This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-c0pgMHHi89rubgKB5IFiwvK7Us.cer File: 1-c0pgMHHi89rubgKB5IFiwvK7Us.cer (raw, json) Hash identifier: GnDJuUxdXb4NUzzQKJOr4BRkrrFBpp7b/URur8QTt58= Subject key identifier: F9:CD:29:80:C1:C7:8B:CF:6B:B9:B8:0A:07:92:05:8B:0B:CA:ED:4B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CECC32354D0B4B291B166A4385B90F2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/1-c0pgMHHi89rubgKB5IFiwvK7Us.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:17:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208040 IP: 193.161.24.0/23 IP: 193.161.28.0/23 IP: 2a0f:d280::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ec:c3:23:54:d0:b4:b2:91:b1:66:a4:38:5b:90:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f9cd2980c1c78bcf6bb9b80a0792058b0bcaed4b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:f0:9d:5f:fa:74:d9:a7:19:d8:08:a4:93:00: 76:fa:06:dd:72:7c:c6:10:5e:fc:7f:2f:56:9e:41: 60:a4:0f:d3:54:33:a4:96:48:0b:3e:89:e0:db:8d: db:ea:fe:41:a6:e5:11:f5:a6:c1:2d:54:a1:c8:1b: 5f:50:1d:cb:b6:32:98:b9:fe:ae:95:32:13:4d:29: 6b:93:88:77:ad:7a:f6:fa:a4:b6:4a:06:7d:cb:d9: 98:cd:35:dc:6e:c3:17:9d:bb:f6:89:36:46:2d:79: 6e:92:59:3c:05:82:82:b5:87:51:cf:44:6d:44:8c: e9:c6:c2:23:05:a7:2f:12:85:19:a4:16:3e:95:60: bd:d3:2f:bb:6d:6c:06:5b:06:5a:ce:d7:33:6f:95: 11:1a:52:2e:43:aa:9b:1c:b9:5c:8c:73:6c:ab:5f: 51:9d:cf:e6:34:60:53:d4:62:23:bf:12:d4:88:3b: a6:e8:b9:f5:fc:1c:c8:4a:dd:db:32:9c:4b:07:51: 42:04:f5:24:7f:34:7a:df:ca:f6:67:28:39:9a:0f: e2:53:a5:ed:ce:ab:00:93:66:af:b2:84:d8:3c:e4: a5:ca:c1:dc:e0:66:c2:d8:52:95:10:c1:f8:e7:73: 98:ed:e0:f2:c0:08:10:3e:8e:52:c5:2d:52:b7:1c: 67:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F9:CD:29:80:C1:C7:8B:CF:6B:B9:B8:0A:07:92:05:8B:0B:CA:ED:4B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/c8797b-02e0-4718-bdfd-0929cbcdb7aa/1/1-c0pgMHHi89rubgKB5IFiwvK7Us.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.161.24.0/23 193.161.28.0/23 IPv6: 2a0f:d280::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208040 Signature Algorithm: sha256WithRSAEncryption 8b:37:12:cf:9c:8d:38:65:51:60:28:cb:e1:e0:3b:a0:8e:62: 55:5e:38:9d:2e:23:03:28:57:b8:08:0f:d5:dc:79:f2:38:95: 08:65:c5:71:9e:05:0f:e6:31:fc:b3:39:a4:af:c1:6d:3f:1c: d7:0e:62:f5:b3:a5:84:5f:49:69:cb:b9:4e:a6:c0:e9:80:66: b0:c2:87:ef:c2:dd:ab:f1:db:6d:46:5f:b4:ba:31:30:13:ae: 