This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/02fRY1tGs8InSyh1Bbu9fZFdyvU.cer File: 02fRY1tGs8InSyh1Bbu9fZFdyvU.cer (raw, json) Hash identifier: ezW6MKuOBCOu/DjTL0th0PNoRCPfWJBxKZJU6z86VIA= Subject key identifier: D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5AF29D00C70264DCF9EFBA7114C138 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/02fRY1tGs8InSyh1Bbu9fZFdyvU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:17:50 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 35838 IP: 178.255.80.0/21 IP: 2a02:1788::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:f2:9d:00:c7:02:64:dc:f9:ef:ba:71:14:c1:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:17:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d367d1635b46b3c2274b287505bbbd7d915dcaf5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:83:68:70:fc:a3:46:ae:88:b4:8b:a5:c7:31: 73:bd:91:3f:0b:9a:5e:fc:d2:0c:bc:4f:9f:07:fd: 22:35:33:47:ce:d4:54:e0:26:2e:14:20:06:27:b9: 0c:35:40:15:ce:af:62:27:ae:b9:c0:79:58:84:29: b1:1f:72:80:97:b1:f6:13:d0:f9:9b:ef:ec:fb:9e: 46:04:19:90:14:f7:9a:f0:76:70:a2:dc:36:9a:6c: 16:f5:ca:b5:9a:2e:15:1c:08:0c:dc:ae:7b:cb:e0: fb:ff:37:ef:27:eb:91:3d:e6:bf:50:b5:5b:52:05: ed:f9:14:76:19:86:a8:ca:2f:45:0e:b3:45:29:42: 97:81:0a:76:6c:b8:7d:49:79:5e:5e:49:c4:d1:c6: 27:a3:18:d3:06:f7:87:fa:f9:a8:a2:70:42:7a:dc: 6f:20:94:be:a8:08:75:b7:e4:03:7d:bf:82:84:26: 5e:c6:96:2e:5e:95:a3:a6:d0:00:73:24:8a:59:c2: d8:41:5b:14:d1:b1:7d:c7:c0:2a:32:b5:e8:9f:68: be:e9:1e:7d:6f:9c:50:ce:c4:c9:ea:92:b0:4a:d5: 38:22:67:a3:e8:f4:fd:9b:14:72:fe:6b:c3:44:54: 61:2a:c0:e0:08:e2:8a:d2:b3:c7:9b:d7:23:58:9b: a3:f9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:67:D1:63:5B:46:B3:C2:27:4B:28:75:05:BB:BD:7D:91:5D:CA:F5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f7/8a8b4c-8f12-4c8d-8be4-69b8d6b53e8c/1/02fRY1tGs8InSyh1Bbu9fZFdyvU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.255.80.0/21 IPv6: 2a02:1788::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 35838 Signature Algorithm: sha256WithRSAEncryption 39:6b:eb:f8:79:a3:04:7b:a7:86:2b:e4:95:23:4d:02:70:8b: f1:85:77:c0:1f:a8:f7:f4:7a:09:82:e7:f7:37:d4:cd:4c:17: 97:72:76:de:7a:ad:37:d2:30:1c:e7:c0:0f:30:fa:da:44:e6: d3:a2:c3:c3:fd:06:8b:72:01:d8:30:44:19:e0:af:40:25:c5: a3:29:fc:59:b7:e3:a0:1e:90:a3:fa:c5:a2:ce:f4:26:ca:59: c8:46:9b:bc:ef:29:21:a0:98:57:d3:db:58:89:48:59:c5:1d: 68:a9:eb:99:9a:e8:5e:86:c2:9b:e8:65:eb:4e:f0:12:c0:2f: 60:34:69:c7:5c:69:00:54:aa:6f:69:85:d1:ff:a7:2b:be:ca: f5:70:3f:12:32:d4:5b:8a:1f:68:0e:3a:01:86:03:c4:bc:bb: 4c:23:6f:51:e4:4d:17:aa:8b:4a:f3:12:ef:8a:b4:87:ab:13: e2:9f:6c:cf:d0:e6:4e:5a:a5:bd:a6:a8:5a:85:61:11:36:66: 11:22:71:66:6d:c8:4e:3e:b4:85:ba:c6:8f:da:df:e1:23:d9: 86:2a:d5:0a:16:8d:16:05:33:c8:26:9e:b6:62:0f:57:28:96: c2:ae:89:d9:5e:70:ae:c1:53:9b:7b:2a:9e:cf:10:14:c3:e9: f9:8c:5b:0c -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9WvKdAMcCZNz577pxFME4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxNzUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzY3ZDE2MzViNDZiM2MyMjc0YjI4NzUwNWJiYmQ3ZDkxNWRjYWY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4INocPyjRq6ItIulxzFzvZE/C5pe /NIMvE+fB/0iNTNHztRU4CYuFCAGJ7kMNUAVzq9iJ665wHlYhCmxH3KAl7H2E9D5 m+/s+55GBBmQFPea8HZwotw2mmwW9cq1mi4VHAgM3K57y+D7/zfvJ+uRPea/ULVb UgXt+RR2GYaoyi9FDrNFKUKXgQp2bLh9SXleXknE0cYnoxjTBveH+vmoonBCetxv IJS+qAh1t+QDfb+ChCZexpYuXpWjptAAcySKWcLYQVsU0bF9x8AqMrXon2i+6R59 b5xQzsTJ6pKwStU4Imej6PT9mxRy/mvDRFRhKsDgCOKK0rPHm9cjWJuj+QIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFNNn0WNbRrPCJ0sodQW7vX2RXcr1MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y3LzhhOGI0 Yy04ZjEyLTRjOGQtOGJlNC02OWI4ZDZiNTNlOGMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjcvOGE4YjRj LThmMTItNGM4ZC04YmU0LTY5YjhkNmI1M2U4Yy8xLzAyZlJZMXRHczhJblN5aDFC YnU5ZlpGZHl2VS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQDsv9QMA0EAgACMAcDBQAqAheIMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCL/jANBgkqhkiG9w0BAQsFAAOCAQEAOWvr+HmjBHun hivklSNNAnCL8YV3wB+o9/R6CYLn9zfUzUwXl3J23nqtN9IwHOfADzD62kTm06LD w/0Gi3IB2DBEGeCvQCXFoyn8WbfjoB6Qo/rFos70JspZyEabvO8pIaCYV9PbWIlI WcUdaKnrmZroXobCm+hl607wEsAvYDRpx1xpAFSqb2mF0f+nK77K9XA/EjLUW4of aA46AYYDxLy7TCNvUeRNF6qLSvMS74q0h6sT4p9sz9DmTlqlvaaoWoVhETZmESJx Zm3ITj60hbrGj9rf4SPZhirVChaNFgUzyCaetmIPVyiWwq6J2V5wrsFTm3sqns8Q FMPp+YxbDA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:52 2026 by rpki-client