This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0vHIhC58-JGyNNOh4OLg73PoQqo.cer File: 0vHIhC58-JGyNNOh4OLg73PoQqo.cer (raw, json) Hash identifier: 2oDXO2n6FJqKcMLfI/e1KxboqGkYYGSTDkxegCh11b0= Subject key identifier: D2:F1:C8:84:2E:7C:F8:91:B2:34:D3:A1:E0:E2:E0:EF:73:E8:42:AA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEDD634BF4D6C3DC229A6FB7A5CBBC8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/0vHIhC58-JGyNNOh4OLg73PoQqo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 8339 AS: 8559 IP: 62.40.128.0/17 IP: 81.217.0.0/16 IP: 82.149.96.0/19 IP: 82.218.0.0/16 IP: 89.104.0.0/19 IP: 92.62.16.0/20 IP: 94.16.32.0/19 IP: 95.143.224.0/20 IP: 141.98.176.0/22 IP: 176.120.160.0/21 IP: 178.18.160.0/20 IP: 185.93.8.0/22 IP: 185.100.96.0/22 IP: 194.106.224.0/19 IP: 195.202.128.0/18 IP: 195.230.160.0/19 IP: 202.170.80.0/21 IP: 2a00:1b38::/32 IP: 2a02:e200::/30 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:d6:34:bf:4d:6c:3d:c2:29:a6:fb:7a:5c:bb:c8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d2f1c8842e7cf891b234d3a1e0e2e0ef73e842aa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c9:aa:20:a5:5c:92:02:9d:20:9e:ff:be:d6:54: 5c:50:a9:3d:5b:16:df:83:0b:31:4d:ca:b2:3b:9e: e8:c7:f9:2d:57:18:f0:a9:87:b3:93:2e:22:40:cf: 4c:00:6c:c5:ce:bd:ae:03:38:67:e7:8a:6d:1a:37: bd:ed:43:09:3b:89:91:c8:e0:92:e3:8b:60:41:09: c9:18:7b:06:81:f1:67:9c:11:db:7e:37:95:96:21: 3d:80:c0:87:db:ed:ab:e4:e6:7c:ef:ef:8b:7e:b8: 48:68:7f:23:49:05:f8:88:af:2e:d7:2a:31:c1:82: b9:e5:28:97:84:d2:81:53:e6:55:39:26:4d:37:c3: ef:c9:46:f6:70:85:e5:0a:31:f8:f5:15:e9:4e:e4: 4d:5a:db:31:8b:7d:40:e6:ac:30:28:a1:77:a9:68: 50:fe:98:fd:da:0a:b8:24:7b:35:52:eb:c9:9b:a5: c4:1f:ff:a8:01:ee:d5:42:33:fc:5a:ff:f2:33:ca: 1e:08:c0:f3:9b:10:c6:09:34:b7:b1:61:fa:eb:ef: 1f:02:1a:70:81:9e:e0:57:f0:7b:a3:c8:80:b6:fd: c9:0d:55:3e:12:c2:41:a7:21:59:08:14:26:69:ec: 6e:23:6f:e4:e4:13:12:f3:ff:24:26:5a:d4:ba:31: 22:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D2:F1:C8:84:2E:7C:F8:91:B2:34:D3:A1:E0:E2:E0:EF:73:E8:42:AA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/09/c99ae7-b671-40b9-bb1e-a19444f7a337/1/0vHIhC58-JGyNNOh4OLg73PoQqo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 62.40.128.0/17 81.217.0.0/16 82.149.96.0/19 82.218.0.0/16 89.104.0.0/19 92.62.16.0/20 94.16.32.0/19 95.143.224.0/20 141.98.176.0/22 176.120.160.0/21 178.18.160.0/20 185.93.8.0/22 185.100.96.0/22 194.106.224.0/19 195.202.128.0/18 195.230.160.0/19 202.170.80.0/21 IPv6: 2a00:1b38::/32 2a02:e200::/30 sbgp-autonomousSysNum: