This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zm4aIgj6PxufPTj_8fjiw02RHzY.cer File: zm4aIgj6PxufPTj_8fjiw02RHzY.cer (raw, json) Hash identifier: /jeO1AtSLakUr7KlS2v3L84a25kOxYIShM5ubMaJta8= Subject key identifier: CE:6E:1A:22:08:FA:3F:1B:9F:3D:38:FF:F1:F8:E2:C3:4D:91:1F:36 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EAFA39F09391783416095E2519A119 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b1/40746e-74c0-47ca-a23c-9fef0114a2e5/1/zm4aIgj6PxufPTj_8fjiw02RHzY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b1/40746e-74c0-47ca-a23c-9fef0114a2e5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:17:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.43.100.0/24 IP: 193.43.110.0/24 IP: 193.43.126.0/24 IP: 193.43.136.0/24 IP: 2a0f:8240::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:fa:39:f0:93:91:78:34:16:09:5e:25:19:a1:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:17:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ce6e1a2208fa3f1b9f3d38fff1f8e2c34d911f36 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:f7:16:d2:86:c1:19:c1:ad:97:22:8c:a4:40: 20:9f:5b:e9:31:6c:ae:6e:12:4f:65:ea:67:0a:07: 6f:41:f7:04:b8:ac:49:2e:ce:4e:60:d0:1f:fd:61: ca:f3:53:16:79:4e:4d:9f:0e:0f:82:21:ff:76:b9: bd:7a:40:0a:3d:74:f7:75:c0:22:0d:a8:1c:f2:10: ac:f7:86:43:44:16:71:71:23:b8:fc:f6:ce:25:fa: a2:e5:94:3d:8d:30:16:e5:8f:3e:cb:08:19:ee:cc: c4:be:0c:12:f3:25:ed:b3:e8:d7:11:bc:a4:f7:75: af:d7:e4:96:97:7e:bb:9a:2d:12:1b:3c:4d:5b:a8: 43:91:53:8a:78:dc:f6:3f:57:14:6b:70:ad:bd:ee: c6:47:56:86:c9:8e:5a:10:ac:4f:62:3a:97:68:08: 95:de:ab:d4:e0:5b:56:2e:72:a8:7c:a6:b6:42:98: c0:3f:0d:3e:2c:5b:90:53:5c:e7:d7:ef:7f:1d:e1: ab:bb:fc:27:24:6e:9b:3a:36:0d:97:c3:e0:88:7c: 5f:2d:13:af:76:4c:7e:8a:ac:be:d4:2b:ff:d5:bd: 77:a1:34:87:fd:95:f6:c6:c0:4a:ea:7d:31:a0:77: 1a:e6:f5:06:50:86:af:8b:23:58:1c:d7:7f:aa:9f: f6:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CE:6E:1A:22:08:FA:3F:1B:9F:3D:38:FF:F1:F8:E2:C3:4D:91:1F:36 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/40746e-74c0-47ca-a23c-9fef0114a2e5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b1/40746e-74c0-47ca-a23c-9fef0114a2e5/1/zm4aIgj6PxufPTj_8fjiw02RHzY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.43.100.0/24 193.43.110.0/24 193.43.126.0/24 193.43.136.0/24 IPv6: 2a0f:8240::/29 Signature Algorithm: sha256WithRSAEncryption 95:85:6a:15:e9:eb:92:00:12:6a:7b:1c:d4:52:ea:7e:ce:64: d1:d4:0e:3b:2f:b7:39:83:b2:83:dc:c2:52:64:39:76:36:bb: 91:61:32:0b:98:33:de:39:cf:33:86:08:b4:4e:87:ae:1b:1e: a6:b3:54:40:06:54:f8:94:63:b0:5d:73:b0:1b:f8:17:ac:d9: 17:c9:69:40:26:51:8e:24:85:39:fc:2a:2a:76:5b:fc:de:7f: be:42:52:a9:0a:e9:6d:8f:96:0e:10:bf:a7:04:40:0d:ec:7a: 69:29:0d:bc:62:a9:d5:67:06:6a:26:eb:a3:66:44:2a:12:d8: 8b:61:b2:57:d8:d6:45:64:92:e8:d0:23:c4:19:78:e7:08:db: f9:24:ac:6e:2e:ea:7a:d2:58:b7:ff:3e:24:10:87:48:da:67: ac:77:a0:19:20:d7:fe:3a:57:f4:70:ce:88:88:72:4c:b1:6d: 0e:c6:d2:7b:7a:18:d6:41:8e:6e:42:10:bc:8c:54:f5:53:06: 2e:a1:06:c6:58:ce:36:99:c3:0c:0d:7a:00:5b:f8:3f:d9:ec: 87:26:c2:35:59:48:5f:13:73:0c:24:d6:cf:41:2c:c8:37:d5: 4e:0a:ab:86:a2:fa:10:d1:49:02:cc:44:e7:0c:0c:16:6a:8b: d6:f6:93:25 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgISAZt26vo58JOReDQWCV4lGaEZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxNzQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZTZlMWEyMjA4ZmEzZjFiOWYzZDM4ZmZmMWY4ZTJjMzRkOTExZjM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjPcW0obBGcGtlyKMpEAgn1vpMWyu bhJPZepnCgdvQfcEuKxJLs5OYNAf/WHK81MWeU5Nnw4PgiH/drm9ekAKPXT3dcAi Dagc8hCs94ZDRBZxcSO4/PbOJfqi5ZQ9jTAW5Y8+ywgZ7szEvgwS8yXts+jXEbyk 93Wv1+SWl367mi0SGzxNW6hDkVOKeNz2P1cUa3Ctve7GR1aGyY5aEKxPYjqXaAiV 3qvU4FtWLnKofKa2QpjAPw0+LFuQU1zn1+9/HeGru/wnJG6bOjYNl8PgiHxfLROv dkx+iqy+1Cv/1b13oTSH/ZX2xsBK6n0xoHca5vUGUIaviyNYHNd/qp/2iwIDAQAB o4ICpTCCAqEwHQYDVR0OBBYEFM5uGiII+j8bnz04//H44sNNkR82MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IxLzQwNzQ2 ZS03NGMwLTQ3Y2EtYTIzYy05ZmVmMDExNGEyZTUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjEvNDA3NDZl LTc0YzAtNDdjYS1hMjNjLTlmZWYwMTE0YTJlNS8xL3ptNGFJZ2o2UHh1ZlBUal84 ZmppdzAyUkh6WS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQAwStkAwQAwStuAwQAwSt+AwQAwSuIMA0EAgAC MAcDBQMqD4JAMA0GCSqGSIb3DQEBCwUAA4IBAQCVhWoV6euSABJqexzUUup+zmTR 1A47L7c5g7KD3MJSZDl2NruRYTILmDPeOc8zhgi0ToeuGx6ms1RABlT4lGOwXXOw G/gXrNkXyWlAJlGOJIU5/Coqdlv83n++QlKpCultj5YOEL+nBEAN7HppKQ28YqnV ZwZqJuujZkQqEtiLYbJX2NZFZJLo0CPEGXjnCNv5JKxuLup60li3/z4kEIdI2mes d6AZINf+Olf0cM6IiHJMsW0OxtJ7ehjWQY5uQhC8jFT1UwYuoQbGWM42mcMMDXoA W/g/2eyHJsI1WUhfE3MMJNbPQSzIN9VOCquGovoQ0UkCzETnDAwWaovW9pMl -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:40 2026 by rpki-client