This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/v0_LZK6zRV-zmJfjEpXd6DrdTQ4.cer File: v0_LZK6zRV-zmJfjEpXd6DrdTQ4.cer (raw, json) Hash identifier: 7LBmhkY4VBH8WCZH1jRm0TA3jASw+mplYkDppfzT0BM= Subject key identifier: BF:4F:CB:64:AE:B3:45:5F:B3:98:97:E3:12:95:DD:E8:3A:DD:4D:0E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7911288CF71CF3324CC8366B06ED7871 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d0/3e7980-7e31-4fd1-b79d-0bd62c83e92b/1/v0_LZK6zRV-zmJfjEpXd6DrdTQ4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d0/3e7980-7e31-4fd1-b79d-0bd62c83e92b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.36.46.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:28:8c:f7:1c:f3:32:4c:c8:36:6b:06:ed:78:71 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf4fcb64aeb3455fb39897e31295dde83add4d0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a1:cf:46:79:f5:24:c8:a0:68:34:69:43:f8:f9: d4:de:2b:11:b1:8d:4d:43:04:86:22:f8:e5:47:99: f7:da:c1:bd:77:4c:81:2e:d7:a6:81:90:dd:6e:c0: 9c:ee:7f:ed:26:ad:db:19:34:5b:2f:11:87:a8:44: 2c:4d:51:96:5b:c3:fb:e0:83:d7:aa:82:af:e8:21: d8:ae:47:07:e6:11:ea:ac:e1:55:d2:b5:b5:8b:d1: c0:af:14:d7:46:50:69:50:d8:5e:5e:f3:05:67:44: 0f:0a:d8:97:5f:24:3a:0b:7c:39:0f:05:d4:9b:cf: 61:fb:6f:94:d4:ea:fb:c8:13:e7:2a:53:c8:40:06: 35:bf:26:b3:d8:a9:87:1f:0f:93:dc:a5:c1:99:5f: 76:47:4b:3d:2b:0f:a6:7f:6e:fd:26:cc:e4:68:2d: 19:2d:c6:20:11:bf:e8:48:9e:28:9e:33:28:e5:7d: 72:27:19:5e:27:8e:6a:90:55:85:b2:19:44:66:71: 56:89:94:59:bf:22:40:da:ac:a5:cc:71:7d:db:1f: 96:33:c1:a9:29:6c:95:c7:bc:8d:51:2e:46:58:f3: 99:5d:5b:b8:6d:10:90:9f:d8:e9:42:41:1c:3f:f5: 32:bb:a7:cc:36:94:2d:4c:2c:a9:f6:bb:17:ed:11: 5b:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:4F:CB:64:AE:B3:45:5F:B3:98:97:E3:12:95:DD:E8:3A:DD:4D:0E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3e7980-7e31-4fd1-b79d-0bd62c83e92b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d0/3e7980-7e31-4fd1-b79d-0bd62c83e92b/1/v0_LZK6zRV-zmJfjEpXd6DrdTQ4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.36.46.0/24 Signature Algorithm: sha256WithRSAEncryption 85:6f:7f:70:73:77:e6:ea:af:d5:d1:a0:67:a5:54:c4:45:01: 91:48:0c:b3:f1:4b:e6:b4:dc:b6:45:06:50:d0:7a:48:38:b1: ed:2e:01:f8:64:db:51:4e:f2:ff:ed:ae:cf:dc:08:30:5f:11: f5:19:e6:02:5d:d9:64:24:57:94:9a:ca:cf:12:a3:c5:63:85: d5:40:93:3b:75:c9:63:fe:73:a8:58:ef:15:b7:dc:b3:09:6b: b7:08:d1:3c:f5:8a:63:b7:4d:b2:b1:6a:a6:25:b6:dc:bd:17: f9:c5:93:d4:c1:a7:ab:75:13:e5:a0:a1:c4:9a:88:54:f5:50: 56:b8:39:a5:48:0e:fe:e7:e0:f0:35:c7:46:be:9e:d0:29:04: 99:47:a8:03:d2:63:b6:40:67:c6:bf:2d:29:c2:29:59:d4:cf: c3:d0:18:f7:25:f2:df:5f:57:2b:21:19:4b:90:34:ec:70:a0: a8:1f:41:9b:ba:5f:d7:5b:b7:8b:28:aa:8b:f7:90:29:a0:5e: f1:8d:b6:45:a9:b3:6d:c2:ac:13:10:d9:02:aa:80:11:72:70: 63:6b:75:ec:bf:6f:6d:cd:ee:be:25:42:57:73:02:6b:50:de: 13:95:f0:fc:32:4e:17:79:14:96:b3:c0:9c:49:10:d3:1b:b2: 58:cb:23:d9 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt5ESiM9xzzMkzINmsG7XhxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjRmY2I2NGFlYjM0NTVmYjM5ODk3ZTMxMjk1ZGRlODNhZGQ0ZDBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoc9GefUkyKBoNGlD+PnU3isRsY1N QwSGIvjlR5n32sG9d0yBLtemgZDdbsCc7n/tJq3bGTRbLxGHqEQsTVGWW8P74IPX qoKv6CHYrkcH5hHqrOFV0rW1i9HArxTXRlBpUNheXvMFZ0QPCtiXXyQ6C3w5DwXU m89h+2+U1Or7yBPnKlPIQAY1vyaz2KmHHw+T3KXBmV92R0s9Kw+mf279JszkaC0Z LcYgEb/oSJ4onjMo5X1yJxleJ45qkFWFshlEZnFWiZRZvyJA2qylzHF92x+WM8Gp KWyVx7yNUS5GWPOZXVu4bRCQn9jpQkEcP/Uyu6fMNpQtTCyp9rsX7RFbGQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFL9Py2Sus0Vfs5iX4xKV3eg63U0OMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2QwLzNlNzk4 MC03ZTMxLTRmZDEtYjc5ZC0wYmQ2MmM4M2U5MmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDAvM2U3OTgw LTdlMzEtNGZkMS1iNzlkLTBiZDYyYzgzZTkyYi8xL3YwX0xaSzZ6UlYtem1KZmpF cFhkNkRyZFRRNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwSQuMA0GCSqGSIb3DQEBCwUAA4IBAQCFb39w c3fm6q/V0aBnpVTERQGRSAyz8UvmtNy2RQZQ0HpIOLHtLgH4ZNtRTvL/7a7P3Agw XxH1GeYCXdlkJFeUmsrPEqPFY4XVQJM7dclj/nOoWO8Vt9yzCWu3CNE89Ypjt02y sWqmJbbcvRf5xZPUwaerdRPloKHEmohU9VBWuDmlSA7+5+DwNcdGvp7QKQSZR6gD 0mO2QGfGvy0pwilZ1M/D0Bj3JfLfX1crIRlLkDTscKCoH0Gbul/XW7eLKKqL95Ap oF7xjbZFqbNtwqwTENkCqoARcnBja3Xsv29tze6+JUJXcwJrUN4TlfD8Mk4XeRSW s8CcSRDTG7JYyyPZ -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:16 2026 by rpki-client