This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft File: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft (raw, json) Hash identifier: Mzya5di/nRpiBl7YmvPpL+cqnW1TzWb2kogaobVs0EE= Subject key identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 Authority key identifier: 43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 Certificate issuer: /CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Certificate serial: 01DF Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft Manifest number: 01D9 Signing time: Sat 06 Dec 2025 21:36:05 +0000 Manifest this update: Sat 06 Dec 2025 21:36:05 +0000 Manifest next update: Mon 08 Dec 2025 21:36:05 +0000 Files and hashes: 1: DHfspAVUUZ0rNFX5agFJgGyx23Q.roa (hash: 0yRv4FcWg1qFIUGDL74GwiVrS4qIfgwZ9YjYGaMW7Ks=) 2: Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl (hash: 4d8Q12Qwdyz4Zg8jYwHTo0kZjElR7I4aK0TMpaPtZZk=) 3: plN6TlQMP3qTM5WBPlFYzO6YRCE.roa (hash: oXn5+/wl8H3Ceea5XWKI+xNM2/t6MEJx6Sg2hKc5Oaw=) Validation: Failed, unable to get local issuer certificate Certificate: Data: Version: 3 (0x2) Serial Number: 479 (0x1df) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=43EBD39FB518B55DA00742AEEC7B0DA6AABA61F7 Validity Not Before: Dec 6 21:36:05 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=EAF2BE883EF8ED0C1C90C3D05D111B8539F37A69 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:b5:3e:8b:b8:23:d0:67:20:07:ec:8a:ac:1d: e4:82:63:90:b5:bd:e0:39:64:00:a9:a4:04:a5:e8: 32:34:38:0f:ad:0b:f1:dd:bf:6d:52:4d:5e:98:cd: bd:83:9d:40:9a:ae:40:0e:c6:e6:df:2f:ca:36:02: 96:ba:a1:3d:b3:d1:66:f9:3c:2e:63:d4:3a:95:c4: 4d:b9:cc:57:07:4c:72:12:e1:15:50:6c:14:72:41: 58:79:2d:09:03:55:e3:f8:65:8b:9f:28:9a:09:80: 6b:ef:6b:4c:4d:2d:cc:9c:3b:39:00:3f:99:35:00: f9:2a:92:95:51:e8:42:56:64:12:94:d2:43:f5:60: 79:65:56:27:e6:20:8d:0f:30:0c:92:fe:6c:2e:f4: 1f:09:0f:ab:9c:22:2d:e2:73:ef:dd:09:97:d3:35: 83:ef:81:75:33:60:63:83:81:2b:91:1c:55:f8:8c: 48:7e:db:af:79:b6:82:ba:65:79:cd:98:36:a9:b4: dd:28:ef:8d:bd:e7:46:d5:da:79:d5:30:58:89:5c: 58:95:a8:1b:d0:57:e1:7e:d7:ce:1d:80:99:ee:ae: 00:20:12:45:a5:f3:37:69:71:b6:27:45:32:46:55: 8c:f9:ea:86:77:07:bd:c9:68:9c:15:29:02:f2:d5: df:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: EA:F2:BE:88:3E:F8:ED:0C:1C:90:C3:D0:5D:11:1B:85:39:F3:7A:69 X509v3 Authority Key Identifier: keyid:43:EB:D3:9F:B5:18:B5:5D:A0:07:42:AE:EC:7B:0D:A6:AA:BA:61:F7 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SAELW/Q-vTn7UYtV2gB0Ku7HsNpqq6Yfc.