This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-Kc4IEBntzYX7H3yGMGyVuy29vU.cer File: 1-Kc4IEBntzYX7H3yGMGyVuy29vU.cer (raw, json) Hash identifier: xCrRwvScJqJBS8K3DxVhTW0Wnrtu1m33/ozurMI3Cfk= Subject key identifier: F8:A7:38:20:40:67:B7:36:17:EC:7D:F2:18:C1:B2:56:EC:B6:F6:F5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5B92D3EA3496EB682268BCB8358C87 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ac/48ef82-0992-4255-9964-49bcd384ceb0/1/1-Kc4IEBntzYX7H3yGMGyVuy29vU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ac/48ef82-0992-4255-9964-49bcd384ceb0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:19:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.153.233.0/24 IP: 2a10:72c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:92:d3:ea:34:96:eb:68:22:68:bc:b8:35:8c:87 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:19:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f8a738204067b73617ec7df218c1b256ecb6f6f5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:9d:fa:48:c3:db:52:56:ce:31:78:39:3b:d9: ac:96:7d:a9:52:16:16:b0:07:a2:b3:22:a8:08:65: fb:1a:1a:4a:9a:57:1f:f4:28:66:cf:a9:29:05:f3: b1:05:d9:f8:c5:4b:33:5c:81:a2:74:d7:87:eb:72: 82:c0:ac:4f:de:9a:25:44:f0:d1:25:68:a1:b9:91: 1f:73:04:e0:a0:43:35:5a:28:51:58:ff:c1:00:1a: 41:87:b2:35:23:35:63:cc:b4:83:ed:09:b1:24:a7: 86:25:4f:51:b5:56:24:ee:27:64:93:65:ea:1b:45: 9b:50:79:9a:63:29:83:5f:23:71:6b:08:53:c0:7c: b6:3e:04:e4:5d:b1:00:3c:56:6a:e5:2a:56:90:d6: 2c:e0:45:30:24:40:0f:9e:03:01:34:45:fc:86:5c: 30:6b:24:ab:cb:7a:75:1f:bd:0e:a0:dc:2d:ae:e0: 00:56:66:2b:f6:28:03:a9:62:3d:14:cb:82:1d:cc: 94:40:dd:79:44:85:61:c4:f6:7d:42:f5:bc:87:a4: e3:16:a5:12:5e:cc:da:2b:00:9c:06:d4:46:f9:92: d2:c9:d7:6d:70:32:69:a0:2a:ce:0e:19:0e:7c:c1: 9e:c4:57:6a:f1:0e:f5:34:57:37:8b:4e:27:7c:16: d2:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:A7:38:20:40:67:B7:36:17:EC:7D:F2:18:C1:B2:56:EC:B6:F6:F5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/48ef82-0992-4255-9964-49bcd384ceb0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/48ef82-0992-4255-9964-49bcd384ceb0/1/1-Kc4IEBntzYX7H3yGMGyVuy29vU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.153.233.0/24 IPv6: 2a10:72c0::/32 Signature Algorithm: sha256WithRSAEncryption 0d:d9:21:42:f8:97:df:5d:cb:74:14:ac:73:fe:24:3c:ab:24: 72:71:c1:a2:6a:8e:3c:84:10:9a:bb:af:c7:40:7c:a3:5b:a8: d7:4a:2e:dd:0d:59:af:52:55:4b:56:14:7f:b9:c2:61:37:54: b8:be:6f:23:5b:a6:c0:fa:50:fb:65:8f:92:f9:43:89:27:ae: e5:57:da:60:ac:55:3c:be:ed:2e:61:d5:29:63:4d:37:2a:80: 70:cc:dd:94:d1:d2:3f:ed:4b:04:9d:6f:9f:3e:25:0a:07:e3: 72:5c:a7:d2:f0:92:36:9b:bb:08:1b:60:90:61:2b:64:ab:5f: 24:fb:67:87:be:eb:c8:70:17:50:42:36:8c:cd:94:ca:a4:95: b5:3a:03:0d:6c:5c:12:71:35:7a:8b:ab:8b:63:51:e5:48:7d: a8:25:fb:8a:31:e5:08:25:bb:4b:30:30:97:f8:06:a4:5f:f0: 2d:93:24:76:19:3a:b6:b9:09:f5:a5:50:67:a4:a6:35:eb:2d: 43:b6:89:fb:52:f1:06:a9:27:00:62:b6:60:16:cc:02:66:35: ea:ec:85:db:f1:c5:b2:83:f8:e9:48:52:74:eb:8d:ba:8f:56: df:2c:a6:01:91:7f:55:99:f4:83:ac:77:24:a3:a0:ed:0b:41: 21:8d:86:68 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgISAZt6W5LT6jSW62giaLy4NYyHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxOTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOGE3MzgyMDQwNjdiNzM2MTdlYzdkZjIxOGMxYjI1NmVjYjZmNmY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0p36SMPbUlbOMXg5O9msln2pUhYW sAeisyKoCGX7GhpKmlcf9Chmz6kpBfOxBdn4xUszXIGidNeH63KCwKxP3polRPDR JWihuZEfcwTgoEM1WihRWP/BABpBh7I1IzVjzLSD7QmxJKeGJU9RtVYk7idkk2Xq G0WbUHmaYymDXyNxawhTwHy2PgTkXbEAPFZq5SpWkNYs4EUwJEAPngMBNEX8hlww aySry3p1H70OoNwtruAAVmYr9igDqWI9FMuCHcyUQN15RIVhxPZ9QvW8h6TjFqUS XszaKwCcBtRG+ZLSyddtcDJpoCrODhkOfMGexFdq8Q71NFc3i04nfBbSLQIDAQAB o4IClDCCApAwHQYDVR0OBBYEFPinOCBAZ7c2F+x98hjBslbstvb1MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEkBggrBgEFBQcBCwSCARYwggESMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FjLzQ4ZWY4 Mi0wOTkyLTQyNTUtOTk2NC00OWJjZDM4NGNlYjAvMS8wfQYIKwYBBQUHMAqGcXJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMvNDhlZjgy LTA5OTItNDI1NS05OTY0LTQ5YmNkMzg0Y2ViMC8xLzEtS2M0SUVCbnR6WVg3SDN5 R01HeVZ1eTI5dlUubWZ0MDIGCCsGAQUFBzANhiZodHRwczovL3JyZHAucmlwZS5u ZXQvbm90aWZpY2F0aW9uLnhtbDBZBgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jw a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhD MlFIVlYzZDVtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEALmZ6TANBAIAAjAHAwUAKhBywDANBgkqhkiG 9w0BAQsFAAOCAQEADdkhQviX313LdBSsc/4kPKskcnHBomqOPIQQmruvx0B8o1uo 10ou3Q1Zr1JVS1YUf7nCYTdUuL5vI1umwPpQ+2WPkvlDiSeu5VfaYKxVPL7tLmHV KWNNNyqAcMzdlNHSP+1LBJ1vnz4lCgfjclyn0vCSNpu7CBtgkGErZKtfJPtnh77r yHAXUEI2jM2UyqSVtToDDWxcEnE1eouri2NR5Uh9qCX7ijHlCCW7SzAwl/gGpF/w LZMkdhk6trkJ9aVQZ6SmNestQ7aJ+1LxBqknAGK2YBbMAmY16uyF2/HFsoP46UhS dOuNuo9W3yymAZF/VZn0g6x3JKOg7QtBIY2GaA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:10 2026 by rpki-client