This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.cer File: ZwzXsrz7N0o5gMzg0ICSI4dU6gk.cer (raw, json) Hash identifier: qMbLNzCzEQk25BsZCPcrHFXprTMqaFi+dpMcixWeEhA= Subject key identifier: 67:0C:D7:B2:BC:FB:37:4A:39:80:CC:E0:D0:80:92:23:87:54:EA:09 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BFF053138251E720C785B96425F6648ED Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Tue 27 Jan 2026 10:34:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201993 IP: 91.241.76.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ff:05:31:38:25:1e:72:0c:78:5b:96:42:5f:66:48:ed Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 27 10:34:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=670cd7b2bcfb374a3980cce0d08092238754ea09 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:dc:a9:62:5d:20:30:02:fb:75:aa:a6:c5:70: d0:e3:fe:be:3a:88:fb:e0:9b:4d:2f:fe:e9:7b:af: 96:ab:db:d9:c2:b6:83:af:34:55:e3:14:c3:20:2b: 3c:f0:37:e0:e7:54:12:77:6d:52:b4:af:0a:81:7c: bd:4d:e2:d8:1a:14:ab:27:d7:97:87:7e:9e:ad:cf: 1c:1c:7c:95:c5:72:09:a8:b0:1d:93:59:a0:df:5e: 5b:a1:26:63:11:23:2c:b9:0f:84:e7:3b:3f:ad:71: 7a:e1:c2:26:2a:ae:00:b5:8b:40:fc:89:15:9b:6d: 24:03:aa:68:81:3c:29:30:79:be:b3:a2:f8:a8:e0: 84:21:25:de:33:ec:07:c8:e6:5a:3e:b3:15:88:03: f6:36:0d:00:87:b0:7e:60:ed:3c:a3:96:5b:cd:6f: 89:e4:5b:a5:e4:1b:2c:20:58:3e:0b:8c:75:76:25: 7f:10:22:93:11:67:2f:cd:99:02:a0:51:63:9e:f4: 5f:5e:34:f0:c0:5e:1f:18:22:d4:cd:96:eb:91:95: c9:05:84:1e:17:03:0b:56:b3:13:15:c7:50:7a:50: 37:84:ac:f4:a8:e4:1c:24:88:75:73:84:bf:e7:08: e3:3c:32:fc:0d:8e:c8:50:e5:3e:44:d2:b7:a0:4f: 8c:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:0C:D7:B2:BC:FB:37:4A:39:80:CC:E0:D0:80:92:23:87:54:EA:09 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ce/872097-b0a6-4d08-a6ff-1e88bb278f7b/1/ZwzXsrz7N0o5gMzg0ICSI4dU6gk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.241.76.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201993 Signature Algorithm: sha256WithRSAEncryption 7b:0d:5b:8e:ed:c5:4f:e9:0f:b1:95:03:d7:c2:88:ef:e7:0b: 50:7e:b6:57:fc:4e:27:0e:72:94:26:0f:69:53:9c:34:d8:94: 16:0a:eb:ef:2d:0b:22:e3:ee:4d:30:8d:03:91:02:5e:2b:33: e7:a0:c7:03:df:fa:e6:bf:8c:b3:96:ec:7d:54:eb:b2:6c:42: 6c:cc:3a:28:77:b5:51:30:43:3f:d0:cc:81:1e:e1:65:fd:04: d8:99:f4:f5:ae:70:39:e1:f5:f8:87:75:1c:70:a6:71:eb:b8: d1:b3:b4:b9:af:e9:d4:15:5a:55:09:a4:2e:87:c4:c6:c8:b9: 69:35:04:b7:07:fb:12:94:d0:af:1f:d8:1a:5f:32:68:ff:34: c3:32:16:92:75:ea:c6:79:c3:0c:5b:ae:0b:6a:73:79:95:40: 1e:d8:8b:78:38:f3:e0:a0:cd:c6:9f:c9:a5:af:e2:49:95:bf: cd:7b:f9:65:bd:8d:81:22:cb:96:d4:18:0b:b6:cb:52:e0:5b: 29:35:87:77:71:e4:64:d8:13:c7:87:ce:4a:cc:c3:14:83:78: 48:bd:b1:c7:da:7d:09:e7:db:6b:be:e6:86:e2:5f:20:ef:32: ac:98:5a:47:51:fb:ca:0a:c6:5c:88:eb:a1:90:85:a4:47:3b: 66:9b:8f:a0 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZv/BTE4JR5yDHhblkJfZkjtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTI3MTAzNDQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2NzBjZDdiMmJjZmIzNzRhMzk4MGNjZTBkMDgwOTIyMzg3NTRlYTA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0typYl0gMAL7daqmxXDQ4/6+Ooj7 4JtNL/7pe6+Wq9vZwraDrzRV4xTDICs88Dfg51QSd21StK8KgXy9TeLYGhSrJ9eX h36erc8cHHyVxXIJqLAdk1mg315boSZjESMsuQ+E5zs/rXF64cImKq4AtYtA/IkV m20kA6pogTwpMHm+s6L4qOCEISXeM+wHyOZaPrMViAP2Ng0Ah7B+YO08o5ZbzW+J 5Ful5BssIFg+C4x1diV/ECKTEWcvzZkCoFFjnvRfXjTwwF4fGCLUzZbrkZXJBYQe FwMLVrMTFcdQelA3hKz0qOQcJIh1c4S/5wjjPDL8DY7IUOU+RNK3oE+MCQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFGcM17K8+zdKOYDM4NCAkiOHVOoJMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NlLzg3MjA5 Ny1iMGE2LTRkMDgtYTZmZi0xZTg4YmIyNzhmN2IvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2UvODcyMDk3 LWIwYTYtNGQwOC1hNmZmLTFlODhiYjI3OGY3Yi8xL1p3elhzcno3TjBvNWdNemcw SUNTSTRkVTZnay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW/FMMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMVCTANBgkqhkiG9w0BAQsFAAOCAQEAew1bju3FT+kPsZUD18KI7+cLUH62V/xO Jw5ylCYPaVOcNNiUFgrr7y0LIuPuTTCNA5ECXisz56DHA9/65r+Ms5bsfVTrsmxC bMw6KHe1UTBDP9DMgR7hZf0E2Jn09a5wOeH1+Id1HHCmceu40bO0ua/p1BVaVQmk LofExsi5aTUEtwf7EpTQrx/YGl8yaP80wzIWknXqxnnDDFuuC2pzeZVAHtiLeDjz 4KDNxp/Jpa/iSZW/zXv5Zb2NgSLLltQYC7bLUuBbKTWHd3HkZNgTx4fOSszDFIN4 SL2xx9p9Cefba77mhuJfIO8yrJhaR1H7ygrGXIjroZCFpEc7ZpuPoA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:02:29 2026 by rpki-client