This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jAz2W63ZqIrMwydQC1_ynR_wkZY.cer File: jAz2W63ZqIrMwydQC1_ynR_wkZY.cer (raw, json) Hash identifier: LlrBPRIPQt6UswyOqEd1HzxXKo3iCqZE+Fp5dD8l9r4= Subject key identifier: 8C:0C:F6:5B:AD:D9:A8:8A:CC:C3:27:50:0B:5F:F2:9D:1F:F0:91:96 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79EBC4A032A12AC6873A44C92878A2A6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/dfd8c0-d7af-4db1-9e04-975a80d0d93f/1/jAz2W63ZqIrMwydQC1_ynR_wkZY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/dfd8c0-d7af-4db1-9e04-975a80d0d93f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:17:33 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212916 IP: 5.180.72.0/22 IP: 2a09:fa40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:c4:a0:32:a1:2a:c6:87:3a:44:c9:28:78:a2:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8c0cf65badd9a88accc327500b5ff29d1ff09196 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:75:dd:a2:78:8f:30:9a:a9:ee:c6:35:99:a3: 1c:f7:92:22:f5:83:09:b0:86:f6:ad:70:0f:0a:dc: d7:d7:34:4d:ee:71:48:6d:a5:8d:48:2f:19:33:6e: 8e:9e:e5:11:c5:1f:ac:7c:f2:00:94:57:56:74:34: a7:d1:22:0f:65:de:fd:d3:b6:70:7d:37:f4:19:e5: 18:d8:88:be:4b:9e:f5:c6:79:ee:b2:e9:f5:d9:91: 45:ff:00:87:e3:da:54:dd:23:6d:85:28:5d:c6:82: 42:e8:58:1d:81:2d:5e:2d:27:48:a1:a6:1a:ff:fe: ae:9f:f0:9c:6a:11:a2:1e:06:55:3b:34:98:65:ae: 9e:a9:5b:5d:73:37:b5:0e:3f:68:f4:5c:fe:96:14: e0:86:d3:1a:46:7b:45:04:d9:59:0a:52:1a:a5:43: a6:85:89:d5:ff:09:7b:d2:10:0e:74:3c:aa:82:72: 09:ee:5d:ac:f3:5c:7e:37:2a:12:ff:3a:ab:ab:8f: 38:21:c4:66:df:55:5d:30:d4:4c:7a:97:a4:67:4e: 9b:0f:9b:66:0c:65:be:08:dc:7a:a2:56:db:98:b3: d3:0d:33:4d:c0:52:d7:e0:22:d7:ed:e3:80:fc:b4: 23:57:c0:67:d2:75:11:83:1b:94:8e:3b:7e:5b:1d: 50:bd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:0C:F6:5B:AD:D9:A8:8A:CC:C3:27:50:0B:5F:F2:9D:1F:F0:91:96 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/dfd8c0-d7af-4db1-9e04-975a80d0d93f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/dfd8c0-d7af-4db1-9e04-975a80d0d93f/1/jAz2W63ZqIrMwydQC1_ynR_wkZY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.180.72.0/22 IPv6: 2a09:fa40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212916 Signature Algorithm: sha256WithRSAEncryption ad:3f:f9:31:22:73:f5:3f:92:62:22:9e:cb:6c:4f:2f:08:a9: 19:a3:3d:95:13:93:b4:31:66:16:be:fc:3b:29:b5:9f:b3:60: 81:12:21:82:30:ff:5c:c8:5a:bf:ce:31:37:e5:cd:d5:91:e5: 44:b7:75:b6:04:54:6f:dd:37:04:f4:6c:01:c0:4b:c2:c8:57: db:62:2e:90:41:53:f1:e9:ab:fa:fa:aa:26:15:42:d3:2c:74: 69:47:1d:70:53:dc:ca:78:16:b4:e7:4d:72:45:4a:75:cc:2a: c5:b6:10:f5:f4:97:82:d7:73:e8:10:5b:e0:e2:d3:78:f8:8a: de:79:14:78:6c:26:40:a4:49:52:0d:7a:d7:71:8a:f2:a5:ac: 23:27:f0:91:8e:63:c4:33:7c:ea:57:75:4e:48:3a:03:a1:3b: 0d:c4:b1:d5:f4:bb:9c:4e:13:a7:57:b2:6b:17:9e:f9:33:2b: dc:d5:51:92:4d:8d:2f:a8:87:79:bd:86:e0:a7:52:eb:27:62: ba:40:0a:50:89:eb:ea:a4:1c:89:20:a8:64:69:ad:a8:cf:51: 33:59:a8:cb:8d:e1:38:5d:c6:14:c6:40:0d:2e:90:c0:82:b0: 20:83:1a:bf:9c:b8:46:7a:6b:65:c9:3f:37:ec:32:3b:6d:cb: c8:46:60:7d -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt568SgMqEqxoc6RMkoeKKmMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YzBjZjY1YmFkZDlhODhhY2NjMzI3NTAwYjVmZjI5ZDFmZjA5MTk2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn3XdoniPMJqp7sY1maMc95Ii9YMJ sIb2rXAPCtzX1zRN7nFIbaWNSC8ZM26OnuURxR+sfPIAlFdWdDSn0SIPZd7907Zw fTf0GeUY2Ii+S571xnnusun12ZFF/wCH49pU3SNthShdxoJC6FgdgS1eLSdIoaYa //6un/CcahGiHgZVOzSYZa6eqVtdcze1Dj9o9Fz+lhTghtMaRntFBNlZClIapUOm hYnV/wl70hAOdDyqgnIJ7l2s81x+NyoS/zqrq484IcRm31VdMNRMepekZ06bD5tm DGW+CNx6olbbmLPTDTNNwFLX4CLX7eOA/LQjV8Bn0nURgxuUjjt+Wx1QvQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFIwM9lut2aiKzMMnUAtf8p0f8JGWMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU1L2RmZDhj MC1kN2FmLTRkYjEtOWUwNC05NzVhODBkMGQ5M2YvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUvZGZkOGMw LWQ3YWYtNGRiMS05ZTA0LTk3NWE4MGQwZDkzZi8xL2pBejJXNjNacUlyTXd5ZFFD MV95blJfd2taWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCBbRIMA0EAgACMAcDBQMqCfpAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM/tDANBgkqhkiG9w0BAQsFAAOCAQEArT/5MSJz9T+S YiKey2xPLwipGaM9lROTtDFmFr78Oym1n7NggRIhgjD/XMhav84xN+XN1ZHlRLd1 tgRUb903BPRsAcBLwshX22IukEFT8emr+vqqJhVC0yx0aUcdcFPcyngWtOdNckVK dcwqxbYQ9fSXgtdz6BBb4OLTePiK3nkUeGwmQKRJUg1613GK8qWsIyfwkY5jxDN8 6ld1Tkg6A6E7DcSx1fS7nE4Tp1eyaxee+TMr3NVRkk2NL6iHeb2G4KdS6ydiukAK UInr6qQciSCoZGmtqM9RM1moy43hOF3GFMZADS6QwIKwIIMav5y4RnprZck/N+wy O23LyEZgfQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:06 2026 by rpki-client