This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-puJ82fU-5UCh3AfYtSgObf2yyA.cer File: 1-puJ82fU-5UCh3AfYtSgObf2yyA.cer (raw, json) Hash identifier: KqQdqdkBqCWFfc/8ezFbk3HE5YlTdjsnz+baOpCsoOk= Subject key identifier: FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E37CA85ECD4340BF799E66D0A74C807 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198717 IP: 37.233.96.0/20 IP: 2a00:f2c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:ca:85:ec:d4:34:0b:f7:99:e6:6d:0a:74:c8:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fa9b89f367d4fb950287701f62d4a039b7f6cb20 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:ea:5f:fe:bc:a7:1f:8b:6a:ec:18:55:8d:70: 19:b3:62:6c:1f:65:e2:05:2c:58:61:24:62:02:bc: 65:d0:12:bc:86:7c:81:29:91:e4:56:11:03:3a:aa: e0:be:db:06:c9:5f:8c:c9:79:d9:23:bc:9d:07:48: 6d:ea:85:18:70:ea:c9:cb:3d:75:b1:4b:aa:b6:20: b9:dd:ab:67:73:f1:55:33:b4:ab:5d:ad:ef:e7:63: d7:a5:2d:38:f2:55:bb:d4:d6:9e:6d:9a:76:05:52: 2d:bb:62:35:30:ce:cf:65:67:7e:13:a9:9e:ea:e8: 03:bb:6e:b3:b3:cc:d0:ae:ee:57:aa:1c:f9:8e:9d: 2a:e7:a5:4c:a7:33:8a:65:e8:86:cf:6e:2d:4f:36: 63:c5:69:26:46:40:97:ea:d9:51:ea:1e:82:b8:0f: 69:d6:2d:d7:98:5f:f1:c5:b2:b5:17:93:84:d0:19: 29:a1:9d:3a:95:b5:d1:e2:3c:9f:d1:4a:b3:10:71: ce:b9:52:23:b2:9e:a6:92:6d:bb:41:15:b4:cd:1a: 33:51:7f:46:a9:31:41:85:0f:75:03:1b:6f:78:45: 59:4f:7f:20:fc:a2:9d:1e:c4:62:62:66:1a:70:77: fe:fe:ca:31:21:42:62:39:02:d3:79:2c:39:21:9b: 11:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:9B:89:F3:67:D4:FB:95:02:87:70:1F:62:D4:A0:39:B7:F6:CB:20 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/98933a-7581-4979-9121-0e1a68c7563b/1/1-puJ82fU-5UCh3AfYtSgObf2yyA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.233.96.0/20 IPv6: 2a00:f2c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198717 Signature Algorithm: sha256WithRSAEncryption 28:3b:eb:57:38:3a:1d:98:70:ad:42:65:05:d6:88:d3:2a:c1: 6c:41:b3:35:0f:5b:26:e0:e9:dd:0c:2e:24:4e:74:6a:54:33: 6c:29:66:0f:2d:b3:d3:5d:eb:2b:6a:68:a1:fb:1f:0a:39:5f: 31:93:40:ab:a7:53:fc:14:58:8f:b4:f2:b1:51:1f:0d:94:64: f9:6b:47:10:ca:56:5f:99:c5:f1:93:be:bd:a5:27:74:1b:d6: 45:7e:31:6d:ce:aa:14:5d:13:b9:7c:cf:00:53:14:ed:b6:b8: 56:9a:72:e3:1f:30:7d:27:ac:c0:30:3b:15:c9:6d:dc:f4:81: d3:27:3f:84:d5:61:34:75:12:e4:10:f2:6c:20:3c:cd:01:40: 2d:19:fe:e4:be:6a:46:b9:d2:48:6e:5f:3d:26:a4:56:a5:22: b4:3b:80:1d:bf:8f:f5:3b:d2:a8:56:e6:96:e2:63:3f:f5:66: 13:97:e6:ce:ef:f4:5f:34:99:88:da:7e:dd:39:a2:06:5c:94: 30:f2:47:30:31:11:24:49:88:3a:6b:cd:0f:79:ff:9c:61:cf: b2:3e:d6:87:e1:d4:bf:3f:a7:26:d6:49:cb:cc:2a:95:96:7d: ed:91:5e:75:5e:b7:ae:1c:c6:69:64:89:96:96:10:61:b8:a3: 1e:32:83:23 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgISAZt+N8qF7NQ0C/eZ5m0KdMgHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYTliODlmMzY3ZDRmYjk1MDI4NzcwMWY2MmQ0YTAzOWI3ZjZjYjIwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+pf/rynH4tq7BhVjXAZs2JsH2Xi BSxYYSRiArxl0BK8hnyBKZHkVhEDOqrgvtsGyV+MyXnZI7ydB0ht6oUYcOrJyz11 sUuqtiC53atnc/FVM7SrXa3v52PXpS048lW71NaebZp2BVItu2I1MM7PZWd+E6me 6ugDu26zs8zQru5Xqhz5jp0q56VMpzOKZeiGz24tTzZjxWkmRkCX6tlR6h6CuA9p 1i3XmF/xxbK1F5OE0BkpoZ06lbXR4jyf0UqzEHHOuVIjsp6mkm27QRW0zRozUX9G qTFBhQ91AxtveEVZT38g/KKdHsRiYmYacHf+/soxIUJiOQLTeSw5IZsRyQIDAQAB o4ICsDCCAqwwHQYDVR0OBBYEFPqbifNn1PuVAodwH2LUoDm39ssgMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEkBggrBgEFBQcBCwSCARYwggESMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY1Lzk4OTMz YS03NTgxLTQ5NzktOTEyMS0wZTFhNjhjNzU2M2IvMS8wfQYIKwYBBQUHMAqGcXJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvOTg5MzNh LTc1ODEtNDk3OS05MTIxLTBlMWE2OGM3NTYzYi8xLzEtcHVKODJmVS01VUNoM0Fm WXRTZ09iZjJ5eUEubWZ0MDIGCCsGAQUFBzANhiZodHRwczovL3JyZHAucmlwZS5u ZXQvbm90aWZpY2F0aW9uLnhtbDBZBgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jw a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhD MlFIVlYzZDVtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAuBggrBgEF BQcBBwEB/wQfMB0wDAQCAAEwBgMEBCXpYDANBAIAAjAHAwUAKgDywDAaBggrBgEF BQcBCAEB/wQLMAmgBzAFAgMDCD0wDQYJKoZIhvcNAQELBQADggEBACg761c4Oh2Y cK1CZQXWiNMqwWxBszUPWybg6d0MLiROdGpUM2wpZg8ts9Nd6ytqaKH7Hwo5XzGT QKunU/wUWI+08rFRHw2UZPlrRxDKVl+ZxfGTvr2lJ3Qb1kV+MW3OqhRdE7l8zwBT FO22uFaacuMfMH0nrMAwOxXJbdz0gdMnP4TVYTR1EuQQ8mwgPM0BQC0Z/uS+aka5 0khuXz0mpFalIrQ7gB2/j/U70qhW5pbiYz/1ZhOX5s7v9F80mYjaft05ogZclDDy RzAxESRJiDprzQ95/5xhz7I+1ofh1L8/pybWScvMKpWWfe2RXnVet64cxmlkiZaW EGG4ox4ygyM= -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:46 2026 by rpki-client