This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1-sCJqc1qA3W65JnMBqTKowcbXUw.cer File: 1-sCJqc1qA3W65JnMBqTKowcbXUw.cer (raw, json) Hash identifier: tJSWKOfnQZLCH1rfCKaThmvoGG90YpBficx6rls0poc= Subject key identifier: FA:C0:89:A9:CD:6A:03:75:BA:E4:99:CC:06:A4:CA:A3:07:1B:5D:4C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F82DD4255C4E1A41185CE7112402755 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8b/2fac9f-618c-42f6-9483-777f86166221/1/1-sCJqc1qA3W65JnMBqTKowcbXUw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8b/2fac9f-618c-42f6-9483-777f86166221/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:20:41 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 209154 IP: 193.35.200.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 14:50:37 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:dd:42:55:c4:e1:a4:11:85:ce:71:12:40:27:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:20:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fac089a9cd6a0375bae499cc06a4caa3071b5d4c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:28:69:50:11:13:f9:93:00:30:8f:dd:c3:b7: cc:6b:79:d4:95:a4:9e:b0:42:6f:de:47:f3:71:3b: 01:07:cf:df:c3:9a:fe:f3:88:fc:8a:1c:1f:b9:75: 03:11:59:a8:73:be:90:33:e1:79:63:a5:d1:af:e3: c8:43:52:b0:bb:d5:56:98:dd:8c:5d:99:4e:66:b0: 8d:d3:32:d8:d1:21:85:e9:98:91:e3:2d:05:cb:46: ad:bb:02:60:a6:92:a2:c2:c1:8f:ac:81:54:c1:5c: c6:57:56:5a:6e:2e:36:6f:ff:6f:96:ac:31:7a:1b: 0b:74:f3:cb:ee:19:ac:12:a6:91:2e:d5:57:9b:19: 77:d2:50:77:d2:4b:1a:67:9f:50:21:14:7d:89:6c: 14:ac:ce:77:6a:cd:35:31:66:ce:60:8d:7e:a8:9a: 99:df:ae:08:71:e6:0c:74:f9:18:0f:e7:2d:57:f0: 5e:30:2f:2e:de:43:5f:1c:db:23:20:09:d5:e3:d4: 17:0a:ab:ce:20:9d:c1:92:9a:d0:b4:ad:e4:63:4f: 02:e2:6b:45:a7:84:f8:d5:bf:a1:70:87:6c:10:99: 4a:61:54:a8:28:59:b0:fa:2c:25:d4:52:03:47:c7: 38:5f:a0:56:98:5c:8b:37:6e:49:72:34:32:52:85: 85:8b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FA:C0:89:A9:CD:6A:03:75:BA:E4:99:CC:06:A4:CA:A3:07:1B:5D:4C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/2fac9f-618c-42f6-9483-777f86166221/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/2fac9f-618c-42f6-9483-777f86166221/1/1-sCJqc1qA3W65JnMBqTKowcbXUw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.35.200.