This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft File: HU149WdQx1mJUzZtRZoStli3_zg.mft (raw, json) Hash identifier: 9m/nJnHKZmUQu4p8ZwmM6vcEFx24cEwAw6qurLawjwY= Subject key identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F Authority key identifier: 1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 Certificate issuer: /CN=1D4D78F56750C7598953366D459A12B658B7FF38 Certificate serial: 0483 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft Manifest number: 0469 Signing time: Sat 06 Dec 2025 22:07:22 +0000 Manifest this update: Sat 06 Dec 2025 22:07:22 +0000 Manifest next update: Mon 08 Dec 2025 22:07:22 +0000 Files and hashes: 1: HU149WdQx1mJUzZtRZoStli3_zg.crl (hash: AJ6e2CizR3K226ZX8pWB+U8So8kijI3U8T5VnGoRchI=) 2: omWRiv2Gjisn3BVIJtTaANX3ws0.roa (hash: j1Y9xYKC1MfKu476TBxz5Csc97AgZ8hNxzkedBq00Lk=) 3: xffnP06jJW7rSltNb65_-9irA5Q.roa (hash: kE0fcYJla5JIculNAoaQpgueYiICgCqWDlwl9rqHMeg=) Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 07 Dec 2025 06:06:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1155 (0x483) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1D4D78F56750C7598953366D459A12B658B7FF38 Validity Not Before: Dec 6 22:07:22 2025 GMT Not After : Aug 22 08:14:28 2026 GMT Subject: CN=B8DE83E99D5444D590FD0C6AE8B9FE4B64A2518F Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:af:c9:c6:04:db:89:a0:26:63:3a:2b:b0:b1: cb:1c:eb:9b:97:90:d0:6f:7b:8b:5e:c6:e8:9f:1d: 53:45:b9:65:57:60:84:31:de:84:07:4e:2a:27:6e: ed:e8:85:8f:29:23:09:4d:4e:2f:f9:bf:6b:ca:a6: 6c:54:03:ef:ca:e0:fb:c1:88:46:3a:3b:ca:0b:95: 89:8b:eb:08:7d:03:06:00:c1:66:2b:c3:91:4f:d9: 73:a5:03:6f:89:30:84:d5:10:58:7f:0a:0a:2f:a8: c4:a3:61:21:5d:eb:05:3a:23:47:40:4a:1d:8b:6d: 11:c4:42:c2:94:81:ab:f2:d7:d1:a5:8e:e7:d2:4a: e4:d6:ea:7f:c4:dc:fe:9e:78:a1:36:8f:0c:a6:19: 32:29:89:fd:b6:5b:ea:64:cc:05:88:2f:4a:53:a5: cc:24:6c:f5:f0:64:f8:fb:f9:53:d1:b5:78:96:bb: 04:5e:b6:8b:ac:cf:5f:03:12:dd:08:dd:88:db:74: 1d:88:5f:36:32:e0:ae:f1:b4:fe:84:b3:f7:ae:d1: 7a:81:82:23:fa:09:4a:a7:c6:f4:d0:79:17:95:d1: 78:5b:43:c0:24:9c:6e:63:1b:1d:37:7b:8b:b6:42: 57:a4:e3:05:30:cd:d4:2b:27:62:38:52:42:a5:7d: 20:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B8:DE:83:E9:9D:54:44:D5:90:FD:0C:6A:E8:B9:FE:4B:64:A2:51:8F X509v3 Authority Key Identifier: keyid:1D:4D:78:F5:67:50:C7:59:89:53:36:6D:45:9A:12:B6:58:B7:FF:38 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/HU149WdQx1mJUzZtRZoStli3_zg.