This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BZ-mprHseubqi0STTPfD1PpQjvI.cer File: BZ-mprHseubqi0STTPfD1PpQjvI.cer (raw, json) Hash identifier: gCvAIrMiNS6GQtwYJr1ZvBUUNZqIO+nqSZid/kVKquU= Subject key identifier: 05:9F:A6:A6:B1:EC:7A:E6:EA:8B:44:93:4C:F7:C3:D4:FA:50:8E:F2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797EE31A6809BEF842F7B975476724E7 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/9200ca-a680-44d9-92f9-8d64df01c0c4/1/BZ-mprHseubqi0STTPfD1PpQjvI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/9200ca-a680-44d9-92f9-8d64df01c0c4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 1741 IP: 86.50.0.0/16 IP: 128.214.0.0/16 IP: 185.229.128.0/22 IP: 193.166.0.0/15 IP: 195.148.0.0/16 IP: 2001:708::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:e3:1a:68:09:be:f8:42:f7:b9:75:47:67:24:e7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=059fa6a6b1ec7ae6ea8b44934cf7c3d4fa508ef2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:92:19:35:3a:4a:72:63:b4:b0:45:f8:14:e3: 7b:62:b5:70:a1:75:a0:10:a1:37:04:db:ef:27:49: ff:25:6c:57:a0:0d:2b:09:41:51:d3:74:72:4a:51: fd:a8:3a:d3:bf:b7:b4:76:fa:50:cc:90:3b:a2:4c: d2:ae:0f:64:87:61:e2:15:58:1d:88:5a:82:7e:ed: 1a:7c:d2:68:96:31:ed:2d:2b:26:2b:ac:62:4c:ab: ea:77:55:18:8f:1e:36:a3:dd:19:cb:26:df:b7:08: 90:3c:1d:94:16:2b:13:39:af:e9:5b:b6:12:5c:21: 63:ad:9d:1c:db:cf:0a:88:c5:79:c9:db:fc:11:0e: 7c:4e:d8:07:e3:3f:b8:75:71:e7:8a:29:59:6c:84: 94:a3:a0:cd:ad:1b:49:ea:1c:c0:a5:13:bd:fd:c5: a7:df:94:ce:bb:e5:a1:6b:07:cc:64:f1:44:c6:7f: cd:38:ef:98:b6:8d:de:52:c4:3e:f4:39:95:36:55: 31:39:b8:5d:2a:2d:bd:8c:e0:60:a6:19:90:7a:56: 8e:3a:b4:48:5d:ec:a0:b7:5f:bd:6c:55:36:30:5c: 9d:92:6b:c8:bb:4d:8e:00:7a:4d:24:c0:a0:92:35: 65:bd:4c:e7:cb:b2:4c:0f:97:72:88:a7:0e:eb:3b: d3:4b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:9F:A6:A6:B1:EC:7A:E6:EA:8B:44:93:4C:F7:C3:D4:FA:50:8E:F2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9200ca-a680-44d9-92f9-8d64df01c0c4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/9200ca-a680-44d9-92f9-8d64df01c0c4/1/BZ-mprHseubqi0STTPfD1PpQjvI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 86.50.0.0/16 128.214.0.0/16 185.229.128.0/22 193.166.0.0/15 195.148.0.0/16 IPv6: 2001:708::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 1741 Signature Algorithm: