This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft File: czsHKLegVDWEws0LSLdHjEGU7wo.mft (raw, json) Hash identifier: guSZAmBEEGnFkgqI53lutZZ++Vb6hKkG6OzJOS9zBwE= Subject key identifier: 82:2E:33:6C:0F:D8:DD:FF:E1:2F:14:BD:72:76:50:8C:B4:16:A4:44 Authority key identifier: 73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A Certificate issuer: /CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a Certificate serial: 019BF3F546E17E820404EDE128DBA95AA77B Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft Manifest number: 091F Signing time: Sun 25 Jan 2026 07:01:36 +0000 Manifest this update: Sun 25 Jan 2026 07:01:36 +0000 Manifest next update: Mon 26 Jan 2026 07:01:36 +0000 Files and hashes: 1: Oce8w_FStQrxz5-sGyZ5GI_yylQ.roa (hash: /gUG2XD9ZyXjCehDc7TUgIzStA7kApp9jArOXsYwwL4=) 2: ZQWSBrSbVBwfkGrwKFFXvU4ra7w.roa (hash: r+NK3YQEVsT0+KvKCit8WLyB+4wd+LAbIvtambZpbro=) 3: czsHKLegVDWEws0LSLdHjEGU7wo.crl (hash: KsFJEFE2Ga4Y/iV9oi+RrCeZofySqgvVeuVRyzxwe8I=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 07:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:f3:f5:46:e1:7e:82:04:04:ed:e1:28:db:a9:5a:a7:7b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=733b0728b7a0543584c2cd0b48b7478c4194ef0a Validity Not Before: Jan 25 07:01:36 2026 GMT Not After : Jan 26 07:01:36 2026 GMT Subject: CN=822e336c0fd8ddffe12f14bd7276508cb416a444 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:44:14:7f:ff:d3:a7:99:08:8a:68:a4:61:0e: 9f:49:70:0d:c1:54:c8:c5:dd:8e:0a:56:90:69:62: 36:ca:dc:e6:b8:19:eb:5f:a4:7a:0a:a6:4f:57:16: 24:25:b4:87:38:55:2a:8e:55:83:5b:69:1a:81:50: 22:0d:fe:64:28:4c:b4:b5:7b:92:07:1c:7d:2a:64: 8e:04:b4:df:27:75:46:cf:d6:ce:bc:a9:00:66:e0: 47:ba:aa:ca:0e:6a:92:5c:d4:17:b2:9b:c6:13:73: bb:88:d8:ef:7b:58:d7:47:7d:43:0a:f1:d5:9f:56: 66:7f:04:59:e5:79:d8:dc:c6:5e:1a:72:96:d5:e6: 61:e2:2d:e4:72:2f:93:de:72:9b:62:f3:4a:50:d0: 0c:b3:ad:a6:d8:ff:66:3a:bd:84:70:3e:d9:04:4a: 2f:c6:08:e5:cd:72:99:d3:64:a5:00:b3:fe:06:14: 30:94:bf:e9:84:09:f3:4f:d2:cf:c0:2d:73:34:5a: f4:d6:79:28:15:5e:ff:51:49:b7:07:ab:65:31:1e: a7:43:7f:13:7e:f2:2f:1e:45:9f:9e:52:2f:ce:ea: 42:f8:23:cc:dd:6a:f7:0c:b1:27:e9:50:ef:df:5d: 56:e2:77:af:27:d5:cc:96:83:85:3a:12:f0:27:eb: 4f:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:2E:33:6C:0F:D8:DD:FF:E1:2F:14:BD:72:76:50:8C:B4:16:A4:44 X509v3 Authority Key Identifier: keyid:73:3B:07:28:B7:A0:54:35:84:C2:CD:0B:48:B7:47:8C:41:94:EF:0A X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/czsHKLegVDWEws0LSLdHjEGU7wo.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/e6/a834da-1cca-4017-90b8-daee0aeafb2b/1/czsHKLegVDWEws0LSLdHjEGU7wo.