This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zzaFkhY6Sa04_60dQZp3UrMz2nc.cer File: zzaFkhY6Sa04_60dQZp3UrMz2nc.cer (raw, json) Hash identifier: HtxWgYGtj+7Te6LDfGcXMG/WFrwAeJFpCGOguvwXY7Q= Subject key identifier: CF:36:85:92:16:3A:49:AD:38:FF:AD:1D:41:9A:77:52:B3:33:DA:77 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A2E708ADEEFB3B918B5DD47A860344 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/zzaFkhY6Sa04_60dQZp3UrMz2nc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:20 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 56717 IP: 91.227.7.0/24 IP: 2001:67c:2c04::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:e7:08:ad:ee:fb:3b:91:8b:5d:d4:7a:86:03:44 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cf368592163a49ad38ffad1d419a7752b333da77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:8d:bc:f5:06:40:81:8d:ff:72:ac:90:18:38: 94:9e:22:50:c5:bc:f8:ed:0f:5f:c0:85:b1:30:be: e3:b9:dc:1a:a2:f6:c4:e5:47:62:f4:68:9a:be:55: e1:c6:bd:4d:4e:a2:31:28:b7:ff:ef:ca:9a:6c:26: 2e:c0:59:73:b2:04:30:eb:66:46:4b:88:53:6d:5e: 28:56:cc:e4:43:c6:92:31:61:05:75:70:fa:4a:bf: 5f:f2:6e:ad:fc:b9:95:b3:29:22:b1:2e:0b:ba:93: 12:75:50:ab:cf:05:5c:64:02:7c:12:9c:49:96:aa: 5c:12:04:b4:a7:87:21:c9:36:0a:47:46:61:50:3e: 7e:9b:a4:85:9b:58:07:13:7e:3d:77:9c:9a:df:22: 85:58:f8:36:a0:e8:f5:2e:49:5e:aa:38:b7:05:74: 31:17:a8:9b:e1:bb:73:45:97:a8:27:8d:72:86:3b: f1:6c:29:4b:3c:46:77:19:2f:22:d0:20:78:80:cf: 63:01:3d:48:8c:5c:07:23:86:eb:2d:35:65:e1:ab: 84:f0:16:54:5e:28:a3:b1:d2:b0:fd:24:54:95:27: 66:83:d2:22:eb:cf:c2:ee:4d:bb:19:d6:0c:91:ea: 1a:1a:fa:00:f4:e7:1e:fe:80:5c:fa:ad:7b:a8:7d: 89:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:36:85:92:16:3A:49:AD:38:FF:AD:1D:41:9A:77:52:B3:33:DA:77 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/7206c7-ff26-40ce-be71-231ac6ed9785/1/zzaFkhY6Sa04_60dQZp3UrMz2nc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.227.7.0/24 IPv6: 2001:67c:2c04::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 56717 Signature Algorithm: sha256WithRSAEncryption 7b:38:32:40:df:57:9d:dd:b4:5c:3d:ef:c1:f3:f1:89:b8:f9: 9b:32:e0:be:f8:71:ff:95:12:f1:db:e7:c6:f3:d8:6d:0d:39: 4d:6b:96:fb:7d:f8:e7:e9:9d:5e:85:a8:06:a9:cb:8c:8f:9c: e4:86:39:8d:f4:c5:5a:9f:ab:b3:2d:51:0c:1c:82:bb:09:22: dc:58:7b:30:f8:7b:25:d6:4d:cb:5a:e3:c8:65:01:b7:c3:2c: cd:60:bf:a8:77:38:08:5c:d6:95:55:3e:74:84:76:5f:da:63: ec:aa:d1:24:12:fe:f2:da:80:58:ac:fe:25:4f:94:3b:40:6a: 7a:d5:f4:b7:19:97:5b:3d:a7:be:46:24:34:42:79:d6:d0:8e: b7:36:9f:fd:26:a6:7f:bd:05:fb:8d:91:41:3e:18:b6:38:04: b5:4a:64:16:e2:29:8a:bb:cf:00:00:06:a2:6d:ba:ac:38:93: 55:7a:c3:86:56:91:d1:e7:ed:12:1b:29:4d:7e:4d:f4:28:e4: 4a:4a:07:2f:cc:12:bf:9b:2b:96:44:33:01:d8:2f:c4:b4:62: f6:75:3d:04:b3:cf:b5:0a:3d:2d:ff:ef:98:e4:08:d1:e7:ce: 1d:4a:7d:67:3b:d2:c2:48:9f:58:fa:6c:0a:32:15:da:af:84: cb:d9:e5:c5 -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt4oucIre77O5GLXdR6hgNEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjM2ODU5MjE2M2E0OWFkMzhmZmFkMWQ0MTlhNzc1MmIzMzNkYTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvI289QZAgY3/cqyQGDiUniJQxbz4 7Q9fwIWxML7judwaovbE5Udi9GiavlXhxr1NTqIxKLf/78qabCYuwFlzsgQw62ZG S4hTbV4oVszkQ8aSMWEFdXD6Sr9f8m6t/LmVsykisS4LupMSdVCrzwVcZAJ8EpxJ lqpcEgS0p4chyTYKR0ZhUD5+m6SFm1gHE349d5ya3yKFWPg2oOj1Lkleqji3BXQx F6ib4btzRZeoJ41yhjvxbClLPEZ3GS8i0CB4gM9jAT1IjFwHI4brLTVl4auE8BZU XiijsdKw/SRUlSdmg9Ii68/C7k27GdYMkeoaGvoA9Oce/oBc+q17qH2JVQIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFM82hZIWOkmtOP+tHUGad1KzM9p3MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M5LzcyMDZj Ny1mZjI2LTQwY2UtYmU3MS0yMzFhYzZlZDk3ODUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzkvNzIwNmM3 LWZmMjYtNDBjZS1iZTcxLTIzMWFjNmVkOTc4NS8xL3p6YUZraFk2U2EwNF82MGRR WnAzVXJNejJuYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAW+MHMA8EAgACMAkDBwAgAQZ8LAQwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAN2NMA0GCSqGSIb3DQEBCwUAA4IBAQB7ODJA31ed 3bRcPe/B8/GJuPmbMuC++HH/lRLx2+fG89htDTlNa5b7ffjn6Z1ehagGqcuMj5zk hjmN9MVan6uzLVEMHIK7CSLcWHsw+Hsl1k3LWuPIZQG3wyzNYL+odzgIXNaVVT50 hHZf2mPsqtEkEv7y2oBYrP4lT5Q7QGp61fS3GZdbPae+RiQ0QnnW0I63Np/9JqZ/ vQX7jZFBPhi2OAS1SmQW4imKu88AAAaibbqsOJNVesOGVpHR5+0SGylNfk30KORK SgcvzBK/myuWRDMB2C/EtGL2dT0Es8+1Cj0t/++Y5AjR584dSn1nO9LCSJ9Y+mwK MhXar4TL2eXF -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:45 2026 by rpki-client