This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft File: CZ-qshYRGNsbd8GnTszLc-doHDY.mft (raw, json) Hash identifier: 1+cHIgeLu1xJtR5iPWSLEo3UT97J6UGKtYy+RZFUDzs= Subject key identifier: 25:71:56:EE:0A:51:02:72:11:8F:D2:CB:A2:50:C2:29:1D:D5:54:C8 Authority key identifier: 09:9F:AA:B2:16:11:18:DB:1B:77:C1:A7:4E:CC:CB:73:E7:68:1C:36 Certificate issuer: /CN=099faab2161118db1b77c1a74ecccb73e7681c36 Certificate serial: 019C4390C834DE8620A1735292476E4FEFFC Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft Manifest number: 0233 Signing time: Mon 09 Feb 2026 18:01:27 +0000 Manifest this update: Mon 09 Feb 2026 18:01:27 +0000 Manifest next update: Tue 10 Feb 2026 18:01:27 +0000 Files and hashes: 1: B4ECW0jtt5KyrtkmlUhbFQBxuus.roa (hash: Z8JjmJ/Yv+fCZ4euDC+I0rty80LYQ117ydvucBAt8Uw=) 2: CZ-qshYRGNsbd8GnTszLc-doHDY.crl (hash: w+WEjNRgXlNMh08FZcv89ZklalgldvYKpPFKAwPBDts=) Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.crl rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:43:90:c8:34:de:86:20:a1:73:52:92:47:6e:4f:ef:fc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=099faab2161118db1b77c1a74ecccb73e7681c36 Validity Not Before: Feb 9 18:01:27 2026 GMT Not After : Feb 10 18:01:27 2026 GMT Subject: CN=257156ee0a510272118fd2cba250c2291dd554c8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:d7:8a:71:31:07:3f:b5:93:2b:1f:7c:01:20: a9:7b:56:4c:ff:1d:e0:70:75:8d:6c:31:c7:3e:3f: 40:4a:ac:19:41:48:c0:07:4a:9e:8b:59:d2:ad:18: c3:d9:34:7b:e4:9e:82:d4:f2:9d:f5:c2:e4:ae:ed: 13:ac:7d:47:61:b2:c5:2b:3d:fa:3b:60:f0:30:9e: 4c:7e:3b:e2:6e:3c:6b:4f:91:7d:8c:7c:18:6d:1d: f5:aa:36:06:45:dc:02:7d:14:4a:88:4f:f9:80:d5: 82:24:76:41:b9:f7:7b:12:71:55:89:33:48:fb:09: 58:ff:7f:69:a0:74:e5:60:48:13:05:6b:b1:78:b3: 4e:82:8d:e7:20:52:d6:e8:a5:6d:21:f6:57:69:6d: fa:75:fd:c9:c8:dc:16:91:ce:d9:41:4d:73:e3:50: 3f:bb:0f:5b:ef:bd:88:b8:59:b5:c1:3e:76:a5:39: 38:b0:2b:c2:89:0d:de:a0:ab:52:74:8a:1b:84:a8: b5:e5:54:e9:d2:fa:57:71:49:86:c7:30:6c:9c:4a: ba:1f:89:ab:3e:55:8a:2c:4d:1b:3d:55:6c:1a:d9: 25:fd:e1:d0:04:51:8e:1a:61:ae:a7:5b:b5:20:67: 47:e8:0b:c7:cb:6f:c6:07:00:15:e8:54:b9:ee:c1: ed:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:71:56:EE:0A:51:02:72:11:8F:D2:CB:A2:50:C2:29:1D:D5:54:C8 X509v3 Authority Key Identifier: keyid:09:9F:AA:B2:16:11:18:DB:1B:77:C1:A7:4E:CC:CB:73:E7:68:1C:36 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/CZ-qshYRGNsbd8GnTszLc-doHDY.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.mft X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/26/88b6cc-2b42-41e2-99a9-4e24b119c147/1/CZ-qshYRGNsbd8GnTszLc-doHDY.