This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dxPzWC9jkBMFUwtLGTbNbmYRowo.cer File: dxPzWC9jkBMFUwtLGTbNbmYRowo.cer (raw, json) Hash identifier: P1TNJHPpjTvLvlzWvdx7xwyw5f+Z8eQxBDKoB835/98= Subject key identifier: 77:13:F3:58:2F:63:90:13:05:53:0B:4B:19:36:CD:6E:66:11:A3:0A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE20F7EFC8435E261CA318EDE9A2F1 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ea/f4d76e-34a1-4d0a-b9bd-189d53ae4e3e/1/dxPzWC9jkBMFUwtLGTbNbmYRowo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ea/f4d76e-34a1-4d0a-b9bd-189d53ae4e3e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:59 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 61329 IP: 194.13.120.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:20:f7:ef:c8:43:5e:26:1c:a3:18:ed:e9:a2:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7713f3582f63901305530b4b1936cd6e6611a30a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e1:8f:e8:54:06:74:61:5b:5d:48:ac:91:69:09: d3:30:93:06:45:b2:60:3e:af:ec:2e:d6:bb:51:c6: 96:4b:44:e6:c2:55:6f:71:72:cc:3e:18:b5:d7:d9: 3a:34:b9:cb:fc:b5:ac:32:c5:51:d9:9d:8d:4f:33: ae:01:6f:3c:53:15:b3:fa:e2:ca:65:02:90:2a:ac: 64:b6:4d:aa:b2:8b:92:ea:41:60:5e:24:2b:16:ef: ac:ad:0a:97:b2:49:ce:49:25:ec:e5:84:da:f5:2c: 96:c9:e9:1e:a4:38:d3:82:a9:16:f3:7f:64:93:7a: 00:7a:64:d9:1f:4c:4b:5f:cc:7d:f7:da:58:d8:c9: f0:06:1f:20:21:cb:0e:6f:54:6f:46:13:74:3b:60: a6:33:3a:1b:92:94:c9:e3:e4:a3:4e:e6:55:25:8e: dd:d9:da:b7:dd:f3:52:80:0f:e2:a7:7e:36:d4:9e: eb:ac:3e:a6:91:3b:3f:1f:89:7f:78:62:12:6c:f6: df:62:65:b6:c0:a8:a2:e4:6f:8a:5e:51:7b:30:5a: 8f:d0:9a:08:6d:fa:4e:c6:f5:d4:cc:97:1a:fa:f3: 56:6f:d2:6e:d5:77:81:98:f2:6c:f7:bb:ab:b0:20: 88:10:83:eb:4e:31:99:03:35:49:65:07:64:3b:b0: 39:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:13:F3:58:2F:63:90:13:05:53:0B:4B:19:36:CD:6E:66:11:A3:0A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/f4d76e-34a1-4d0a-b9bd-189d53ae4e3e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ea/f4d76e-34a1-4d0a-b9bd-189d53ae4e3e/1/dxPzWC9jkBMFUwtLGTbNbmYRowo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.13.120.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 61329 Signature Algorithm: sha256WithRSAEncryption 66:f4:98:51:68:39:d3:a2:c6:57:96:e3:53:92:77:98:60:90: bf:0a:f7:27:41:bf:02:81:5e:c4:9a:37:6f:0f:2f:59:bb:a7: 0e:6d:19:ea:07:34:f0:50:55:15:92:64:f1:20:01:3c:07:c7: 55:cc:a4:09:16:93:c3:d0:12:57:d9:4d:c2:11:6d:fd:47:6c: 8e:56:6b:b5:01:f3:1b:59:f2:f8:d7:ec:3e:87:69:be:2b:0e: 81:fd:e9:37:9a:ab:14:15:48:2f:e7:88:53:c9:24:8e:30:d9: d8:3b:3a:79:4d:3c:68:ca:b1:c0:8e:63:41:47:a2:a1:12:88: 2d:6d:66:ff:af:3a:4f:98:df:2e:0c:98:cf:a2:9f:fe:d2:d5: 7f:da:88:96:6d:0e:3b:af:be:e4:3b:c0:eb:74:0c:cc:ed:31: 5e:1a:ed:b7:e7:a6:75:77:b8:47:fd:75:d0:e8:92:6d:d9:e7: 85:8c:6a:99:05:68:d5:e4:c3:90:1c:c5:7a:0c:1a:26:48:c0: 39:40:cc:83:39:c3:fa:0c:45:de:05:8a:2e:3a:7a:e2:06:7b: 9a:1a:99:32:a9:65:09:53:54:d2:7b:2d:92:c4:06:70:2e:55: 32:2d:b7:a7:47:43:6e:d2:63:c8:ff:3c:c9:a7:6a:76:5f:0e: 50:99:24:a5 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt87iD378hDXiYcoxjt6aLxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzEzZjM1ODJmNjM5MDEzMDU1MzBiNGIxOTM2Y2Q2ZTY2MTFhMzBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Y/oVAZ0YVtdSKyRaQnTMJMGRbJg Pq/sLta7UcaWS0TmwlVvcXLMPhi119k6NLnL/LWsMsVR2Z2NTzOuAW88UxWz+uLK ZQKQKqxktk2qsouS6kFgXiQrFu+srQqXsknOSSXs5YTa9SyWyekepDjTgqkW839k k3oAemTZH0xLX8x999pY2MnwBh8gIcsOb1RvRhN0O2CmMzobkpTJ4+SjTuZVJY7d 2dq33fNSgA/ip3421J7rrD6mkTs/H4l/eGISbPbfYmW2wKii5G+KXlF7MFqP0JoI bfpOxvXUzJca+vNWb9Ju1XeBmPJs97ursCCIEIPrTjGZAzVJZQdkO7A5/wIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFHcT81gvY5ATBVMLSxk2zW5mEaMKMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VhL2Y0ZDc2 ZS0zNGExLTRkMGEtYjliZC0xODlkNTNhZTRlM2UvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWEvZjRkNzZl LTM0YTEtNGQwYS1iOWJkLTE4OWQ1M2FlNGUzZS8xL2R4UHpXQzlqa0JNRlV3dExH VGJOYm1ZUm93by5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCwg14MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDvkTANBgkqhkiG9w0BAQsFAAOCAQEAZvSYUWg506LGV5bjU5J3mGCQvwr3J0G/ AoFexJo3bw8vWbunDm0Z6gc08FBVFZJk8SABPAfHVcykCRaTw9ASV9lNwhFt/Uds jlZrtQHzG1ny+NfsPodpvisOgf3pN5qrFBVIL+eIU8kkjjDZ2Ds6eU08aMqxwI5j QUeioRKILW1m/686T5jfLgyYz6Kf/tLVf9qIlm0OO6++5DvA63QMzO0xXhrtt+em dXe4R/110OiSbdnnhYxqmQVo1eTDkBzFegwaJkjAOUDMgznD+gxF3gWKLjp64gZ7 mhqZMqllCVNU0nstksQGcC5VMi23p0dDbtJjyP88yadqdl8OUJkkpQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:46 2026 by rpki-client