This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bzg_Pxkxuo0uyixRv30n09wgVVA.cer File: bzg_Pxkxuo0uyixRv30n09wgVVA.cer (raw, json) Hash identifier: d7m9Q7jMNZvHOpC3n7B/iJjiE3jtv0mmKyBf8OztNl4= Subject key identifier: 6F:38:3F:3F:19:31:BA:8D:2E:CA:2C:51:BF:7D:27:D3:DC:20:55:50 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB2A1D6B9529562845F7F9949F076F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c3/5dfeec-10a2-48b7-bcfa-a625ef51892a/1/bzg_Pxkxuo0uyixRv30n09wgVVA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c3/5dfeec-10a2-48b7-bcfa-a625ef51892a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:01 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 194.153.156.0/26 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:2a:1d:6b:95:29:56:28:45:f7:f9:94:9f:07:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f383f3f1931ba8d2eca2c51bf7d27d3dc205550 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:d7:9c:59:cb:bc:00:c6:ed:10:ee:dd:13:6e: a3:54:c0:e0:9b:ca:a6:d0:97:55:5d:fd:c8:42:9a: 8b:47:df:2e:75:8d:ce:f6:8d:e5:08:26:8f:d0:58: 2a:2e:ed:89:72:0a:ff:83:1a:96:fd:16:df:28:c2: 93:df:8e:48:bb:81:59:ff:0d:c1:6d:25:2d:80:37: 58:28:18:f7:6e:42:f4:9a:46:92:40:74:90:cf:f1: f1:20:32:d7:62:cc:d6:90:98:6b:64:6c:09:ff:c8: f4:0b:fa:51:b6:07:c6:3a:4e:fa:38:8a:5b:87:52: ac:06:d2:85:c4:50:d7:db:dc:e9:81:e0:a5:c5:89: 82:8d:e7:27:6d:bf:10:23:5b:b4:c1:64:c3:db:2c: 66:70:00:97:49:54:f6:1e:40:58:7d:60:a3:c0:3b: 5b:a0:ba:b8:a8:6f:df:6d:1a:84:3d:42:4e:0f:9e: a6:4e:9f:54:77:aa:42:b5:18:13:00:58:e6:a5:64: 3a:4e:0e:c0:72:ef:60:62:21:71:9a:56:32:d2:69: 72:27:9a:eb:37:72:36:65:c9:27:d0:4e:2e:c0:f7: a8:4f:d3:15:c2:34:bb:93:13:4d:33:bf:60:c9:5b: ed:c6:50:b3:48:fd:36:fa:bc:a2:a9:f3:e2:87:ba: 5c:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:38:3F:3F:19:31:BA:8D:2E:CA:2C:51:BF:7D:27:D3:DC:20:55:50 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/5dfeec-10a2-48b7-bcfa-a625ef51892a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c3/5dfeec-10a2-48b7-bcfa-a625ef51892a/1/bzg_Pxkxuo0uyixRv30n09wgVVA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.153.156.0/26 Signature Algorithm: sha256WithRSAEncryption 45:ce:55:aa:36:c2:16:61:9a:78:a9:53:f3:3b:7e:d2:25:db: 04:ca:5d:08:08:c2:f1:eb:b7:45:69:56:49:54:3f:45:87:55: 9d:15:af:51:ce:ae:fa:f5:5a:42:44:df:1f:85:63:e5:98:aa: 78:06:80:b5:a6:cf:a7:a6:d2:ef:50:10:23:22:bb:ad:29:ec: 89:dc:19:89:28:2b:35:66:14:75:06:f6:c0:89:8b:c7:bb:ba: 9d:2c:57:7f:53:45:92:35:85:3f:8e:67:2f:30:e9:e6:fe:26: c3:b5:bf:02:a2:03:fc:b8:d8:79:b2:6c:e6:84:90:b1:47:9a: d2:26:54:2e:18:f6:fb:fc:e6:e0:a6:b1:9c:cc:ff:04:60:a8: 35:28:c9:04:b2:66:10:62:ca:a8:eb:3c:7e:95:24:2a:99:b7: 43:32:f9:18:66:9a:38:ed:34:c2:6c:34:71:aa:3d:73:6a:ef: 9b:5d:67:6b:db:7e:a5:10:98:3e:8b:14:16:50:09:b9:0e:1f: 0b:c9:c8:aa:5d:9a:f7:74:40:76:c6:cc:79:96:14:2a:f9:7c: 99:89:e9:f3:4c:0a:d1:a3:1f:1b:6f:d4:09:21:cf:b3:53:9a: 6e:4d:db:0e:e6:a2:0d:f8:3a:6a:26:7f:99:40:69:cd:05:e9: 74:51:b9:b2 -----BEGIN CERTIFICATE----- MIIFeTCCBGGgAwIBAgISAZt26yoda5UpVihF9/mUnwdvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZjM4M2YzZjE5MzFiYThkMmVjYTJjNTFiZjdkMjdkM2RjMjA1NTUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAotecWcu8AMbtEO7dE26jVMDgm8qm 0JdVXf3IQpqLR98udY3O9o3lCCaP0FgqLu2Jcgr/gxqW/RbfKMKT345Iu4FZ/w3B bSUtgDdYKBj3bkL0mkaSQHSQz/HxIDLXYszWkJhrZGwJ/8j0C/pRtgfGOk76OIpb h1KsBtKFxFDX29zpgeClxYmCjecnbb8QI1u0wWTD2yxmcACXSVT2HkBYfWCjwDtb oLq4qG/fbRqEPUJOD56mTp9Ud6pCtRgTAFjmpWQ6Tg7Acu9gYiFxmlYy0mlyJ5rr N3I2Zckn0E4uwPeoT9MVwjS7kxNNM79gyVvtxlCzSP02+ryiqfPih7pcowIDAQAB o4IChTCCAoEwHQYDVR0OBBYEFG84Pz8ZMbqNLsosUb99J9PcIFVQMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2MzLzVkZmVl Yy0xMGEyLTQ4YjctYmNmYS1hNjI1ZWY1MTg5MmEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzMvNWRmZWVj LTEwYTItNDhiNy1iY2ZhLWE2MjVlZjUxODkyYS8xL2J6Z19QeGt4dW8wdXlpeFJ2 MzBuMDl3Z1ZWQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF BwEHAQH/BBEwDzANBAIAATAHAwUGwpmcADANBgkqhkiG9w0BAQsFAAOCAQEARc5V qjbCFmGaeKlT8zt+0iXbBMpdCAjC8eu3RWlWSVQ/RYdVnRWvUc6u+vVaQkTfH4Vj 5ZiqeAaAtabPp6bS71AQIyK7rSnsidwZiSgrNWYUdQb2wImLx7u6nSxXf1NFkjWF P45nLzDp5v4mw7W/AqID/LjYebJs5oSQsUea0iZULhj2+/zm4KaxnMz/BGCoNSjJ BLJmEGLKqOs8fpUkKpm3QzL5GGaaOO00wmw0cao9c2rvm11na9t+pRCYPosUFlAJ uQ4fC8nIql2a93RAdsbMeZYUKvl8mYnp80wK0aMfG2/UCSHPs1Oabk3bDuaiDfg6 aiZ/mUBpzQXpdFG5sg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:09 2026 by rpki-client