This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZwR7mHvpdCeFuo6LM6wHe_nHoiI.cer File: ZwR7mHvpdCeFuo6LM6wHe_nHoiI.cer (raw, json) Hash identifier: bxhufBZaQMCXfrfQmgIWmVfJEJ/FgBorqMLAD9WXF9g= Subject key identifier: 67:04:7B:98:7B:E9:74:27:85:BA:8E:8B:33:AC:07:7B:F9:C7:A2:22 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ECDBF3D8AEA35C86F6F65C24842BAD Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/86d2ae-7c37-4344-a1e6-e8edf29245c0/1/ZwR7mHvpdCeFuo6LM6wHe_nHoiI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/86d2ae-7c37-4344-a1e6-e8edf29245c0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:44 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 9091 IP: 194.8.10.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:db:f3:d8:ae:a3:5c:86:f6:f6:5c:24:84:2b:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67047b987be9742785ba8e8b33ac077bf9c7a222 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a5:c3:8c:78:8b:b2:bf:7a:82:b2:e6:45:03:c3: 76:f1:f2:f3:43:04:ec:56:67:2c:d5:a8:23:d2:f8: 77:8b:30:e4:79:ca:a3:14:29:3d:32:a0:c9:97:6b: 10:92:15:21:bf:35:3d:88:0b:71:43:b6:cb:67:b4: ce:9a:48:39:b7:c8:d2:48:e7:8c:97:e4:6a:e3:63: 19:e4:96:56:59:d9:77:4b:db:cc:53:47:ed:fc:3d: 36:92:77:48:a9:50:42:1b:45:33:41:39:ef:35:b2: 5a:04:6e:4f:52:86:4d:cd:0c:56:bd:7c:37:0c:9b: 9d:80:66:0a:b3:c9:89:43:79:12:cc:31:eb:17:2a: f7:48:ba:4c:c3:e2:fc:0f:e4:9b:32:8d:e3:01:89: ee:a1:a1:bd:88:5a:b8:75:e2:df:6f:56:ee:35:6a: ce:d3:f4:62:2c:3d:9d:f5:78:c9:3b:32:92:04:e0: ac:a7:11:f5:f7:7b:54:21:19:33:74:e6:ad:9a:48: 07:84:32:3e:00:16:a5:94:45:41:3c:62:1a:9f:5a: 43:d4:d0:08:17:86:4b:ba:08:b6:0e:7d:b5:ad:84: 02:a4:fc:2b:97:93:39:05:1c:70:1b:f8:bf:cf:f9: ba:fd:24:73:ed:a2:3e:f4:7e:6b:76:c5:da:9d:bc: b9:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:04:7B:98:7B:E9:74:27:85:BA:8E:8B:33:AC:07:7B:F9:C7:A2:22 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/86d2ae-7c37-4344-a1e6-e8edf29245c0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/86d2ae-7c37-4344-a1e6-e8edf29245c0/1/ZwR7mHvpdCeFuo6LM6wHe_nHoiI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.8.10.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 9091 Signature Algorithm: sha256WithRSAEncryption 12:e8:fd:88:f3:a9:49:d3:fc:33:c0:f8:02:d3:ee:06:d2:47: 8f:e3:99:fb:05:e5:93:c0:67:33:89:65:f9:17:03:1e:2a:ed: 62:e8:b5:8b:73:4f:3f:dd:01:b2:90:f8:a4:8a:50:5a:2f:74: 5f:99:ec:29:00:23:00:55:a0:21:f0:dc:99:6c:16:1f:96:d5: d7:d8:e9:41:db:72:95:1d:d8:4c:84:37:d3:ca:8a:13:9b:cd: ff:30:4d:6f:f0:b4:f4:b4:0f:7b:20:b7:ad:10:f7:d3:aa:a9: 6b:ca:96:d9:50:77:f9:a0:b9:93:58:c7:8b:93:18:e0:08:d1: dc:cb:2c:c5:00:71:a3:b5:37:d9:63:3b:6c:c3:51:3b:af:dd: e6:e5:21:23:b3:76:a7:fc:d7:3a:ed:2d:4d:2c:1d:51:19:ae: 23:1f:a2:65:a6:cb:85:18:6f:d3:02:70:9c:66:f8:99:13:6e: 15:7d:d6:7b:43:66:2f:f7:49:f3:88:be:0a:80:7b:23:6f:7b: 37:1e:6f:4d:ef:de:d4:46:b0:c8:be:b5:3a:04:c6:ef:30:72: e0:41:6e:89:35:8f:33:4a:28:11:7d:97:b2:62:d0:69:d6:da: ab:b4:2c:62:0e:3a:67:73:be:bb:1e:23:5d:10:df:49:25:22: 7b:f3:4f:f4 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt57Nvz2K6jXIb29lwkhCutMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzA0N2I5ODdiZTk3NDI3ODViYThlOGIzM2FjMDc3YmY5YzdhMjIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApcOMeIuyv3qCsuZFA8N28fLzQwTs Vmcs1agj0vh3izDkecqjFCk9MqDJl2sQkhUhvzU9iAtxQ7bLZ7TOmkg5t8jSSOeM l+Rq42MZ5JZWWdl3S9vMU0ft/D02kndIqVBCG0UzQTnvNbJaBG5PUoZNzQxWvXw3 DJudgGYKs8mJQ3kSzDHrFyr3SLpMw+L8D+SbMo3jAYnuoaG9iFq4deLfb1buNWrO 0/RiLD2d9XjJOzKSBOCspxH193tUIRkzdOatmkgHhDI+ABallEVBPGIan1pD1NAI F4ZLugi2Dn21rYQCpPwrl5M5BRxwG/i/z/m6/SRz7aI+9H5rdsXanby5nwIDAQAB o4ICnzCCApswHQYDVR0OBBYEFGcEe5h76XQnhbqOizOsB3v5x6IiMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY1Lzg2ZDJh ZS03YzM3LTQzNDQtYTFlNi1lOGVkZjI5MjQ1YzAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvODZkMmFl LTdjMzctNDM0NC1hMWU2LWU4ZWRmMjkyNDVjMC8xL1p3UjdtSHZwZENlRnVvNkxN NndIZV9uSG9pSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBwggKMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AiODMA0GCSqGSIb3DQEBCwUAA4IBAQAS6P2I86lJ0/wzwPgC0+4G0keP45n7BeWT wGcziWX5FwMeKu1i6LWLc08/3QGykPikilBaL3RfmewpACMAVaAh8NyZbBYfltXX 2OlB23KVHdhMhDfTyooTm83/ME1v8LT0tA97ILetEPfTqqlrypbZUHf5oLmTWMeL kxjgCNHcyyzFAHGjtTfZYztsw1E7r93m5SEjs3an/Nc67S1NLB1RGa4jH6JlpsuF GG/TAnCcZviZE24VfdZ7Q2Yv90nziL4KgHsjb3s3Hm9N797URrDIvrU6BMbvMHLg QW6JNY8zSigRfZeyYtBp1tqrtCxiDjpnc767HiNdEN9JJSJ780/0 -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:35 2026 by rpki-client