This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.mft File: QNpOLMsDK23HfGWArizi-A3M_iE.mft (raw, json) Hash identifier: OiXs0COz7nR0UwIdES88q0SrBiBw4hywFB685AE1DSc= Subject key identifier: 95:66:6F:6F:ED:09:F5:F2:EC:4E:2F:DE:20:51:E3:CC:2D:00:4C:64 Authority key identifier: 40:DA:4E:2C:CB:03:2B:6D:C7:7C:65:80:AE:2C:E2:F8:0D:CC:FE:21 Certificate issuer: /CN=40DA4E2CCB032B6DC77C6580AE2CE2F80DCCFE21 Certificate serial: 0D8D Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/QNpOLMsDK23HfGWArizi-A3M_iE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.mft Manifest number: 0D8D Signing time: Mon 15 Dec 2025 22:08:44 +0000 Manifest this update: Mon 15 Dec 2025 22:08:44 +0000 Manifest next update: Wed 17 Dec 2025 22:08:44 +0000 Files and hashes: 1: QNpOLMsDK23HfGWArizi-A3M_iE.crl (hash: NzMWXLRSw8ncx18fGSB+hyg/nuw+fLu3ipIePKtfBqI=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/QNpOLMsDK23HfGWArizi-A3M_iE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 17 Dec 2025 06:08:24 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3469 (0xd8d) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=40DA4E2CCB032B6DC77C6580AE2CE2F80DCCFE21 Validity Not Before: Dec 15 22:08:44 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=95666F6FED09F5F2EC4E2FDE2051E3CC2D004C64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:65:a1:1a:9a:e3:29:03:e4:91:4c:cb:6d:f8: 00:26:8f:16:4b:53:c7:7b:5d:f3:7a:b3:da:1e:e8: a4:7c:ba:79:32:91:6d:78:57:a3:92:b3:e2:9d:6a: 04:8b:47:30:ad:96:77:de:a5:16:51:64:4f:b8:49: 02:6f:85:dd:15:6e:ad:44:af:b6:e2:99:37:09:56: 77:8d:52:da:64:e8:65:6b:4f:b3:bf:6c:c2:d9:b3: 96:db:40:fd:05:26:f0:d0:cc:81:8d:5b:1e:45:89: 4a:70:91:f1:02:de:9b:82:67:b7:90:16:2e:f0:f7: 95:ef:40:2c:1f:11:96:52:5f:2d:ba:2c:ae:e8:75: 61:23:46:0b:7a:e5:ab:9c:d3:00:a9:04:1c:0f:eb: 13:4d:72:4a:31:f8:db:48:a4:3a:ae:60:22:03:fa: 8d:c2:e8:51:62:c4:64:48:fd:ee:d1:e5:a3:81:8d: 5f:69:7e:ca:52:04:70:cd:8e:25:11:13:88:39:13: f5:0f:89:37:f5:34:50:e3:b8:3b:55:41:09:07:e1: 52:c4:ee:a1:c1:d4:34:24:68:b9:c2:29:ac:55:de: f7:59:a6:d9:e1:37:f1:d3:00:32:d8:16:22:90:f2: db:ed:43:98:0c:21:6d:d5:15:c3:a4:77:88:7d:bb: 06:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 95:66:6F:6F:ED:09:F5:F2:EC:4E:2F:DE:20:51:E3:CC:2D:00:4C:64 X509v3 Authority Key Identifier: keyid:40:DA:4E:2C:CB:03:2B:6D:C7:7C:65:80:AE:2C:E2:F8:0D:CC:FE:21 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/QNpOLMsDK23HfGWArizi-A3M_iE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/SPUSER/QNpOLMsDK23HfGWArizi-A3M_iE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 