This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft File: Y0AKpubGixPd3JwAuCWGEkJz-ps.mft (raw, json) Hash identifier: fPfSazaB/RbsuM+S4SRWLWAEoGfA6zRj5nNjVu3pAoU= Subject key identifier: 62:94:72:0F:4E:18:10:A7:6D:17:B0:40:5B:05:1E:B2:8C:55:A5:5F Authority key identifier: 63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B Certificate issuer: /CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Certificate serial: 0DDB Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft Manifest number: 0DB2 Signing time: Sat 06 Dec 2025 21:36:00 +0000 Manifest this update: Sat 06 Dec 2025 21:36:00 +0000 Manifest next update: Mon 08 Dec 2025 21:36:00 +0000 Files and hashes: 1: HcwuRn25t6lmUKXL65CP5mZ9gwo.roa (hash: xo7w+FcYGTxOHH+/WM9qYURx/RgpqH7xI6ZGHIOPpqY=) 2: OsdrqJ2_3VfY5tu3idQbPTdWr20.roa (hash: 0hDgsXZ20hq1Z7VdfpEcGG27x701uTbSC7+OEapdFVE=) 3: Y0AKpubGixPd3JwAuCWGEkJz-ps.crl (hash: Z3i6yye6nxIGhrMfpITOgO4LKcG0FRJ5r+uFG3uLbCY=) 4: kVEGuHeI6b0hZDffJxtWx2r7GcU.roa (hash: 8rmESp62pho0qjSVOc9mlnIwVOa8NODQkmF06XGXdyo=) 5: uCvlePhZxjoG3eFLrXUJzvJ4RWE.roa (hash: yN0+tmM2BKTAxVDFFFjeN9Q3Z/vgjo7oZGDOqiv+Fcw=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 08 Dec 2025 05:06:27 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 3547 (0xddb) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=63400AA6E6C68B13DDDC9C00B82586124273FA9B Validity Not Before: Dec 6 21:36:00 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=6294720F4E1810A76D17B0405B051EB28C55A55F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:4a:0f:a8:66:d8:c9:34:70:51:46:ce:ab:63: b7:35:fc:b3:8f:1c:08:f9:e2:04:f4:06:9a:25:71: f7:25:58:37:a3:15:8b:8e:f9:51:79:b7:40:41:32: 02:89:90:0c:20:f7:90:5b:54:92:53:6f:73:fa:bf: 00:a0:d0:af:c9:3b:bf:84:64:a8:f7:45:cd:61:6d: 20:b5:1e:19:b1:e9:ae:90:b9:fa:5f:0e:33:ca:cf: 9b:30:51:09:d0:75:e5:25:d5:dc:40:d2:14:1b:a9: ec:92:dd:e5:c5:65:ed:7f:16:09:44:4d:3f:7a:67: 89:d6:c4:be:ef:cb:ed:6c:1b:28:a6:94:ae:26:24: 59:f7:37:71:89:11:de:d2:62:f2:92:83:3c:c0:15: 24:fc:69:9d:d0:24:ba:07:5c:fc:ab:fb:72:c5:6a: 0c:a5:a3:f5:fb:0b:4d:4f:ee:b1:a5:ff:6c:99:3c: 62:ba:cc:28:06:04:3f:84:46:dd:28:4a:60:3b:fc: c3:38:76:90:ae:1b:a2:fa:ec:1b:a4:9b:36:49:23: fb:dc:3a:55:62:56:07:4f:b5:00:2e:de:8a:05:ab: e3:29:be:9c:20:bc:fb:f9:e7:98:22:e0:5c:df:7e: d4:8f:5c:a3:c2:81:db:eb:0f:06:b1:0d:d1:e5:a6: bf:ab Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 62:94:72:0F:4E:18:10:A7:6D:17:B0:40:5B:05:1E:B2:8C:55:A5:5F X509v3 Authority Key Identifier: keyid:63:40:0A:A6:E6:C6:8B:13:DD:DC:9C:00:B8:25:86:12:42:73:FA:9B X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/Y0AKpubGixPd3JwAuCWGEkJz-ps.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/VISION4YES/Y0AKpubGixPd3JwAuCWGEkJz-ps.