This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zAqQDXC9EPfSIhpWSNpUpeP0RxI.cer File: zAqQDXC9EPfSIhpWSNpUpeP0RxI.cer (raw, json) Hash identifier: PiBMrQmIPOCCTSConqw6L36Sn+/6BNleDzsNpHys0Ec= Subject key identifier: CC:0A:90:0D:70:BD:10:F7:D2:22:1A:56:48:DA:54:A5:E3:F4:47:12 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA6B605D78205E644D35093C264DCF5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/zAqQDXC9EPfSIhpWSNpUpeP0RxI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:20:13 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 57504 IP: 91.232.114.0/23 IP: 2a14:77c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:b6:05:d7:82:05:e6:44:d3:50:93:c2:64:dc:f5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:20:13 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cc0a900d70bd10f7d2221a5648da54a5e3f44712 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8b:9f:4c:db:68:cf:c5:5e:ec:4a:52:5d:f5:25: 08:a4:c6:7e:89:0d:af:7f:e4:d5:15:ff:97:d5:d6: f1:37:3b:8c:07:be:01:d6:ba:85:b8:9a:24:49:b0: 38:1a:e1:12:7d:76:4f:81:a4:8f:94:0c:39:28:ad: e5:96:e8:e7:49:5b:17:41:87:78:42:89:e9:ca:45: 39:7b:b6:17:0a:1e:8f:37:71:53:f4:c1:3f:62:06: 37:62:46:9c:87:e0:96:1a:69:c9:e4:ab:0d:ce:2e: 60:57:cd:75:8c:4e:c7:f0:b4:cd:d2:bb:63:43:48: 1c:4b:98:3a:e2:b6:6b:59:28:35:81:bc:4e:a4:1b: 96:23:b3:c9:b0:4e:22:f5:b8:c2:60:ce:a2:1a:8f: 82:64:8c:49:a2:29:bc:2c:e5:3a:94:cc:e8:05:92: 86:23:44:b5:62:5b:63:c2:64:9a:fb:42:ff:cb:a8: d7:ee:4b:bd:f9:b0:55:81:ad:0c:9f:ed:f7:55:81: ca:51:ba:b6:bd:5f:12:43:5d:06:d6:c1:d8:60:14: 82:3c:63:02:c2:b3:87:aa:ac:81:e7:31:84:3c:a7: 0b:66:c8:b7:c0:eb:dc:72:83:a9:85:05:4a:ba:23: f1:e1:d8:9a:92:45:04:25:d7:e0:85:ec:35:f0:4c: 50:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:0A:90:0D:70:BD:10:F7:D2:22:1A:56:48:DA:54:A5:E3:F4:47:12 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/58a3b6-9a80-49c2-8775-3801c6216e6c/1/zAqQDXC9EPfSIhpWSNpUpeP0RxI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.232.114.0/23 IPv6: 2a14:77c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 57504 Signature Algorithm: sha256WithRSAEncryption 32:a0:54:c8:c5:d8:71:b7:80:dc:6d:4a:f9:f0:bc:19:68:9a: 54:f3:0f:03:c0:d5:c5:7c:f4:7a:c8:30:22:59:fc:cc:2f:06: 19:12:a5:bb:a2:be:25:a0:f0:56:29:26:a2:7f:3c:51:ac:2f: e9:83:bc:86:6b:87:2b:f3:c6:4e:37:b2:e3:92:3d:5a:13:6c: 20:a6:ae:8b:1d:a3:93:2a:06:b3:76:21:3b:d0:b6:48:11:72: c4:cf:5a:18:ec:e2:24:38:d0:5a:d3:08:9d:81:d7:c0:de:ff: d0:b4:c6:11:f3:84:cd:6d:3b:5f:9d:1a:71:0a:b0:94:38:1a: 0f:b2:fa:a7:05:a5:0f:eb:bd:5f:2a:aa:b9:53:df:2e:9e:ac: 51:08:de:e6:c6:85:37:36:c7:e3:41:c1:05:54:f3:4a:7a:be: e0:80:3c:51:4a:7b:1e:4e:14:79:20:2c:97:8b:56:d3:c8:b4: 70:24:c2:c7:95:f7:d2:0a:a5:a7:ea:7f:d2:83:03:ce:e4:0a: ed:7a:52:27:b5:a7:d8:1a:bb:05:28:8e:bb:0e:2e:2c:5b:77: 43:55:89:ad:13:4b:5f:42:50:42:00:2d:eb:40:92:90:80:9a: 6a:4b:94:26:88:02:82:b2:9e:a1:7b:18:6c:06:1b:78:f0:99: ec:2b:d2:25 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt+prYF14IF5kTTUJPCZNz1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIyMDEzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjYzBhOTAwZDcwYmQxMGY3ZDIyMjFhNTY0OGRhNTRhNWUzZjQ0NzEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAi59M22jPxV7sSlJd9SUIpMZ+iQ2v f+TVFf+X1dbxNzuMB74B1rqFuJokSbA4GuESfXZPgaSPlAw5KK3llujnSVsXQYd4 QonpykU5e7YXCh6PN3FT9ME/YgY3Ykach+CWGmnJ5KsNzi5gV811jE7H8LTN0rtj Q0gcS5g64rZrWSg1gbxOpBuWI7PJsE4i9bjCYM6iGo+CZIxJoim8LOU6lMzoBZKG I0S1YltjwmSa+0L/y6jX7ku9+bBVga0Mn+33VYHKUbq2vV8SQ10G1sHYYBSCPGMC wrOHqqyB5zGEPKcLZsi3wOvccoOphQVKuiPx4diakkUEJdfghew18ExQiwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFMwKkA1wvRD30iIaVkjaVKXj9EcSMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M3LzU4YTNi Ni05YTgwLTQ5YzItODc3NS0zODAxYzYyMTZlNmMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcvNThhM2I2 LTlhODAtNDljMi04Nzc1LTM4MDFjNjIxNmU2Yy8xL3pBcVFEWEM5RVBmU0locFdT TnBVcGVQMFJ4SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQBW+hyMA0EAgACMAcDBQAqFHfAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDgoDANBgkqhkiG9w0BAQsFAAOCAQEAMqBUyMXYcbeA 3G1K+fC8GWiaVPMPA8DVxXz0esgwIln8zC8GGRKlu6K+JaDwVikmon88Uawv6YO8 hmuHK/PGTjey45I9WhNsIKauix2jkyoGs3YhO9C2SBFyxM9aGOziJDjQWtMInYHX wN7/0LTGEfOEzW07X50acQqwlDgaD7L6pwWlD+u9XyqquVPfLp6sUQje5saFNzbH 40HBBVTzSnq+4IA8UUp7Hk4UeSAsl4tW08i0cCTCx5X30gqlp+p/0oMDzuQK7XpS J7Wn2Bq7BSiOuw4uLFt3Q1WJrRNLX0JQQgAt60CSkICaakuUJogCgrKeoXsYbAYb ePCZ7CvSJQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:03 2026 by rpki-client