7c:60:c5:54:e8:8a:85:e5:0e:8d:df:71:06:b0:d6:ff:04:4e: 71:02:72:89:7f:26:cc:b6:10:d2:cd:38:4b:17:62:46:05:24: 5e:10:1c:69:7c:de:00:25:cd:96:5d:de:0e:7c:66:61:c5:a1: f1:df:21:27:4d:4a:95:68:2e:50:1e:94:ec:c6:0b:aa:97:45: af:43:d5:c4:db:fa:46:2e:29:d7:fe:3b:1a:50:dc:15:b5:b9: 58:79:48:83:5a:0b:e8:3d:8b:70:b4:cd:41:d5:3f:36:11:50: 28:fb:b9:5d:f5:8c:b8:ed:36:94:0c:10:d7:ad:71:d5:9e:5d: de:7c:56:00:d4:a4:a7:ae:57:0d:82:2d:06:de:23:d0:0d:d7: f5:ac:e7:c4:e6:5a:8c:c1:d3:a8:81:43:c9:80:58:a9:51:26: 49:d5:0b:01:f0:d9:9b:f4:8f:0d:e6:f1:48:4e:fb:cd:f8:5e: b5:1e:79:d0:5b:47:f2:87:88:58:d4:d3:99:3b:ef:06:c1:bd: f6:c0:95:72:e4:66:ca:62:b0:86:1e:97:79:32:94:b7:79:99: fb:81:4d:31:e3:c5:ce:41:14:0b:bb:cb:f3:a6:d1:2e:d7:02: 24:c8:1b:4f:c8:47:25:71:35:7e:5b:d5:24:91:f0:b7:8e:6c: 30:91:32:3c -----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgICDY0wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNDBE QTRFMkNDQjAzMkI2REM3N0M2NTgwQUUyQ0UyRjgwRENDRkUyMTAeFw0yNTEyMTUy MjA4NDRaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDk1NjY2RjZGRUQwOUY1 RjJFQzRFMkZERTIwNTFFM0NDMkQwMDRDNjQwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDiZaEamuMpA+SRTMtt+AAmjxZLU8d7XfN6s9oe6KR8unkykW14 V6OSs+KdagSLRzCtlnfepRZRZE+4SQJvhd0Vbq1Er7bimTcJVneNUtpk6GVrT7O/ bMLZs5bbQP0FJvDQzIGNWx5FiUpwkfEC3puCZ7eQFi7w95XvQCwfEZZSXy26LK7o dWEjRgt65auc0wCpBBwP6xNNckox+NtIpDquYCID+o3C6FFixGRI/e7R5aOBjV9p fspSBHDNjiURE4g5E/UPiTf1NFDjuDtVQQkH4VLE7qHB1DQkaLnCKaxV3vdZptnh N/HTADLYFiKQ8tvtQ5gMIW3VFcOkd4h9uwbLAgMBAAGjggIHMIICAzAdBgNVHQ4E FgQUlWZvb+0J9fLsTi/eIFHjzC0ATGQwHwYDVR0jBBgwFoAUQNpOLMsDK23HfGWA rizi+A3M/iEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBcBgNVHR8EVTBTMFGg T6BNhktyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1BVU0VS L1FOcE9MTXNESzIzSGZHV0FyaXppLUEzTV9pRS5jcmwwYAYIKwYBBQUHAQEEVDBS MFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklD Q0EvUU5wT0xNc0RLMjNIZkdXQXJpemktQTNNX2lFLmNlcjAOBgNVHQ8BAf8EBAMC B4AwgZwGCCsGAQUFBwELBIGPMIGMMFcGCCsGAQUFBzALhktyc3luYzovL3Jwa2lj YS50d25pYy50dy9ycGtpL1RXTklDQ0EvU1BVU0VSL1FOcE9MTXNESzIzSGZHV0Fy aXppLUEzTV9pRS5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50d25pYy50 dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQB8 YMVU6IqF5Q6N33EGsNb/BE5xAnKJfybMthDSzThLF2JGBSReEBxpfN4AJc2WXd4O fGZhxaHx3yEnTUqVaC5QHpTsxguql0WvQ9XE2/pGLinX/jsaUNwVtblYeUiDWgvo PYtwtM1B1T82EVAo+7ld9Yy47TaUDBDXrXHVnl3efFYA1KSnrlcNgi0G3iPQDdf1 rOfE5lqMwdOogUPJgFipUSZJ1QsB8Nmb9I8N5vFITvvN+F61HnnQW0fyh4hY1NOZ O+8Gwb32wJVy5GbKYrCGHpd5MpS3eZn7gU0x48XOQRQLu8vzptEu1wIkyBtPyEcl cTV+W9UkkfC3jmwwkTI8 -----END CERTIFICATE-----Generated at Wed Dec 17 04:20:16 2025 by rpki-client