This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft File: govRnvqOvlnvQHu3-raJj3VMfsE.mft (raw, json) Hash identifier: O2trQGI8VOqByRS5r6uJJ+029R/FVQzw1XI3exiKjaQ= Subject key identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 Authority key identifier: 82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 Certificate issuer: /CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Certificate serial: 1156 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft Manifest number: 1139 Signing time: Sat 06 Dec 2025 19:36:28 +0000 Manifest this update: Sat 06 Dec 2025 19:36:28 +0000 Manifest next update: Mon 08 Dec 2025 19:36:28 +0000 Files and hashes: 1: F-uIqLUJ2DofwkNp7jRcP9Rb0qU.roa (hash: qxhjM03lflZoUJobv28e2CqjaJUBiXRNnEpHgSf1MKI=) 2: fAA_7kU5d-eAsYyb4t9T_m-K9so.roa (hash: 0ssxX45r2zal8T5TYsBqjtxaxF/5kSi/C5RnyqK7E4Q=) 3: govRnvqOvlnvQHu3-raJj3VMfsE.crl (hash: sczQbrHflyX6c7dwPd7bWpi4rG1F7IOm7DeL01w/V/Q=) 4: gswIJVnHvj1YUxuz_vWKd1fkfGM.roa (hash: FjCc5t+/MKmt4eTep1SuaHgKfSc3Wo0s0FQ+kwue/H0=) 5: zElcDX8txAiKF_nW3UuL27WFm-o.roa (hash: +K7BgWnfJX1+YlJoSHdk6dprDkM4g/+Bv/t19+nc8zA=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 01:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4438 (0x1156) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=828BD19EFA8EBE59EF407BB7FAB6898F754C7EC1 Validity Not Before: Dec 6 19:36:28 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=199435E3FC72374E8E7AC2AD5B0820DA50D3E8D6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:da:3e:fa:9b:5a:dd:40:06:17:54:cf:46:56: c6:00:75:aa:0d:85:0d:78:43:77:58:47:f9:72:9d: ef:f1:76:2d:a0:b1:2c:0e:d4:8c:0e:07:0a:26:79: 1c:06:fa:b5:0c:58:5d:11:7b:e2:92:67:8a:33:a4: a0:bc:ac:2e:35:35:80:48:80:8b:f1:e7:0a:ca:23: 9c:f4:1b:ca:6f:af:e1:a2:1f:69:4d:05:d4:9c:ed: 11:75:0c:bb:76:5c:cf:b8:d4:d8:da:f5:58:75:a0: c4:9b:f5:b2:a5:eb:2e:34:4a:a9:8f:44:66:0c:fe: 6d:d3:6f:68:ab:c2:88:ed:8d:b3:f6:cb:7e:31:69: 9c:88:b0:53:07:b6:7f:85:13:0e:e6:47:a3:33:28: 9b:23:ed:0e:ab:62:df:f8:06:e3:8b:2f:a2:0c:57: e1:3e:db:33:7f:ad:2f:7e:39:71:ac:52:fe:62:f5: 0e:b4:cd:18:f6:65:1d:e7:c3:8b:ee:d3:61:ff:ea: d8:4f:ca:de:81:48:ae:19:24:47:2d:75:1b:18:b3: 5d:46:53:04:0c:21:de:3c:e4:eb:e2:7a:2c:39:22: 83:d6:7c:f3:92:af:c4:11:70:d2:c8:da:a9:8d:49: 7a:cf:f9:3d:1b:03:b3:af:e8:07:04:9d:22:60:a8: 0d:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 19:94:35:E3:FC:72:37:4E:8E:7A:C2:AD:5B:08:20:DA:50:D3:E8:D6 X509v3 Authority Key Identifier: keyid:82:8B:D1:9E:FA:8E:BE:59:EF:40:7B:B7:FA:B6:89:8F:75:4C:7E:C1 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/govRnvqOvlnvQHu3-raJj3VMfsE.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KKCO/govRnvqOvlnvQHu3-raJj3VMfsE.