This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Z4vWSQc2RsH0w7AcrKpy4gnp2v8.cer File: Z4vWSQc2RsH0w7AcrKpy4gnp2v8.cer (raw, json) Hash identifier: xFh2otbKEKWTsiVLG2k4oP3PuMqQGr6UPnAdNYPyOi0= Subject key identifier: 67:8B:D6:49:07:36:46:C1:F4:C3:B0:1C:AC:AA:72:E2:09:E9:DA:FF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C8008B8D87EC71E4BADA6CFD406950F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc3441-3e8f-44ed-913e-ed78cb76661c/1/Z4vWSQc2RsH0w7AcrKpy4gnp2v8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/bc3441-3e8f-44ed-913e-ed78cb76661c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:44 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 93.113.192.0/21 IP: 185.251.28.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:08:b8:d8:7e:c7:1e:4b:ad:a6:cf:d4:06:95:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=678bd649073646c1f4c3b01cacaa72e209e9daff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:f1:42:38:99:5f:a2:8b:15:6e:05:98:3b:a9: 56:e0:a7:29:83:76:3e:4a:9c:05:95:a6:62:13:7b: e4:f8:03:4f:1a:99:18:3f:a5:84:70:54:35:f7:fd: de:d9:7a:57:8b:03:12:fe:53:84:21:36:dc:71:7b: 28:f2:50:fa:cd:02:28:06:48:fa:fe:f2:87:34:45: b3:23:10:b8:22:32:30:99:3c:dc:9a:b3:56:f0:cb: 16:1b:b0:f0:14:12:03:ab:c0:b4:c2:ce:e7:1a:bf: 6a:c4:9f:1c:e7:3f:05:15:04:dc:15:98:8b:7c:5b: 20:c8:ed:1f:15:e4:08:6d:29:51:70:20:7e:5e:e2: 73:4d:b6:63:04:c6:66:c8:b6:27:55:8b:9e:e7:bc: 57:d7:09:25:ec:38:50:df:5f:ed:1b:3f:09:15:22: d4:cd:8c:7e:92:dd:6c:59:8e:8e:8c:75:d0:47:ff: 3c:c1:74:10:eb:44:37:7d:aa:14:95:8a:0f:59:a7: 82:60:90:34:0e:14:7e:65:9e:84:7e:2c:d0:0f:e3: fb:15:2a:e0:4f:e1:b5:92:e7:0e:82:5b:07:25:38: c3:99:9b:ee:7c:f4:62:ac:b4:f3:0d:8b:fb:34:38: 1f:04:e8:39:0f:b7:21:8c:89:b1:82:a6:b6:96:58: 00:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:8B:D6:49:07:36:46:C1:F4:C3:B0:1C:AC:AA:72:E2:09:E9:DA:FF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc3441-3e8f-44ed-913e-ed78cb76661c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/bc3441-3e8f-44ed-913e-ed78cb76661c/1/Z4vWSQc2RsH0w7AcrKpy4gnp2v8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.113.192.0/21 185.251.28.0/22 Signature Algorithm: sha256WithRSAEncryption 4f:1c:b1:f0:60:f3:53:31:d0:c8:f6:af:77:6a:8a:e3:d9:9c: da:8b:1c:b4:98:c8:40:dc:78:b4:dc:6e:b9:1a:98:df:38:36: 92:87:d8:aa:63:dd:2f:d7:32:21:b7:77:ee:32:b4:db:67:00: d6:f8:63:92:51:d0:90:36:ab:b2:2c:5e:59:03:59:f4:a8:ed: 8a:ce:a2:44:6f:71:4a:fd:16:26:5c:d8:a2:77:56:6f:29:61: cb:18:69:f1:70:f7:fe:81:d0:7f:de:80:eb:74:5c:df:cf:db: 5c:e5:90:23:e0:c7:0a:13:5f:34:b5:23:f6:7b:58:f0:7f:a2: 8f:a5:26:fe:a8:d8:b0:ba:ef:b0:79:37:0a:43:55:35:5f:bb: 20:ec:29:43:b3:1f:3c:9f:c5:9e:14:1f:ea:93:17:2a:bd:bb: 62:26:a0:28:63:a5:b1:09:ec:07:62:17:57:24:e7:ad:28:10: 67:b4:a7:d7:98:31:2d:38:62:12:4d:7e:7b:fd:e6:90:82:06: 6a:22:1c:0b:72:85:ae:ef:2e:da:e5:3d:01:24:08:8b:37:79: 50:82:4a:03:30:df:91:47:fe:8d:e4:66:18:f6:6b:4f:2a:f9: fe:32:77:02:31:65:e4:8c:e6:00:d2:09:8b:8d:4e:cc:c3:60: 2d:fc:0d:c1 -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgISAZt8gAi42H7HHkutps/UBpUPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzhiZDY0OTA3MzY0NmMxZjRjM2IwMWNhY2FhNzJlMjA5ZTlkYWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkPFCOJlfoosVbgWYO6lW4Kcpg3Y+ SpwFlaZiE3vk+ANPGpkYP6WEcFQ19/3e2XpXiwMS/lOEITbccXso8lD6zQIoBkj6 /vKHNEWzIxC4IjIwmTzcmrNW8MsWG7DwFBIDq8C0ws7nGr9qxJ8c5z8FFQTcFZiL fFsgyO0fFeQIbSlRcCB+XuJzTbZjBMZmyLYnVYue57xX1wkl7DhQ31/tGz8JFSLU zYx+kt1sWY6OjHXQR/88wXQQ60Q3faoUlYoPWaeCYJA0DhR+ZZ6EfizQD+P7FSrg T+G1kucOglsHJTjDmZvufPRirLTzDYv7NDgfBOg5D7chjImxgqa2llgAgwIDAQAB o4ICijCCAoYwHQYDVR0OBBYEFGeL1kkHNkbB9MOwHKyqcuIJ6dr/MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y1L2JjMzQ0 MS0zZThmLTQ0ZWQtOTEzZS1lZDc4Y2I3NjY2MWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUvYmMzNDQx LTNlOGYtNDRlZC05MTNlLWVkNzhjYjc2NjYxYy8xL1o0dldTUWMyUnNIMHc3QWNy S3B5NGducDJ2OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQDXXHAAwQCufscMA0GCSqGSIb3DQEBCwUAA4IB AQBPHLHwYPNTMdDI9q93aorj2Zzaixy0mMhA3Hi03G65GpjfODaSh9iqY90v1zIh t3fuMrTbZwDW+GOSUdCQNquyLF5ZA1n0qO2KzqJEb3FK/RYmXNiid1ZvKWHLGGnx cPf+gdB/3oDrdFzfz9tc5ZAj4McKE180tSP2e1jwf6KPpSb+qNiwuu+weTcKQ1U1 X7sg7ClDsx88n8WeFB/qkxcqvbtiJqAoY6WxCewHYhdXJOetKBBntKfXmDEtOGIS TX57/eaQggZqIhwLcoWu7y7a5T0BJAiLN3lQgkoDMN+RR/6N5GYY9mtPKvn+MncC MWXkjOYA0gmLjU7Mw2At/A3B -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:31 2026 by rpki-client