This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4Zd4WdBx9xUIN7KstDU_8z79gxw.cer File: 4Zd4WdBx9xUIN7KstDU_8z79gxw.cer (raw, json) Hash identifier: f+UGJ0NQmKhU4UsYxf0QVoOs4fchHDa2KPEjrX52vCo= Subject key identifier: E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79111FEC2545A92DB07FB3F3677AAE3D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:44 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215219 IP: 193.221.125.0/24 IP: 2a10:bd40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:1f:ec:25:45:a9:2d:b0:7f:b3:f3:67:7a:ae:3d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e1977859d071f7150837b2acb4353ff33efd831c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:d6:64:ac:bc:1c:18:07:4f:59:64:69:51:5d: 1e:ce:9c:bc:06:3c:a5:47:fe:33:7b:b3:f5:a3:03: e7:50:9d:76:2d:3f:2a:ac:a2:97:be:e5:48:73:d6: c4:f1:02:ea:02:0b:54:1b:78:93:82:74:5d:fe:01: c9:19:7c:a9:e0:7e:99:e2:91:3f:49:5b:99:d7:fd: 2c:c3:38:6b:f2:3c:ff:86:1f:62:61:84:59:07:b3: a1:55:d5:fb:f0:23:ae:14:c3:b3:63:26:b0:a6:84: 52:6b:ac:f5:25:36:d4:d3:a6:5b:98:54:6b:47:0b: 5b:13:b5:53:f7:03:f6:93:c6:6b:63:0b:5c:6c:a9: b1:bc:2e:a7:d1:b5:e8:b6:0d:75:6d:6d:79:8f:10: 83:39:7d:80:ea:31:61:96:dd:d9:e7:2b:b0:9b:a5: ae:64:d6:7a:32:6c:88:09:10:1e:8c:c5:be:00:bf: 5e:a3:a2:8b:2b:81:dc:a2:23:22:17:6e:61:83:7a: 64:0b:40:4c:ee:a2:35:d0:e5:d7:38:22:01:c5:dd: d2:81:f6:b9:91:77:75:aa:9e:78:47:29:a9:68:b7: 12:dc:f5:e8:5f:ae:01:29:84:86:2b:2d:7b:cb:14: cb:dd:37:8c:63:3c:63:23:63:5f:01:cc:29:59:5a: 73:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:97:78:59:D0:71:F7:15:08:37:B2:AC:B4:35:3F:F3:3E:FD:83:1C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/9d7cd7-ee63-4886-8fe1-b5ce6b6fd4d1/1/4Zd4WdBx9xUIN7KstDU_8z79gxw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.221.125.0/24 IPv6: 2a10:bd40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215219 Signature Algorithm: sha256WithRSAEncryption 69:4a:49:9c:f2:c6:67:97:d9:e1:98:b7:35:52:2c:2a:bb:f5: 94:3a:dc:c9:44:0d:c1:06:a0:9d:59:84:c0:5a:f8:81:76:a3: c3:7c:6c:39:c5:a4:17:54:e0:f0:35:34:23:50:95:02:c2:10: 46:39:47:a6:62:a4:15:ca:9b:46:5e:ea:67:bf:d9:37:3e:46: 20:0b:9f:4a:d7:e1:13:40:d9:b0:f1:95:c7:60:01:57:4a:43: 46:57:d7:25:f7:bb:2b:f1:f1:d9:a6:c7:e9:50:86:98:06:90: 6b:77:5e:03:35:db:e8:fe:89:a9:3b:a8:bd:6b:d9:dd:54:35: 31:af:21:b3:0b:5d:bd:74:64:83:dd:f3:95:df:27:13:b3:ea: 05:75:f2:e7:41:db:35:f4:ec:50:aa:2b:b8:b8:20:95:3e:ee: 19:a1:42:ee:12:b6:53:ba:1a:c7:5c:b8:ad:b7:bf:fa:ee:08: 81:49:3b:c3:3b:4e:45:1f:81:57:ab:b5:3d:ec:5f:be:90:48: fe:25:49:46:45:78:14:af:5c:11:80:e2:4a:40:da:53:2a:4f: 7c:16:46:52:7e:10:8a:bb:27:2d:7f:64:55:8e:c9:69:c8:04: 71:85:e0:b8:56:f7:eb:1e:c3:c0:2c:81:9d:1a:6c:ba:2f:b9: 56:c5:5f:13 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5ER/sJUWpLbB/s/Nneq49MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMTk3Nzg1OWQwNzFmNzE1MDgzN2IyYWNiNDM1M2ZmMzNlZmQ4MzFjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsNZkrLwcGAdPWWRpUV0ezpy8Bjyl R/4ze7P1owPnUJ12LT8qrKKXvuVIc9bE8QLqAgtUG3iTgnRd/gHJGXyp4H6Z4pE/ SVuZ1/0swzhr8jz/hh9iYYRZB7OhVdX78COuFMOzYyawpoRSa6z1JTbU06ZbmFRr RwtbE7VT9wP2k8ZrYwtcbKmxvC6n0bXotg11bW15jxCDOX2A6jFhlt3Z5yuwm6Wu ZNZ6MmyICRAejMW+AL9eo6KLK4HcoiMiF25hg3pkC0BM7qI10OXXOCIBxd3Sgfa5 kXd1qp54RympaLcS3PXoX64BKYSGKy17yxTL3TeMYzxjI2NfAcwpWVpzXQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFOGXeFnQcfcVCDeyrLQ1P/M+/YMcMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc2LzlkN2Nk Ny1lZTYzLTQ4ODYtOGZlMS1iNWNlNmI2ZmQ0ZDEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzYvOWQ3Y2Q3 LWVlNjMtNDg4Ni04ZmUxLWI1Y2U2YjZmZDRkMS8xLzRaZDRXZEJ4OXhVSU43S3N0 RFVfOHo3OWd4dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwd19MA0EAgACMAcDBQMqEL1AMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNIszANBgkqhkiG9w0BAQsFAAOCAQEAaUpJnPLGZ5fZ 4Zi3NVIsKrv1lDrcyUQNwQagnVmEwFr4gXajw3xsOcWkF1Tg8DU0I1CVAsIQRjlH pmKkFcqbRl7qZ7/ZNz5GIAufStfhE0DZsPGVx2ABV0pDRlfXJfe7K/Hx2abH6VCG mAaQa3deAzXb6P6JqTuovWvZ3VQ1Ma8hswtdvXRkg93zld8nE7PqBXXy50HbNfTs UKoruLgglT7uGaFC7hK2U7oax1y4rbe/+u4IgUk7wztORR+BV6u1PexfvpBI/iVJ RkV4FK9cEYDiSkDaUypPfBZGUn4QirsnLX9kVY7JacgEcYXguFb36x7DwCyBnRps ui+5VsVfEw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:14 2026 by rpki-client