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 5b:91:a4:ca:8c:3e:8e:2f:ec:3c:23:c9:23:17:55:fe:5e:89: 33:5d:63:12:1f:be:58:e4:e2:55:ad:13:4d:0f:d8:5f:10:64: 1e:b9:d3:cf:b7:f7:d5:18:8e:11:d8:72:8b:77:20:e3:87:ca: 50:15:f8:cb:82:50:49:6e:c7:f5:85:eb:bc:8f:99:db:36:ed: 48:72:d6:d0:b1:31:d0:5b:30:3c:bd:73:73:20:0e:54:05:e0: 97:fb:1a:63:20:71:00:a5:34:a6:45:75:cd:fc:f7:5b:31:42: aa:0a:ae:d6:51:a7:82:74:7e:c5:5e:b5:9a:9c:6b:ac:78:a3: c8:ba:93:39:4d:d6:8e:c3:f5:de:2c:21:06:a2:cb:72:3a:c8: f2:1b:a8:81:5e:57:3a:07:3e:b0:4f:a1:4d:53:39:a0:48:23: 0e:a0:a6:b0:c3:ac:f6:4d:23:c4:dc:a7:95:74:14:00:22:22: e8:53:10:6a:87:d6:0b:cf:4c:a8:b5:c7:e7:ad:be:38:42:eb: 3f:73:00:4e:37:b3:5b:5a:91:53:b9:86:bd:35:3c:dc:14:84: 5b:06:17:a8:3d:19:9b:f7:6b:12:be:ad:9a:8d:00:82:63:56: d3:05:66:9c:b9:80:3f:02:b7:3d:ec:af:b9:55:dd:12:2b:73: b8:00:46:16 -----BEGIN CERTIFICATE----- MIIE8zCCA9ugAwIBAgICDdswDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoNjM0 MDBBQTZFNkM2OEIxM0REREM5QzAwQjgyNTg2MTI0MjczRkE5QjAeFw0yNTEyMDYy MTM2MDBaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDYyOTQ3MjBGNEUxODEw QTc2RDE3QjA0MDVCMDUxRUIyOEM1NUE1NUYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDoSg+oZtjJNHBRRs6rY7c1/LOPHAj54gT0BpolcfclWDejFYuO +VF5t0BBMgKJkAwg95BbVJJTb3P6vwCg0K/JO7+EZKj3Rc1hbSC1Hhmx6a6Qufpf DjPKz5swUQnQdeUl1dxA0hQbqeyS3eXFZe1/FglETT96Z4nWxL7vy+1sGyimlK4m JFn3N3GJEd7SYvKSgzzAFST8aZ3QJLoHXPyr+3LFagylo/X7C01P7rGl/2yZPGK6 zCgGBD+ERt0oSmA7/MM4dpCuG6L67BukmzZJI/vcOlViVgdPtQAu3ooFq+Mpvpwg vPv555gi4FzfftSPXKPCgdvrDwaxDdHlpr+rAgMBAAGjggIPMIICCzAdBgNVHQ4E FgQUYpRyD04YEKdtF7BAWwUesoxVpV8wHwYDVR0jBBgwFoAUY0AKpubGixPd3JwA uCWGEkJz+pswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBgBgNVHR8EWTBXMFWg U6BRhk9yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvVklTSU9O NFlFUy9ZMEFLcHViR2l4UGQzSndBdUNXR0VrSnotcHMuY3JsMGAGCCsGAQUFBwEB BFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9U V05JQ0NBL1kwQUtwdWJHaXhQZDNKd0F1Q1dHRWtKei1wcy5jZXIwDgYDVR0PAQH/ BAQDAgeAMIGgBggrBgEFBQcBCwSBkzCBkDBbBggrBgEFBQcwC4ZPcnN5bmM6Ly9y cGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NBL1ZJU0lPTjRZRVMvWTBBS3B1Ykdp eFBkM0p3QXVDV0dFa0p6LXBzLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRw LnR3bmljLnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUA MCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQEL BQADggEBAFuRpMqMPo4v7DwjySMXVf5eiTNdYxIfvljk4lWtE00P2F8QZB6508+3 99UYjhHYcot3IOOHylAV+MuCUElux/WF67yPmds27Uhy1tCxMdBbMDy9c3MgDlQF 4Jf7GmMgcQClNKZFdc3891sxQqoKrtZRp4J0fsVetZqca6x4o8i6kzlN1o7D9d4s IQaiy3I6yPIbqIFeVzoHPrBPoU1TOaBIIw6gprDDrPZNI8Tcp5V0FAAiIuhTEGqH 1gvPTKi1x+etvjhC6z9zAE43s1takVO5hr01PNwUhFsGF6g9GZv3axK+rZqNAIJj VtMFZpy5gD8Ctz3sr7lV3RIrc7gARhY= -----END CERTIFICATE-----Generated at Mon Dec 8 01:44:38 2025 by rpki-client