This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZGHiGIOECxNlwzhXExO30yqtnFc.cer File: ZGHiGIOECxNlwzhXExO30yqtnFc.cer (raw, json) Hash identifier: eLShyb0VMQuqSZ2UByWxP+Sy8LT3z8YykmrFGXRXR5Q= Subject key identifier: 64:61:E2:18:83:84:0B:13:65:C3:38:57:13:13:B7:D3:2A:AD:9C:57 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E384F264483E54743969A885FCF89DE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6a/d201dd-47dd-4c4e-a42c-1c1b974ffafc/1/ZGHiGIOECxNlwzhXExO30yqtnFc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6a/d201dd-47dd-4c4e-a42c-1c1b974ffafc/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:38 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 199014 IP: 91.240.179.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:4f:26:44:83:e5:47:43:96:9a:88:5f:cf:89:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6461e21883840b1365c338571313b7d32aad9c57 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:d6:25:b2:0e:cb:e7:a4:71:1b:9d:17:8a:04: f8:0b:f8:9b:b5:23:82:8b:cc:b2:15:97:17:c7:4c: 99:3a:a8:c7:f5:cc:7a:c7:e7:a3:e2:a1:78:a1:e5: e7:f4:20:5c:dc:03:03:cf:a4:0e:14:d6:1f:bc:3f: 4f:64:e1:8d:07:44:fd:8e:f7:68:e6:a2:b4:24:d6: 5a:62:ec:ed:8f:fb:e9:97:c9:64:7f:f3:cb:df:89: 24:1a:8d:88:f6:f9:d6:71:5b:59:89:82:5e:cc:72: 7b:91:c2:56:7b:dc:6b:9d:eb:75:bc:53:2f:e7:b7: 42:31:c3:f9:dd:63:89:82:42:e1:30:9d:f0:77:5b: a2:6d:be:1e:cf:dc:9b:69:44:70:62:ee:de:1a:e5: 77:80:f5:b7:ca:74:1d:b6:3c:63:c6:f2:88:ae:75: bb:3c:58:dd:22:c9:cb:47:1d:71:98:f8:95:b7:06: 2e:65:4f:e7:31:0d:69:71:d5:43:96:f0:22:8f:e2: a6:29:a7:24:b3:7a:63:ea:5f:f5:82:dd:7c:39:c9: 64:53:04:cf:7f:b5:ee:91:ed:46:c1:fc:33:d4:c1: d6:f8:b7:70:6f:d5:3b:11:08:bc:39:03:f6:2c:60: 45:63:1f:7a:e6:17:d2:aa:de:ff:70:d1:5b:a7:b1: 90:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:61:E2:18:83:84:0B:13:65:C3:38:57:13:13:B7:D3:2A:AD:9C:57 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d201dd-47dd-4c4e-a42c-1c1b974ffafc/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/d201dd-47dd-4c4e-a42c-1c1b974ffafc/1/ZGHiGIOECxNlwzhXExO30yqtnFc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.240.179.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 199014 Signature Algorithm: sha256WithRSAEncryption 69:0a:fd:da:60:37:62:04:52:37:be:b3:68:4f:7d:42:09:ff: 8e:2b:33:f6:bb:61:04:71:46:bb:83:5f:8c:a4:63:ae:04:62: 87:be:66:6d:35:8f:82:f1:46:2c:1e:0c:23:88:06:5e:9f:e4: 2f:07:4d:cc:21:a8:1d:bd:23:19:23:1b:5f:65:f1:ab:7a:26: 53:12:2c:df:48:e1:49:6e:45:d1:e1:ac:ea:36:7b:9f:61:fe: 49:58:78:4f:c5:76:98:88:4a:11:07:a3:51:76:0c:51:1d:fe: ea:14:21:5c:97:f8:f0:94:9b:eb:78:11:28:55:e8:48:e4:5b: 1f:73:f0:09:82:f5:47:ae:14:16:11:2e:79:b1:34:f3:78:13: 26:91:89:c0:13:85:f0:9a:11:18:9a:be:3f:b6:2e:54:04:02: d5:0d:8c:f8:ca:22:69:84:93:73:2d:fa:45:79:0a:52:2b:ab: 1f:86:8b:93:e7:9a:df:53:d5:72:38:8b:63:27:a3:ce:3e:bd: 3e:63:3f:55:32:9e:91:b5:ac:a3:fa:29:0b:4b:a3:e5:a5:94: 84:66:c4:a3:ca:9f:a7:31:a2:bb:51:43:31:ac:9c:c2:ff:0b: b9:bd:b3:d5:e2:1a:2f:9f:7f:41:de:8c:17:6a:f6:af:f4:8f: 7c:5e:71:4c -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt+OE8mRIPlR0OWmohfz4neMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NDYxZTIxODgzODQwYjEzNjVjMzM4NTcxMzEzYjdkMzJhYWQ5YzU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAj9Ylsg7L56RxG50XigT4C/ibtSOC i8yyFZcXx0yZOqjH9cx6x+ej4qF4oeXn9CBc3AMDz6QOFNYfvD9PZOGNB0T9jvdo 5qK0JNZaYuztj/vpl8lkf/PL34kkGo2I9vnWcVtZiYJezHJ7kcJWe9xrnet1vFMv 57dCMcP53WOJgkLhMJ3wd1uibb4ez9ybaURwYu7eGuV3gPW3ynQdtjxjxvKIrnW7 PFjdIsnLRx1xmPiVtwYuZU/nMQ1pcdVDlvAij+KmKacks3pj6l/1gt18OclkUwTP f7Xuke1Gwfwz1MHW+Ldwb9U7EQi8OQP2LGBFYx965hfSqt7/cNFbp7GQFwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFGRh4hiDhAsTZcM4VxMTt9MqrZxXMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZhL2QyMDFk ZC00N2RkLTRjNGUtYTQyYy0xYzFiOTc0ZmZhZmMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEvZDIwMWRk LTQ3ZGQtNGM0ZS1hNDJjLTFjMWI5NzRmZmFmYy8xL1pHSGlHSU9FQ3hObHd6aFhF eE8zMHlxdG5GYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW/CzMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMJZjANBgkqhkiG9w0BAQsFAAOCAQEAaQr92mA3YgRSN76zaE99Qgn/jisz9rth BHFGu4NfjKRjrgRih75mbTWPgvFGLB4MI4gGXp/kLwdNzCGoHb0jGSMbX2Xxq3om UxIs30jhSW5F0eGs6jZ7n2H+SVh4T8V2mIhKEQejUXYMUR3+6hQhXJf48JSb63gR KFXoSORbH3PwCYL1R64UFhEuebE083gTJpGJwBOF8JoRGJq+P7YuVAQC1Q2M+Moi aYSTcy36RXkKUiurH4aLk+ea31PVcjiLYyejzj69PmM/VTKekbWso/opC0uj5aWU hGbEo8qfpzGiu1FDMaycwv8Lub2z1eIaL59/Qd6MF2r2r/SPfF5xTA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:10 2026 by rpki-client