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 5a:43:e1:d3:00:c8:5b:36:d4:d4:1c:ee:cf:dc:36:7d:d9:73: bf:6f:20:91:d7:a7:56:bd:06:75:9c:90:89:02:47:21:9a:78: f1:ff:2a:b5:7b:77:17:a2:74:8a:dc:72:0e:da:02:9f:31:9a: 62:f7:b5:41:5e:9a:58:17:3c:fe:da:ef:25:c4:84:f9:29:86: 02:65:d6:96:f8:17:6e:15:50:83:42:9a:6f:b3:04:ac:24:2e: a3:b8:8f:b3:17:37:d2:d6:42:76:e4:c9:ce:1b:61:f8:17:2d: a4:74:18:eb:34:84:ad:a0:02:6e:38:b7:f6:18:4b:71:c6:a4: eb:55:30:a1:59:57:38:64:8f:a4:01:f8:bc:8e:ca:75:b8:0b: 18:3e:9a:3a:84:ba:42:f0:65:31:0a:e7:f5:9f:a9:05:96:04: 7c:f2:e1:34:0c:91:35:d8:7f:ac:bc:da:61:e3:e8:98:34:76: 68:ee:c1:fb:81:ed:6f:d0:61:39:66:d5:68:2d:24:67:c5:a4: c5:b5:0c:8f:e1:5a:21:c3:7a:4a:64:48:5b:60:9f:fd:7f:c1: a0:aa:bc:8a:5d:a0:43:47:02:f9:2d:9e:83:31:56:09:e8:ae: 8d:20:de:b1:21:10:16:5f:3d:9f:7a:37:c3:51:45:c0:32:d9: 5c:3f:40:e1 -----BEGIN CERTIFICATE----- MIIFFjCCA/6gAwIBAgISAZxDkMg03oYgoXNSkkduT+/8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDA5OWZhYWIyMTYxMTE4ZGIxYjc3YzFhNzRlY2NjYjczZTc2 ODFjMzYwHhcNMjYwMjA5MTgwMTI3WhcNMjYwMjEwMTgwMTI3WjAzMTEwLwYDVQQD EygyNTcxNTZlZTBhNTEwMjcyMTE4ZmQyY2JhMjUwYzIyOTFkZDU1NGM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmdeKcTEHP7WTKx98ASCpe1ZM/x3g cHWNbDHHPj9ASqwZQUjAB0qei1nSrRjD2TR75J6C1PKd9cLkru0TrH1HYbLFKz36 O2DwMJ5MfjvibjxrT5F9jHwYbR31qjYGRdwCfRRKiE/5gNWCJHZBufd7EnFViTNI +wlY/39poHTlYEgTBWuxeLNOgo3nIFLW6KVtIfZXaW36df3JyNwWkc7ZQU1z41A/ uw9b772IuFm1wT52pTk4sCvCiQ3eoKtSdIobhKi15VTp0vpXcUmGxzBsnEq6H4mr PlWKLE0bPVVsGtkl/eHQBFGOGmGup1u1IGdH6AvHy2/GBwAV6FS57sHtwQIDAQAB o4ICIjCCAh4wHQYDVR0OBBYEFCVxVu4KUQJyEY/Sy6JQwikd1VTIMB8GA1UdIwQY MBaAFAmfqrIWERjbG3fBp07My3PnaBw2MA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvQ1otcXNoWVJHTnNiZDhHblRzekxjLWRvSERZLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yNi84OGI2Y2MtMmI0Mi00MWUyLTk5YTkt NGUyNGIxMTljMTQ3LzEvQ1otcXNoWVJHTnNiZDhHblRzekxjLWRvSERZLm1mdDCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yNi84OGI2Y2MtMmI0Mi00MWUyLTk5YTktNGUyNGIxMTljMTQ3 LzEvQ1otcXNoWVJHTnNiZDhHblRzekxjLWRvSERZLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMCEGCCsGAQUFBwEHAQH/BBIwEDAGBAIAAQUAMAYEAgACBQAw FQYIKwYBBQUHAQgBAf8EBjAEoAIFADANBgkqhkiG9w0BAQsFAAOCAQEAWkPh0wDI WzbU1Bzuz9w2fdlzv28gkdenVr0GdZyQiQJHIZp48f8qtXt3F6J0itxyDtoCnzGa Yve1QV6aWBc8/trvJcSE+SmGAmXWlvgXbhVQg0Kab7MErCQuo7iPsxc30tZCduTJ zhth+BctpHQY6zSEraACbji39hhLccak61UwoVlXOGSPpAH4vI7KdbgLGD6aOoS6 QvBlMQrn9Z+pBZYEfPLhNAyRNdh/rLzaYePomDR2aO7B+4Htb9BhOWbVaC0kZ8Wk xbUMj+FaIcN6SmRIW2Cf/X/BoKq8il2gQ0cC+S2egzFWCeiujSDesSEQFl89n3o3 w1FFwDLZXD9A4Q== -----END CERTIFICATE-----Generated at Mon Feb 9 22:43:32 2026 by rpki-client