This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/RzLQ_Og_tnOCzqzjdWyLE8CpXJg.cer File: RzLQ_Og_tnOCzqzjdWyLE8CpXJg.cer (raw, json) Hash identifier: NyfJsUBLEY5ij/StvHe11PDb0SnIndnUO/h5YAe9BHg= Subject key identifier: 47:32:D0:FC:E8:3F:B6:73:82:CE:AC:E3:75:6C:8B:13:C0:A9:5C:98 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77596B28C9C0AD7356993FDAA9F51D62 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/dcacd2-d780-46f7-a5b6-79cc7a14bf9a/1/RzLQ_Og_tnOCzqzjdWyLE8CpXJg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/dcacd2-d780-46f7-a5b6-79cc7a14bf9a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:27 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 213193 IP: 88.218.156.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:6b:28:c9:c0:ad:73:56:99:3f:da:a9:f5:1d:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4732d0fce83fb67382ceace3756c8b13c0a95c98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:5f:ca:8a:c1:5b:c7:ef:48:26:c6:7b:0f:3e: 2a:13:08:6f:5c:0e:b7:85:12:04:c2:22:01:87:ff: c9:39:db:53:d7:4a:16:38:39:86:c1:f9:39:fa:2d: 66:01:a6:7a:43:9e:e1:a3:73:50:8c:f0:61:0d:ba: a4:e5:08:61:95:5e:89:8e:82:f9:84:b8:c0:d6:f4: fa:5d:dc:6d:7b:3e:a3:56:aa:0a:5f:60:38:a1:0c: 56:df:77:59:0c:b6:d6:f2:fa:09:6b:8b:eb:6e:03: b7:a5:a4:f0:97:7a:44:d4:c1:15:24:ad:67:1a:f8: c3:3d:7c:ba:29:1a:50:45:47:43:aa:97:ee:2a:67: 02:80:77:dc:a9:62:e1:78:90:01:ea:4a:ae:b9:91: c8:c4:d2:08:4d:c9:8a:ad:e5:9e:1d:f5:1a:e2:dc: 0c:4e:df:01:c3:19:a7:57:97:25:c5:6f:cd:72:31: da:41:57:e7:f6:87:57:8a:4a:f2:8f:7c:35:bb:c6: 4b:7e:0c:63:76:e9:49:66:ae:d7:a7:d9:da:04:15: 8c:ae:11:70:5e:d3:34:d9:3a:5d:75:cb:f8:9b:82: 61:37:39:69:02:f1:82:bd:92:9b:46:d4:c8:72:d6: 4b:03:f7:cd:bc:c3:c8:8c:ef:a8:a1:3c:95:55:97: f9:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:32:D0:FC:E8:3F:B6:73:82:CE:AC:E3:75:6C:8B:13:C0:A9:5C:98 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcacd2-d780-46f7-a5b6-79cc7a14bf9a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/dcacd2-d780-46f7-a5b6-79cc7a14bf9a/1/RzLQ_Og_tnOCzqzjdWyLE8CpXJg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 88.218.156.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 213193 Signature Algorithm: sha256WithRSAEncryption 5b:a6:e8:ae:59:84:12:ba:85:59:bb:bc:e1:8b:f5:0a:79:4e: e1:9d:64:e5:45:be:48:6f:60:ac:63:3b:e3:d8:09:74:70:33: b3:f2:cf:86:0a:ce:9d:3c:47:39:4a:60:4f:bc:45:d4:c7:e1: a9:d0:65:24:ff:78:3f:8a:82:b5:c1:ef:19:eb:c0:82:49:cb: a8:0d:0d:23:62:35:d7:35:1b:54:e0:b1:13:0d:3d:d6:75:81: 9b:1f:6b:a3:a1:13:34:ff:f9:14:1e:a3:31:6b:c2:6c:f6:1d: b9:eb:a0:55:5c:98:b1:6b:44:31:60:74:f2:ff:5e:7b:07:b5: 80:3f:cd:64:ad:0a:92:ad:6c:77:a5:1f:8d:d7:1d:9f:ad:11: 43:bc:cd:d2:cc:54:ef:b5:8a:66:7e:3e:e6:b5:2c:0c:01:11: 16:a9:dd:51:43:04:81:10:14:03:5e:d6:2a:c9:5c:79:d8:6e: 1c:81:21:17:1d:bd:10:7f:39:8d:2f:4e:68:93:ec:7a:39:58: 73:f4:6c:da:4f:52:fe:f0:85:b1:9e:3d:d1:b4:f5:74:7a:9b: ad:07:72:f5:5f:82:49:3c:3e:f3:c1:ca:1a:b4:5b:bd:21:e9: 9e:0d:09:44:93:66:18:0e:75:ef:ff:7c:e1:1e:9d:8f:7c:62: 98:94:06:eb -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt3WWsoycCtc1aZP9qp9R1iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0NzMyZDBmY2U4M2ZiNjczODJjZWFjZTM3NTZjOGIxM2MwYTk1Yzk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApl/KisFbx+9IJsZ7Dz4qEwhvXA63 hRIEwiIBh//JOdtT10oWODmGwfk5+i1mAaZ6Q57ho3NQjPBhDbqk5QhhlV6JjoL5 hLjA1vT6Xdxtez6jVqoKX2A4oQxW33dZDLbW8voJa4vrbgO3paTwl3pE1MEVJK1n GvjDPXy6KRpQRUdDqpfuKmcCgHfcqWLheJAB6kquuZHIxNIITcmKreWeHfUa4twM Tt8BwxmnV5clxW/NcjHaQVfn9odXikryj3w1u8ZLfgxjdulJZq7Xp9naBBWMrhFw XtM02Tpddcv4m4JhNzlpAvGCvZKbRtTIctZLA/fNvMPIjO+ooTyVVZf5WQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFEcy0PzoP7Zzgs6s43VsixPAqVyYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkxL2RjYWNk Mi1kNzgwLTQ2ZjctYTViNi03OWNjN2ExNGJmOWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEvZGNhY2Qy LWQ3ODAtNDZmNy1hNWI2LTc5Y2M3YTE0YmY5YS8xL1J6TFFfT2dfdG5PQ3pxempk V3lMRThDcFhKZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCWNqcMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwNAyTANBgkqhkiG9w0BAQsFAAOCAQEAW6borlmEErqFWbu84Yv1CnlO4Z1k5UW+ SG9grGM749gJdHAzs/LPhgrOnTxHOUpgT7xF1MfhqdBlJP94P4qCtcHvGevAgknL qA0NI2I11zUbVOCxEw091nWBmx9ro6ETNP/5FB6jMWvCbPYdueugVVyYsWtEMWB0 8v9eewe1gD/NZK0Kkq1sd6Ufjdcdn60RQ7zN0sxU77WKZn4+5rUsDAERFqndUUME gRAUA17WKslcedhuHIEhFx29EH85jS9OaJPsejlYc/Rs2k9S/vCFsZ490bT1dHqb rQdy9V+CSTw+88HKGrRbvSHpng0JRJNmGA517/984R6dj3ximJQG6w== -----END CERTIFICATE-----Generated at Mon Jan 26 09:27:59 2026 by rpki-client