This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZpPysE64W2oqbiHAPPu3coekWv8.cer File: ZpPysE64W2oqbiHAPPu3coekWv8.cer (raw, json) Hash identifier: fMJvNJtlF1wz0jua3SSYnEj/2/sMUWzlHGvNSDEXOpo= Subject key identifier: 66:93:F2:B0:4E:B8:5B:6A:2A:6E:21:C0:3C:FB:B7:72:87:A4:5A:FF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E758E2AE3442D3815D84E4330C87C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/ZpPysE64W2oqbiHAPPu3coekWv8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 44227 IP: 156.67.15.0/24 IP: 2001:67c:978::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:75:8e:2a:e3:44:2d:38:15:d8:4e:43:30:c8:7c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6693f2b04eb85b6a2a6e21c03cfbb77287a45aff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:9e:38:41:71:94:87:02:50:5d:6b:b3:f7:af: 3f:f8:d5:eb:06:31:49:95:fa:bc:75:30:86:08:30: e6:60:2d:ff:04:a7:91:dd:2c:76:25:b2:57:2b:73: e5:7e:c9:70:23:ee:7a:8b:c8:ae:39:87:58:a2:8e: dd:89:e0:80:bb:2b:d3:cd:00:57:c0:46:43:4b:0b: 6d:57:bb:ae:85:d0:14:44:37:00:76:91:82:ce:9f: ef:ad:6f:51:f0:e3:a5:ed:92:4d:eb:6c:83:6e:7a: 26:b1:19:7a:5c:cc:5e:5b:aa:22:b6:56:94:d6:d4: 6e:dd:80:8c:d7:5a:88:9f:c4:c9:1e:34:86:66:fe: 11:01:df:c0:6a:39:b4:b7:ee:17:11:71:82:b8:6f: dc:ff:9e:b2:cd:bd:e4:eb:5c:02:82:2e:12:1b:96: 2a:4f:d3:12:fb:5b:59:c4:78:54:cd:9c:02:c4:b1: d6:33:e3:a3:1c:f8:1d:40:c8:d3:60:f4:b6:28:fc: 7d:29:5f:cf:d2:be:7b:61:be:92:f0:db:c3:b5:48: 86:f0:a0:cb:ea:e0:7c:67:bb:0a:13:ce:b3:8e:96: cd:ce:2a:f9:1e:e6:f9:fc:b0:61:ae:7d:a8:9b:40: 21:31:9a:9f:8e:14:7d:d5:14:20:7f:7c:e8:30:d1: db:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 66:93:F2:B0:4E:B8:5B:6A:2A:6E:21:C0:3C:FB:B7:72:87:A4:5A:FF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/17/307be8-5e11-4110-a1d3-3a9c0fbc8a0a/1/ZpPysE64W2oqbiHAPPu3coekWv8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 156.67.15.0/24 IPv6: 2001:67c:978::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 44227 Signature Algorithm: sha256WithRSAEncryption 57:24:52:e1:4d:07:87:fe:94:81:3f:d1:6c:e4:1f:3d:6f:90: 23:11:28:6d:49:c5:37:96:e3:50:02:55:7e:a9:13:28:a7:79: fd:d1:7e:03:3f:bc:08:35:e3:95:b3:fe:f5:e7:bb:18:d5:9d: a3:bd:5d:5e:e3:ba:94:bf:fb:fe:40:36:ba:91:a5:83:ed:81: fd:bb:0e:ac:df:d9:78:57:ca:1d:5f:d7:6d:98:93:25:0f:ad: 0b:75:ad:a0:93:12:ff:b7:c2:86:b0:ce:49:38:3d:ce:f9:e8: 52:5b:6d:c4:12:8e:6a:e7:f2:fa:c5:77:12:da:3a:2e:4a:3e: e5:91:c9:b7:4c:48:da:ee:c6:3a:97:15:93:1f:d0:d2:88:d3: 4a:2e:76:78:bb:69:01:44:4e:dd:0f:ef:9e:63:bc:58:4f:df: da:80:06:55:c0:ee:2c:fd:73:23:67:de:11:d1:fc:67:ef:3d: a3:29:ea:8d:ef:fa:45:89:ba:77:f8:b9:ea:86:19:fd:78:e5: e4:e8:07:11:9c:29:5d:c3:da:f1:75:44:1d:55:bd:ef:21:1d: f1:77:8c:a4:23:67:d3:bf:1f:33:8a:c5:c5:f2:cb:81:f4:12: 39:29:00:3f:54:57:08:49:2d:d0:95:6e:44:29:e6:ab:5c:8b: 41:b7:a4:70 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt5fnWOKuNELTgV2E5DMMh8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NjkzZjJiMDRlYjg1YjZhMmE2ZTIxYzAzY2ZiYjc3Mjg3YTQ1YWZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArZ44QXGUhwJQXWuz968/+NXrBjFJ lfq8dTCGCDDmYC3/BKeR3Sx2JbJXK3PlfslwI+56i8iuOYdYoo7dieCAuyvTzQBX wEZDSwttV7uuhdAURDcAdpGCzp/vrW9R8OOl7ZJN62yDbnomsRl6XMxeW6oitlaU 1tRu3YCM11qIn8TJHjSGZv4RAd/Aajm0t+4XEXGCuG/c/56yzb3k61wCgi4SG5Yq T9MS+1tZxHhUzZwCxLHWM+OjHPgdQMjTYPS2KPx9KV/P0r57Yb6S8NvDtUiG8KDL 6uB8Z7sKE86zjpbNzir5Hub5/LBhrn2om0AhMZqfjhR91RQgf3zoMNHbZwIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFGaT8rBOuFtqKm4hwDz7t3KHpFr/MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE3LzMwN2Jl OC01ZTExLTQxMTAtYTFkMy0zYTljMGZiYzhhMGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTcvMzA3YmU4 LTVlMTEtNDExMC1hMWQzLTNhOWMwZmJjOGEwYS8xL1pwUHlzRTY0VzJvcWJpSEFQ UHUzY29la1d2OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAnEMPMA8EAgACMAkDBwAgAQZ8CXgwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAKzDMA0GCSqGSIb3DQEBCwUAA4IBAQBXJFLhTQeH /pSBP9Fs5B89b5AjEShtScU3luNQAlV+qRMop3n90X4DP7wINeOVs/7157sY1Z2j vV1e47qUv/v+QDa6kaWD7YH9uw6s39l4V8odX9dtmJMlD60Lda2gkxL/t8KGsM5J OD3O+ehSW23EEo5q5/L6xXcS2jouSj7lkcm3TEja7sY6lxWTH9DSiNNKLnZ4u2kB RE7dD++eY7xYT9/agAZVwO4s/XMjZ94R0fxn7z2jKeqN7/pFibp3+Lnqhhn9eOXk 6AcRnCldw9rxdUQdVb3vIR3xd4ykI2fTvx8zisXF8suB9BI5KQA/VFcISS3QlW5E KearXItBt6Rw -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:18 2026 by rpki-client