This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Z4ZEd_6Ui_R7kXlxjDaY7v9YER0.cer File: Z4ZEd_6Ui_R7kXlxjDaY7v9YER0.cer (raw, json) Hash identifier: ksjtvyzVvDRr5OGWdGZ975B7yKMMQSwtuDR4+I5H/Yc= Subject key identifier: 67:86:44:77:FE:94:8B:F4:7B:91:79:71:8C:36:98:EE:FF:58:11:1D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA371238967556AAE03232C19B721C8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/41/5b961b-bc25-493c-af38-834ae47ad47b/1/Z4ZEd_6Ui_R7kXlxjDaY7v9YER0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/41/5b961b-bc25-493c-af38-834ae47ad47b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208895 IP: 45.143.116.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:71:23:89:67:55:6a:ae:03:23:2c:19:b7:21:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67864477fe948bf47b9179718c3698eeff58111d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:e6:26:cb:f6:28:23:86:04:99:6f:ed:7f:bf: 77:55:04:b3:a0:5a:56:e2:59:24:ed:27:bb:99:e2: f2:1e:91:53:bd:87:da:fa:60:c9:93:14:cd:5e:30: 6c:c9:f3:df:6d:5e:a2:0c:07:d2:54:9d:85:1d:23: 4a:a4:ab:25:d8:af:e2:de:a3:27:e1:2a:93:13:62: 0b:db:a9:8a:3c:98:92:3e:16:e3:da:65:e0:1d:86: 57:62:fe:12:f9:82:70:58:71:a3:71:66:93:f4:8d: 97:66:29:52:b1:57:b2:46:45:f2:9f:cf:a0:25:ed: 5c:ee:f2:e0:cb:60:eb:08:63:38:7f:8f:4d:15:a7: ff:a4:89:e4:1a:e0:a4:80:52:d8:9a:d8:0d:96:d7: 79:8f:94:84:f8:fc:52:9f:10:31:65:b8:c6:26:69: 7f:09:cd:23:86:77:0c:ff:7f:8d:90:d7:5e:38:16: 45:50:2a:b5:98:5e:1d:79:fe:c2:80:d3:12:f0:58: d9:3a:17:a8:a4:79:02:a9:01:4b:42:41:fb:02:6a: 96:f3:88:6c:ff:59:db:61:55:de:93:ce:a9:74:56: 53:e2:10:9b:17:2c:e1:7f:ee:fc:11:ac:71:40:e8: 63:e1:ab:80:49:be:f9:38:6f:88:82:45:cf:28:b6: 83:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:86:44:77:FE:94:8B:F4:7B:91:79:71:8C:36:98:EE:FF:58:11:1D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/5b961b-bc25-493c-af38-834ae47ad47b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/5b961b-bc25-493c-af38-834ae47ad47b/1/Z4ZEd_6Ui_R7kXlxjDaY7v9YER0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.116.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208895 Signature Algorithm: sha256WithRSAEncryption b1:1f:46:4b:1a:05:e6:e3:ff:af:49:e0:5e:74:27:7b:26:e8: a9:e8:cd:bc:a4:61:28:af:18:d5:a1:dc:1c:e2:d9:96:31:9c: 4d:37:60:19:8c:85:9c:5a:76:20:89:2e:5d:6f:71:d5:0b:d1: 35:4f:ef:b8:b5:14:07:4e:bc:50:67:9d:fd:99:c0:79:1c:e5: 5a:10:6f:f8:8c:7f:87:49:62:43:fb:30:6d:79:2f:9a:e4:d2: 5d:91:5b:7e:11:47:fd:01:1f:28:90:c0:57:52:b0:3f:33:61: 1b:69:3e:06:86:bc:1c:d8:d1:84:37:61:c3:4a:34:8e:2f:e0: 2d:8a:1c:48:81:9e:c1:4d:60:e5:be:f8:7c:a9:b6:65:2c:b4: 37:a6:d3:5d:59:9c:93:fc:87:7c:81:e9:d6:b6:5d:f5:43:db: ae:a2:b9:eb:30:e4:13:de:2e:0c:b7:bf:a0:60:1f:33:a6:16: 9b:80:d5:46:30:4c:03:1e:cc:19:7e:41:82:f4:1d:1e:db:24: 33:df:82:c2:30:c7:22:47:07:94:e5:18:46:cf:de:d4:ef:03: dc:c4:9b:33:50:4c:77:e2:5f:8e:9d:a3:aa:cb:c5:99:69:4b: 60:a0:75:a4:86:3f:25:17:33:34:e0:cd:20:42:5a:e9:f2:c0: 4e:fe:49:cd -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt7o3EjiWdVaq4DIywZtyHIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2Nzg2NDQ3N2ZlOTQ4YmY0N2I5MTc5NzE4YzM2OThlZWZmNTgxMTFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6eYmy/YoI4YEmW/tf793VQSzoFpW 4lkk7Se7meLyHpFTvYfa+mDJkxTNXjBsyfPfbV6iDAfSVJ2FHSNKpKsl2K/i3qMn 4SqTE2IL26mKPJiSPhbj2mXgHYZXYv4S+YJwWHGjcWaT9I2XZilSsVeyRkXyn8+g Je1c7vLgy2DrCGM4f49NFaf/pInkGuCkgFLYmtgNltd5j5SE+PxSnxAxZbjGJml/ Cc0jhncM/3+NkNdeOBZFUCq1mF4def7CgNMS8FjZOheopHkCqQFLQkH7AmqW84hs /1nbYVXek86pdFZT4hCbFyzhf+78EaxxQOhj4auASb75OG+IgkXPKLaDHwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFGeGRHf+lIv0e5F5cYw2mO7/WBEdMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQxLzViOTYx Yi1iYzI1LTQ5M2MtYWYzOC04MzRhZTQ3YWQ0N2IvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDEvNWI5NjFi LWJjMjUtNDkzYy1hZjM4LTgzNGFlNDdhZDQ3Yi8xL1o0WkVkXzZVaV9SN2tYbHhq RGFZN3Y5WUVSMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCLY90MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMv/zANBgkqhkiG9w0BAQsFAAOCAQEAsR9GSxoF5uP/r0ngXnQneyboqejNvKRh KK8Y1aHcHOLZljGcTTdgGYyFnFp2IIkuXW9x1QvRNU/vuLUUB068UGed/ZnAeRzl WhBv+Ix/h0liQ/swbXkvmuTSXZFbfhFH/QEfKJDAV1KwPzNhG2k+Boa8HNjRhDdh w0o0ji/gLYocSIGewU1g5b74fKm2ZSy0N6bTXVmck/yHfIHp1rZd9UPbrqK56zDk E94uDLe/oGAfM6YWm4DVRjBMAx7MGX5BgvQdHtskM9+CwjDHIkcHlOUYRs/e1O8D 3MSbM1BMd+Jfjp2jqsvFmWlLYKB1pIY/JRczNODNIEJa6fLATv5JzQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:15 2026 by rpki-client