This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZCx6Tp8CsvTmZNfQ1ypS5RJh3lQ.cer File: ZCx6Tp8CsvTmZNfQ1ypS5RJh3lQ.cer (raw, json) Hash identifier: WBUH6h0W+55JWZv0rtE6MdfB3aGkr7gQxN8gQhFIZIg= Subject key identifier: 64:2C:7A:4E:9F:02:B2:F4:E6:64:D7:D0:D7:2A:52:E5:12:61:DE:54 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C6F633A683DA0BA6DAA67B481C1490 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a7/991fd8-2d85-4cf9-9036-5e02c4653e50/1/ZCx6Tp8CsvTmZNfQ1ypS5RJh3lQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a7/991fd8-2d85-4cf9-9036-5e02c4653e50/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 57473 IP: 185.115.136.0/22 IP: 194.60.250.0/24 IP: 2a06:76c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:f6:33:a6:83:da:0b:a6:da:a6:7b:48:1c:14:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=642c7a4e9f02b2f4e664d7d0d72a52e51261de54 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:b1:78:70:f2:55:a0:3b:14:5e:46:b4:67:d2: c0:23:b3:6d:7b:21:c4:be:e2:3f:d2:4f:7e:2d:27: 5f:02:f0:56:75:1b:d0:4a:f4:7c:ac:c3:e9:4b:c0: 56:88:4a:5e:b3:cd:c0:e6:fc:c8:22:72:e8:bc:d4: 0e:cc:40:63:34:da:2e:29:87:b4:5c:23:50:33:67: f8:49:53:43:1a:be:57:42:f5:13:73:16:89:1b:fc: 99:f2:ae:39:1f:1e:df:ad:b4:58:e5:1c:8e:b2:b8: e2:bb:eb:8a:87:fc:5b:28:f7:a3:ea:3f:1d:3d:6d: 62:01:aa:e6:31:42:51:7c:3f:2f:cd:c5:a4:3c:7b: a0:7a:37:13:c1:b8:00:2a:10:58:4d:34:53:2c:19: e0:c7:6d:c5:7a:67:ae:72:e2:b2:ec:6c:fc:36:fd: 0f:b2:e7:b9:eb:56:db:cd:81:ee:5c:35:4b:b2:09: 02:9a:76:93:0b:92:a7:8e:60:a8:3f:21:ed:4f:f4: 4a:42:7e:08:5e:6e:9a:9e:44:97:df:64:41:df:d5: 79:a6:b9:82:f4:56:d1:31:f9:95:a7:e0:f5:94:23: 4e:fc:bc:4b:9f:2f:06:59:a4:32:6f:ed:6c:f1:de: 58:16:8e:35:5a:db:ec:7c:a9:08:cf:6b:14:27:6e: 20:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:2C:7A:4E:9F:02:B2:F4:E6:64:D7:D0:D7:2A:52:E5:12:61:DE:54 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/991fd8-2d85-4cf9-9036-5e02c4653e50/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a7/991fd8-2d85-4cf9-9036-5e02c4653e50/1/ZCx6Tp8CsvTmZNfQ1ypS5RJh3lQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.115.136.0/22 194.60.250.0/24 IPv6: 2a06:76c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 57473 Signature Algorithm: sha256WithRSAEncryption b1:5d:6e:4d:12:52:8e:2c:2c:1d:02:12:77:21:b2:71:44:eb: ec:c4:49:03:5e:2a:eb:d9:bc:05:29:c3:21:0c:e9:f6:1e:c7: 09:ff:c9:31:13:59:c0:ea:91:b3:c1:3d:e1:3b:85:0e:e9:ae: 23:32:96:a6:2f:06:b1:60:9c:40:ef:12:63:e5:4c:69:c2:44: 0c:e4:9a:03:6c:9b:0d:5f:a7:aa:17:23:f9:ff:c1:5c:b2:4b: 6a:ee:16:14:10:01:82:f9:0a:90:80:34:20:e9:4e:83:21:e3: a9:c0:63:c9:55:7c:31:42:c6:47:b0:db:a6:5b:c5:89:25:2d: bf:2c:ba:16:18:4e:3d:5c:58:b2:2f:64:b7:d6:fb:5f:31:05: 4c:6e:50:20:83:4f:9c:d6:62:4c:4e:f4:05:88:44:81:ce:d6: d9:cd:35:d3:cb:88:17:cb:79:fb:c9:0e:6e:52:04:3b:05:10: 80:f4:8b:69:be:d5:d6:33:00:32:f8:05:4d:3e:7a:88:fd:0b: 91:db:68:1f:ba:cb:11:47:98:29:b9:df:f8:20:0a:4a:6d:c4: 89:28:d8:ae:91:86:e8:23:e3:37:10:93:13:56:2f:bf:db:c0: 8a:1a:ca:04:73:7f:29:8a:2c:91:71:db:d7:9f:d5:bc:ba:8c: 8b:46:bb:ad -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt3xvYzpoPaC6bapntIHBSQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDJjN2E0ZTlmMDJiMmY0ZTY2NGQ3ZDBkNzJhNTJlNTEyNjFkZTU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2bF4cPJVoDsUXka0Z9LAI7NteyHE vuI/0k9+LSdfAvBWdRvQSvR8rMPpS8BWiEpes83A5vzIInLovNQOzEBjNNouKYe0 XCNQM2f4SVNDGr5XQvUTcxaJG/yZ8q45Hx7frbRY5RyOsrjiu+uKh/xbKPej6j8d PW1iAarmMUJRfD8vzcWkPHugejcTwbgAKhBYTTRTLBngx23FemeucuKy7Gz8Nv0P sue561bbzYHuXDVLsgkCmnaTC5KnjmCoPyHtT/RKQn4IXm6ankSX32RB39V5prmC 9FbRMfmVp+D1lCNO/LxLny8GWaQyb+1s8d5YFo41WtvsfKkIz2sUJ24g/wIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFGQsek6fArL05mTX0NcqUuUSYd5UMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E3Lzk5MWZk OC0yZDg1LTRjZjktOTAzNi01ZTAyYzQ2NTNlNTAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTcvOTkxZmQ4 LTJkODUtNGNmOS05MDM2LTVlMDJjNDY1M2U1MC8xL1pDeDZUcDhDc3ZUbVpOZlEx eXBTNVJKaDNsUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQCuXOIAwQAwjz6MA0EAgACMAcDBQMqBnbAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwDggTANBgkqhkiG9w0BAQsFAAOCAQEAsV1u TRJSjiwsHQISdyGycUTr7MRJA14q69m8BSnDIQzp9h7HCf/JMRNZwOqRs8E94TuF DumuIzKWpi8GsWCcQO8SY+VMacJEDOSaA2ybDV+nqhcj+f/BXLJLau4WFBABgvkK kIA0IOlOgyHjqcBjyVV8MULGR7DbplvFiSUtvyy6FhhOPVxYsi9kt9b7XzEFTG5Q IINPnNZiTE70BYhEgc7W2c0108uIF8t5+8kOblIEOwUQgPSLab7V1jMAMvgFTT56 iP0LkdtoH7rLEUeYKbnf+CAKSm3EiSjYrpGG6CPjNxCTE1Yvv9vAihrKBHN/KYos kXHb15/VvLqMi0a7rQ== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:25 2026 by rpki-client