This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/TXPZQBmjwjWHffa8GynHagtkydA.cer File: TXPZQBmjwjWHffa8GynHagtkydA.cer (raw, json) Hash identifier: R76uO426BgVWREubofNIZvCvYvRGN1qu9TnHhQDpeW0= Subject key identifier: 4D:73:D9:40:19:A3:C2:35:87:7D:F6:BC:1B:29:C7:6A:0B:64:C9:D0 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED203F76978C5DE157E78C38A6D9F4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/TXPZQBmjwjWHffa8GynHagtkydA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:19:02 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 200851 IP: 45.11.160.0/22 IP: 45.66.244.0/22 IP: 84.38.255.0/24 IP: 185.93.244.0/22 IP: 2a04:23c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 21:05:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:20:3f:76:97:8c:5d:e1:57:e7:8c:38:a6:d9:f4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:19:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d73d94019a3c235877df6bc1b29c76a0b64c9d0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:19:1c:e4:4d:72:a2:2e:94:04:23:cb:ec:39: 4b:19:d3:15:03:9e:b3:74:f1:d1:09:0f:6e:64:91: b8:0f:94:12:97:6a:47:61:51:07:3c:ad:4e:31:6e: ac:5b:5b:62:01:11:83:3d:0e:33:2b:35:a9:c7:3f: 6b:ef:3e:e6:c1:52:31:0b:59:b1:0e:c8:ea:dd:37: fc:cf:f4:2b:12:e2:69:c1:51:90:02:c4:a6:0a:6c: 48:83:42:22:58:61:f3:b1:0e:b8:79:b7:36:9f:96: af:bb:fe:50:36:8b:c8:5f:8f:65:f8:d8:57:5d:d7: 31:34:93:3c:b2:4e:8c:0d:b3:97:98:49:de:bb:fe: 4f:17:c7:be:b6:5e:6e:01:ec:83:7b:18:85:69:95: a8:06:ee:8d:54:df:66:f8:b9:ce:54:93:2d:94:57: ff:ec:6c:8c:f6:b9:5c:1f:ff:a6:99:a9:f9:0b:eb: 20:c8:6a:66:53:65:29:ce:ff:e7:1c:95:49:5b:96: 49:3e:22:67:fd:e4:70:7e:f0:a1:f0:c2:1b:0f:0c: d4:cf:cb:42:c2:66:8c:73:84:1b:96:d1:c9:9d:99: a0:ed:d6:c8:05:c5:24:5b:43:50:08:9d:d9:7e:70: 34:2e:4d:d8:38:c4:09:5d:d4:fd:80:61:81:c8:82: 0a:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:73:D9:40:19:A3:C2:35:87:7D:F6:BC:1B:29:C7:6A:0B:64:C9:D0 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/09482b-4d2a-4893-828d-96dc5ea0cc83/1/TXPZQBmjwjWHffa8GynHagtkydA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.11.160.0/22 45.66.244.0/22 84.38.255.0/24 185.93.244.0/22 IPv6: 2a04:23c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 200851 Signature Algorithm: sha256WithRSAEncryption 34:7d:5a:f9:f1:f2:1e:28:07:08:ba:e4:ec:3c:19:db:39:16: a8:47:ff:9a:5c:d2:22:c7:d7:6a:63:86:c2:ba:49:0c:c6:5d: b2:b0:fb:f9:de:9d:9a:96:b8:44:c5:32:50:7a:f4:a7:ca:98: 3c:d6:76:4b:98:1d:f1:e1:39:03:b9:f8:f2:2f:62:f7:89:e0: b9:5a:e9:5d:f1:da:4e:32:25:df:51:c2:17:f6:4f:0d:e1:33: 3a:cb:bb:19:bf:99:e4:c5:d9:75:7d:8f:c6:50:6f:7a:e2:1e: 16:ec:a2:6b:0c:ca:01:fa:e3:41:72:58:d6:72:79:4b:34:57: f9:95:77:91:3e:15:d2:b6:51:b1:4a:a5:8f:94:02:b3:40:56: 45:84:44:f5:3d:e4:8e:8f:03:88:8e:4e:ba:9e:a1:35:5b:b8: aa:47:76:71:04:00:65:9e:47:f1:2f:72:93:d1:cd:5a:e0:14: ee:72:e3:0a:0d:57:9c:0c:0b:89:06:45:0b:1b:ee:33:84:69: 32:9a:24:f0:bc:d2:44:7c:57:8e:b4:1f:5d:e2:04:a1:7f:55: 00:81:3a:70:1e:54:dd:f7:b0:3e:e1:bf:64:51:73:f1:a7:05: d4:62:fb:56:38:4c:d9:d7:63:32:59:1d:93:5c:f3:41:c5:bd: f8:19:c8:62 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgISAZt57SA/dpeMXeFX54w4ptn0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxOTAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDczZDk0MDE5YTNjMjM1ODc3ZGY2YmMxYjI5Yzc2YTBiNjRjOWQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Bkc5E1yoi6UBCPL7DlLGdMVA56z dPHRCQ9uZJG4D5QSl2pHYVEHPK1OMW6sW1tiARGDPQ4zKzWpxz9r7z7mwVIxC1mx Dsjq3Tf8z/QrEuJpwVGQAsSmCmxIg0IiWGHzsQ64ebc2n5avu/5QNovIX49l+NhX XdcxNJM8sk6MDbOXmEneu/5PF8e+tl5uAeyDexiFaZWoBu6NVN9m+LnOVJMtlFf/ 7GyM9rlcH/+mman5C+sgyGpmU2Upzv/nHJVJW5ZJPiJn/eRwfvCh8MIbDwzUz8tC wmaMc4QbltHJnZmg7dbIBcUkW0NQCJ3ZfnA0Lk3YOMQJXdT9gGGByIIKawIDAQAB o4ICwTCCAr0wHQYDVR0OBBYEFE1z2UAZo8I1h332vBspx2oLZMnQMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk5LzA5NDgy Yi00ZDJhLTQ4OTMtODI4ZC05NmRjNWVhMGNjODMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkvMDk0ODJi LTRkMmEtNDg5My04MjhkLTk2ZGM1ZWEwY2M4My8xL1RYUFpRQm1qd2pXSGZmYThH eW5IYWd0a3lkQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQCLQugAwQCLUL0AwQAVCb/AwQCuV30MA0EAgAC MAcDBQMqBCPAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMQkzANBgkqhkiG9w0B AQsFAAOCAQEANH1a+fHyHigHCLrk7DwZ2zkWqEf/mlzSIsfXamOGwrpJDMZdsrD7 +d6dmpa4RMUyUHr0p8qYPNZ2S5gd8eE5A7n48i9i94nguVrpXfHaTjIl31HCF/ZP DeEzOsu7Gb+Z5MXZdX2PxlBveuIeFuyiawzKAfrjQXJY1nJ5SzRX+ZV3kT4V0rZR sUqlj5QCs0BWRYRE9T3kjo8DiI5Oup6hNVu4qkd2cQQAZZ5H8S9yk9HNWuAU7nLj Cg1XnAwLiQZFCxvuM4RpMpok8LzSRHxXjrQfXeIEoX9VAIE6cB5U3fewPuG/ZFFz 8acF1GL7VjhM2ddjMlkdk1zzQcW9+BnIYg== -----END CERTIFICATE-----Generated at Tue Feb 10 07:13:23 2026 by rpki-client