This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aZISXj1TzEgTNhBUg_z_cB_aG7M.cer File: aZISXj1TzEgTNhBUg_z_cB_aG7M.cer (raw, json) Hash identifier: jw7jVdaDL0b+fAPuPAdbaQZ33nEAdSvhlCXd3s84pXg= Subject key identifier: 69:92:12:5E:3D:53:CC:48:13:36:10:54:83:FC:FF:70:1F:DA:1B:B3 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5AB298C0316786CD950A2050E81209 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f3/4ac957-4183-49f3-bfbe-837c5e12bd04/1/aZISXj1TzEgTNhBUg_z_cB_aG7M.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f3/4ac957-4183-49f3-bfbe-837c5e12bd04/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:17:34 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 209761 IP: 213.226.88.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:b2:98:c0:31:67:86:cd:95:0a:20:50:e8:12:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6992125e3d53cc481336105483fcff701fda1bb3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:2e:2e:df:ef:4f:da:90:31:05:90:9b:1e:68: a0:15:9a:72:31:97:f5:b4:7f:ef:82:4b:bf:c3:c6: 40:6a:14:88:12:3a:91:2a:c1:4b:e8:e6:67:2f:42: 58:49:a6:2e:00:36:e7:08:aa:90:6b:1a:53:2c:7c: 5d:c3:3e:3d:71:d3:93:05:44:61:a0:c6:95:26:bd: 03:c6:74:1b:33:48:43:59:c2:eb:f8:74:11:f6:1c: 5d:bd:cb:08:e7:c7:ef:09:e1:da:78:e3:fd:ff:f6: 1b:ba:e0:1f:72:28:0e:57:3a:73:6a:b1:58:bb:4e: f0:3e:1d:54:1b:d7:6a:3d:a9:78:7b:ce:cd:73:2e: b1:91:c0:5a:46:ea:d8:85:d4:fe:19:04:b3:30:e8: 13:ea:31:55:76:65:1d:83:ae:09:e7:51:10:8f:27: 24:26:42:1e:5c:23:13:ba:67:75:b3:8b:33:bc:72: f9:08:ef:00:72:e7:11:c2:ff:54:35:3f:ac:bc:ee: b1:8f:28:cb:cc:d8:bd:2a:98:93:f2:3a:20:d2:33: ae:28:8c:6e:99:35:bc:7f:33:b6:5d:f5:1d:29:22: 42:25:06:fc:10:7b:87:be:87:4e:01:64:24:d3:97: e4:ad:b6:68:b2:d2:c2:26:49:7f:ba:8c:c1:f8:0a: 39:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 69:92:12:5E:3D:53:CC:48:13:36:10:54:83:FC:FF:70:1F:DA:1B:B3 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4ac957-4183-49f3-bfbe-837c5e12bd04/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/4ac957-4183-49f3-bfbe-837c5e12bd04/1/aZISXj1TzEgTNhBUg_z_cB_aG7M.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.226.88.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 209761 Signature Algorithm: sha256WithRSAEncryption 37:a2:32:53:f3:10:1b:28:b8:f5:ac:04:db:06:06:8b:68:32: 2e:f5:67:b5:31:13:c9:86:82:cb:53:a6:f1:8f:46:6b:1c:4d: 89:37:45:05:32:45:d2:d7:dd:07:5f:8c:7f:78:be:5c:6c:9a: 6a:6b:c1:b3:bf:da:da:02:d2:02:57:f0:13:5c:1a:e8:31:ac: 2b:a2:b4:5e:70:be:07:f9:6b:55:d1:a1:16:80:3a:8c:2e:87: c6:f6:5e:f7:bb:a1:b0:8a:55:49:c5:40:a3:ec:47:cb:dd:c8: 44:87:8e:a9:4b:07:95:75:40:21:5f:fd:bc:ac:66:ba:09:fc: a7:19:d2:37:ab:92:d7:8b:1b:03:5d:45:51:23:0f:10:52:80: d1:f6:e8:54:0e:91:a4:25:0b:11:03:50:59:4b:c0:f0:98:4b: cf:15:82:1c:53:d1:ce:39:09:f5:0b:6f:a8:bb:ac:f6:3c:c4: d1:06:e3:d2:de:c8:9f:be:68:49:ac:9d:77:67:49:0a:30:10: f3:ea:1b:68:b2:93:0d:ba:50:32:ab:9b:fa:85:67:68:81:a3: fe:dd:08:ca:bb:6d:43:85:04:51:f0:e7:43:bc:b6:c0:04:76: 26:2f:68:84:df:62:66:6c:6e:80:46:9d:01:9b:0b:1d:02:85: d1:bb:3f:ab -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9WrKYwDFnhs2VCiBQ6BIJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2OTkyMTI1ZTNkNTNjYzQ4MTMzNjEwNTQ4M2ZjZmY3MDFmZGExYmIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvC4u3+9P2pAxBZCbHmigFZpyMZf1 tH/vgku/w8ZAahSIEjqRKsFL6OZnL0JYSaYuADbnCKqQaxpTLHxdwz49cdOTBURh oMaVJr0DxnQbM0hDWcLr+HQR9hxdvcsI58fvCeHaeOP9//YbuuAfcigOVzpzarFY u07wPh1UG9dqPal4e87Ncy6xkcBaRurYhdT+GQSzMOgT6jFVdmUdg64J51EQjyck JkIeXCMTumd1s4szvHL5CO8AcucRwv9UNT+svO6xjyjLzNi9KpiT8jog0jOuKIxu mTW8fzO2XfUdKSJCJQb8EHuHvodOAWQk05fkrbZostLCJkl/uozB+Ao5gwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFGmSEl49U8xIEzYQVIP8/3Af2huzMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YzLzRhYzk1 Ny00MTgzLTQ5ZjMtYmZiZS04MzdjNWUxMmJkMDQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMvNGFjOTU3 LTQxODMtNDlmMy1iZmJlLTgzN2M1ZTEyYmQwNC8xL2FaSVNYajFUekVnVE5oQlVn X3pfY0JfYUc3TS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQC1eJYMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMzYTANBgkqhkiG9w0BAQsFAAOCAQEAN6IyU/MQGyi49awE2wYGi2gyLvVntTET yYaCy1Om8Y9GaxxNiTdFBTJF0tfdB1+Mf3i+XGyaamvBs7/a2gLSAlfwE1wa6DGs K6K0XnC+B/lrVdGhFoA6jC6HxvZe97uhsIpVScVAo+xHy93IRIeOqUsHlXVAIV/9 vKxmugn8pxnSN6uS14sbA11FUSMPEFKA0fboVA6RpCULEQNQWUvA8JhLzxWCHFPR zjkJ9QtvqLus9jzE0Qbj0t7In75oSaydd2dJCjAQ8+obaLKTDbpQMqub+oVnaIGj /t0IyrttQ4UEUfDnQ7y2wAR2Ji9ohN9iZmxugEadAZsLHQKF0bs/qw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:51:03 2026 by rpki-client