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/NEBULAX/HU149WdQx1mJUzZtRZoStli3_zg.mft RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption 53:a9:7b:eb:89:bb:16:a5:22:9d:c4:33:b2:45:2b:6b:d3:22: df:a7:57:2e:b5:e9:d1:e7:a8:67:05:a2:d4:db:6a:55:a7:a1: 92:39:ac:2b:2e:19:69:e1:c7:01:12:7a:39:c3:46:86:e6:c5: d1:72:27:d3:9d:53:b6:f5:eb:39:cd:02:63:38:bd:b8:33:e5: 5b:ce:52:e1:1a:ae:3b:d5:5b:79:57:c9:9c:61:87:95:87:73: 51:12:4e:85:11:4a:c5:9c:75:98:53:1c:66:6f:9b:b2:6b:8c: b7:87:cc:9f:ca:29:36:5d:25:99:6d:78:32:67:a1:91:36:83: 18:37:86:d9:65:40:f6:37:53:f6:e8:61:c0:cd:d3:7d:2a:15: 8c:b7:e6:35:40:71:dd:44:db:00:1b:e8:5a:e5:21:70:01:02: c1:fa:dd:2e:87:15:13:08:bc:d1:d0:b8:1f:40:be:24:9b:83: 8c:75:1d:f4:66:ed:5f:f7:dc:aa:13:3d:0e:df:3d:e1:82:57: 70:96:16:ca:42:00:e6:63:1f:49:67:8d:9f:b6:8b:b0:35:28: 4f:c0:f5:93:e1:4e:42:45:d9:3b:ec:32:ce:57:c9:d0:52:1d: 66:cc:f4:2c:13:e4:ce:da:53:a9:cf:bd:e4:8d:73:c6:b3:9c: 40:39:fb:09 -----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgICBIMwDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMUQ0 RDc4RjU2NzUwQzc1OTg5NTMzNjZENDU5QTEyQjY1OEI3RkYzODAeFw0yNTEyMDYy MjA3MjJaFw0yNjA4MjIwODE0MjhaMDMxMTAvBgNVBAMTKEI4REU4M0U5OUQ1NDQ0 RDU5MEZEMEM2QUU4QjlGRTRCNjRBMjUxOEYwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDBr8nGBNuJoCZjOiuwscsc65uXkNBve4texuifHVNFuWVXYIQx 3oQHTionbu3ohY8pIwlNTi/5v2vKpmxUA+/K4PvBiEY6O8oLlYmL6wh9AwYAwWYr w5FP2XOlA2+JMITVEFh/CgovqMSjYSFd6wU6I0dASh2LbRHEQsKUgavy19GljufS SuTW6n/E3P6eeKE2jwymGTIpif22W+pkzAWIL0pTpcwkbPXwZPj7+VPRtXiWuwRe tousz18DEt0I3YjbdB2IXzYy4K7xtP6Es/eu0XqBgiP6CUqnxvTQeReV0XhbQ8Ak nG5jGx03e4u2Qlek4wUwzdQrJ2I4UkKlfSBLAgMBAAGjggIJMIICBTAdBgNVHQ4E FgQUuN6D6Z1URNWQ/Qxq6Ln+S2SiUY8wHwYDVR0jBBgwFoAUHU149WdQx1mJUzZt RZoStli3/zgwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvTkVCVUxB WC9IVTE0OVdkUXgxbUpVelp0UlpvU3RsaTNfemcuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0hVMTQ5V2RReDFtSlV6WnRSWm9TdGxpM196Zy5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL05FQlVMQVgvSFUxNDlXZFF4MW1KVXpa dFJab1N0bGkzX3pnLm1mdDAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAVBggrBgEFBQcBCAEB/wQGMASgAgUAMCEGCCsG AQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAwDQYJKoZIhvcNAQELBQADggEB AFOpe+uJuxalIp3EM7JFK2vTIt+nVy616dHnqGcFotTbalWnoZI5rCsuGWnhxwES ejnDRobmxdFyJ9OdU7b16znNAmM4vbgz5VvOUuEarjvVW3lXyZxhh5WHc1ESToUR SsWcdZhTHGZvm7JrjLeHzJ/KKTZdJZlteDJnoZE2gxg3htllQPY3U/boYcDN030q FYy35jVAcd1E2wAb6FrlIXABAsH63S6HFRMIvNHQuB9AviSbg4x1HfRm7V/33KoT PQ7fPeGCV3CWFspCAOZjH0lnjZ+2i7A1KE/A9ZPhTkJF2TvsMs5XydBSHWbM9CwT 5M7aU6nPveSNc8aznEA5+wk= -----END CERTIFICATE-----Generated at Sun Dec 7 04:56:17 2025 by rpki-client