This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Zckgon4-U6Nn-eqW23uve9Zag-o.cer File: Zckgon4-U6Nn-eqW23uve9Zag-o.cer (raw, json) Hash identifier: zXA3NdmJcp39MCZhBjkb1qTOq1+MXG35Es9+07cfTBI= Subject key identifier: 65:C9:20:A2:7E:3E:53:A3:67:F9:EA:96:DB:7B:AF:7B:D6:5A:83:EA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F1554EC54EF5608D5072E13647ABB5E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/05/b2dd00-a621-49a9-bbab-37f9bf7861b6/1/Zckgon4-U6Nn-eqW23uve9Zag-o.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/05/b2dd00-a621-49a9-bbab-37f9bf7861b6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.252.194.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:54:ec:54:ef:56:08:d5:07:2e:13:64:7a:bb:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=65c920a27e3e53a367f9ea96db7baf7bd65a83ea Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:86:a9:28:ad:e0:c8:e0:86:61:ad:f5:4b:7d: 0c:a2:35:40:2f:35:bd:69:91:cc:a2:ae:d1:2e:b0: 43:db:7d:fa:0f:97:22:b0:d3:a7:81:b1:6f:ef:c5: 7c:1a:f9:45:f9:84:f4:54:f0:3a:d4:be:d1:74:08: bc:29:e7:aa:1e:8d:8d:3f:e7:1a:d4:ef:88:b7:d3: 60:b4:06:fa:27:f8:ad:dc:20:41:2d:80:64:bb:ec: 11:8f:87:74:96:b3:25:4d:fe:bb:ba:4f:0e:a7:85: e2:8a:b3:88:66:d6:d2:57:93:ec:02:06:4a:c8:24: ac:8b:ea:5f:e2:31:10:c2:86:b9:99:09:41:c5:1b: cd:03:1e:62:cc:c9:a8:f4:24:83:13:17:de:48:fa: 0f:69:2f:08:ea:fe:90:ff:bd:ff:9f:79:72:b4:5e: 4d:4a:9b:d6:f3:91:84:9f:b6:b3:8b:10:03:17:17: f4:36:a6:bd:91:f0:10:a9:12:2a:c2:d1:fa:9f:2d: 0a:8d:5b:86:17:4b:5d:eb:bb:16:b0:3b:ea:9d:a7: df:d1:56:45:13:40:de:c7:d2:88:28:b7:4c:35:a5: 2b:e9:dd:80:03:b5:1e:c6:57:cf:9e:97:8b:fa:d7: 99:e6:ff:9f:5d:05:b7:16:fb:10:13:2f:5f:c0:f2: 99:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 65:C9:20:A2:7E:3E:53:A3:67:F9:EA:96:DB:7B:AF:7B:D6:5A:83:EA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b2dd00-a621-49a9-bbab-37f9bf7861b6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/05/b2dd00-a621-49a9-bbab-37f9bf7861b6/1/Zckgon4-U6Nn-eqW23uve9Zag-o.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.252.194.0/24 Signature Algorithm: sha256WithRSAEncryption a0:3c:3b:fe:3c:a9:78:5f:a8:40:75:86:02:d4:4c:ac:05:36: de:f7:1a:fb:7c:79:4c:55:6f:ff:d9:a8:09:a1:19:05:74:fb: 67:56:19:88:18:34:e4:77:a8:35:71:17:5e:1a:77:dc:07:ec: d4:c0:a7:04:94:82:93:cc:19:c0:48:e1:cd:75:f7:e3:ac:20: 07:ff:c3:8a:96:ba:ae:c1:af:b8:1a:d1:be:ae:dc:db:e9:ca: 8a:60:01:7b:be:6c:a8:23:8b:fa:ae:bb:0b:c4:46:22:dc:d3: b4:ed:3b:4c:3d:e1:a0:f2:9d:be:c4:2b:ad:44:26:17:da:f4: 87:df:ff:06:39:40:07:ca:73:b5:c1:31:94:06:f7:e0:6c:45: 81:19:d5:fe:93:9d:5a:4e:c0:86:88:fe:bc:93:89:11:97:7f: e1:82:6d:77:c9:0c:6c:07:05:60:c6:82:55:33:d5:d8:66:44: 2e:5a:b6:d6:43:04:9c:25:a5:11:77:e0:b7:87:ae:18:e4:8b: 80:6f:1d:f6:39:8f:6c:a2:27:5d:fd:7e:b3:48:3a:e4:11:ab: a7:f1:68:a9:c6:9c:68:cf:5b:f0:a4:1c:5d:dc:df:f4:d3:96: 9c:55:03:12:a2:b3:a7:06:66:5a:c6:8e:e8:39:4b:71:fa:6e: 04:5f:e6:89 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt/FVTsVO9WCNUHLhNkerteMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NWM5MjBhMjdlM2U1M2EzNjdmOWVhOTZkYjdiYWY3YmQ2NWE4M2VhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm4apKK3gyOCGYa31S30MojVALzW9 aZHMoq7RLrBD2336D5cisNOngbFv78V8GvlF+YT0VPA61L7RdAi8KeeqHo2NP+ca 1O+It9NgtAb6J/it3CBBLYBku+wRj4d0lrMlTf67uk8Op4XiirOIZtbSV5PsAgZK yCSsi+pf4jEQwoa5mQlBxRvNAx5izMmo9CSDExfeSPoPaS8I6v6Q/73/n3lytF5N SpvW85GEn7azixADFxf0Nqa9kfAQqRIqwtH6ny0KjVuGF0td67sWsDvqnaff0VZF E0Dex9KIKLdMNaUr6d2AA7UexlfPnpeL+teZ5v+fXQW3FvsQEy9fwPKZeQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFGXJIKJ+PlOjZ/nqltt7r3vWWoPqMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA1L2IyZGQw MC1hNjIxLTQ5YTktYmJhYi0zN2Y5YmY3ODYxYjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDUvYjJkZDAw LWE2MjEtNDlhOS1iYmFiLTM3ZjliZjc4NjFiNi8xL1pja2dvbjQtVTZObi1lcVcy M3V2ZTlaYWctby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAufzCMA0GCSqGSIb3DQEBCwUAA4IBAQCgPDv+ PKl4X6hAdYYC1EysBTbe9xr7fHlMVW//2agJoRkFdPtnVhmIGDTkd6g1cRdeGnfc B+zUwKcElIKTzBnASOHNdffjrCAH/8OKlrquwa+4GtG+rtzb6cqKYAF7vmyoI4v6 rrsLxEYi3NO07TtMPeGg8p2+xCutRCYX2vSH3/8GOUAHynO1wTGUBvfgbEWBGdX+ k51aTsCGiP68k4kRl3/hgm13yQxsBwVgxoJVM9XYZkQuWrbWQwScJaURd+C3h64Y 5IuAbx32OY9soidd/X6zSDrkEaun8Wipxpxoz1vwpBxd3N/005acVQMSorOnBmZa xo7oOUtx+m4EX+aJ -----END CERTIFICATE-----Generated at Tue Jan 27 01:33:41 2026 by rpki-client