This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZZbw3BZbfNIJAispZINMRedNISw.cer File: ZZbw3BZbfNIJAispZINMRedNISw.cer (raw, json) Hash identifier: /FIuGzoH0cMI6fIg4AkqfHdf+5MjjR//BXGJCzUX16Q= Subject key identifier: 65:96:F0:DC:16:5B:7C:D2:09:02:2B:29:64:83:4C:45:E7:4D:21:2C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797EF2E5A9C6A80FCCF0B9EA37F20725 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e4/9904b3-8ca0-4946-8766-2d13cf9b45c0/1/ZZbw3BZbfNIJAispZINMRedNISw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e4/9904b3-8ca0-4946-8766-2d13cf9b45c0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:41 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198569 IP: 37.152.160.0/20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:f2:e5:a9:c6:a8:0f:cc:f0:b9:ea:37:f2:07:25 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6596f0dc165b7cd209022b2964834c45e74d212c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:7d:cf:ac:6c:75:c5:52:f4:08:16:26:ee:23: a7:cf:da:ab:6f:18:94:76:c5:96:e5:5a:5c:ba:1b: d7:42:d8:c6:1f:de:f2:f9:ad:b5:19:90:45:69:42: c4:56:0d:5e:5b:14:f0:50:98:df:ee:b2:5b:ae:59: ca:80:a2:b3:b7:85:58:44:d2:3b:9c:1e:46:d3:ec: 0a:2c:20:a9:01:56:6e:9f:18:57:e0:00:8f:f6:24: fe:b8:25:b0:78:71:6d:ac:d0:81:2e:a4:1e:87:02: 81:cf:ee:ae:9f:c5:d3:55:b2:e9:b5:dc:f8:77:37: 4a:a8:f5:89:cf:7b:1a:ce:01:b1:55:5b:12:7c:42: 1b:37:f7:f7:84:51:fb:69:3a:21:63:de:38:8b:86: 2e:e2:84:8a:f1:d9:2d:ff:d1:36:c2:23:81:56:81: 6b:99:20:0b:f9:8d:0c:9d:1b:64:f0:68:7d:7f:97: 08:3a:5b:03:2f:de:09:01:14:b2:8e:79:29:7c:65: c4:e0:fb:f3:0b:04:70:a5:b0:06:79:86:92:2a:60: c9:08:2c:c4:b5:6c:94:f7:65:55:a9:9a:d3:1d:5d: 31:f6:d0:d3:22:f7:bd:36:57:c0:7f:12:a7:35:8d: e3:a3:55:f5:cd:7d:54:4d:94:1b:0b:f3:d9:53:7d: e2:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:96:F0:DC:16:5B:7C:D2:09:02:2B:29:64:83:4C:45:E7:4D:21:2C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9904b3-8ca0-4946-8766-2d13cf9b45c0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/9904b3-8ca0-4946-8766-2d13cf9b45c0/1/ZZbw3BZbfNIJAispZINMRedNISw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.152.160.0/20 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198569 Signature Algorithm: sha256WithRSAEncryption 05:7b:53:ea:42:98:a5:b5:be:47:8e:63:9a:29:a3:ad:82:4e: a6:b4:56:67:8c:1d:11:9e:8b:cf:f4:44:62:e6:f2:7d:0e:16: c6:9b:db:39:e0:ff:bf:31:3e:bc:98:8b:a2:75:2e:de:b3:46: 90:10:23:2b:5c:34:9b:4a:4d:7b:fa:df:6f:86:96:b4:8e:19: 27:98:d5:a9:58:cb:65:1c:46:14:a8:fa:f5:3b:72:2d:ef:52: e2:05:3d:ab:f2:88:35:3a:53:3f:30:ab:7a:d5:01:41:f1:f5: bb:5a:19:7c:15:23:45:67:51:d2:80:10:25:83:92:2d:40:53: 4c:83:ac:0a:ff:c3:d5:97:e0:bb:7d:6b:2e:9c:ac:57:1d:e9: 5c:97:79:21:54:f9:ec:7a:43:e9:85:ea:04:0d:89:d8:35:57: e4:a6:3b:e4:ac:1c:e6:bc:3c:db:d7:09:63:1c:86:c6:32:93: b9:6e:93:4e:0a:14:6d:f2:af:a7:23:24:13:e5:14:32:d8:da: ed:50:c3:4d:72:c3:54:d7:43:13:8c:6a:ac:4d:32:e2:65:9a: a1:8f:19:88:28:42:4b:fe:1b:54:1e:ea:72:67:d7:af:20:61: 4b:e8:a1:0d:99:40:09:49:a6:19:8c:6d:fc:e1:66:40:61:9d: 5c:f4:1d:ae -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt5fvLlqcaoD8zwueo38gclMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTk2ZjBkYzE2NWI3Y2QyMDkwMjJiMjk2NDgzNGM0NWU3NGQyMTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApn3PrGx1xVL0CBYm7iOnz9qrbxiU dsWW5VpcuhvXQtjGH97y+a21GZBFaULEVg1eWxTwUJjf7rJbrlnKgKKzt4VYRNI7 nB5G0+wKLCCpAVZunxhX4ACP9iT+uCWweHFtrNCBLqQehwKBz+6un8XTVbLptdz4 dzdKqPWJz3sazgGxVVsSfEIbN/f3hFH7aTohY944i4Yu4oSK8dkt/9E2wiOBVoFr mSAL+Y0MnRtk8Gh9f5cIOlsDL94JARSyjnkpfGXE4PvzCwRwpbAGeYaSKmDJCCzE tWyU92VVqZrTHV0x9tDTIve9NlfAfxKnNY3jo1X1zX1UTZQbC/PZU33i+QIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFGWW8NwWW3zSCQIrKWSDTEXnTSEsMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U0Lzk5MDRi My04Y2EwLTQ5NDYtODc2Ni0yZDEzY2Y5YjQ1YzAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTQvOTkwNGIz LThjYTAtNDk0Ni04NzY2LTJkMTNjZjliNDVjMC8xL1paYnczQlpiZk5JSkFpc3Ba SU5NUmVkTklTdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQEJZigMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMHqTANBgkqhkiG9w0BAQsFAAOCAQEABXtT6kKYpbW+R45jmimjrYJOprRWZ4wd EZ6Lz/REYubyfQ4WxpvbOeD/vzE+vJiLonUu3rNGkBAjK1w0m0pNe/rfb4aWtI4Z J5jVqVjLZRxGFKj69TtyLe9S4gU9q/KINTpTPzCretUBQfH1u1oZfBUjRWdR0oAQ JYOSLUBTTIOsCv/D1Zfgu31rLpysVx3pXJd5IVT57HpD6YXqBA2J2DVX5KY75Kwc 5rw829cJYxyGxjKTuW6TTgoUbfKvpyMkE+UUMtja7VDDTXLDVNdDE4xqrE0y4mWa oY8ZiChCS/4bVB7qcmfXryBhS+ihDZlACUmmGYxt/OFmQGGdXPQdrg== -----END CERTIFICATE-----Generated at Mon Feb 9 20:50:05 2026 by rpki-client