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7a:ad:6f:ea:84:9b:df:de:b9:ce:b4:d6:40:7a:ab:54:cb:2f: d6:47:74:5d:4c:2c:ad:b6:4d:52:12:f9:f7:ff:03:2a:6c:4f: a3:d3:c8:15:fb:bf:02:63:fe:e4:9d:8e:67:d2:fa:e6:9a:1d: 96:f1:78:23:ee:9c:f9:95:7f:26:e8:79:1a:c0:2f:c9:49:86: 38:8a:e0:df:3e:72:d4:c9:2d:af:5a:46:a1:3f:1d:18:df:d0: a9:35:a3:68:45:ab:c4:1c:71:59:72:6b:86:c5:59:be:14:76: de:d6:f8:e0:c0:22:93:c9:18:54:18:08:86:9f:d8:07:e8:f3: e0:47:e2:12:41:ce:f6:f5:b9:6b:5f:ee:39:71:21:10:64:a4: 94:46:f9:cd:de:ce:57:98:be:67:b2:29:89:18:7e:29:a9:76: 6b:22:a1:2f:49:e8:5d:df:ff:ec:37:57:da:99:da:3a:be:ca: 58:7f:da:68:ad:98:79:48:bd:da:52:a2:da:a2:64:2b:b1:ad: e8:54:f8:23:a6:3e:11:8f:40:14:2a:a2:5c:a3:68:3b:05:10: 66:08:1f:7f:f4:ff:aa:88:0f:e0:60:7b:54:f4:89:16:fc:e6: 84:3f:bb:89:94:f0:b1:33:c4:75:93:2f:03:9b:4d:45:db:ff: ea:fa:2f:61 -----BEGIN CERTIFICATE----- MIIE6TCCA9GgAwIBAgICAd8wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDNF QkQzOUZCNTE4QjU1REEwMDc0MkFFRUM3QjBEQTZBQUJBNjFGNzAeFw0yNTEyMDYy MTM2MDVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEVBRjJCRTg4M0VGOEVE MEMxQzkwQzNEMDVEMTExQjg1MzlGMzdBNjkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDftT6LuCPQZyAH7IqsHeSCY5C1veA5ZACppASl6DI0OA+tC/Hd v21STV6Yzb2DnUCarkAOxubfL8o2Apa6oT2z0Wb5PC5j1DqVxE25zFcHTHIS4RVQ bBRyQVh5LQkDVeP4ZYufKJoJgGvva0xNLcycOzkAP5k1APkqkpVR6EJWZBKU0kP1 YHllVifmII0PMAyS/mwu9B8JD6ucIi3ic+/dCZfTNYPvgXUzYGODgSuRHFX4jEh+ 2695toK6ZXnNmDaptN0o742950bV2nnVMFiJXFiVqBvQV+F+184dgJnurgAgEkWl 8zdpcbYnRTJGVYz56oZ3B73JaJwVKQLy1d+BAgMBAAGjggIFMIICATAdBgNVHQ4E FgQU6vK+iD747QwckMPQXREbhTnzemkwHwYDVR0jBBgwFoAUQ+vTn7UYtV2gB0Ku 7HsNpqq6YfcwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBbBgNVHR8EVDBSMFCg TqBMhkpyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU0FFTFcv US12VG43VVl0VjJnQjBLdTdIc05wcXE2WWZjLmNybDBgBggrBgEFBQcBAQRUMFIw UAYIKwYBBQUHMAKGRHJzeW5jOi8vcnBraWNhLnR3bmljLnR3L3Jwa2kvVFdOSUND QS9RLXZUbjdVWXRWMmdCMEt1N0hzTnBxcTZZZmMuY2VyMA4GA1UdDwEB/wQEAwIH gDCBmwYIKwYBBQUHAQsEgY4wgYswVgYIKwYBBQUHMAuGSnJzeW5jOi8vcnBraWNh LnR3bmljLnR3L3Jwa2kvVFdOSUNDQS9TQUVMVy9RLXZUbjdVWXRWMmdCMEt1N0hz TnBxcTZZZmMubWZ0MDEGCCsGAQUFBzANhiVodHRwczovL3JyZHAudHduaWMudHcv cnJkcC9ub3RpZnkueG1sMBUGCCsGAQUFBwEIAQH/BAYwBKACBQAwIQYIKwYBBQUH AQcBAf8EEjAQMAYEAgABBQAwBgQCAAIFADANBgkqhkiG9w0BAQsFAAOCAQEAeq1v 6oSb3965zrTWQHqrVMsv1kd0XUwsrbZNUhL59/8DKmxPo9PIFfu/AmP+5J2OZ9L6 5podlvF4I+6c+ZV/Juh5GsAvyUmGOIrg3z5y1Mktr1pGoT8dGN/QqTWjaEWrxBxx WXJrhsVZvhR23tb44MAik8kYVBgIhp/YB+jz4EfiEkHO9vW5a1/uOXEhEGSklEb5 zd7OV5i+Z7IpiRh+Kal2ayKhL0noXd//7DdX2pnaOr7KWH/aaK2YeUi92lKi2qJk K7Gt6FT4I6Y+EY9AFCqiXKNoOwUQZggff/T/qogP4GB7VPSJFvzmhD+7iZTwsTPE dZMvA5tNRdv/6vovYQ== -----END CERTIFICATE-----Generated at Sun Dec 7 01:17:01 2025 by rpki-client