This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer File: ZZw1ZjM4jpvYl9AAo_OLweVG70o.cer (raw, json) Hash identifier: /hy8NsQ2XLsOkoNNyPJOFr/NPe4KHwbnfOjCJiWMF50= Subject key identifier: 65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E1692ED3A52C89AAC3CE0D801AB7D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/ZZw1ZjM4jpvYl9AAo_OLweVG70o.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:17:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.38.160.0/19 IP: 194.35.128.0/19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 06:00:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:16:92:ed:3a:52:c8:9a:ac:3c:e0:d8:01:ab:7d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=659c356633388e9bd897d000a3f38bc1e546ef4a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:e5:a4:d8:82:7b:1e:c1:48:22:44:b7:2c:a9: 42:b3:f6:d3:26:b9:c8:f5:dc:34:20:02:cd:e9:10: 5a:a0:47:a6:b6:da:0a:c4:1d:08:db:31:e3:59:05: ec:5c:01:6b:51:16:3a:81:09:54:7b:fc:45:83:04: d7:c1:24:b3:c5:c1:80:34:61:cf:2c:99:67:10:b4: c2:e9:27:31:67:ef:74:56:dd:9f:a0:79:94:79:75: fc:4a:b5:ab:3e:e5:85:7c:5a:ea:ba:3d:3f:e8:aa: 3d:c0:e5:e0:4f:1d:6a:97:32:7b:ba:7b:62:16:fa: a1:7f:79:4a:ec:97:8c:ab:91:ee:87:1e:07:92:78: f1:c2:43:b5:54:9c:be:77:2f:89:89:b9:1a:3b:2f: 7c:c6:b8:aa:2a:f0:7f:11:5c:92:86:8e:f4:a9:db: 9a:16:86:42:bf:b0:b9:56:8d:a8:58:5f:db:ed:13: 5a:97:a0:68:f6:0e:0e:82:77:19:c3:c4:45:dc:f5: ee:4a:5a:65:96:98:77:f4:a3:47:4f:a8:7d:6b:2a: 28:60:7e:8e:66:97:ff:92:41:ae:47:b7:ab:60:bb: 42:24:ee:20:7c:84:89:68:68:1c:49:a6:06:17:50: 4c:e5:6b:27:6a:1b:b3:d0:f6:03:1f:49:ef:74:c0: 6d:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:9C:35:66:33:38:8E:9B:D8:97:D0:00:A3:F3:8B:C1:E5:46:EF:4A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/7c7851-585b-49f1-8be9-3c7e4f93e42b/1/ZZw1ZjM4jpvYl9AAo_OLweVG70o.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.38.160.0/19 194.35.128.0/19 Signature Algorithm: sha256WithRSAEncryption 2e:21:96:b9:2e:3f:0b:dc:20:b1:bd:72:d0:ec:45:41:be:38: 42:32:e5:ac:56:27:d7:ce:27:b3:4f:30:ef:03:37:22:5b:d1: 7a:ff:86:e2:69:86:6b:e4:46:a8:83:5e:a4:b0:46:07:4c:60: 92:61:da:03:04:11:3d:3c:31:bb:74:4a:55:98:68:a1:58:f6: b0:94:b9:44:82:f0:56:57:55:d1:41:c0:60:cc:04:0a:73:b4: b8:f6:64:f1:34:d3:4b:3d:49:96:32:36:21:48:83:cb:b0:af: c0:07:e4:85:a5:20:2b:e4:95:bf:d5:cb:d5:e5:19:5f:0a:e8: 25:53:2a:0b:a5:c7:20:6a:dc:f2:52:f9:1d:c1:9f:43:7d:39: 4e:f1:f6:6e:68:df:cf:2f:33:9c:5f:db:58:9d:31:0d:80:31: e6:66:0b:75:57:89:f2:1b:60:f6:9f:8c:a3:b3:8b:93:1a:77: 3b:e3:ea:22:fe:5a:12:46:40:77:72:60:ed:42:a5:88:df:d7: f7:66:39:e6:02:b6:d4:47:d4:34:0e:6b:9f:1e:82:8e:4e:79: 32:17:32:fe:9c:6c:7b:e7:d0:72:4b:22:65:fa:44:b9:4e:69: d6:c6:1f:bb:4a:b2:ca:5b:83:37:bf:67:67:6a:dd:f2:3a:20: 37:96:8f:ea -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgISAZt5fhaS7TpSyJqsPODYAat9MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NTljMzU2NjMzMzg4ZTliZDg5N2QwMDBhM2YzOGJjMWU1NDZlZjRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr+Wk2IJ7HsFIIkS3LKlCs/bTJrnI 9dw0IALN6RBaoEemttoKxB0I2zHjWQXsXAFrURY6gQlUe/xFgwTXwSSzxcGANGHP LJlnELTC6ScxZ+90Vt2foHmUeXX8SrWrPuWFfFrquj0/6Ko9wOXgTx1qlzJ7unti Fvqhf3lK7JeMq5Huhx4HknjxwkO1VJy+dy+JibkaOy98xriqKvB/EVySho70qdua FoZCv7C5Vo2oWF/b7RNal6Bo9g4OgncZw8RF3PXuSlpllph39KNHT6h9ayooYH6O Zpf/kkGuR7erYLtCJO4gfISJaGgcSaYGF1BM5Wsnahuz0PYDH0nvdMBtzQIDAQAB o4ICijCCAoYwHQYDVR0OBBYEFGWcNWYzOI6b2JfQAKPzi8HlRu9KMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA4LzdjNzg1 MS01ODViLTQ5ZjEtOGJlOS0zYzdlNGY5M2U0MmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgvN2M3ODUx LTU4NWItNDlmMS04YmU5LTNjN2U0ZjkzZTQyYi8xL1padzFaak00anB2WWw5QUFv X09Md2VWRzcwby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQFwSagAwQFwiOAMA0GCSqGSIb3DQEBCwUAA4IB AQAuIZa5Lj8L3CCxvXLQ7EVBvjhCMuWsVifXziezTzDvAzciW9F6/4biaYZr5Eao g16ksEYHTGCSYdoDBBE9PDG7dEpVmGihWPawlLlEgvBWV1XRQcBgzAQKc7S49mTx NNNLPUmWMjYhSIPLsK/AB+SFpSAr5JW/1cvV5RlfCuglUyoLpccgatzyUvkdwZ9D fTlO8fZuaN/PLzOcX9tYnTENgDHmZgt1V4nyG2D2n4yjs4uTGnc74+oi/loSRkB3 cmDtQqWI39f3ZjnmArbUR9Q0DmufHoKOTnkyFzL+nGx759BySyJl+kS5TmnWxh+7 SrLKW4M3v2dnat3yOiA3lo/q -----END CERTIFICATE-----Generated at Sun Jan 18 12:07:49 2026 by rpki-client