1b:15:ca:73:af:ff:22:d0:07:78:00:5d:4f:38:79:e6:04:76: 77:ec:0b:b2:f4:b1:2b:c6:68:b2:41:d2:f0:dc:b3:ae:91:25: 61:ce:2f:06:37:77:f7:80:c6:b3:2a:ed:20:cb:ae:ed:16:20: b6:98:a1:97:6a:e1:c9:25:63:e1:d6:fd:06:b3:42:c8:8e:d9: c8:c1:24:0d:c9:19:73:5d:03:2d:b0:d3:0c:7f:93:10:0a:e4: 5b:29:f2:ce:7d:7f:f6:b1:2d:2b:02:66:dd:75:f2:2d:d0:b7: d2:cc:2a:96:ce:4d:a8:a0:73:47:d2:e8:7d:12:c6:65:4d:7e: e7:7e:db:b9:f2:30:8a:e4:0b:c7:f4:37:9e:7d:b7:e0:1b:64: c5:b9:1f:42:33:69:47:0e:21:12:ee:f6:84:81:ae:0d:9c:25: 2c:04:35:1a -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgISAZt87MMjVNC0spGxZqQ4W5DyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmOWNkMjk4MGMxYzc4YmNmNmJiOWI4MGEwNzkyMDU4YjBiY2FlZDRiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4vCdX/p02acZ2AikkwB2+gbdcnzG EF78fy9WnkFgpA/TVDOklkgLPong243b6v5BpuUR9abBLVShyBtfUB3LtjKYuf6u lTITTSlrk4h3rXr2+qS2SgZ9y9mYzTXcbsMXnbv2iTZGLXluklk8BYKCtYdRz0Rt RIzpxsIjBacvEoUZpBY+lWC90y+7bWwGWwZaztczb5URGlIuQ6qbHLlcjHNsq19R nc/mNGBT1GIjvxLUiDum6Ln1/BzISt3bMpxLB1FCBPUkfzR638r2Zyg5mg/iU6Xt zqsAk2avsoTYPOSlysHc4GbC2FKVEMH453OY7eDywAgQPo5SxS1StxxnMwIDAQAB o4ICtjCCArIwHQYDVR0OBBYEFPnNKYDBx4vPa7m4CgeSBYsLyu1LMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEkBggrBgEFBQcBCwSCARYwggESMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcyL2M4Nzk3 Yi0wMmUwLTQ3MTgtYmRmZC0wOTI5Y2JjZGI3YWEvMS8wfQYIKwYBBQUHMAqGcXJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzIvYzg3OTdi LTAyZTAtNDcxOC1iZGZkLTA5MjljYmNkYjdhYS8xLzEtYzBwZ01ISGk4OXJ1YmdL QjVJRml3dks3VXMubWZ0MDIGCCsGAQUFBzANhiZodHRwczovL3JyZHAucmlwZS5u ZXQvbm90aWZpY2F0aW9uLnhtbDBZBgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jw a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhD MlFIVlYzZDVtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjA0BggrBgEF BQcBBwEB/wQlMCMwEgQCAAEwDAMEAcGhGAMEAcGhHDANBAIAAjAHAwUDKg/SgDAa BggrBgEFBQcBCAEB/wQLMAmgBzAFAgMDLKgwDQYJKoZIhvcNAQELBQADggEBAIs3 Es+cjThlUWAoy+HgO6COYlVeOJ0uIwMoV7gID9XcefI4lQhlxXGeBQ/mMfyzOaSv wW0/HNcOYvWzpYRfSWnLuU6mwOmAZrDCh+/C3avx221GX7S6MTATrhsVynOv/yLQ B3gAXU84eeYEdnfsC7L0sSvGaLJB0vDcs66RJWHOLwY3d/eAxrMq7SDLru0WILaY oZdq4cklY+HW/QazQsiO2cjBJA3JGXNdAy2w0wx/kxAK5Fsp8s59f/axLSsCZt11 8i3Qt9LMKpbOTaigc0fS6H0SxmVNfud+27nyMIrkC8f0N559t+AbZMW5H0IzaUcO IRLu9oSBrg2cJSwENRo= -----END CERTIFICATE-----Generated at Mon Jan 26 21:50:39 2026 by rpki-client