sha256WithRSAEncryption 91:d2:22:83:bc:72:75:83:74:7b:7d:ca:39:5e:c0:de:24:38: 13:f6:74:66:36:c2:17:61:21:ef:de:40:f2:b5:77:cb:6b:f6: b6:03:92:6c:42:73:e8:70:51:1e:57:bf:09:23:e5:4f:82:d0: 87:96:61:e5:a8:99:cd:d9:9f:96:90:b5:88:ff:4d:c0:17:c3: be:58:11:62:09:38:2e:2c:54:f3:ae:5f:35:8e:82:38:05:5d: 2d:34:bb:0e:bf:f8:7a:fe:7e:26:89:f2:a6:27:b3:59:9e:88: d2:37:83:b7:89:fb:55:e3:5b:a4:e8:0c:d8:52:11:39:86:8a: 8c:fd:ab:0e:32:41:71:80:7b:6a:d0:dd:61:80:8f:a9:a4:1a: 7b:b5:ac:48:09:7e:ff:f0:be:59:fa:3f:5a:71:50:90:06:0a: 3b:c0:c6:e1:ed:e6:40:35:22:cc:85:d9:3c:8a:a5:88:6a:ed: ef:3d:6c:99:34:5b:e8:97:4c:4b:0d:4c:b3:50:21:45:42:44: e0:f5:da:ab:1f:4f:1b:bf:68:8d:9d:cc:ec:a0:55:8a:34:a3: 0d:de:0d:d2:24:4c:03:d0:a8:2f:55:f3:94:59:48:ad:da:0f: db:ce:86:c4:b8:e3:8f:b8:9a:cd:b9:df:08:b2:5a:26:2b:e0: a3:72:b6:2f -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgISAZt5fuMaaAm++EL3uXVHZyTnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNTlmYTZhNmIxZWM3YWU2ZWE4YjQ0OTM0Y2Y3YzNkNGZhNTA4ZWYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnpIZNTpKcmO0sEX4FON7YrVwoXWg EKE3BNvvJ0n/JWxXoA0rCUFR03RySlH9qDrTv7e0dvpQzJA7okzSrg9kh2HiFVgd iFqCfu0afNJoljHtLSsmK6xiTKvqd1UYjx42o90ZyybftwiQPB2UFisTOa/pW7YS XCFjrZ0c288KiMV5ydv8EQ58TtgH4z+4dXHniilZbISUo6DNrRtJ6hzApRO9/cWn 35TOu+WhawfMZPFExn/NOO+Yto3eUsQ+9DmVNlUxObhdKi29jOBgphmQelaOOrRI Xeygt1+9bFU2MFydkmvIu02OAHpNJMCgkjVlvUzny7JMD5dyiKcO6zvTSwIDAQAB o4ICwjCCAr4wHQYDVR0OBBYEFAWfpqax7Hrm6otEk0z3w9T6UI7yMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2MzLzkyMDBj YS1hNjgwLTQ0ZDktOTJmOS04ZDY0ZGYwMWMwYzQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMvOTIwMGNh LWE2ODAtNDRkOS05MmY5LThkNjRkZjAxYzBjNC8xL0JaLW1wckhzZXVicWkwU1RU UGZEMVBwUWp2SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEIGCCsGAQUF BwEHAQH/BDMwMTAgBAIAATAaAwMAVjIDAwCA1gMEArnlgAMDAcGmAwMAw5QwDQQC AAIwBwMFACABBwgwGQYIKwYBBQUHAQgBAf8ECjAIoAYwBAICBs0wDQYJKoZIhvcN AQELBQADggEBAJHSIoO8cnWDdHt9yjlewN4kOBP2dGY2whdhIe/eQPK1d8tr9rYD kmxCc+hwUR5Xvwkj5U+C0IeWYeWomc3Zn5aQtYj/TcAXw75YEWIJOC4sVPOuXzWO gjgFXS00uw6/+Hr+fiaJ8qYns1meiNI3g7eJ+1XjW6ToDNhSETmGioz9qw4yQXGA e2rQ3WGAj6mkGnu1rEgJfv/wvln6P1pxUJAGCjvAxuHt5kA1IsyF2TyKpYhq7e89 bJk0W+iXTEsNTLNQIUVCROD12qsfTxu/aI2dzOygVYo0ow3eDdIkTAPQqC9V85RZ SK3aD9vOhsS444+4ms253wiyWiYr4KNyti8= -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:48 2026 by rpki-client