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 92:11:4f:4c:f6:18:4f:51:fd:9e:3e:d4:f9:61:9f:96:cf:fc: f2:0e:a1:69:c0:11:e3:d9:25:77:94:0b:39:55:e6:65:29:57: 1e:01:c9:7d:8f:49:99:db:8f:e9:db:52:8d:34:5e:90:cc:2f: 05:37:d4:f6:49:82:60:61:8a:69:25:93:5a:80:09:10:a4:7e: 76:96:7f:99:1e:c7:e9:c8:ab:b2:fb:3a:01:b1:58:4f:41:a4: ed:22:d3:ba:7e:2d:9b:98:77:ec:b1:11:94:c8:ec:04:a5:b0: 3e:7f:47:17:ca:02:fe:f8:79:45:64:64:e4:e2:59:b7:4b:d4: db:da:93:b1:7a:c7:72:04:60:77:5e:6a:df:5c:de:dd:00:79: cc:96:da:4e:34:ec:fe:8f:83:54:82:8b:a6:d2:73:dc:4d:d0: e9:6b:50:3b:b2:10:38:b0:af:5d:99:b6:34:56:2f:a6:6a:92: 11:bd:f3:a4:c6:02:72:24:36:2e:7d:39:9a:9f:38:58:84:56: e6:db:1a:dc:6f:d1:e6:17:03:8c:5d:0c:89:aa:50:b6:bb:3d: 5f:53:3f:d6:8e:67:06:26:0c:bd:07:21:34:b3:7e:51:c7:50: b8:7f:70:7d:c0:fb:cd:62:5c:7e:ab:06:e5:b8:25:45:b1:a0: df:e3:9a:32 -----BEGIN CERTIFICATE----- MIIE5zCCA8+gAwIBAgICEVYwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoODI4 QkQxOUVGQThFQkU1OUVGNDA3QkI3RkFCNjg5OEY3NTRDN0VDMTAeFw0yNTEyMDYx OTM2MjhaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKDE5OTQzNUUzRkM3MjM3 NEU4RTdBQzJBRDVCMDgyMERBNTBEM0U4RDYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDV2j76m1rdQAYXVM9GVsYAdaoNhQ14Q3dYR/lyne/xdi2gsSwO 1IwOBwomeRwG+rUMWF0Re+KSZ4ozpKC8rC41NYBIgIvx5wrKI5z0G8pvr+GiH2lN BdSc7RF1DLt2XM+41Nja9Vh1oMSb9bKl6y40SqmPRGYM/m3Tb2irwojtjbP2y34x aZyIsFMHtn+FEw7mR6MzKJsj7Q6rYt/4BuOLL6IMV+E+2zN/rS9+OXGsUv5i9Q60 zRj2ZR3nw4vu02H/6thPyt6BSK4ZJEctdRsYs11GUwQMId485Ovieiw5IoPWfPOS r8QRcNLI2qmNSXrP+T0bA7Ov6AcEnSJgqA1zAgMBAAGjggIDMIIB/zAdBgNVHQ4E FgQUGZQ14/xyN06OesKtWwgg2lDT6NYwHwYDVR0jBBgwFoAUgovRnvqOvlnvQHu3 +raJj3VMfsEwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBaBgNVHR8EUzBRME+g TaBLhklyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvS0tDTy9n b3ZSbnZxT3ZsbnZRSHUzLXJhSmozVk1mc0UuY3JsMGAGCCsGAQUFBwEBBFQwUjBQ BggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05JQ0NB L2dvdlJudnFPdmxudlFIdTMtcmFKajNWTWZzRS5jZXIwDgYDVR0PAQH/BAQDAgeA MIGaBggrBgEFBQcBCwSBjTCBijBVBggrBgEFBQcwC4ZJcnN5bmM6Ly9ycGtpY2Eu dHduaWMudHcvcnBraS9UV05JQ0NBL0tLQ08vZ292Um52cU92bG52UUh1My1yYUpq M1ZNZnNFLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmljLnR3L3Jy ZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsGAQUFBwEH AQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEBAJIRT0z2 GE9R/Z4+1Plhn5bP/PIOoWnAEePZJXeUCzlV5mUpVx4ByX2PSZnbj+nbUo00XpDM LwU31PZJgmBhimklk1qACRCkfnaWf5kex+nIq7L7OgGxWE9BpO0i07p+LZuYd+yx EZTI7ASlsD5/RxfKAv74eUVkZOTiWbdL1Nvak7F6x3IEYHdeat9c3t0AecyW2k40 7P6Pg1SCi6bSc9xN0OlrUDuyEDiwr12ZtjRWL6ZqkhG986TGAnIkNi59OZqfOFiE VubbGtxv0eYXA4xdDImqULa7PV9TP9aOZwYmDL0HITSzflHHULh/cH3A+81iXH6r BuW4JUWxoN/jmjI= -----END CERTIFICATE-----Generated at Sat Dec 6 21:07:42 2025 by rpki-client