This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1ZTpX6WbUrWZ26QG17dvODypD6g.cer File: 1ZTpX6WbUrWZ26QG17dvODypD6g.cer (raw, json) Hash identifier: klrxdRRHunL/AiOugmpWuBBqhA/nbL5jlH/X7PgtjVY= Subject key identifier: D5:94:E9:5F:A5:9B:52:B5:99:DB:A4:06:D7:B7:6F:38:3C:A9:0F:A8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7FDEA5819825C29AB61A09BC2476B9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/87/eedbcd-ab18-4ab3-b5dd-e3b0b41e25c5/1/1ZTpX6WbUrWZ26QG17dvODypD6g.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/87/eedbcd-ab18-4ab3-b5dd-e3b0b41e25c5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:33 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208446 IP: 185.137.99.0/24 IP: 2a12:7c40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:de:a5:81:98:25:c2:9a:b6:1a:09:bc:24:76:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d594e95fa59b52b599dba406d7b76f383ca90fa8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:a3:0d:e1:8b:09:f9:d1:8a:d4:15:fa:87:fc: f4:68:5b:39:6d:87:20:a6:86:f7:17:64:5a:6d:83: d9:8f:14:a6:b2:62:bf:a6:65:7a:50:4b:0e:97:c1: 11:0f:cf:34:93:6c:c5:b6:cc:dd:aa:51:60:34:58: e5:73:a6:f3:84:b9:ee:59:c3:84:bc:b4:7b:f4:64: 00:f4:04:48:e0:c9:3d:3d:f1:51:f3:2b:c3:f6:55: d9:e1:3d:39:0f:d8:7b:ac:f6:3b:eb:4d:25:52:9f: 53:fb:ce:20:aa:5d:df:b5:90:88:f2:4c:3a:10:81: 91:5d:a2:b5:a5:80:d6:13:cf:41:3f:e4:57:5d:a9: 27:25:a3:0b:e4:a9:36:d0:19:16:87:4d:e4:d1:b8: 70:80:7b:9c:8c:a9:09:98:d9:4b:fe:0c:61:7f:b3: 8b:d5:f0:4b:81:dc:ac:50:c5:2f:e8:c2:ca:ba:ff: b3:7a:d7:20:08:cb:3c:25:1c:83:0f:f4:b0:88:b3: 79:47:2e:ad:d5:56:5e:4c:81:0c:ce:cc:47:ab:ba: dd:6b:bf:15:9a:fe:15:40:90:5f:50:ef:e8:23:a6: 68:8b:b5:85:d1:65:30:37:d5:ef:05:57:a7:e6:32: 2f:10:3a:c2:b0:28:21:08:35:1d:1d:3d:5b:7a:8e: f0:c1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:94:E9:5F:A5:9B:52:B5:99:DB:A4:06:D7:B7:6F:38:3C:A9:0F:A8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/eedbcd-ab18-4ab3-b5dd-e3b0b41e25c5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/eedbcd-ab18-4ab3-b5dd-e3b0b41e25c5/1/1ZTpX6WbUrWZ26QG17dvODypD6g.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.137.99.0/24 IPv6: 2a12:7c40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208446 Signature Algorithm: sha256WithRSAEncryption 18:2f:06:63:f8:0b:39:63:ec:71:5d:b2:97:0a:95:6f:d5:90: 27:c2:7c:85:58:d6:be:29:82:bd:01:a1:f3:dc:da:0a:70:63: ec:21:02:dd:c4:15:f6:29:92:d6:ec:d3:b2:02:67:d9:76:02: 75:47:ff:f3:99:16:bc:c7:0e:9c:f6:ad:1d:a1:3d:9d:3c:64: 47:d6:18:28:29:0c:7f:31:09:32:52:ec:c8:c5:b2:b4:68:9b: c0:2f:80:6b:4b:d0:df:20:1c:aa:7f:ee:81:2e:ec:70:10:52: 9f:d3:ba:5c:35:89:17:a2:b7:e8:57:10:c8:77:30:00:70:82: 5e:2b:ea:7c:62:b0:5f:19:10:68:80:53:03:be:46:69:65:01: 22:a0:17:ef:d1:b9:5c:53:0a:59:d3:ef:6a:cc:68:7b:70:70: 60:05:2c:2a:f4:5d:ee:01:54:13:fc:8b:77:5b:0f:61:52:33: 96:6b:73:86:5a:27:ba:6e:dc:57:b5:de:63:bd:06:d2:26:cc: e2:f4:66:ae:30:ee:e8:ad:10:84:b3:57:7e:43:1b:b5:83:fa: ba:fe:9d:44:e2:3d:cc:c0:2d:fd:39:20:78:85:34:83:60:2e: b6:c1:15:de:60:41:d2:6c:78:a0:72:ae:8c:04:08:ce:4a:e2: b8:a3:2d:64 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt8f96lgZglwpq2Ggm8JHa5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNTk0ZTk1ZmE1OWI1MmI1OTlkYmE0MDZkN2I3NmYzODNjYTkwZmE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnqMN4YsJ+dGK1BX6h/z0aFs5bYcg pob3F2RabYPZjxSmsmK/pmV6UEsOl8ERD880k2zFtszdqlFgNFjlc6bzhLnuWcOE vLR79GQA9ARI4Mk9PfFR8yvD9lXZ4T05D9h7rPY7600lUp9T+84gql3ftZCI8kw6 EIGRXaK1pYDWE89BP+RXXaknJaML5Kk20BkWh03k0bhwgHucjKkJmNlL/gxhf7OL 1fBLgdysUMUv6MLKuv+zetcgCMs8JRyDD/SwiLN5Ry6t1VZeTIEMzsxHq7rda78V mv4VQJBfUO/oI6Zoi7WF0WUwN9XvBVen5jIvEDrCsCghCDUdHT1beo7wwQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFNWU6V+lm1K1mdukBte3bzg8qQ+oMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg3L2VlZGJj ZC1hYjE4LTRhYjMtYjVkZC1lM2IwYjQxZTI1YzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcvZWVkYmNk LWFiMTgtNGFiMy1iNWRkLWUzYjBiNDFlMjVjNS8xLzFaVHBYNldiVXJXWjI2UUcx N2R2T0R5cEQ2Zy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuYljMA0EAgACMAcDBQMqEnxAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMuPjANBgkqhkiG9w0BAQsFAAOCAQEAGC8GY/gLOWPs cV2ylwqVb9WQJ8J8hVjWvimCvQGh89zaCnBj7CEC3cQV9imS1uzTsgJn2XYCdUf/ 85kWvMcOnPatHaE9nTxkR9YYKCkMfzEJMlLsyMWytGibwC+Aa0vQ3yAcqn/ugS7s cBBSn9O6XDWJF6K36FcQyHcwAHCCXivqfGKwXxkQaIBTA75GaWUBIqAX79G5XFMK WdPvasxoe3BwYAUsKvRd7gFUE/yLd1sPYVIzlmtzhlonum7cV7XeY70G0ibM4vRm rjDu6K0QhLNXfkMbtYP6uv6dROI9zMAt/TkgeIU0g2AutsEV3mBB0mx4oHKujAQI zkriuKMtZA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:48 2026 by rpki-client