This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zKqIcsKz-XTJUWjSFL_Vfw-ekRk.cer File: zKqIcsKz-XTJUWjSFL_Vfw-ekRk.cer (raw, json) Hash identifier: ula/109SfJs+ysehQC77QxXlVbastS/iK3aO0xp4qU0= Subject key identifier: CC:AA:88:72:C2:B3:F9:74:C9:51:68:D2:14:BF:D5:7F:0F:9E:91:19 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB346C278328E0C945F3CCEBE11E44 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/zKqIcsKz-XTJUWjSFL_Vfw-ekRk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216163 IP: 31.24.254.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:34:6c:27:83:28:e0:c9:45:f3:cc:eb:e1:1e:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ccaa8872c2b3f974c95168d214bfd57f0f9e9119 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:d2:06:0c:6a:a3:36:63:54:d9:a5:93:41:0f: 73:ac:aa:d0:13:55:f2:14:ea:6f:31:a8:6c:c8:7c: 59:3e:e1:dc:e7:33:ec:d2:8f:d4:15:d1:f1:2b:97: cf:18:56:fb:35:41:17:6d:a2:32:05:4e:5c:58:5a: dc:a2:f2:96:63:61:df:ff:f3:39:32:3a:62:72:ec: 81:5a:eb:73:67:14:cb:da:9b:0f:59:20:cc:9a:4e: 06:eb:b4:29:d4:db:ec:10:f9:6d:59:e7:57:77:ed: ed:24:75:6a:68:ea:44:9c:92:72:8d:fa:8a:c3:31: 95:2f:ce:f2:14:e6:3d:64:48:94:a5:93:15:20:dc: 5e:cc:ec:b9:e8:02:3c:7d:08:8d:9e:c0:27:94:af: 2d:2a:f1:99:83:97:d7:1e:1c:74:5f:e2:25:23:c8: ab:40:21:c0:1b:26:d4:5c:1e:dd:92:55:b7:58:a9: 21:b7:60:3d:c0:bf:21:f2:64:e8:24:5c:df:b0:e4: 97:e7:cd:5a:4a:6f:25:6b:ee:4d:cb:dd:09:c3:0c: 15:02:79:f7:cc:6e:35:4c:8d:e9:c4:d7:c7:81:b3: 1b:94:3b:3a:40:04:d1:e9:a9:15:2d:db:de:e1:91: fe:82:80:47:3d:b9:e4:bf:0b:c4:c4:2d:6f:d0:f7: 4d:df Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CC:AA:88:72:C2:B3:F9:74:C9:51:68:D2:14:BF:D5:7F:0F:9E:91:19 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a0/fa3c0f-c232-4644-b2f4-e04c58a41f66/1/zKqIcsKz-XTJUWjSFL_Vfw-ekRk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.24.254.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 216163 Signature Algorithm: sha256WithRSAEncryption a5:24:98:4a:8d:76:26:ff:61:21:7c:45:88:4f:fd:49:69:1a: f9:d8:63:96:b0:f6:d3:d2:44:c5:9f:3d:5e:bc:15:cc:0d:ce: c2:07:ef:2d:dd:82:e0:e3:ab:d7:ec:70:eb:91:95:83:c6:6c: 15:2d:b0:49:36:81:90:fd:b3:42:3e:29:14:40:a1:aa:3b:0e: 56:38:9e:6d:21:c4:f0:7c:0a:9e:33:68:8f:74:4c:9a:6e:bb: c8:0f:77:b5:ce:69:c0:28:88:35:4f:0d:2d:59:72:3b:65:b7: 4e:53:df:53:c7:5b:56:c5:55:f4:5b:66:0d:0e:59:b9:2d:8b: 34:1d:07:c9:53:78:e8:6a:b4:31:90:e7:ec:04:33:a7:72:9a: 62:52:43:2f:da:f9:4c:9b:96:2e:13:ae:04:c8:6c:31:62:e1: cd:e6:49:30:aa:cc:0c:03:76:f6:78:4d:1d:e8:78:89:29:56: 64:c7:b4:dc:32:59:78:1f:fd:80:ec:2b:8d:b8:57:d5:8a:59: fa:7c:77:a7:eb:81:ec:62:b7:66:59:a6:ed:f6:fb:b5:b4:96: 89:18:82:4b:8f:57:38:a9:fa:a2:a2:5d:c0:39:69:41:e5:54: 45:5c:c6:b6:21:54:27:ea:ce:f8:ad:fc:5e:e6:6a:64:4f:01: 25:52:60:02 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt26zRsJ4Mo4MlF88zr4R5EMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjY2FhODg3MmMyYjNmOTc0Yzk1MTY4ZDIxNGJmZDU3ZjBmOWU5MTE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw9IGDGqjNmNU2aWTQQ9zrKrQE1Xy FOpvMahsyHxZPuHc5zPs0o/UFdHxK5fPGFb7NUEXbaIyBU5cWFrcovKWY2Hf//M5 MjpicuyBWutzZxTL2psPWSDMmk4G67Qp1NvsEPltWedXd+3tJHVqaOpEnJJyjfqK wzGVL87yFOY9ZEiUpZMVINxezOy56AI8fQiNnsAnlK8tKvGZg5fXHhx0X+IlI8ir QCHAGybUXB7dklW3WKkht2A9wL8h8mToJFzfsOSX581aSm8la+5Ny90JwwwVAnn3 zG41TI3pxNfHgbMblDs6QATR6akVLdve4ZH+goBHPbnkvwvExC1v0PdN3wIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFMyqiHLCs/l0yVFo0hS/1X8PnpEZMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EwL2ZhM2Mw Zi1jMjMyLTQ2NDQtYjJmNC1lMDRjNThhNDFmNjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTAvZmEzYzBm LWMyMzItNDY0NC1iMmY0LWUwNGM1OGE0MWY2Ni8xL3pLcUljc0t6LVhUSlVXalNG TF9WZnctZWtSay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAHxj+MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwNMYzANBgkqhkiG9w0BAQsFAAOCAQEApSSYSo12Jv9hIXxFiE/9SWka+dhjlrD2 09JExZ89XrwVzA3OwgfvLd2C4OOr1+xw65GVg8ZsFS2wSTaBkP2zQj4pFEChqjsO VjiebSHE8HwKnjNoj3RMmm67yA93tc5pwCiINU8NLVlyO2W3TlPfU8dbVsVV9Ftm DQ5ZuS2LNB0HyVN46Gq0MZDn7AQzp3KaYlJDL9r5TJuWLhOuBMhsMWLhzeZJMKrM DAN29nhNHeh4iSlWZMe03DJZeB/9gOwrjbhX1YpZ+nx3p+uB7GK3Zlmm7fb7tbSW iRiCS49XOKn6oqJdwDlpQeVURVzGtiFUJ+rO+K38XuZqZE8BJVJgAg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:41 2026 by rpki-client