This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/11ZxzcFKN_vLnwFQzPkY2xXCMm8.cer File: 11ZxzcFKN_vLnwFQzPkY2xXCMm8.cer (raw, json) Hash identifier: ECaU12/abFsTUin7Mh5vZRTDkJHmQwXcsV45S6BvOu4= Subject key identifier: D7:56:71:CD:C1:4A:37:FB:CB:9F:01:50:CC:F9:18:DB:15:C2:32:6F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A2894401E93193B5B32EB4E5D7A962 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/bbd9e3-8a1f-4e06-9653-7d4673b7e185/1/11ZxzcFKN_vLnwFQzPkY2xXCMm8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/bbd9e3-8a1f-4e06-9653-7d4673b7e185/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:17:56 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203413 IP: 185.135.160.0/22 IP: 2a06:f600::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:89:44:01:e9:31:93:b5:b3:2e:b4:e5:d7:a9:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d75671cdc14a37fbcb9f0150ccf918db15c2326f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:14:c9:23:aa:08:18:6c:10:40:54:74:e2:63: f9:5b:84:c1:a3:96:a5:17:34:1b:41:b5:28:79:84: 12:33:f0:49:b3:90:22:1d:f3:ef:e9:fd:70:9b:fc: 6f:7b:1c:60:99:bd:a4:fb:55:60:88:64:8d:f9:5f: 64:c4:29:02:63:8f:15:39:f0:35:7f:13:34:bf:3d: 81:61:db:24:9b:ec:fd:66:c2:16:80:ab:f3:c6:23: 9f:a0:66:30:b6:3b:ed:53:c6:41:20:5e:39:af:4a: d4:f9:f9:61:ba:5d:d8:bd:ff:27:27:47:82:a0:38: 86:cf:18:0a:8c:4d:45:ec:25:ef:1d:b0:09:f9:61: 98:1a:ed:9d:18:81:10:84:9c:ec:18:77:30:5e:a2: 9d:56:3e:82:ad:dd:b1:4c:ec:58:58:19:00:68:04: c1:28:e9:5b:a1:3c:0a:23:61:ce:5b:ef:fc:89:20: 8c:f3:d8:80:34:ed:1c:a7:f4:fd:8b:75:5e:33:51: 9c:b4:99:ff:21:65:49:b4:a6:83:f9:9e:52:44:4c: 50:1b:37:67:eb:66:ea:2a:40:01:d3:d9:f6:5e:98: 72:b2:b6:e5:82:5a:c5:4f:2e:a8:56:d6:50:df:23: 98:da:97:0a:0a:91:9a:d7:09:4a:2c:e7:e6:1d:08: 34:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D7:56:71:CD:C1:4A:37:FB:CB:9F:01:50:CC:F9:18:DB:15:C2:32:6F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bbd9e3-8a1f-4e06-9653-7d4673b7e185/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/bbd9e3-8a1f-4e06-9653-7d4673b7e185/1/11ZxzcFKN_vLnwFQzPkY2xXCMm8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.135.160.0/22 IPv6: 2a06:f600::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203413 Signature Algorithm: sha256WithRSAEncryption 7d:6f:fd:5f:6e:58:72:40:71:a1:42:5b:98:8e:a4:e6:8b:6a: f5:90:b1:f3:1c:fb:b2:9c:f4:14:8e:da:24:b2:af:64:39:c2: b3:a5:12:b5:43:e6:17:08:5b:bc:31:88:f9:6d:67:a7:03:78: d6:4e:a7:26:43:02:61:86:5b:c1:9c:3b:33:55:43:cc:ce:11: fb:e3:f4:e1:e3:f1:a9:51:59:b9:0d:c8:e5:6d:5f:39:e8:82: 53:e4:be:4a:b4:32:1c:81:5d:78:31:05:66:5e:1c:60:de:54: 04:70:06:91:7c:04:f4:d9:e2:46:fd:a6:55:1f:9a:73:f5:70: 52:d6:ee:e0:f2:27:90:44:4a:57:3f:f9:5b:ca:79:28:25:45: 93:99:98:b3:12:55:1b:9c:b1:e7:3a:42:c2:ca:3d:b6:52:89: a3:5a:05:00:80:9c:e9:6a:22:7f:9b:5c:05:45:fe:4b:40:a8: 9e:48:aa:4f:f0:65:9e:ae:1d:58:8c:ff:97:83:a2:dc:ad:2c: 93:31:fd:3c:d8:a0:28:7f:8d:bf:00:db:17:54:3a:cb:f6:77: b2:0e:49:2f:6f:72:eb:b0:f9:38:6f:12:88:ba:6b:a4:1e:f1: 2b:03:2c:bb:0f:c6:aa:f3:79:ef:74:e8:9d:51:66:49:f3:78: af:f0:e6:9d -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt4oolEAekxk7WzLrTl16liMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNzU2NzFjZGMxNGEzN2ZiY2I5ZjAxNTBjY2Y5MThkYjE1YzIzMjZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAthTJI6oIGGwQQFR04mP5W4TBo5al FzQbQbUoeYQSM/BJs5AiHfPv6f1wm/xvexxgmb2k+1VgiGSN+V9kxCkCY48VOfA1 fxM0vz2BYdskm+z9ZsIWgKvzxiOfoGYwtjvtU8ZBIF45r0rU+flhul3Yvf8nJ0eC oDiGzxgKjE1F7CXvHbAJ+WGYGu2dGIEQhJzsGHcwXqKdVj6Crd2xTOxYWBkAaATB KOlboTwKI2HOW+/8iSCM89iANO0cp/T9i3VeM1GctJn/IWVJtKaD+Z5SRExQGzdn 62bqKkAB09n2XphysrblglrFTy6oVtZQ3yOY2pcKCpGa1wlKLOfmHQg0fQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFNdWcc3BSjf7y58BUMz5GNsVwjJvMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZkL2JiZDll My04YTFmLTRlMDYtOTY1My03ZDQ2NzNiN2UxODUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQvYmJkOWUz LThhMWYtNGUwNi05NjUzLTdkNDY3M2I3ZTE4NS8xLzExWnh6Y0ZLTl92TG53RlF6 UGtZMnhYQ01tOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuYegMA0EAgACMAcDBQMqBvYAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMalTANBgkqhkiG9w0BAQsFAAOCAQEAfW/9X25YckBx oUJbmI6k5otq9ZCx8xz7spz0FI7aJLKvZDnCs6UStUPmFwhbvDGI+W1npwN41k6n JkMCYYZbwZw7M1VDzM4R++P04ePxqVFZuQ3I5W1fOeiCU+S+SrQyHIFdeDEFZl4c YN5UBHAGkXwE9NniRv2mVR+ac/VwUtbu4PInkERKVz/5W8p5KCVFk5mYsxJVG5yx 5zpCwso9tlKJo1oFAICc6Woif5tcBUX+S0ConkiqT/Blnq4dWIz/l4Oi3K0skzH9 PNigKH+NvwDbF1Q6y/Z3sg5JL29y67D5OG8SiLprpB7xKwMsuw/GqvN573TonVFm SfN4r/DmnQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:46:54 2026 by rpki-client