This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer File: ZLWa5SGVLaVeA_d5uIUDHAyAnPk.cer (raw, json) Hash identifier: iOPWdFcZsUg/cnDcb1aA9VjdodWRXUkqPPuXj1MVni8= Subject key identifier: 64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797EAAF30CCCBF2A3D1AA645DDFCE4BA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:23 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210897 AS: 215603 IP: 103.56.172.0/24 IP: 193.23.125.0/24 IP: 194.8.135.0/24 IP: 209.177.176.0/23 IP: 2a11:2b80::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:aa:f3:0c:cc:bf:2a:3d:1a:a6:45:dd:fc:e4:ba Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=64b59ae521952da55e03f779b885031c0c809cf9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:10:78:46:60:28:30:dd:ca:93:d5:24:e5:d2: cc:de:67:19:3b:ef:3b:9b:80:6e:84:8a:a3:6f:af: 4c:fb:fc:d0:64:4a:bb:4c:3c:c3:50:76:16:26:d2: fa:e6:84:10:97:ae:67:1f:f6:73:67:87:6a:03:41: a1:85:b7:36:be:45:17:b8:77:74:e5:6f:eb:56:d8: e2:dd:2f:1a:2c:7e:14:7f:3f:9a:5f:2e:ef:33:e7: 0d:94:ee:33:eb:ba:1b:e4:dc:c2:b7:ec:6b:58:e8: 8d:c8:3d:4d:56:77:c6:79:ca:00:73:8d:d2:31:67: 96:f4:c6:c6:65:4f:fe:9d:12:74:af:20:16:96:c5: 32:4e:01:b5:e0:ad:86:21:57:92:2c:e1:f8:08:f9: 86:e7:cf:7b:0b:94:04:64:89:f9:55:fe:06:7e:56: a3:98:79:b4:c2:9e:a5:7f:69:77:be:f7:80:5f:f9: 38:4f:4e:ac:06:49:0a:16:6e:ef:15:4b:30:ad:33: 07:99:37:45:a9:18:07:8e:d8:a2:e6:53:cd:88:28: 4a:86:d4:d3:fe:74:3c:5a:5b:9b:14:7d:b6:eb:64: 8a:95:6e:49:fb:f2:c7:f2:31:80:c5:f2:98:c9:39: 34:5f:6a:73:43:fd:77:6a:7b:49:27:ff:0c:fb:5c: 7e:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 64:B5:9A:E5:21:95:2D:A5:5E:03:F7:79:B8:85:03:1C:0C:80:9C:F9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/6a6b22-fe67-4202-ac94-51ad00e54332/1/ZLWa5SGVLaVeA_d5uIUDHAyAnPk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.56.172.0/24 193.23.125.0/24 194.8.135.0/24 209.177.176.0/23 IPv6: 2a11:2b80::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210897 215603 Signature Algorithm: sha256WithRSAEncryption 3d:d7:6e:84:5e:a8:6b:f5:95:e2:5a:a7:77:0f:ff:91:da:30: 1e:e6:31:f8:af:82:62:02:d7:28:75:e0:71:fd:be:ca:38:6a: c6:44:d0:e0:13:50:ce:6e:5f:38:c9:ac:6d:be:02:06:04:d7: f3:04:19:cb:9d:4e:ed:b3:f8:72:e6:2b:4e:9e:be:4c:ec:89: b3:93:a4:21:70:1a:61:a5:73:8e:2f:ac:c6:87:15:09:c3:d9: 37:8e:af:f7:ad:a0:a8:97:22:15:5f:6c:48:20:a7:e5:d7:14: 82:8f:20:b3:93:06:a6:3a:d5:2f:c8:dc:ec:03:6b:4f:73:b2: e0:07:31:1f:21:db:dc:1f:ab:4b:43:a9:b4:33:5b:45:00:da: 00:d2:87:b1:0b:16:87:af:9a:49:19:1f:8c:e6:41:24:65:54: 5f:6c:c5:4a:76:26:28:76:b2:37:7f:d5:67:50:92:4e:46:b0: 43:60:93:78:e1:34:a3:ca:f9:ca:58:52:48:6b:99:cd:f1:76: 28:c9:22:a3:75:0c:c3:db:9b:37:1f:b3:7e:c4:ed:e4:62:7a: db:8e:f1:c8:f0:80:84:92:42:84:46:05:67:c2:1f:5d:da:11: ff:79:bb:35:13:5b:09:37:73:f4:48:8a:f3:2d:68:5e:08:b2: 65:05:b9:b7 -----BEGIN CERTIFICATE----- MIIFujCCBKKgAwIBAgISAZt5fqrzDMy/Kj0apkXd/OS6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NGI1OWFlNTIxOTUyZGE1NWUwM2Y3NzliODg1MDMxYzBjODA5Y2Y5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhB4RmAoMN3Kk9Uk5dLM3mcZO+87 m4BuhIqjb69M+/zQZEq7TDzDUHYWJtL65oQQl65nH/ZzZ4dqA0Ghhbc2vkUXuHd0 5W/rVtji3S8aLH4Ufz+aXy7vM+cNlO4z67ob5NzCt+xrWOiNyD1NVnfGecoAc43S MWeW9MbGZU/+nRJ0ryAWlsUyTgG14K2GIVeSLOH4CPmG5897C5QEZIn5Vf4Gflaj mHm0wp6lf2l3vveAX/k4T06sBkkKFm7vFUswrTMHmTdFqRgHjtii5lPNiChKhtTT /nQ8WlubFH2262SKlW5J+/LH8jGAxfKYyTk0X2pzQ/13antJJ/8M+1x+OQIDAQAB o4ICxjCCAsIwHQYDVR0OBBYEFGS1muUhlS2lXgP3ebiFAxwMgJz5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAyLzZhNmIy Mi1mZTY3LTQyMDItYWM5NC01MWFkMDBlNTQzMzIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDIvNmE2YjIy LWZlNjctNDIwMi1hYzk0LTUxYWQwMGU1NDMzMi8xL1pMV2E1U0dWTGFWZUFfZDV1 SVVESEF5QW5Qay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQAZzisAwQAwRd9AwQAwgiHAwQB0bGwMA0EAgAC MAcDBQAqESuAMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwM30QIDA0ozMA0GCSqG SIb3DQEBCwUAA4IBAQA9126EXqhr9ZXiWqd3D/+R2jAe5jH4r4JiAtcodeBx/b7K OGrGRNDgE1DObl84yaxtvgIGBNfzBBnLnU7ts/hy5itOnr5M7Imzk6QhcBphpXOO L6zGhxUJw9k3jq/3raColyIVX2xIIKfl1xSCjyCzkwamOtUvyNzsA2tPc7LgBzEf IdvcH6tLQ6m0M1tFANoA0oexCxaHr5pJGR+M5kEkZVRfbMVKdiYodrI3f9VnUJJO RrBDYJN44TSjyvnKWFJIa5nN8XYoySKjdQzD25s3H7N+xO3kYnrbjvHI8ICEkkKE RgVnwh9d2hH/ebs1E1sJN3P0SIrzLWheCLJlBbm3 -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:20 2026 by rpki-client