This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-TVqludOotcrZUXIfHnSEtcqe94.cer File: 1-TVqludOotcrZUXIfHnSEtcqe94.cer (raw, json) Hash identifier: A97P06Byf9qPFnS71Idl4cNdeJF9EiwaBXxkkfh6G8U= Subject key identifier: F9:35:6A:96:E7:4E:A2:D7:2B:65:45:C8:7C:79:D2:12:D7:2A:7B:DE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7759152D1FCADEFFFAF5E9FDCE36D97E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/1-TVqludOotcrZUXIfHnSEtcqe94.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:05 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 42810 IP: 87.237.168.0/21 IP: 94.126.248.0/21 IP: 2a01:b400::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:15:2d:1f:ca:de:ff:fa:f5:e9:fd:ce:36:d9:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f9356a96e74ea2d72b6545c87c79d212d72a7bde Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:58:39:f7:6b:10:51:55:44:65:a0:e2:f6:db: 5d:c5:39:55:53:62:d1:18:03:89:47:bb:38:33:11: 71:42:59:4f:0e:0e:47:5c:5c:d4:7c:fb:cb:7e:fb: 69:c9:9f:8a:54:cf:13:29:88:da:c8:c3:13:e4:00: ed:e6:ac:f5:fe:30:38:38:56:d6:fd:02:a6:e7:27: cf:2d:6d:2c:84:05:e3:c4:fc:5c:d2:c9:8b:4d:63: 93:7e:21:01:d2:15:bc:59:01:ae:5d:00:09:cc:33: 79:5c:8b:6c:3a:08:d6:16:3a:f6:65:54:72:e8:49: 20:36:8c:a3:47:ce:4a:02:3f:d6:d2:87:68:b9:d6: 2d:09:00:69:4b:44:7a:8f:58:ca:6c:9a:8f:b8:80: 98:2a:cb:7e:7a:20:96:fd:3a:16:27:13:9c:48:de: 24:49:75:96:30:d7:30:02:a6:20:bf:dd:a3:66:7c: c7:a8:71:06:83:e0:39:07:12:23:2e:37:c9:ca:ab: 96:63:01:a9:ea:a6:43:71:d6:fb:40:9d:fa:c0:b9: 2c:b6:d6:95:24:47:fb:74:9c:c9:cb:ed:27:9b:aa: 21:99:f4:ec:9c:c8:ce:14:7e:4c:66:48:41:cf:74: 5d:48:d0:43:ea:6e:96:32:50:8f:50:92:9d:e0:c6: c2:95 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:35:6A:96:E7:4E:A2:D7:2B:65:45:C8:7C:79:D2:12:D7:2A:7B:DE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/9f459f-264d-46ce-87b0-cbb7d2bf6fa1/1/1-TVqludOotcrZUXIfHnSEtcqe94.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.237.168.0/21 94.126.248.0/21 IPv6: 2a01:b400::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 42810 Signature Algorithm: sha256WithRSAEncryption 65:0c:59:29:72:dd:73:98:8c:01:1d:e5:28:01:f5:7f:e4:1d: 89:32:a3:81:b3:48:a4:ef:c5:53:12:32:aa:2a:74:41:45:a5: d9:be:aa:70:82:db:21:09:c3:9e:f0:be:2d:da:1d:69:4e:6a: 46:2e:09:a5:aa:36:d4:c7:4d:6f:50:c0:b1:12:2e:5d:3a:d9: 3b:14:29:e2:2b:2e:0b:57:10:34:ee:22:35:68:7f:c5:32:8c: e2:46:84:4f:1b:03:72:a1:80:26:03:da:3f:3c:23:f2:db:83: 19:10:92:a2:6a:29:8f:ae:a7:12:b4:d6:30:c2:e1:94:ff:7d: b4:1c:13:23:2b:26:10:24:97:7a:bf:18:c9:b8:3a:97:f9:9b: 53:c3:89:51:5f:1a:5b:1f:0e:23:da:66:fa:24:3f:ce:30:f7: 12:12:f1:e2:f9:09:a3:58:b5:10:94:60:d8:bb:95:43:30:31: 04:75:e3:93:3d:f9:b2:1a:ed:d7:2b:a2:fa:6e:7e:d1:e2:75: 59:91:57:84:42:cd:01:d3:aa:c1:fb:c0:bc:48:cf:1a:aa:0a: a0:b4:16:25:ca:3b:23:3b:2a:74:1d:cd:e4:94:d0:d5:8d:52: b5:ae:99:91:72:dd:ef:b2:18:ca:f8:6c:fc:6b:27:3e:1e:e8: aa:06:7b:7e -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgISAZt3WRUtH8re//r16f3ONtl+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOTM1NmE5NmU3NGVhMmQ3MmI2NTQ1Yzg3Yzc5ZDIxMmQ3MmE3YmRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7Fg592sQUVVEZaDi9ttdxTlVU2LR GAOJR7s4MxFxQllPDg5HXFzUfPvLfvtpyZ+KVM8TKYjayMMT5ADt5qz1/jA4OFbW /QKm5yfPLW0shAXjxPxc0smLTWOTfiEB0hW8WQGuXQAJzDN5XItsOgjWFjr2ZVRy 6EkgNoyjR85KAj/W0odoudYtCQBpS0R6j1jKbJqPuICYKst+eiCW/ToWJxOcSN4k SXWWMNcwAqYgv92jZnzHqHEGg+A5BxIjLjfJyquWYwGp6qZDcdb7QJ36wLksttaV JEf7dJzJy+0nm6ohmfTsnMjOFH5MZkhBz3RdSNBD6m6WMlCPUJKd4MbClQIDAQAB o4ICtjCCArIwHQYDVR0OBBYEFPk1apbnTqLXK2VFyHx50hLXKnveMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEkBggrBgEFBQcBCwSCARYwggESMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UyLzlmNDU5 Zi0yNjRkLTQ2Y2UtODdiMC1jYmI3ZDJiZjZmYTEvMS8wfQYIKwYBBQUHMAqGcXJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIvOWY0NTlm LTI2NGQtNDZjZS04N2IwLWNiYjdkMmJmNmZhMS8xLzEtVFZxbHVkT290Y3JaVVhJ ZkhuU0V0Y3FlOTQubWZ0MDIGCCsGAQUFBzANhiZodHRwczovL3JyZHAucmlwZS5u ZXQvbm90aWZpY2F0aW9uLnhtbDBZBgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jw a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhD MlFIVlYzZDVtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEF BQcBBwEB/wQlMCMwEgQCAAEwDAMEA1ftqAMEA15++DANBAIAAjAHAwUAKgG0ADAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMApzowDQYJKoZIhvcNAQELBQADggEBAGUM WSly3XOYjAEd5SgB9X/kHYkyo4GzSKTvxVMSMqoqdEFFpdm+qnCC2yEJw57wvi3a HWlOakYuCaWqNtTHTW9QwLESLl062TsUKeIrLgtXEDTuIjVof8UyjOJGhE8bA3Kh gCYD2j88I/LbgxkQkqJqKY+upxK01jDC4ZT/fbQcEyMrJhAkl3q/GMm4Opf5m1PD iVFfGlsfDiPaZvokP84w9xIS8eL5CaNYtRCUYNi7lUMwMQR145M9+bIa7dcrovpu ftHidVmRV4RCzQHTqsH7wLxIzxqqCqC0FiXKOyM7KnQdzeSU0NWNUrWumZFy3e+y GMr4bPxrJz4e6KoGe34= -----END CERTIFICATE-----Generated at Mon Jan 26 20:48:53 2026 by rpki-client