This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VzBZUuVZXOl-QzVLLv3cewc72ck.cer File: VzBZUuVZXOl-QzVLLv3cewc72ck.cer (raw, json) Hash identifier: cMkriXA9y39IiynUgd9PNwW0czWnVnM0QInAqTJ6Iso= Subject key identifier: 57:30:59:52:E5:59:5C:E9:7E:43:35:4B:2E:FD:DC:7B:07:3B:D9:C9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED1102C3E829D02E1405C6DC930758 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/VzBZUuVZXOl-QzVLLv3cewc72ck.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 56500 IP: 188.65.224.0/21 IP: 2a00:1848::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:11:02:c3:e8:29:d0:2e:14:05:c6:dc:93:07:58 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=57305952e5595ce97e43354b2efddc7b073bd9c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:00:55:a3:d7:5b:eb:c1:1b:d1:19:ea:91:37: 59:5d:84:24:15:e9:8f:e4:e1:ac:6d:46:3c:ca:ed: 14:fc:dd:99:0b:f2:8d:02:70:91:1c:32:b3:d4:95: ed:c8:46:d4:69:5b:21:67:d8:2d:ba:b3:9a:b5:b1: 53:1e:f3:12:6d:4e:c1:10:29:ef:90:45:64:a7:89: b5:28:bb:c1:8c:93:71:3f:9b:45:ab:5e:1c:c4:b8: 7a:e7:4b:ea:ec:89:85:d0:ee:fd:51:89:61:4a:7c: ca:09:bc:43:02:49:a9:c0:35:2f:14:de:70:3c:31: ba:33:fa:3a:f0:16:dd:e8:46:bc:b0:08:b8:94:2f: 4f:14:6a:ff:59:8e:e1:2e:32:04:2b:c3:84:a0:e7: f1:a5:1d:52:69:c2:ea:5e:92:01:e2:e4:4f:92:62: fb:40:73:b9:20:42:bc:02:30:f0:1f:fd:67:ae:8f: 96:f9:fd:f3:d8:9f:2d:3f:43:3e:20:6b:3e:a0:4a: 62:5d:a6:be:a2:8a:cb:8d:dc:59:c1:9b:48:5b:71: a4:f4:fc:89:ea:9a:7a:22:4c:6f:0b:9f:d9:73:c4: e4:ae:ec:16:84:fd:9b:ba:ce:e1:b2:df:61:fd:16: 79:ed:a2:48:d2:8b:ee:92:e6:3e:d1:aa:7d:46:58: 07:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 57:30:59:52:E5:59:5C:E9:7E:43:35:4B:2E:FD:DC:7B:07:3B:D9:C9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b4/b945c0-4e29-4a15-bdf6-2f3be062858d/1/VzBZUuVZXOl-QzVLLv3cewc72ck.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.65.224.0/21 IPv6: 2a00:1848::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 56500 Signature Algorithm: sha256WithRSAEncryption 23:85:60:eb:db:28:69:65:bc:09:8e:bd:ff:26:7e:9f:a7:91: ca:54:e7:59:6c:ef:3c:65:4a:b3:43:ee:64:e8:82:c3:8c:4b: f9:2d:4c:33:4f:31:7a:d4:4e:d4:d8:3a:0d:df:69:ca:56:ed: a3:f3:f3:9e:9a:ac:6e:14:fe:f5:70:69:34:e6:e2:b3:76:be: 2e:cf:5d:c2:85:b1:78:13:72:f4:00:3c:ac:0d:7a:41:af:65: 13:bb:cc:42:16:c9:39:7e:2c:f2:3f:f3:56:db:c4:22:41:33: 35:e2:a7:43:a9:58:1a:12:3d:f4:79:f4:b3:5c:cd:5c:cd:6e: 1d:61:55:5d:6d:c5:a0:c8:b1:b3:bb:8e:ab:e1:0d:37:6d:02: 5a:60:92:ba:f0:54:7b:dc:30:e1:b0:9b:64:66:96:68:b9:65: c7:52:b6:43:13:5e:cb:a8:20:82:fb:1d:66:bb:a3:1b:b5:43: 0b:e3:f0:02:71:71:77:90:29:47:2a:6c:f7:f8:07:64:79:59: 15:79:1d:be:51:87:d3:76:6d:8a:38:8d:56:52:99:85:2b:34: 07:62:6c:db:15:22:64:f4:60:44:79:55:b6:4b:46:30:14:47: 8d:06:8b:24:da:de:2f:49:ea:b6:53:d5:81:29:a3:27:20:82: 02:4e:94:d1 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt87RECw+gp0C4UBcbckwdYMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NzMwNTk1MmU1NTk1Y2U5N2U0MzM1NGIyZWZkZGM3YjA3M2JkOWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvwBVo9db68Eb0RnqkTdZXYQkFemP 5OGsbUY8yu0U/N2ZC/KNAnCRHDKz1JXtyEbUaVshZ9gturOatbFTHvMSbU7BECnv kEVkp4m1KLvBjJNxP5tFq14cxLh650vq7ImF0O79UYlhSnzKCbxDAkmpwDUvFN5w PDG6M/o68Bbd6Ea8sAi4lC9PFGr/WY7hLjIEK8OEoOfxpR1SacLqXpIB4uRPkmL7 QHO5IEK8AjDwH/1nro+W+f3z2J8tP0M+IGs+oEpiXaa+oorLjdxZwZtIW3Gk9PyJ 6pp6IkxvC5/Zc8TkruwWhP2bus7hst9h/RZ57aJI0ovukuY+0ap9RlgHAwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFFcwWVLlWVzpfkM1Sy793HsHO9nJMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I0L2I5NDVj MC00ZTI5LTRhMTUtYmRmNi0yZjNiZTA2Mjg1OGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjQvYjk0NWMw LTRlMjktNGExNS1iZGY2LTJmM2JlMDYyODU4ZC8xL1Z6QlpVdVZaWE9sLVF6VkxM djNjZXdjNzJjay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQDvEHgMA0EAgACMAcDBQAqABhIMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDctDANBgkqhkiG9w0BAQsFAAOCAQEAI4Vg69soaWW8 CY69/yZ+n6eRylTnWWzvPGVKs0PuZOiCw4xL+S1MM08xetRO1Ng6Dd9pylbto/Pz npqsbhT+9XBpNObis3a+Ls9dwoWxeBNy9AA8rA16Qa9lE7vMQhbJOX4s8j/zVtvE IkEzNeKnQ6lYGhI99Hn0s1zNXM1uHWFVXW3FoMixs7uOq+ENN20CWmCSuvBUe9ww 4bCbZGaWaLllx1K2QxNey6gggvsdZrujG7VDC+PwAnFxd5ApRyps9/gHZHlZFXkd vlGH03ZtijiNVlKZhSs0B2Js2xUiZPRgRHlVtktGMBRHjQaLJNreL0nqtlPVgSmj JyCCAk6U0Q== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:22 2026 by rpki-client