This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZAsfh3LG70hOLNLWYmPy75j6OWg.cer File: ZAsfh3LG70hOLNLWYmPy75j6OWg.cer (raw, json) Hash identifier: XizSteGrbM3wwxUZ7q5MjUH90byBGVctWfJvo2mB0TE= Subject key identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E2885ACD04B1713B22B4B45094CBD Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:17:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197876 IP: 77.73.80.0/21 IP: 2a03:ab80::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:28:85:ac:d0:4b:17:13:b2:2b:4b:45:09:4c:bd Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=640b1f8772c6ef484e2cd2d66263f2ef98fa3968 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:55:16:c3:d7:25:de:3d:3e:98:14:ad:ca:ad: cc:19:2b:3d:f4:4a:80:d6:4d:0f:ee:92:8b:35:0c: 2d:99:e7:48:df:77:b2:80:af:6c:43:7e:98:90:58: 40:8e:96:62:7c:34:8e:a3:40:df:a0:12:00:f9:92: 2f:ef:0c:8b:d2:11:35:af:54:a4:3c:14:5c:d1:be: d7:6b:41:42:b4:05:2a:c7:60:56:af:1e:3f:c8:ee: 35:4a:d1:be:82:38:6d:d1:d7:7b:96:f7:43:41:41: 45:88:c7:61:fe:56:6c:dd:9c:6c:7d:90:5e:4c:6e: eb:e1:2d:14:19:ad:9c:e0:49:63:fb:24:a5:54:e4: 30:c8:14:f0:cc:42:d5:56:74:08:aa:c4:2a:b5:06: 69:a7:fd:bd:7e:c1:f7:2f:7e:7e:ce:a5:00:53:77: 9a:7d:e1:ae:52:dd:ad:68:a2:6c:78:4f:f3:4e:b0: c0:99:c3:98:1c:53:94:06:bb:be:59:9a:1e:6b:93: 9e:cb:56:0d:cc:9e:23:8f:52:b9:4e:03:6d:75:84: 6e:2b:55:82:19:21:0d:26:17:10:79:39:76:82:5a: fb:0c:23:24:3f:d2:69:e3:3c:14:75:53:9a:4f:b2: df:ba:f0:b5:58:32:74:f0:e4:0a:d7:5f:b5:84:5e: c6:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:0B:1F:87:72:C6:EF:48:4E:2C:D2:D6:62:63:F2:EF:98:FA:39:68 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d5/aad626-dace-44d8-818d-387afa0a534f/1/ZAsfh3LG70hOLNLWYmPy75j6OWg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.73.80.0/21 IPv6: 2a03:ab80::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 197876 Signature Algorithm: sha256WithRSAEncryption 6b:48:8f:72:4a:1c:fa:11:13:95:9b:7e:05:d9:d1:c0:4a:ed: 31:6a:23:97:32:65:e1:d5:de:e7:cb:a4:da:38:71:8f:5c:1c: d8:b3:c6:4e:02:97:b6:29:55:d1:ee:1d:64:91:71:79:f6:09: 52:87:af:59:ed:b7:3b:1a:37:24:b3:8a:51:40:df:ed:9a:ed: 7a:e9:ae:86:5a:97:ad:5b:3c:86:c1:17:d7:1b:76:19:4c:cf: f8:34:ee:96:87:39:2f:df:1c:f5:4b:ea:c2:c5:e1:73:3b:47: 82:a8:32:30:3d:8d:ed:b7:62:6f:56:bf:40:3f:b5:2a:41:b8: 96:c5:b6:a0:ba:fe:25:d4:1d:30:fb:6b:5c:71:22:50:a3:99: bf:56:78:87:18:35:8f:51:e2:08:b8:18:29:2d:dd:60:fe:dc: 1a:4e:be:6c:a6:f7:5e:7d:74:09:c4:62:ee:d4:5c:ec:ae:11: 64:71:a1:82:56:b0:56:0f:06:23:73:d2:29:9f:3a:93:30:70: f3:50:36:4c:e4:65:a3:d1:39:be:cb:8a:a9:39:95:e0:83:d6: af:9a:ff:21:97:53:cd:45:d6:ac:9e:6e:49:da:23:d0:bb:b6: c8:e2:ad:85:9e:03:50:23:df:9f:cf:df:8c:87:c5:0f:8d:b8: 5d:5e:02:c3 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5fiiFrNBLFxOyK0tFCUy9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDBiMWY4NzcyYzZlZjQ4NGUyY2QyZDY2MjYzZjJlZjk4ZmEzOTY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVUWw9cl3j0+mBStyq3MGSs99EqA 1k0P7pKLNQwtmedI33eygK9sQ36YkFhAjpZifDSOo0DfoBIA+ZIv7wyL0hE1r1Sk PBRc0b7Xa0FCtAUqx2BWrx4/yO41StG+gjht0dd7lvdDQUFFiMdh/lZs3ZxsfZBe TG7r4S0UGa2c4Elj+ySlVOQwyBTwzELVVnQIqsQqtQZpp/29fsH3L35+zqUAU3ea feGuUt2taKJseE/zTrDAmcOYHFOUBru+WZoea5Oey1YNzJ4jj1K5TgNtdYRuK1WC GSENJhcQeTl2glr7DCMkP9Jp4zwUdVOaT7LfuvC1WDJ08OQK11+1hF7GFwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFGQLH4dyxu9ITizS1mJj8u+Y+jloMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q1L2FhZDYy Ni1kYWNlLTQ0ZDgtODE4ZC0zODdhZmEwYTUzNGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDUvYWFkNjI2 LWRhY2UtNDRkOC04MThkLTM4N2FmYTBhNTM0Zi8xL1pBc2ZoM0xHNzBoT0xOTFdZ bVB5NzVqNk9XZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQDTUlQMA0EAgACMAcDBQAqA6uAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwME9DANBgkqhkiG9w0BAQsFAAOCAQEAa0iPckoc+hET lZt+BdnRwErtMWojlzJl4dXe58uk2jhxj1wc2LPGTgKXtilV0e4dZJFxefYJUoev We23Oxo3JLOKUUDf7ZrteumuhlqXrVs8hsEX1xt2GUzP+DTuloc5L98c9UvqwsXh cztHgqgyMD2N7bdib1a/QD+1KkG4lsW2oLr+JdQdMPtrXHEiUKOZv1Z4hxg1j1Hi CLgYKS3dYP7cGk6+bKb3Xn10CcRi7tRc7K4RZHGhglawVg8GI3PSKZ86kzBw81A2 TORlo9E5vsuKqTmV4IPWr5r/IZdTzUXWrJ5uSdoj0Lu2yOKthZ4DUCPfn8/fjIfF D424XV4Cww== -----END CERTIFICATE-----Generated at Mon Feb 9 19:40:54 2026 by rpki-client