This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0wJwbz3eK7EuK6kRqb4FyNSXjIY.cer File: 0wJwbz3eK7EuK6kRqb4FyNSXjIY.cer (raw, json) Hash identifier: aGhIq10prsafl/ZproSyiGTrsysEEx80vuY5H2SooUU= Subject key identifier: D3:02:70:6F:3D:DE:2B:B1:2E:2B:A9:11:A9:BE:05:C8:D4:97:8C:86 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15B4845BF54C2827B4BC0C5AD16C83 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b9/5fcaea-2f14-4d4d-b55d-c8d84985bbd9/1/0wJwbz3eK7EuK6kRqb4FyNSXjIY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b9/5fcaea-2f14-4d4d-b55d-c8d84985bbd9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:27 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205695 IP: 89.40.29.0/24 IP: 185.46.238.0/24 IP: 2a14:65c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:b4:84:5b:f5:4c:28:27:b4:bc:0c:5a:d1:6c:83 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d302706f3dde2bb12e2ba911a9be05c8d4978c86 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:6c:dd:d5:93:67:0f:3e:7f:39:f2:93:d6:0e: 59:94:ab:3e:ca:d2:39:12:32:1c:e6:64:7d:56:fb: bb:09:76:46:00:5c:0c:64:36:f1:93:b1:78:ea:ee: b3:45:3e:1d:97:58:67:ac:bd:fb:07:d8:ac:67:19: 43:0a:a6:16:50:5c:30:cc:84:0e:e0:ea:0f:0c:88: 44:d1:da:cb:5e:fb:9a:60:95:a9:5d:50:c6:1b:2e: ed:d1:9b:65:21:11:40:db:35:3e:19:19:cc:f9:e3: ee:13:9d:1a:7c:a0:ef:8d:e6:dc:fa:f7:ce:bf:b1: 70:01:22:dc:9d:61:0a:6b:d4:57:11:50:18:26:63: 41:d9:c1:47:0f:b4:7b:19:cf:8a:58:e7:bb:d2:9f: 50:74:96:3a:70:e6:08:2a:97:54:07:45:78:8f:11: 83:f8:fe:b7:d0:02:e5:a0:a2:c0:63:1c:3c:c8:2f: 39:ab:62:36:b0:5e:1a:26:09:3f:d2:97:27:14:4b: c1:12:a8:c8:7a:d1:1f:c2:74:96:71:0c:40:27:ea: f2:48:13:d1:91:98:2d:c6:16:94:2e:5a:b6:36:2f: c8:06:ad:65:65:3a:62:90:da:96:2f:38:ad:11:1e: ae:4d:03:94:c7:b9:d6:a4:17:78:df:38:2e:7b:42: 30:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D3:02:70:6F:3D:DE:2B:B1:2E:2B:A9:11:A9:BE:05:C8:D4:97:8C:86 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5fcaea-2f14-4d4d-b55d-c8d84985bbd9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b9/5fcaea-2f14-4d4d-b55d-c8d84985bbd9/1/0wJwbz3eK7EuK6kRqb4FyNSXjIY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.40.29.0/24 185.46.238.0/24 IPv6: 2a14:65c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205695 Signature Algorithm: sha256WithRSAEncryption 3b:f9:94:34:d2:a0:9c:e3:f7:41:84:1d:75:18:de:5c:5a:7a: d7:29:97:b8:f7:87:19:e6:5c:54:d1:21:06:69:ad:60:fe:d6: 76:38:98:f9:0d:6d:5a:be:0a:2a:40:9b:2f:a5:8d:77:29:13: 3f:c3:c8:a5:5c:d1:e4:97:57:6f:07:2b:13:18:1d:10:85:9b: ff:7d:64:c3:f4:18:b3:9b:4c:4c:c8:6d:7e:f9:07:ea:c5:fd: 3f:ba:ba:6d:a0:0d:7f:44:51:4f:2b:b8:44:8d:2e:d9:4b:29: 78:69:f0:8f:53:38:2d:a0:af:a6:63:a0:cc:d2:68:83:5a:cd: 6a:d6:e1:6a:4e:9a:a3:ba:d8:b9:3b:f0:2a:bb:15:2f:9a:e9: d6:fd:f8:c3:76:8c:ed:4d:75:80:0c:6a:cd:9c:d0:c9:5c:6f: af:a2:d4:a1:2b:d3:89:0a:95:6b:56:03:88:df:27:66:41:f2: af:61:6e:a3:c3:48:47:59:9c:9e:0c:aa:2b:1d:0f:b9:62:e4: a9:b2:90:de:97:6d:89:02:cf:2c:04:3a:e7:86:0d:56:41:3d: 40:3d:8b:3f:49:1f:ac:13:ce:2b:f3:c7:8d:fc:23:65:3b:07: 9e:b3:a5:1b:29:6d:a2:52:be:56:ea:a2:48:17:60:76:b9:d6: 54:aa:11:5f -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt/FbSEW/VMKCe0vAxa0WyDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkMzAyNzA2ZjNkZGUyYmIxMmUyYmE5MTFhOWJlMDVjOGQ0OTc4Yzg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoGzd1ZNnDz5/OfKT1g5ZlKs+ytI5 EjIc5mR9Vvu7CXZGAFwMZDbxk7F46u6zRT4dl1hnrL37B9isZxlDCqYWUFwwzIQO 4OoPDIhE0drLXvuaYJWpXVDGGy7t0ZtlIRFA2zU+GRnM+ePuE50afKDvjebc+vfO v7FwASLcnWEKa9RXEVAYJmNB2cFHD7R7Gc+KWOe70p9QdJY6cOYIKpdUB0V4jxGD +P630ALloKLAYxw8yC85q2I2sF4aJgk/0pcnFEvBEqjIetEfwnSWcQxAJ+rySBPR kZgtxhaULlq2Ni/IBq1lZTpikNqWLzitER6uTQOUx7nWpBd43zgue0IwZwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFNMCcG893iuxLiupEam+BcjUl4yGMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I5LzVmY2Fl YS0yZjE0LTRkNGQtYjU1ZC1jOGQ4NDk4NWJiZDkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjkvNWZjYWVh LTJmMTQtNGQ0ZC1iNTVkLWM4ZDg0OTg1YmJkOS8xLzB3SndiejNlSzdFdUs2a1Jx YjRGeU5TWGpJWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAWSgdAwQAuS7uMA0EAgACMAcDBQMqFGXAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMjfzANBgkqhkiG9w0BAQsFAAOCAQEAO/mU NNKgnOP3QYQddRjeXFp61ymXuPeHGeZcVNEhBmmtYP7WdjiY+Q1tWr4KKkCbL6WN dykTP8PIpVzR5JdXbwcrExgdEIWb/31kw/QYs5tMTMhtfvkH6sX9P7q6baANf0RR Tyu4RI0u2UspeGnwj1M4LaCvpmOgzNJog1rNatbhak6ao7rYuTvwKrsVL5rp1v34 w3aM7U11gAxqzZzQyVxvr6LUoSvTiQqVa1YDiN8nZkHyr2Fuo8NIR1mcngyqKx0P uWLkqbKQ3pdtiQLPLAQ654YNVkE9QD2LP0kfrBPOK/PHjfwjZTsHnrOlGyltolK+ VuqiSBdgdrnWVKoRXw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:21 2026 by rpki-client