This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zxhBQM0aIj9ji3mW9UifSF2O5ic.cer File: zxhBQM0aIj9ji3mW9UifSF2O5ic.cer (raw, json) Hash identifier: SrNjh8vtj4exsgShJUH+NAJle2DtT3awKN3eDIyUq3E= Subject key identifier: CF:18:41:40:CD:1A:22:3F:63:8B:79:96:F5:48:9F:48:5D:8E:E6:27 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5B6FE4055D15F7BD701406029ACAE8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:19:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215457 IP: 31.128.56.0/22 IP: 193.9.17.0/24 IP: 2001:67c:1848::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:6f:e4:05:5d:15:f7:bd:70:14:06:02:9a:ca:e8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:19:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cf184140cd1a223f638b7996f5489f485d8ee627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f1:7c:2d:39:dc:75:8b:3b:e1:25:20:2a:e8: 65:12:de:3a:af:62:ef:d2:76:bd:a6:88:88:17:12: cd:0d:f5:cb:a7:d2:32:a4:b2:9b:1e:3e:44:6a:68: 17:9c:aa:ec:ca:11:7b:70:5a:43:aa:67:64:72:10: e1:ae:83:d0:46:da:8c:4a:fe:c9:55:8d:26:ce:58: ef:43:66:5c:b8:b2:f7:e2:db:12:f0:54:e5:e6:ed: b2:26:61:fb:19:da:f5:73:64:62:03:9f:41:c0:ba: 08:eb:0e:3a:ce:a3:43:c5:3d:e2:26:5b:11:78:ec: 32:b2:ae:02:ea:da:09:0c:5d:c8:8d:17:38:76:06: 3e:9f:68:f8:85:4f:80:9f:96:18:1d:af:90:7c:84: 40:15:bc:43:05:4a:78:34:20:4e:8b:2e:77:87:a1: 93:eb:24:6f:1e:83:bd:54:3d:55:0c:c8:72:e2:7e: 44:90:79:90:ee:43:1a:00:fa:32:21:43:9f:d7:9f: 6f:8b:44:30:1c:39:8e:d6:be:c1:67:71:b8:a3:45: 5f:a1:de:26:91:c3:b6:7d:5e:91:93:22:e0:ae:88: 44:1c:ee:65:06:b3:75:87:98:a5:c9:9d:25:21:b6: 38:9b:ab:bb:76:9d:a4:16:62:27:9b:6f:ec:af:97: d6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:18:41:40:CD:1A:22:3F:63:8B:79:96:F5:48:9F:48:5D:8E:E6:27 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.128.56.0/22 193.9.17.0/24 IPv6: 2001:67c:1848::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215457 Signature Algorithm: sha256WithRSAEncryption 2e:f3:d8:13:91:14:23:15:02:3e:9d:20:6b:e0:c1:c8:81:a1: cc:e7:77:a1:b8:34:d5:29:25:1d:a4:6e:d0:d8:2a:89:de:e0: 7a:8f:ae:13:63:08:88:14:9a:9d:35:60:67:6a:b7:6d:6d:ba: 8b:e1:90:ef:c2:73:ad:5c:e4:12:03:f9:1e:12:11:fe:5e:76: bb:d1:1f:d9:75:01:22:40:d1:c1:1d:df:28:10:11:47:52:73: dc:e4:1c:d7:37:81:30:d8:55:89:d8:17:c1:f6:f1:ce:57:38: 03:5b:ed:ed:22:a2:0e:27:7f:bd:c9:b0:b3:2a:bb:1a:61:35: 2d:96:72:0d:33:bc:00:3b:18:6b:2a:83:d6:17:92:7a:7b:78: e2:c3:6a:97:a4:67:a8:e5:fc:d8:dc:53:97:9e:f0:1b:1e:50: ef:3a:93:3d:76:07:2f:1c:b0:da:d0:b1:f1:86:ed:3d:75:ef: 73:2d:a9:62:dd:23:6a:07:d8:53:11:53:4a:4f:45:f4:3d:7a: c6:41:aa:7a:a9:e7:13:c6:fc:79:cf:b6:36:0a:3c:a4:85:1c: fe:92:46:29:3d:1e:e1:5b:84:33:c6:e4:ef:76:4d:f2:8d:68: e4:a8:8a:55:d6:48:3a:ff:ce:93:d3:9e:b8:6a:92:8e:ec:27: 07:28:9a:dd -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgISAZt6W2/kBV0V971wFAYCmsroMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxOTMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjE4NDE0MGNkMWEyMjNmNjM4Yjc5OTZmNTQ4OWY0ODVkOGVlNjI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvF8LTncdYs74SUgKuhlEt46r2Lv 0na9poiIFxLNDfXLp9IypLKbHj5EamgXnKrsyhF7cFpDqmdkchDhroPQRtqMSv7J VY0mzljvQ2ZcuLL34tsS8FTl5u2yJmH7Gdr1c2RiA59BwLoI6w46zqNDxT3iJlsR eOwysq4C6toJDF3IjRc4dgY+n2j4hU+An5YYHa+QfIRAFbxDBUp4NCBOiy53h6GT 6yRvHoO9VD1VDMhy4n5EkHmQ7kMaAPoyIUOf159vi0QwHDmO1r7BZ3G4o0Vfod4m kcO2fV6RkyLgrohEHO5lBrN1h5ilyZ0lIbY4m6u7dp2kFmInm2/sr5fWeQIDAQAB o4ICtzCCArMwHQYDVR0OBBYEFM8YQUDNGiI/Y4t5lvVIn0hdjuYnMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQwLzA3YmYy OS0wN2QxLTRkYWYtYjNiYi1jYmZiMmM3ZmJhZGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAvMDdiZjI5 LTA3ZDEtNGRhZi1iM2JiLWNiZmIyYzdmYmFkZC8xL3p4aEJRTTBhSWo5amkzbVc5 VWlmU0YyTzVpYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF BwEHAQH/BCcwJTASBAIAATAMAwQCH4A4AwQAwQkRMA8EAgACMAkDBwAgAQZ8GEgw GgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDA0mhMA0GCSqGSIb3DQEBCwUAA4IBAQAu 89gTkRQjFQI+nSBr4MHIgaHM53ehuDTVKSUdpG7Q2CqJ3uB6j64TYwiIFJqdNWBn ardtbbqL4ZDvwnOtXOQSA/keEhH+Xna70R/ZdQEiQNHBHd8oEBFHUnPc5BzXN4Ew 2FWJ2BfB9vHOVzgDW+3tIqIOJ3+9ybCzKrsaYTUtlnINM7wAOxhrKoPWF5J6e3ji w2qXpGeo5fzY3FOXnvAbHlDvOpM9dgcvHLDa0LHxhu09de9zLali3SNqB9hTEVNK T0X0PXrGQap6qecTxvx5z7Y2CjykhRz+kkYpPR7hW4QzxuTvdk3yjWjkqIpV1kg6 /86T0564apKO7CcHKJrd -----END CERTIFICATE-----Generated at Mon Feb 9 18:29:18 2026 by rpki-client