This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft File: KzuJrTLzuVt68WX0yKTNCOdU1as.mft (raw, json) Hash identifier: Blf7u7aL68kQGJTwwkuAQbDmO5uWzLF0VTxg0QFpC1A= Subject key identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 Authority key identifier: 2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB Certificate issuer: /CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Certificate serial: 0465 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft Manifest number: 0459 Signing time: Fri 05 Dec 2025 12:34:35 +0000 Manifest this update: Fri 05 Dec 2025 12:34:35 +0000 Manifest next update: Sun 07 Dec 2025 12:34:35 +0000 Files and hashes: 1: Agj8rVwTiiTb80wmHrbGEyLB5NU.roa (hash: e3rWMC/Ublr7SxYZSTIDAsdXqPgUqh53/wujZLS/c2M=) 2: KzuJrTLzuVt68WX0yKTNCOdU1as.crl (hash: Xs6STSw3T0C6c4j1mM85m37cnQtC323YtjmEGeenR24=) 3: ZSxhd8aHi1LMGqcLudRx__hQNQU.roa (hash: 6c0losMgzYfoBgXeGjGJmVkJ0DSJmbIwFvnsJet7r0c=) 4: mSApZwnuhTHRnFXHnX6RvzTKGYE.roa (hash: ZoNhTA/dFtecSixl6TwZgm+2FPUyeLITukQ2ucLNwGs=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 01:06:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1125 (0x465) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2B3B89AD32F3B95B7AF165F4C8A4CD08E754D5AB Validity Not Before: Dec 5 12:34:35 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=DD86409E426F9916CBB6874B07529843D30A48F1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:db:89:0b:c5:2c:92:c4:78:96:00:84:64:de: f8:f0:1c:8b:c3:c8:de:56:c3:da:d5:95:d5:f7:c0: 53:aa:d0:a7:3a:75:06:5b:87:0d:f8:b8:55:00:71: b0:30:1c:28:0b:04:b3:7f:53:1b:50:40:0c:14:47: 59:2d:28:9a:c5:ad:cd:af:15:29:eb:49:01:7a:4a: 65:f5:bd:d3:be:12:c8:f7:76:8e:f6:f3:ef:31:98: 26:94:48:0f:7b:30:61:8c:71:08:8e:fb:54:7a:38: fa:16:d6:69:0f:73:4e:0e:7a:a7:88:32:21:95:fc: 1c:7b:64:ff:9c:31:e1:c9:fc:1b:93:7c:ff:bf:52: 47:38:4c:2c:85:96:31:47:c1:27:0d:3c:70:77:da: 14:05:55:d1:e1:93:e1:69:e3:85:ed:17:59:d5:63: 58:8b:a9:a2:34:59:17:ef:96:b7:90:ed:eb:6a:a0: 43:28:c2:bc:73:52:71:95:67:5e:2e:6b:6f:f1:39: 93:2e:d8:fb:2a:6d:b8:60:7f:3b:fb:5f:7b:65:5e: 22:65:45:06:be:5b:6f:0d:0a:e5:b1:68:80:69:c8: 44:a0:7a:43:1c:eb:b7:f6:5c:89:70:bc:f6:5d:b9: 81:0b:f2:a7:9a:cd:04:93:99:24:f6:e6:96:c0:a3: 3b:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DD:86:40:9E:42:6F:99:16:CB:B6:87:4B:07:52:98:43:D3:0A:48:F1 X509v3 Authority Key Identifier: keyid:2B:3B:89:AD:32:F3:B9:5B:7A:F1:65:F4:C8:A4:CD:08:E7:54:D5:AB X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/KzuJrTLzuVt68WX0yKTNCOdU1as.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/MAGICCUBE/KzuJrTLzuVt68WX0yKTNCOdU1as.