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 209154 Signature Algorithm: sha256WithRSAEncryption a4:74:e6:9b:4f:97:20:14:ae:aa:97:79:f0:1a:5d:50:c3:7a: 96:61:52:b3:fc:67:05:e3:f5:9d:27:d6:c5:14:47:f2:76:e3: 4a:9b:7e:a6:80:e4:36:f5:89:76:98:c7:e2:1d:5c:b4:64:88: 11:da:cc:c0:42:cb:8a:e2:09:3c:a2:bc:9b:e5:f0:f7:96:49: ec:45:3e:5f:1d:c0:0c:e2:d6:0d:c4:9b:e2:d6:77:6e:52:3c: f5:c7:56:5e:ae:e4:68:7c:e4:21:74:68:2f:86:fc:b5:b2:e9: 5c:79:42:cc:9f:77:62:6c:2f:46:ff:6e:04:8c:95:4c:34:e9: 22:f5:4c:3c:2e:04:7d:23:eb:b3:ac:18:68:eb:1c:11:62:c9: 70:f8:ea:ce:b3:1f:b1:ed:01:18:30:56:fa:62:66:83:40:ac: 30:72:07:32:c9:df:27:67:97:92:20:8a:a5:ae:51:f0:72:dd: 3c:c6:ef:b9:13:bf:65:b8:b2:62:27:70:eb:6e:c4:9a:64:17: 77:7b:73:c4:fc:fa:c4:fa:92:b0:0b:ed:dd:ee:a4:52:45:5c: 7c:d1:40:4e:93:2c:6d:af:c8:6d:1b:f2:e3:f7:c5:be:a0:bf: 06:d4:d1:ba:83:dd:1b:7b:52:84:fa:b1:dd:77:ec:91:6a:e9: 91:91:41:cc -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgISAZt/gt1CVcThpBGFznESQCdVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMDQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYWMwODlhOWNkNmEwMzc1YmFlNDk5Y2MwNmE0Y2FhMzA3MWI1ZDRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuihpUBET+ZMAMI/dw7fMa3nUlaSe sEJv3kfzcTsBB8/fw5r+84j8ihwfuXUDEVmoc76QM+F5Y6XRr+PIQ1Kwu9VWmN2M XZlOZrCN0zLY0SGF6ZiR4y0Fy0atuwJgppKiwsGPrIFUwVzGV1Zabi42b/9vlqwx ehsLdPPL7hmsEqaRLtVXmxl30lB30ksaZ59QIRR9iWwUrM53as01MWbOYI1+qJqZ 364IceYMdPkYD+ctV/BeMC8u3kNfHNsjIAnV49QXCqvOIJ3BkprQtK3kY08C4mtF p4T41b+hcIdsEJlKYVSoKFmw+iwl1FIDR8c4X6BWmFyLN25JcjQyUoWFiwIDAQAB o4ICoTCCAp0wHQYDVR0OBBYEFPrAianNagN1uuSZzAakyqMHG11MMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEkBggrBgEFBQcBCwSCARYwggESMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhiLzJmYWM5 Zi02MThjLTQyZjYtOTQ4My03NzdmODYxNjYyMjEvMS8wfQYIKwYBBQUHMAqGcXJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGIvMmZhYzlm LTYxOGMtNDJmNi05NDgzLTc3N2Y4NjE2NjIyMS8xLzEtc0NKcWMxcUEzVzY1Sm5N QnFUS293Y2JYVXcubWZ0MDIGCCsGAQUFBzANhiZodHRwczovL3JyZHAucmlwZS5u ZXQvbm90aWZpY2F0aW9uLnhtbDBZBgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jw a2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhD MlFIVlYzZDVtay5jcmwwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEF BQcBBwEB/wQQMA4wDAQCAAEwBgMEAsEjyDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF AgMDMQIwDQYJKoZIhvcNAQELBQADggEBAKR05ptPlyAUrqqXefAaXVDDepZhUrP8 ZwXj9Z0n1sUUR/J240qbfqaA5Db1iXaYx+IdXLRkiBHazMBCy4riCTyivJvl8PeW SexFPl8dwAzi1g3Em+LWd25SPPXHVl6u5Gh85CF0aC+G/LWy6Vx5Qsyfd2JsL0b/ bgSMlUw06SL1TDwuBH0j67OsGGjrHBFiyXD46s6zH7HtARgwVvpiZoNArDByBzLJ 3ydnl5IgiqWuUfBy3TzG77kTv2W4smIncOtuxJpkF3d7c8T8+sT6krAL7d3upFJF XHzRQE6TLG2vyG0b8uP3xb6gvwbU0bqD3Rt7UoT6sd137JFq6ZGRQcw= -----END CERTIFICATE-----Generated at Mon Feb 2 17:23:33 2026 by rpki-client