This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Z8-tqx1DTEwmEYyaYp50-p83xGE.cer File: Z8-tqx1DTEwmEYyaYp50-p83xGE.cer (raw, json) Hash identifier: OFkjf4rzaemRVkPk19jvvxSyHiY2dFSux+gn8j32OWc= Subject key identifier: 67:CF:AD:AB:1D:43:4C:4C:26:11:8C:9A:62:9E:74:FA:9F:37:C4:61 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797F235860DC8BD53724E86947AA94AD Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e3/1e1ec8-dbf4-43e3-bfea-73797d00687f/1/Z8-tqx1DTEwmEYyaYp50-p83xGE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e3/1e1ec8-dbf4-43e3-bfea-73797d00687f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.84.26.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 25 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:23:58:60:dc:8b:d5:37:24:e8:69:47:aa:94:ad Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=67cfadab1d434c4c26118c9a629e74fa9f37c461 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:df:1d:56:cc:30:3f:68:7f:6b:5f:f3:40:fa:d8: d5:84:12:3d:40:57:e1:2d:49:d6:3e:70:33:56:f4: e8:bf:54:ec:94:2e:32:e0:b9:91:ea:17:44:33:dc: ba:10:c5:ca:b1:df:84:1c:f3:4a:7e:15:bb:05:64: fa:aa:14:0f:5e:e6:01:00:ea:86:0a:c5:c1:fa:b0: 78:e0:99:92:90:c5:c9:ce:79:92:e7:a6:bc:94:0b: 4d:88:4f:50:bb:cc:8f:1e:bd:6c:b7:dc:62:d8:59: 6e:4c:e9:9a:99:ce:43:e9:0f:e6:ee:0c:ac:cd:cc: 0d:47:aa:73:8f:7f:e6:71:df:cd:2d:c1:c8:7b:69: ca:93:8a:9c:9e:6d:9b:37:f2:08:56:e1:fa:73:19: b0:7d:35:c1:39:5f:7a:08:0e:20:fc:15:7b:f9:1b: fd:25:e1:93:26:49:6e:e1:36:9f:7c:75:44:12:e7: 9b:17:b8:dc:fb:da:8d:0e:1e:ad:57:a5:26:76:c3: 3e:2a:e6:69:58:69:85:59:71:e2:f5:68:c7:fc:ff: a5:f6:9d:40:42:1f:09:b5:99:98:80:36:b8:dc:b0: 05:b1:02:03:bf:2f:db:66:bb:95:98:fb:bf:b7:e5: 1b:cb:9e:21:13:1a:72:d1:7c:39:d1:37:1e:fe:67: 1b:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 67:CF:AD:AB:1D:43:4C:4C:26:11:8C:9A:62:9E:74:FA:9F:37:C4:61 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/1e1ec8-dbf4-43e3-bfea-73797d00687f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/1e1ec8-dbf4-43e3-bfea-73797d00687f/1/Z8-tqx1DTEwmEYyaYp50-p83xGE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.84.26.0/24 Signature Algorithm: sha256WithRSAEncryption 1b:d7:e6:71:73:ac:14:0f:d1:48:9c:a5:f5:a3:53:c6:e2:aa: e2:c9:d9:ec:41:65:1d:df:30:a0:b0:97:c1:77:c1:84:34:ad: c6:bb:41:af:1e:39:06:44:90:7a:a1:94:c4:da:90:1e:6c:95: 4a:0a:d4:7d:4e:10:cb:85:dd:8c:b6:8b:6c:34:05:5e:4b:53: fc:80:3b:3e:f6:e2:45:9c:86:5f:32:f0:15:f1:a8:7f:19:26: 4b:a6:98:53:1a:07:8b:e4:9c:8f:ac:96:8b:f3:40:e9:69:f7: b9:2b:65:88:2c:28:89:5d:d2:01:89:fe:cb:26:de:26:dd:a9: 7f:72:84:14:90:77:5b:37:02:8a:cd:e9:bf:a8:e1:34:6d:f5: 6b:33:25:79:c1:cf:48:a1:89:85:ed:09:38:d0:8c:ff:32:fe: a8:85:00:35:ea:3d:ad:e5:21:3d:7d:85:a0:60:67:a8:b9:76: 2c:8c:ec:5f:cf:78:60:fe:82:95:dd:5a:b9:23:91:1e:39:bf: ff:3c:91:39:a6:dc:f7:3f:de:f3:e6:33:81:8c:c5:3d:02:6f: d3:45:2e:04:fa:37:15:70:f4:fa:74:96:d7:9d:07:22:39:49: 6e:43:8c:0a:5e:e7:7e:f8:c8:1a:94:84:e6:c6:66:78:e2:7b: 00:2b:b0:75 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt5fyNYYNyL1Tck6GlHqpStMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2N2NmYWRhYjFkNDM0YzRjMjYxMThjOWE2MjllNzRmYTlmMzdjNDYxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3x1WzDA/aH9rX/NA+tjVhBI9QFfh LUnWPnAzVvTov1TslC4y4LmR6hdEM9y6EMXKsd+EHPNKfhW7BWT6qhQPXuYBAOqG CsXB+rB44JmSkMXJznmS56a8lAtNiE9Qu8yPHr1st9xi2FluTOmamc5D6Q/m7gys zcwNR6pzj3/mcd/NLcHIe2nKk4qcnm2bN/IIVuH6cxmwfTXBOV96CA4g/BV7+Rv9 JeGTJklu4TaffHVEEuebF7jc+9qNDh6tV6UmdsM+KuZpWGmFWXHi9WjH/P+l9p1A Qh8JtZmYgDa43LAFsQIDvy/bZruVmPu/t+Uby54hExpy0Xw50Tce/mcbBQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFGfPrasdQ0xMJhGMmmKedPqfN8RhMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UzLzFlMWVj OC1kYmY0LTQzZTMtYmZlYS03Mzc5N2QwMDY4N2YvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTMvMWUxZWM4 LWRiZjQtNDNlMy1iZmVhLTczNzk3ZDAwNjg3Zi8xL1o4LXRxeDFEVEV3bUVZeWFZ cDUwLXA4M3hHRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwVQaMA0GCSqGSIb3DQEBCwUAA4IBAQAb1+Zx c6wUD9FInKX1o1PG4qriydnsQWUd3zCgsJfBd8GENK3Gu0GvHjkGRJB6oZTE2pAe bJVKCtR9ThDLhd2MtotsNAVeS1P8gDs+9uJFnIZfMvAV8ah/GSZLpphTGgeL5JyP rJaL80Dpafe5K2WILCiJXdIBif7LJt4m3al/coQUkHdbNwKKzem/qOE0bfVrMyV5 wc9IoYmF7Qk40Iz/Mv6ohQA16j2t5SE9fYWgYGeouXYsjOxfz3hg/oKV3Vq5I5Ee Ob//PJE5ptz3P97z5jOBjMU9Am/TRS4E+jcVcPT6dJbXnQciOUluQ4wKXud++Mga lITmxmZ44nsAK7B1 -----END CERTIFICATE-----Generated at Sun Jan 25 05:39:35 2026 by rpki-client