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 0d:04:b3:c8:00:fd:a2:bf:da:89:6f:62:30:f3:7f:06:73:f6: d5:22:4e:9d:82:d4:91:ca:a7:25:05:fa:d5:cd:37:69:75:3a: fa:24:22:76:8e:f0:3c:f0:4f:76:1e:31:21:bc:a9:a2:23:63: e9:f0:43:9a:ba:8f:c8:53:ac:a8:6c:37:45:53:a1:97:3b:22: 84:11:0c:74:e5:f4:86:76:00:22:1e:6d:1d:c1:01:e7:a4:c6: ee:7a:3c:71:26:40:ac:54:9e:56:f9:6a:c8:e7:14:d9:43:9e: 03:6d:76:da:f5:c3:ba:8e:f7:cf:06:5a:76:29:ac:98:ee:07: 0d:23:df:75:e3:bf:f0:5b:a9:f1:39:fd:18:9a:d9:6d:13:d8: bd:3a:83:b5:ae:85:7d:14:6b:69:e9:80:7f:4a:1c:d8:af:41: 57:c0:62:6c:8f:03:8c:cc:2c:49:23:9d:58:b3:47:11:e6:66: ea:27:0d:d3:8d:19:0f:71:7f:bc:7e:5b:9b:cb:70:08:d2:5d: dc:f7:c1:e1:69:44:51:20:2d:9f:24:27:15:36:66:6f:73:ac: 56:e2:e7:4e:27:3a:fc:d5:48:ff:33:f7:28:52:d7:80:6b:03: 60:2d:46:2a:d9:df:fc:22:00:a9:76:4b:80:5a:5b:cc:bc:10: d9:3c:08:7e -----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgICBGUwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMkIz Qjg5QUQzMkYzQjk1QjdBRjE2NUY0QzhBNENEMDhFNzU0RDVBQjAeFw0yNTEyMDUx MjM0MzVaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEREODY0MDlFNDI2Rjk5 MTZDQkI2ODc0QjA3NTI5ODQzRDMwQTQ4RjEwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQCo24kLxSySxHiWAIRk3vjwHIvDyN5Ww9rVldX3wFOq0Kc6dQZb hw34uFUAcbAwHCgLBLN/UxtQQAwUR1ktKJrFrc2vFSnrSQF6SmX1vdO+Esj3do72 8+8xmCaUSA97MGGMcQiO+1R6OPoW1mkPc04OeqeIMiGV/Bx7ZP+cMeHJ/BuTfP+/ Ukc4TCyFljFHwScNPHB32hQFVdHhk+Fp44XtF1nVY1iLqaI0WRfvlreQ7etqoEMo wrxzUnGVZ14ua2/xOZMu2Psqbbhgfzv7X3tlXiJlRQa+W28NCuWxaIBpyESgekMc 67f2XIlwvPZduYEL8qeazQSTmST25pbAozuVAgMBAAGjggINMIICCTAdBgNVHQ4E FgQU3YZAnkJvmRbLtodLB1KYQ9MKSPEwHwYDVR0jBBgwFoAUKzuJrTLzuVt68WX0 yKTNCOdU1aswGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBfBgNVHR8EWDBWMFSg UqBQhk5yc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUND VUJFL0t6dUpyVEx6dVZ0NjhXWDB5S1ROQ09kVTFhcy5jcmwwYAYIKwYBBQUHAQEE VDBSMFAGCCsGAQUFBzAChkRyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RX TklDQ0EvS3p1SnJUTHp1VnQ2OFdYMHlLVE5DT2RVMWFzLmNlcjAOBgNVHQ8BAf8E BAMCB4AwgZ8GCCsGAQUFBwELBIGSMIGPMFoGCCsGAQUFBzALhk5yc3luYzovL3Jw a2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTUFHSUNDVUJFL0t6dUpyVEx6dVZ0 NjhXWDB5S1ROQ09kVTFhcy5tZnQwMQYIKwYBBQUHMA2GJWh0dHBzOi8vcnJkcC50 d25pYy50dy9ycmRwL25vdGlmeS54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIFADAh BggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEBCwUA A4IBAQANBLPIAP2iv9qJb2Iw838Gc/bVIk6dgtSRyqclBfrVzTdpdTr6JCJ2jvA8 8E92HjEhvKmiI2Pp8EOauo/IU6yobDdFU6GXOyKEEQx05fSGdgAiHm0dwQHnpMbu ejxxJkCsVJ5W+WrI5xTZQ54DbXba9cO6jvfPBlp2KayY7gcNI99147/wW6nxOf0Y mtltE9i9OoO1roV9FGtp6YB/ShzYr0FXwGJsjwOMzCxJI51Ys0cR5mbqJw3TjRkP cX+8fluby3AI0l3c98HhaURRIC2fJCcVNmZvc6xW4udOJzr81Uj/M/coUteAawNg LUYq2d/8IgCpdkuAWlvMvBDZPAh+ -----END CERTIFICATE-----Generated at Sat Dec 6 21:09:25 2025 by rpki-client