f9:04:a9:1d:5e:e5:79:b6:0f:3c: d7:22:b6:8b:97:d7:f0:30:cf:93:90:4b:bf:1c:ac:d3:f9:4f: 11:fc:e9:84:a3:47:06:94:dd:2d:34:ef:e0:a5:29:50:c1:d1: c9:fe:dc:6a -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICAcUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoOTZC OEEwOEU3NTlDOTAyMTE3MzJERUU4NEZENEJFMjU5REFBMEZGRDAeFw0yNTEyMTAw NDM2NDFaFw0yNjA5MDkxNTMwMjVaMDMxMTAvBgNVBAMTKEU0NzNDRjc4QUFCQUY2 RjNCRTcxNzA1MDlGOTg1ODA3NTVGQkNCOTAwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDD1N7lpIxDiOdQMC7KH3kmvvF9HgNWIpaGAmoxjVMt4vNTw90d haS9UVU1QQXhCoceFrkDQ17dDkd81DfyfCkk1tmocqh1tmvXMgV1vMeKd4uFQzwN kfsQp8UGrHNy0dIbKgMvnZN7KJlr52qi0xvk6q7PPjSl1tc7ubX7t2bGiXhnh5VV GF7zan06fEhz0Ych9PRUFQdfRCO08gYmaZYiGQ7X/H2dU3FZy7Wjc3a37ep0CGL9 /01e6+brymB6DgCUANKcCUOiSeyF80v4fPuXg4shyzoNSA2TUsN2/lNfn6L/8WlK T64CVpLvxDSFAlke7h296bHV+aZaiSgVphUBAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQU5HPPeKq69vO+cXBQn5hYB1X7y5AwHwYDVR0jBBgwFoAUlrigjnWckCEXMt7o T9S+JZ2qD/0wGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvT1BFTi9s cmlnam5XY2tDRVhNdDdvVDlTLUpaMnFEXzAuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2xyaWdqbldja0NFWE10N29UOVMtSloycURfMC5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL09QRU4vbHJpZ2puV2NrQ0VYTXQ3b1Q5Uy1K WjJxRF8wLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAAXIhION RHD45xfqs0jnMqu5KuTJhUsruDUmKlmeu2x3IwhTovV+i98tOsCbKbMjIHEWarGm yCvNuD8JMDwiOYWEVzoY+l9VdRc1SbMigA142nFaN3AeaOjLDxIEHHigr8qVn8R1 yh3H9O4/5KOdaXyIWeGH2GzYdV19Jpd7GouViVxXduOf02NTneEk6FeYq2Gr7cKv 0l+8zTPkl/+3SnnGL4iM+aMPtYICczZz1CvtRgv/M/eQPfnHU+ST0wb0uIZVMwYr 996AZFBiwDFl+QSpHV7lebYPPNcitouX1/Awz5OQS78crNP5TxH86YSjRwaU3S00 7+ClKVDB0cn+3Go= -----END CERTIFICATE-----Generated at Wed Dec 10 08:58:28 2025 by rpki-client