This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/xpZo80fFWt13rFF-kzHd5_w1VqY.cer File: xpZo80fFWt13rFF-kzHd5_w1VqY.cer (raw, json) Hash identifier: Pr9FLCtoBQPc+3E7b8RkK6qUE+PRgojgyB5+vhaMrzQ= Subject key identifier: C6:96:68:F3:47:C5:5A:DD:77:AC:51:7E:93:31:DD:E7:FC:35:56:A6 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B791008F2BA56D51E3FF7CEA0C9DD44E2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/23/060969-5caf-418f-8c25-acb2723a5076/1/xpZo80fFWt13rFF-kzHd5_w1VqY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/23/060969-5caf-418f-8c25-acb2723a5076/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:17:32 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197253 IP: 91.224.68.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:08:f2:ba:56:d5:1e:3f:f7:ce:a0:c9:dd:44:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c69668f347c55add77ac517e9331dde7fc3556a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:80:8f:14:a9:4c:d3:07:3d:7d:33:d7:78:25: 72:89:fd:13:bb:80:62:59:48:82:b4:3c:80:ba:61: 4d:7c:b0:a0:79:3c:38:a6:ee:db:52:bd:30:6f:23: 45:1a:30:3c:bb:fb:29:42:37:b9:10:76:e7:90:7a: f9:fb:31:09:85:e1:e9:51:1e:47:07:f4:0f:5d:df: 70:90:cc:d1:ba:f8:b6:2f:7f:8f:c1:3e:02:dc:d5: ee:43:a0:58:9c:65:c0:ad:fc:78:1e:e8:b5:b9:a6: b9:eb:ce:db:e1:d0:b3:ff:90:55:75:a8:24:de:f7: 14:30:1c:f6:cc:a5:b8:21:71:ae:4b:2e:19:61:8f: c3:89:56:79:0d:56:da:8d:3b:93:14:cd:8a:bb:a9: 6c:c1:b6:a2:72:76:0a:5e:f0:ea:8e:0e:36:08:da: a2:aa:23:41:21:7f:a3:57:6a:45:d3:10:36:87:8c: 5e:c9:6a:b6:ff:26:68:c0:70:78:a4:95:e4:f8:32: de:ad:b7:04:bd:67:37:55:4b:cd:f4:92:03:48:33: b2:0b:4b:9b:4f:2c:46:a5:62:2a:9b:94:e4:cf:6f: 6a:28:b9:17:ef:8d:8d:81:3d:bc:55:b0:06:1e:9c: 03:bb:88:6a:9e:5d:41:7e:1d:dd:92:9c:34:a0:c0: 18:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C6:96:68:F3:47:C5:5A:DD:77:AC:51:7E:93:31:DD:E7:FC:35:56:A6 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/060969-5caf-418f-8c25-acb2723a5076/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/23/060969-5caf-418f-8c25-acb2723a5076/1/xpZo80fFWt13rFF-kzHd5_w1VqY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.224.68.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 197253 Signature Algorithm: sha256WithRSAEncryption aa:12:10:02:2b:92:90:6a:a1:3f:3b:b0:4a:27:65:af:f0:1e: 28:b7:1b:60:4d:c1:19:2d:58:1e:76:24:83:67:a3:63:d1:95: 5a:95:9a:4a:6d:28:19:bd:32:8d:1a:a5:ee:ef:b0:75:89:28: 25:e3:06:24:ba:3c:d6:80:43:0e:0c:c5:bb:f0:2a:54:b2:1a: 20:d9:7e:d5:d3:fe:72:3c:41:15:8a:04:4d:7b:eb:45:3d:78: 20:d2:20:5e:ca:7c:82:c9:c8:ca:2c:41:b9:02:a9:61:ab:d6: 46:f8:53:da:f2:1b:dc:5d:e7:3c:89:52:d0:4e:b4:c1:f4:ae: 44:7b:35:b4:37:e2:5a:04:19:8d:5e:42:6a:92:b3:27:e0:99: be:ec:3b:da:b2:bb:7c:60:28:6e:0a:76:4a:13:71:24:32:fe: 41:24:71:13:85:8e:ca:60:25:2a:c5:94:f9:c8:e3:3e:a8:22: d7:f4:aa:76:8c:87:0d:da:28:2e:66:7b:07:88:85:2d:b2:0b: 11:af:f1:dd:ab:58:9d:03:bb:e1:dd:cf:e6:f0:7a:62:da:09: 28:cd:d9:67:06:b2:ea:6d:ae:08:b3:cd:33:46:11:ca:b8:6b: 33:51:1d:61:c2:0c:7a:f7:94:69:18:c5:fd:f1:c4:2b:45:40: a3:44:a1:fd -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt5EAjyulbVHj/3zqDJ3UTiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNjk2NjhmMzQ3YzU1YWRkNzdhYzUxN2U5MzMxZGRlN2ZjMzU1NmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAooCPFKlM0wc9fTPXeCVyif0Tu4Bi WUiCtDyAumFNfLCgeTw4pu7bUr0wbyNFGjA8u/spQje5EHbnkHr5+zEJheHpUR5H B/QPXd9wkMzRuvi2L3+PwT4C3NXuQ6BYnGXArfx4Hui1uaa5687b4dCz/5BVdagk 3vcUMBz2zKW4IXGuSy4ZYY/DiVZ5DVbajTuTFM2Ku6lswbaicnYKXvDqjg42CNqi qiNBIX+jV2pF0xA2h4xeyWq2/yZowHB4pJXk+DLerbcEvWc3VUvN9JIDSDOyC0ub TyxGpWIqm5Tkz29qKLkX742NgT28VbAGHpwDu4hqnl1Bfh3dkpw0oMAYHwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFMaWaPNHxVrdd6xRfpMx3ef8NVamMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIzLzA2MDk2 OS01Y2FmLTQxOGYtOGMyNS1hY2IyNzIzYTUwNzYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjMvMDYwOTY5 LTVjYWYtNDE4Zi04YzI1LWFjYjI3MjNhNTA3Ni8xL3hwWm84MGZGV3QxM3JGRi1r ekhkNV93MVZxWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBW+BEMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMChTANBgkqhkiG9w0BAQsFAAOCAQEAqhIQAiuSkGqhPzuwSidlr/AeKLcbYE3B GS1YHnYkg2ejY9GVWpWaSm0oGb0yjRql7u+wdYkoJeMGJLo81oBDDgzFu/AqVLIa INl+1dP+cjxBFYoETXvrRT14INIgXsp8gsnIyixBuQKpYavWRvhT2vIb3F3nPIlS 0E60wfSuRHs1tDfiWgQZjV5CapKzJ+CZvuw72rK7fGAobgp2ShNxJDL+QSRxE4WO ymAlKsWU+cjjPqgi1/SqdoyHDdooLmZ7B4iFLbILEa/x3atYnQO74d3P5vB6YtoJ KM3ZZway6m2uCLPNM0YRyrhrM1EdYcIMeveUaRjF/fHEK0VAo0Sh/Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:27:59 2026 by rpki-client