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 75:76:56:f3:f8:8b:6d:2b:ef:b6:81:9d:52:22:29:a3:56:27: 84:3d:06:8d:fd:37:57:d0:ec:4b:dc:7f:74:d1:64:5e:7c:51: ea:fc:0d:c4:db:47:d3:69:4e:2f:86:04:55:d4:28:c2:cd:2f: c6:e7:70:35:04:0f:70:fb:e8:0b:a6:e1:d9:a3:d8:ed:dc:5c: 79:04:b5:6a:b7:67:fe:b7:3b:1c:52:3f:f2:02:43:2e:24:74: fc:0c:09:24:a1:bf:c6:87:cf:f2:ef:be:d2:54:bf:fb:d8:3a: 81:9d:95:f5:f6:d7:7b:09:d0:3b:81:10:93:d1:ae:88:4e:53: 5c:3e:b7:27:c6:3a:29:4f:6a:dc:82:73:69:8e:bc:bb:6c:f1: 06:8d:95:f2:f0:de:f9:8f:e2:02:60:2a:73:8a:6f:28:a1:5b: be:a9:54:36:8b:f7:69:e8:69:26:11:27:17:ae:50:99:d5:02: 92:e3:8b:36:da:9f:31:7b:8c:bf:01:09:c4:a5:f5:fa:81:b6: 09:e7:7f:b1:41:73:2e:94:1c:4b:0a:7b:09:a4:25:6e:63:fa: ab:02:51:b6:b6:61:ab:bd:3e:9b:a7:2d:e0:f1:b6:11:e9:ba: 4c:bc:99:09:9b:5a:f9:55:c6:5e:7a:31:41:20:dc:71:f5:e8: c0:41:62:63 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZvz9UbhfoIEBO3hKNupWqd7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDczM2IwNzI4YjdhMDU0MzU4NGMyY2QwYjQ4Yjc0NzhjNDE5 NGVmMGEwHhcNMjYwMTI1MDcwMTM2WhcNMjYwMTI2MDcwMTM2WjAzMTEwLwYDVQQD Eyg4MjJlMzM2YzBmZDhkZGZmZTEyZjE0YmQ3Mjc2NTA4Y2I0MTZhNDQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEQUf//Tp5kIimikYQ6fSXANwVTI xd2OClaQaWI2ytzmuBnrX6R6CqZPVxYkJbSHOFUqjlWDW2kagVAiDf5kKEy0tXuS Bxx9KmSOBLTfJ3VGz9bOvKkAZuBHuqrKDmqSXNQXspvGE3O7iNjve1jXR31DCvHV n1ZmfwRZ5XnY3MZeGnKW1eZh4i3kci+T3nKbYvNKUNAMs62m2P9mOr2EcD7ZBEov xgjlzXKZ02SlALP+BhQwlL/phAnzT9LPwC1zNFr01nkoFV7/UUm3B6tlMR6nQ38T fvIvHkWfnlIvzupC+CPM3Wr3DLEn6VDv311W4nevJ9XMloOFOhLwJ+tPhwIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFIIuM2wP2N3/4S8UvXJ2UIy0FqREMB8GA1UdIwQY MBaAFHM7Byi3oFQ1hMLNC0i3R4xBlO8KMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvY3pzSEtMZWdWRFdFd3MwTFNMZEhqRUdVN3dvLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC9lNi9hODM0ZGEtMWNjYS00MDE3LTkwYjgt ZGFlZTBhZWFmYjJiLzEvY3pzSEtMZWdWRFdFd3MwTFNMZEhqRUdVN3dvLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC9lNi9hODM0ZGEtMWNjYS00MDE3LTkwYjgtZGFlZTBhZWFmYjJi LzEvY3pzSEtMZWdWRFdFd3MwTFNMZEhqRUdVN3dvLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAdXZW8/iL bSvvtoGdUiIpo1YnhD0Gjf03V9DsS9x/dNFkXnxR6vwNxNtH02lOL4YEVdQows0v xudwNQQPcPvoC6bh2aPY7dxceQS1ardn/rc7HFI/8gJDLiR0/AwJJKG/xofP8u++ 0lS/+9g6gZ2V9fbXewnQO4EQk9GuiE5TXD63J8Y6KU9q3IJzaY68u2zxBo2V8vDe +Y/iAmAqc4pvKKFbvqlUNov3aehpJhEnF65QmdUCkuOLNtqfMXuMvwEJxKX1+oG2 Ced/sUFzLpQcSwp7CaQlbmP6qwJRtrZhq70+m6ct4PG2Eem6TLyZCZta+VXGXnox QSDccfXowEFiYw== -----END CERTIFICATE-----Generated at Sun Jan 25 15:24:29 2026 by rpki-client