This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zxhBQM0aIj9ji3mW9UifSF2O5ic.cer File: zxhBQM0aIj9ji3mW9UifSF2O5ic.cer (raw, json) Hash identifier: i1zvcgYi06nljHlogKIRwvmXjMFbjy+Y2Nbx5FBU1BE= Subject key identifier: CF:18:41:40:CD:1A:22:3F:63:8B:79:96:F5:48:9F:48:5D:8E:E6:27 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B02820539AC94C5DD01B1BFCDA4A94120 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Tue 09 Dec 2025 09:47:14 +0000 Certificate not after: Wed 01 Jul 2026 00:00:00 +0000 Subordinate resources: AS: 215457 IP: 31.128.56.0/22 IP: 193.9.17.0/24 IP: 2001:67c:1848::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 29 Dec 2025 20:59:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:02:82:05:39:ac:94:c5:dd:01:b1:bf:cd:a4:a9:41:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Dec 9 09:47:14 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=cf184140cd1a223f638b7996f5489f485d8ee627 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:f1:7c:2d:39:dc:75:8b:3b:e1:25:20:2a:e8: 65:12:de:3a:af:62:ef:d2:76:bd:a6:88:88:17:12: cd:0d:f5:cb:a7:d2:32:a4:b2:9b:1e:3e:44:6a:68: 17:9c:aa:ec:ca:11:7b:70:5a:43:aa:67:64:72:10: e1:ae:83:d0:46:da:8c:4a:fe:c9:55:8d:26:ce:58: ef:43:66:5c:b8:b2:f7:e2:db:12:f0:54:e5:e6:ed: b2:26:61:fb:19:da:f5:73:64:62:03:9f:41:c0:ba: 08:eb:0e:3a:ce:a3:43:c5:3d:e2:26:5b:11:78:ec: 32:b2:ae:02:ea:da:09:0c:5d:c8:8d:17:38:76:06: 3e:9f:68:f8:85:4f:80:9f:96:18:1d:af:90:7c:84: 40:15:bc:43:05:4a:78:34:20:4e:8b:2e:77:87:a1: 93:eb:24:6f:1e:83:bd:54:3d:55:0c:c8:72:e2:7e: 44:90:79:90:ee:43:1a:00:fa:32:21:43:9f:d7:9f: 6f:8b:44:30:1c:39:8e:d6:be:c1:67:71:b8:a3:45: 5f:a1:de:26:91:c3:b6:7d:5e:91:93:22:e0:ae:88: 44:1c:ee:65:06:b3:75:87:98:a5:c9:9d:25:21:b6: 38:9b:ab:bb:76:9d:a4:16:62:27:9b:6f:ec:af:97: d6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CF:18:41:40:CD:1A:22:3F:63:8B:79:96:F5:48:9F:48:5D:8E:E6:27 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/40/07bf29-07d1-4daf-b3bb-cbfb2c7fbadd/1/zxhBQM0aIj9ji3mW9UifSF2O5ic.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.128.56.0/22 193.9.17.0/24 IPv6: 2001:67c:1848::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215457 Signature Algorithm: sha256WithRSAEncryption 3a:e1:dd:07:e2:32:84:18:29:d8:e0:c9:5f:57:d0:38:06:77: 3d:a2:ca:3b:2a:dd:7b:9e:e8:4d:40:31:97:21:2d:b5:58:32: 18:e3:6c:bc:31:58:be:af:33:53:95:87:a4:90:7c:70:22:d6: 30:14:1b:e8:06:23:b9:92:9f:ff:13:b1:4b:dc:3e:9f:fb:c0: 68:f6:4b:1d:87:3a:b7:0b:85:48:7b:77:23:9e:8c:45:d8:fe: 48:10:2c:94:50:94:f4:b1:b7:02:35:6d:56:b2:2e:cd:2b:7a: 6c:22:3f:64:8e:a6:d5:32:dc:63:0b:be:49:46:84:cc:43:71: 42:ec:63:07:61:ed:5c:5c:2e:b9:46:88:27:c5:5c:0c:d2:6b: 74:71:f5:6d:53:19:93:5f:cc:63:91:8e:ff:18:a5:10:bb:8b: da:23:4d:af:e2:27:b6:5c:62:20:aa:01:b3:98:04:30:ca:1d: 76:7d:9d:f3:7a:fa:4d:ff:f4:31:4e:52:9b:4b:57:74:f5:18: 30:1a:c9:bb:c5:0e:15:f8:39:06:4d:96:d5:29:33:3a:1b:b0: 28:c6:6f:b8:68:ff:3b:65:bf:d0:11:6a:14:e1:18:66:13:88: 46:d1:90:37:7e:94:ba:aa:86:e8:7f:8c:51:48:f3:b3:d4:8f: bd:9f:b6:a1 -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgISAZsCggU5rJTF3QGxv82kqUEgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjUxMjA5MDk0NzE0WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZjE4NDE0MGNkMWEyMjNmNjM4Yjc5OTZmNTQ4OWY0ODVkOGVlNjI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqvF8LTncdYs74SUgKuhlEt46r2Lv 0na9poiIFxLNDfXLp9IypLKbHj5EamgXnKrsyhF7cFpDqmdkchDhroPQRtqMSv7J VY0mzljvQ2ZcuLL34tsS8FTl5u2yJmH7Gdr1c2RiA59BwLoI6w46zqNDxT3iJlsR eOwysq4C6toJDF3IjRc4dgY+n2j4hU+An5YYHa+QfIRAFbxDBUp4NCBOiy53h6GT 6yRvHoO9VD1VDMhy4n5EkHmQ7kMaAPoyIUOf159vi0QwHDmO1r7BZ3G4o0Vfod4m kcO2fV6RkyLgrohEHO5lBrN1h5ilyZ0lIbY4m6u7dp2kFmInm2/sr5fWeQIDAQAB o4ICtzCCArMwHQYDVR0OBBYEFM8YQUDNGiI/Y4t5lvVIn0hdjuYnMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQwLzA3YmYy OS0wN2QxLTRkYWYtYjNiYi1jYmZiMmM3ZmJhZGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDAvMDdiZjI5 LTA3ZDEtNGRhZi1iM2JiLWNiZmIyYzdmYmFkZC8xL3p4aEJRTTBhSWo5amkzbVc5 VWlmU0YyTzVpYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF BwEHAQH/BCcwJTASBAIAATAMAwQCH4A4AwQAwQkRMA8EAgACMAkDBwAgAQZ8GEgw GgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDA0mhMA0GCSqGSIb3DQEBCwUAA4IBAQA6 4d0H4jKEGCnY4MlfV9A4Bnc9oso7Kt17nuhNQDGXIS21WDIY42y8MVi+rzNTlYek kHxwItYwFBvoBiO5kp//E7FL3D6f+8Bo9ksdhzq3C4VIe3cjnoxF2P5IECyUUJT0 sbcCNW1Wsi7NK3psIj9kjqbVMtxjC75JRoTMQ3FC7GMHYe1cXC65RognxVwM0mt0 cfVtUxmTX8xjkY7/GKUQu4vaI02v4ie2XGIgqgGzmAQwyh12fZ3zevpN//QxTlKb S1d09RgwGsm7xQ4V+DkGTZbVKTM6G7Aoxm+4aP87Zb/QEWoU4RhmE4hG0ZA3fpS6 qobof4xRSPOz1I+9n7ah -----END CERTIFICATE-----Generated at Sun Dec 28 23:37:38 2025 by rpki-client