critical Autonomous System Numbers: 8339 8559 Signature Algorithm: sha256WithRSAEncryption b1:96:9a:e9:24:d0:08:fb:84:99:35:7a:fb:9f:17:b8:28:c7: 8b:65:06:cc:68:24:00:d1:a8:b6:b1:1c:a4:c0:f9:b1:a8:1e: d7:55:35:65:5d:da:68:b4:bc:c8:2b:1e:ab:3d:72:ae:da:68: 66:62:59:44:db:06:0b:a4:30:ca:ef:69:8b:3e:8f:43:7a:eb: 34:ff:05:71:79:eb:5c:c1:7e:e7:3b:9f:10:48:ae:79:59:c5: 8d:22:d1:9d:64:36:d6:f8:78:9b:b0:ad:d7:86:53:4b:0a:48: 05:30:79:c2:31:5f:55:8d:05:fb:e3:3c:46:fa:04:a7:ff:dd: 4c:f6:54:7c:53:ca:f2:dc:ae:8b:d0:7c:8d:75:72:a1:fb:f0: 87:62:c4:3f:33:57:78:f6:b0:a8:4d:1f:92:75:d1:aa:aa:59: 60:05:a9:9e:73:1f:fb:44:3c:9a:e7:2e:f8:1a:b7:02:f4:af: cb:bb:2a:dd:63:bf:61:15:3a:cd:b8:0f:d3:f8:ed:44:37:96: 5c:34:8a:70:3b:02:e2:b4:82:a8:7c:a2:a0:13:65:33:6b:fd: 9a:ea:d9:98:71:66:aa:54:93:9c:c3:7c:ca:1d:97:5c:0a:8a: 7e:b8:dd:3c:b2:9d:a9:28:2e:b5:cc:8f:13:00:d4:e8:d0:8d: 26:90:46:3e -----BEGIN CERTIFICATE----- MIIGDjCCBPagAwIBAgISAZt87dY0v01sPcIppvt6XLvIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMmYxYzg4NDJlN2NmODkxYjIzNGQzYTFlMGUyZTBlZjczZTg0MmFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyaogpVySAp0gnv++1lRcUKk9Wxbf gwsxTcqyO57ox/ktVxjwqYezky4iQM9MAGzFzr2uAzhn54ptGje97UMJO4mRyOCS 44tgQQnJGHsGgfFnnBHbfjeVliE9gMCH2+2r5OZ87++LfrhIaH8jSQX4iK8u1yox wYK55SiXhNKBU+ZVOSZNN8PvyUb2cIXlCjH49RXpTuRNWtsxi31A5qwwKKF3qWhQ /pj92gq4JHs1UuvJm6XEH/+oAe7VQjP8Wv/yM8oeCMDzmxDGCTS3sWH66+8fAhpw gZ7gV/B7o8iAtv3JDVU+EsJBpyFZCBQmaexuI2/k5BMS8/8kJlrUujEiFQIDAQAB o4IDGjCCAxYwHQYDVR0OBBYEFNLxyIQufPiRsjTToeDi4O9z6EKqMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA5L2M5OWFl Ny1iNjcxLTQwYjktYmIxZS1hMTk0NDRmN2EzMzcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDkvYzk5YWU3 LWI2NzEtNDBiOS1iYjFlLWExOTQ0NGY3YTMzNy8xLzB2SEloQzU4LUpHeU5OT2g0 T0xnNzNQb1Fxby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIGVBggrBgEF BQcBBwEB/wSBhTCBgjBqBAIAATBkAwQHPiiAAwMAUdkDBAVSlWADAwBS2gMEBVlo AAMEBFw+EAMEBV4QIAMEBF+P4AMEAo1isAMEA7B4oAMEBLISoAMEArldCAMEArlk YAMEBcJq4AMEBsPKgAMEBcPmoAMEA8qqUDAUBAIAAjAOAwUAKgAbOAMFAioC4gAw HQYIKwYBBQUHAQgBAf8EDjAMoAowCAICIJMCAiFvMA0GCSqGSIb3DQEBCwUAA4IB AQCxlprpJNAI+4SZNXr7nxe4KMeLZQbMaCQA0ai2sRykwPmxqB7XVTVlXdpotLzI Kx6rPXKu2mhmYllE2wYLpDDK72mLPo9Deus0/wVxeetcwX7nO58QSK55WcWNItGd ZDbW+HibsK3XhlNLCkgFMHnCMV9VjQX74zxG+gSn/91M9lR8U8ry3K6L0HyNdXKh +/CHYsQ/M1d49rCoTR+SddGqqllgBamecx/7RDya5y74GrcC9K/LuyrdY79hFTrN uA/T+O1EN5ZcNIpwOwLitIKofKKgE2Uza/2a6tmYcWaqVJOcw3zKHZdcCop+uN08 sp2pKC61zI8TANTo0I0mkEY+ -----END CERTIFICATE-----Generated at Mon Feb 9 19:50:54 2026 by rpki-client