This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pz1kDZC_PWfySYE4zDcfZUZH3a0.cer File: pz1kDZC_PWfySYE4zDcfZUZH3a0.cer (raw, json) Hash identifier: bWt5IIyWEKXLvvTn30O61pWTQL16eAoO3GU/ebcYyik= Subject key identifier: A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A32A2F84821A637DFE1983CD304EE2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41970 IP: 194.60.74.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:2a:2f:84:82:1a:63:7d:fe:19:83:cd:30:4e:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a73d640d90bf3d67f2498138cc371f654647ddad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:9f:24:3e:16:63:c1:0a:fb:bb:67:49:07:d3: 76:92:fb:92:ce:fb:c1:0d:dc:36:71:54:48:93:f4: 9a:a5:45:b4:63:05:1f:a7:d2:df:1a:41:d8:56:8e: 18:b9:03:17:41:66:91:fa:3a:8d:55:49:40:61:13: c9:08:a2:15:f0:a8:ea:08:47:67:5c:cc:46:11:88: 0c:84:db:19:0b:2f:2b:e5:33:97:e1:9a:8c:f5:4a: 2e:28:ab:23:5f:46:be:18:4d:a0:f9:ed:c8:ec:b4: dd:ed:62:36:a6:6e:ca:ea:ca:fe:6f:08:be:b2:19: 97:cf:16:93:f7:69:50:3a:e6:db:4b:b2:e7:fa:d7: 4c:4e:47:61:7e:20:ac:ca:89:87:ed:27:77:a9:bf: 81:95:6f:5e:50:72:fb:3c:d0:13:ba:f3:e4:9d:79: 0a:41:90:5d:53:62:06:9f:fa:e0:d6:93:11:dc:d5: 77:d5:8b:97:89:02:52:cd:6a:3f:ba:93:52:f6:6b: cb:22:2e:eb:8a:dc:93:78:09:fd:7c:e7:bb:fe:dd: 77:88:bf:07:8b:bb:0a:f3:46:5b:50:87:09:ce:4f: 1f:ee:97:b3:95:8e:07:a3:c6:11:0e:c8:b9:e9:7a: c2:d8:49:77:62:66:21:1f:6a:ad:d6:51:cc:d3:7c: 81:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:3D:64:0D:90:BF:3D:67:F2:49:81:38:CC:37:1F:65:46:47:DD:AD X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/72892a-3bc0-4f57-bc5b-75039750bd68/1/pz1kDZC_PWfySYE4zDcfZUZH3a0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.60.74.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41970 Signature Algorithm: sha256WithRSAEncryption 65:7f:8a:16:5c:b3:89:a3:4d:b9:88:b9:12:b3:f2:0b:22:2e: 66:33:91:c0:4e:5a:9d:d6:5a:06:d9:8b:1c:1c:f2:5d:35:57: 37:82:f5:f3:c0:07:cb:56:c0:b5:b0:88:34:0e:71:90:b4:da: d1:05:ab:d9:a4:36:8b:14:c1:c4:9d:9d:1f:da:7b:ac:ca:37: 55:48:b2:07:48:2f:50:74:ef:87:38:22:ac:3d:06:c6:70:9e: e5:da:ee:73:00:a4:c9:1a:b1:90:71:8f:cf:d6:da:0c:12:3e: 6f:37:4a:35:6f:06:df:43:ef:af:5e:d7:36:3b:6f:a6:c8:23: 31:a6:e4:28:84:a2:09:46:b7:f1:b1:1e:17:8a:a8:3a:b3:7e: d0:0c:3e:70:06:f6:94:f1:7a:a6:ee:6f:db:ac:8a:c3:48:f3: fa:32:60:81:cd:2f:6f:c9:b3:0d:5c:3a:e9:15:e3:b9:e3:bf: db:13:54:73:1b:ff:0a:0e:bc:cd:28:65:6d:2e:ed:d6:5c:1c: 2f:94:f4:58:fd:34:89:5f:a0:f6:de:aa:39:99:d3:88:16:90: b7:4b:98:39:30:26:f6:8d:71:05:b9:ec:12:3a:40:66:e3:48: 86:e0:a7:24:ee:d8:ea:9b:33:0a:35:90:43:23:6d:81:0e:ff: 6d:d9:51:1d -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4oyovhIIaY33+GYPNME7iMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNzNkNjQwZDkwYmYzZDY3ZjI0OTgxMzhjYzM3MWY2NTQ2NDdkZGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtJ8kPhZjwQr7u2dJB9N2kvuSzvvB Ddw2cVRIk/SapUW0YwUfp9LfGkHYVo4YuQMXQWaR+jqNVUlAYRPJCKIV8KjqCEdn XMxGEYgMhNsZCy8r5TOX4ZqM9UouKKsjX0a+GE2g+e3I7LTd7WI2pm7K6sr+bwi+ shmXzxaT92lQOubbS7Ln+tdMTkdhfiCsyomH7Sd3qb+BlW9eUHL7PNATuvPknXkK QZBdU2IGn/rg1pMR3NV31YuXiQJSzWo/upNS9mvLIi7rityTeAn9fOe7/t13iL8H i7sK80ZbUIcJzk8f7pezlY4Ho8YRDsi56XrC2El3YmYhH2qt1lHM03yBuwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFKc9ZA2Qvz1n8kmBOMw3H2VGR92tMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk4LzcyODky YS0zYmMwLTRmNTctYmM1Yi03NTAzOTc1MGJkNjgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgvNzI4OTJh LTNiYzAtNGY1Ny1iYzViLTc1MDM5NzUwYmQ2OC8xL3B6MWtEWkNfUFdmeVNZRTR6 RGNmWlVaSDNhMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwjxKMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCj8jANBgkqhkiG9w0BAQsFAAOCAQEAZX+KFlyziaNNuYi5ErPyCyIuZjORwE5a ndZaBtmLHBzyXTVXN4L188AHy1bAtbCINA5xkLTa0QWr2aQ2ixTBxJ2dH9p7rMo3 VUiyB0gvUHTvhzgirD0GxnCe5drucwCkyRqxkHGPz9baDBI+bzdKNW8G30Pvr17X NjtvpsgjMabkKISiCUa38bEeF4qoOrN+0Aw+cAb2lPF6pu5v26yKw0jz+jJggc0v b8mzDVw66RXjueO/2xNUcxv/Cg68zShlbS7t1lwcL5T0WP00iV+g9t6qOZnTiBaQ t0uYOTAm9o1xBbnsEjpAZuNIhuCnJO7Y6pszCjWQQyNtgQ7/bdlRHQ== -----END CERTIFICATE-----Generated at Tue Feb 10 00:11:42 2026 by rpki-client