This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nwSzzyTPS4GyIhFGoA8id7w0h4A.cer File: nwSzzyTPS4GyIhFGoA8id7w0h4A.cer (raw, json) Hash identifier: UXvlfz6pW8aX1ft1l9MnvwLn9d4HgX5IpW9qNiVI4PY= Subject key identifier: 9F:04:B3:CF:24:CF:4B:81:B2:22:11:46:A0:0F:22:77:BC:34:87:80 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910F747D372AE2B74577E09EC35A0F1 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/da358c-2e47-44ec-b0c5-2ad968b362de/1/nwSzzyTPS4GyIhFGoA8id7w0h4A.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/da358c-2e47-44ec-b0c5-2ad968b362de/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:33 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204567 IP: 185.175.220.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:f7:47:d3:72:ae:2b:74:57:7e:09:ec:35:a0:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9f04b3cf24cf4b81b2221146a00f2277bc348780 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:14:57:a0:0b:67:f2:c2:e1:aa:c3:b3:b6:dd: 80:c7:da:86:2a:f7:c8:3b:88:da:1e:a0:03:d0:94: 67:e7:ee:29:7f:d9:e5:70:1a:e8:0e:6e:07:36:d8: 29:35:5b:c7:28:ac:74:9d:c5:c2:31:d3:1b:8b:6f: 51:b3:f7:a1:12:e2:2b:40:fa:37:9f:5d:17:b0:03: d9:f8:02:10:16:c4:ce:bb:7c:cd:7c:bd:19:6d:b0: 38:2b:f4:c3:0b:69:d4:50:2d:b3:15:79:2c:8b:0b: 01:a4:75:b4:55:8e:e8:b2:38:74:33:ba:21:e8:32: 06:63:7c:e2:08:76:96:10:56:da:f1:db:77:b3:2e: eb:99:dc:03:b7:94:e5:5a:d0:88:86:44:24:90:2c: 60:82:44:0f:bc:bc:d9:5c:fd:81:00:79:21:10:c7: cf:ad:fa:04:f3:3a:a7:f2:11:11:59:7b:48:81:23: a5:36:1a:4c:68:47:b0:67:dd:2f:49:2e:25:4d:39: 43:a5:6a:58:fd:f6:2f:e4:41:56:b3:07:9a:bd:8c: 89:b6:c4:fe:14:57:9b:36:5a:dd:3c:45:47:b6:6b: 2e:f7:96:ed:cd:19:61:3d:dc:d3:0c:bf:38:79:f3: 05:34:c1:ae:93:b5:d6:43:66:1a:91:41:5d:23:57: 1b:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9F:04:B3:CF:24:CF:4B:81:B2:22:11:46:A0:0F:22:77:BC:34:87:80 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/da358c-2e47-44ec-b0c5-2ad968b362de/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/da358c-2e47-44ec-b0c5-2ad968b362de/1/nwSzzyTPS4GyIhFGoA8id7w0h4A.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.175.220.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204567 Signature Algorithm: sha256WithRSAEncryption 9e:78:5a:7c:d6:9d:36:a4:75:46:48:73:25:ea:59:c4:40:f1: e4:13:9f:2f:7d:d0:cf:8e:11:b9:bf:2e:7c:c1:19:d8:6e:7e: b3:ba:88:d5:06:92:0e:8d:91:bd:95:0a:2f:72:7f:72:6c:c0: db:02:b3:66:e5:ca:11:08:47:36:b4:b9:e6:ea:28:78:48:d8: 75:ab:b2:e1:c6:a1:ba:70:25:3d:26:69:75:ea:ea:13:f4:44: 1a:98:64:98:c0:1d:a6:fe:9b:1d:95:ad:56:6a:54:d8:68:6f: 09:61:27:12:96:d1:28:e7:02:e2:b0:56:ec:32:0c:7a:f6:62: 84:1e:94:bf:6d:7f:0d:09:da:a9:e8:6e:57:6b:5a:57:eb:08: ee:cf:3f:45:5e:a8:0d:f7:91:82:6e:21:aa:e9:a6:27:9e:23: d2:c4:6e:f9:ba:0b:11:48:77:d3:f0:d9:8f:bd:f2:53:4e:c9: 57:ec:ce:07:41:a5:7c:29:98:dd:0d:29:bb:aa:95:2b:15:31: 36:1a:a4:5b:98:16:81:f0:a6:7b:32:27:15:a2:44:e5:cd:c3: 70:05:c0:96:eb:5c:c3:3b:ac:d3:55:6a:09:27:09:c2:1a:e8: 99:d7:e3:78:b5:1d:d5:2e:8b:d2:ce:e4:df:55:c9:2a:fb:70: 20:8e:cf:f7 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt5EPdH03KuK3RXfgnsNaDxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZjA0YjNjZjI0Y2Y0YjgxYjIyMjExNDZhMDBmMjI3N2JjMzQ4NzgwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnxRXoAtn8sLhqsOztt2Ax9qGKvfI O4jaHqAD0JRn5+4pf9nlcBroDm4HNtgpNVvHKKx0ncXCMdMbi29Rs/ehEuIrQPo3 n10XsAPZ+AIQFsTOu3zNfL0ZbbA4K/TDC2nUUC2zFXksiwsBpHW0VY7osjh0M7oh 6DIGY3ziCHaWEFba8dt3sy7rmdwDt5TlWtCIhkQkkCxggkQPvLzZXP2BAHkhEMfP rfoE8zqn8hERWXtIgSOlNhpMaEewZ90vSS4lTTlDpWpY/fYv5EFWsweavYyJtsT+ FFebNlrdPEVHtmsu95btzRlhPdzTDL84efMFNMGuk7XWQ2YakUFdI1cbPwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFJ8Es88kz0uBsiIRRqAPIne8NIeAMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NmL2RhMzU4 Yy0yZTQ3LTQ0ZWMtYjBjNS0yYWQ5NjhiMzYyZGUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2YvZGEzNThj LTJlNDctNDRlYy1iMGM1LTJhZDk2OGIzNjJkZS8xL253U3p6eVRQUzRHeUloRkdv QThpZDd3MGg0QS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCua/cMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMfFzANBgkqhkiG9w0BAQsFAAOCAQEAnnhafNadNqR1RkhzJepZxEDx5BOfL33Q z44Rub8ufMEZ2G5+s7qI1QaSDo2RvZUKL3J/cmzA2wKzZuXKEQhHNrS55uooeEjY dauy4cahunAlPSZpderqE/REGphkmMAdpv6bHZWtVmpU2GhvCWEnEpbRKOcC4rBW 7DIMevZihB6Uv21/DQnaqehuV2taV+sI7s8/RV6oDfeRgm4hqummJ54j0sRu+boL EUh30/DZj73yU07JV+zOB0GlfCmY3Q0pu6qVKxUxNhqkW5gWgfCmezInFaJE5c3D cAXAlutcwzus01VqCScJwhromdfjeLUd1S6L0s7k31XJKvtwII7P9w== -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:35 2026 by rpki-client