This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dz4yeLqiScFN5gXclkssJ1Xf7Po.cer File: dz4yeLqiScFN5gXclkssJ1Xf7Po.cer (raw, json) Hash identifier: qnZWyzlnAlRVerdxBFvRF43DRt9gNMyoENsBJK7jh3Q= Subject key identifier: 77:3E:32:78:BA:A2:49:C1:4D:E6:05:DC:96:4B:2C:27:55:DF:EC:FA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B359BAADE922AD393587E31EE49EE91 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/dz4yeLqiScFN5gXclkssJ1Xf7Po.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:17:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202341 IP: 185.229.60.0/22 IP: 2a0d:7200::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:9b:aa:de:92:2a:d3:93:58:7e:31:ee:49:ee:91 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=773e3278baa249c14de605dc964b2c2755dfecfa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:36:98:7a:c7:bb:7a:b6:a9:b6:85:e7:e9:cf: e3:0b:31:49:08:2b:85:88:10:49:e8:9d:cb:8d:74: 51:04:d6:8a:0e:f0:4f:04:ab:5e:e5:1a:be:3b:f0: b6:11:7c:41:3f:a4:63:9a:93:b5:b3:e1:a5:8d:08: 3d:8e:17:a4:89:2d:3c:64:35:9c:81:a6:a0:4d:c6: 89:81:81:71:11:0e:af:ca:cd:ff:75:f2:4b:3f:14: 64:94:71:7e:22:fa:c6:50:c9:12:1f:aa:b9:d0:20: 35:bd:f1:42:38:30:9f:28:31:fd:51:1d:f3:78:59: fe:12:62:e7:84:47:1d:4b:d1:5b:eb:80:af:c9:1e: f4:4e:45:ea:55:17:a5:69:49:de:b4:38:68:b4:e0: 48:22:71:12:b3:59:a5:6e:75:75:92:8f:81:38:c1: 24:cd:1b:b3:94:8d:75:22:0f:e6:d8:22:d1:16:c0: ae:5c:37:e2:d2:d6:04:9b:dd:c0:03:8e:27:78:e2: a7:a9:10:92:b5:70:27:8d:30:53:e2:3b:3b:b0:4b: f0:db:3d:44:1f:88:13:4a:d5:38:9d:92:77:96:c5: 5f:f0:e0:f9:5a:9b:d9:e4:99:3f:6a:a4:c9:14:1a: 7c:86:97:31:3c:a0:7e:c2:a5:56:dd:98:35:f7:3d: e1:1b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:3E:32:78:BA:A2:49:C1:4D:E6:05:DC:96:4B:2C:27:55:DF:EC:FA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/42ec46-eb84-475a-a478-1f14ec805390/1/dz4yeLqiScFN5gXclkssJ1Xf7Po.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.60.0/22 IPv6: 2a0d:7200::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202341 Signature Algorithm: sha256WithRSAEncryption 7f:74:36:2c:b3:36:61:aa:e9:b5:bb:ea:93:06:a7:a8:96:68: 3e:d3:4f:a0:f6:10:44:97:bf:8c:56:6d:fa:22:cf:9e:d5:9f: 50:0e:a1:50:31:9e:23:6c:73:70:42:1a:50:48:23:95:a3:72: b8:b7:fa:d9:6f:08:f0:ed:b8:db:91:fb:45:74:d7:a4:55:4a: 17:3e:31:e2:21:b4:b3:42:6b:da:d7:df:51:74:db:17:4d:88: 84:43:c4:1d:17:25:4c:08:99:bc:90:77:7f:77:cb:aa:3a:7f: fc:a5:9e:e8:9f:ab:45:4b:2a:c7:c0:4c:79:80:19:19:45:9a: 64:d1:1b:14:fc:64:67:26:80:8e:ec:31:e5:01:c9:88:3c:81: 5d:5b:d1:fd:f2:5a:73:24:6e:8a:1b:44:ae:52:1b:b6:03:4b: de:1c:97:66:f6:d8:be:a6:5c:c7:2d:83:58:72:21:dd:4c:b6: a3:9d:c7:c1:34:ab:12:c7:8f:1e:e3:46:96:f2:72:d6:36:14: 39:f1:f4:c9:5d:64:15:97:16:f8:bf:af:2e:6a:90:3b:aa:51: 54:2f:dc:16:08:e9:cc:e0:28:f3:7f:3f:ef:2b:09:c3:c5:17: 8e:bb:e0:30:bc:6b:48:dd:10:aa:24:d0:16:83:99:df:4c:eb: df:98:fe:ae -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt7NZuq3pIq05NYfjHuSe6RMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzNlMzI3OGJhYTI0OWMxNGRlNjA1ZGM5NjRiMmMyNzU1ZGZlY2ZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvDaYese7eraptoXn6c/jCzFJCCuF iBBJ6J3LjXRRBNaKDvBPBKte5Rq+O/C2EXxBP6RjmpO1s+GljQg9jhekiS08ZDWc gaagTcaJgYFxEQ6vys3/dfJLPxRklHF+IvrGUMkSH6q50CA1vfFCODCfKDH9UR3z eFn+EmLnhEcdS9Fb64CvyR70TkXqVRelaUnetDhotOBIInESs1mlbnV1ko+BOMEk zRuzlI11Ig/m2CLRFsCuXDfi0tYEm93AA44neOKnqRCStXAnjTBT4js7sEvw2z1E H4gTStU4nZJ3lsVf8OD5WpvZ5Jk/aqTJFBp8hpcxPKB+wqVW3Zg19z3hGwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFHc+Mni6oknBTeYF3JZLLCdV3+z6MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRjLzQyZWM0 Ni1lYjg0LTQ3NWEtYTQ3OC0xZjE0ZWM4MDUzOTAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMvNDJlYzQ2 LWViODQtNDc1YS1hNDc4LTFmMTRlYzgwNTM5MC8xL2R6NHllTHFpU2NGTjVnWGNs a3NzSjFYZjdQby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCueU8MA0EAgACMAcDBQMqDXIAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMWZTANBgkqhkiG9w0BAQsFAAOCAQEAf3Q2LLM2Yarp tbvqkwanqJZoPtNPoPYQRJe/jFZt+iLPntWfUA6hUDGeI2xzcEIaUEgjlaNyuLf6 2W8I8O2425H7RXTXpFVKFz4x4iG0s0Jr2tffUXTbF02IhEPEHRclTAiZvJB3f3fL qjp//KWe6J+rRUsqx8BMeYAZGUWaZNEbFPxkZyaAjuwx5QHJiDyBXVvR/fJacyRu ihtErlIbtgNL3hyXZvbYvqZcxy2DWHIh3Uy2o53HwTSrEsePHuNGlvJy1jYUOfH0 yV1kFZcW+L+vLmqQO6pRVC/cFgjpzOAo838/7ysJw8UXjrvgMLxrSN0QqiTQFoOZ 30zr35j+rg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:57 2026 by rpki-client