This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1IW26difsBA2mXHtiIVyBZhdSRg.cer File: 1IW26difsBA2mXHtiIVyBZhdSRg.cer (raw, json) Hash identifier: TgoMg7c8GG/srUHKDobWq2UggwKUndg7Ftp9DJVSeFs= Subject key identifier: D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC883AB99D40E4FB17D6A47866303B6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208725 IP: 45.87.76.0/22 IP: 2a0e:f780::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:83:ab:99:d4:0e:4f:b1:7d:6a:47:86:63:03:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d485b6e9d89fb010369971ed88857205985d4918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:a7:0f:75:a2:86:c8:a1:76:a7:a0:08:25:49: 9a:6c:30:95:53:f8:02:93:f9:ec:c3:b4:95:2a:d8: b8:e5:5a:89:b2:94:c9:6b:22:b0:f6:5a:0d:8d:a4: 8c:ec:e1:0f:6a:83:74:7a:7f:94:16:3a:fb:e6:24: d2:79:18:43:1d:d8:90:ac:ce:18:25:f4:5e:1c:7b: 48:8a:46:bd:75:42:c7:26:24:e7:c6:b6:ac:50:55: da:67:9c:18:5e:fa:80:e2:ee:0e:c7:ba:2f:5a:ae: 11:80:60:26:c7:6d:0d:3a:89:2c:6a:18:a9:57:65: c1:49:13:a0:ce:ca:1e:61:a2:f9:88:db:e1:71:0a: e5:73:3f:03:c0:00:52:ca:35:8f:6f:de:f7:7d:22: 52:4d:98:58:72:0d:3d:64:f2:6b:53:47:85:eb:24: 0b:ed:90:f9:c8:b9:ff:15:68:db:28:2d:02:ce:d1: be:af:1d:9b:e2:cb:2c:4d:cb:13:1f:21:7b:3b:58: f3:7a:4b:47:61:45:f2:38:fb:40:03:da:f2:76:8f: c9:09:82:ad:a3:24:5f:d9:f1:c7:cf:a2:23:d9:ea: 12:58:16:b3:51:ab:a1:d8:ca:51:ad:e9:8a:1d:41: 44:1e:96:50:d4:91:67:43:98:11:23:1f:cc:ac:b5: 6b:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D4:85:B6:E9:D8:9F:B0:10:36:99:71:ED:88:85:72:05:98:5D:49:18 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/858910-c501-459c-a313-7ac680ed5dd7/1/1IW26difsBA2mXHtiIVyBZhdSRg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.87.76.0/22 IPv6: 2a0e:f780::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208725 Signature Algorithm: sha256WithRSAEncryption 62:c2:42:df:14:07:1b:97:83:30:c6:88:0e:c3:ec:00:3a:0d: 60:60:e5:19:92:1d:35:c8:66:ae:ae:fc:df:d1:2f:b2:5c:7d: 44:25:0b:47:a7:b2:1d:98:80:14:d9:ba:f5:8b:e2:13:9e:39: 01:a3:79:4e:a3:e2:8b:8c:c8:d7:89:4c:bd:19:fb:bb:d3:be: 58:c3:b4:16:33:c3:2d:46:35:c5:0b:50:6c:93:b9:16:96:64: 09:e1:74:c1:2c:b3:0e:96:f3:db:ad:fa:44:dd:b5:d3:40:ad: 31:f6:d3:11:12:96:69:2d:43:a9:cd:43:ea:5b:1d:d1:43:52: b3:44:eb:15:2a:8c:48:87:10:3b:99:c4:89:5c:23:63:4e:59: 9c:29:1c:41:c5:c4:36:57:96:2e:0e:eb:25:e0:ab:82:c0:3c: e5:ff:81:a3:97:f5:92:84:4e:6d:4a:e6:e8:7e:cf:02:0a:5e: 89:db:cd:54:f4:d5:ad:6d:68:db:93:eb:33:c7:60:4e:93:64: 2d:1d:3f:43:ba:38:bc:c7:62:5a:17:88:8f:75:db:49:e6:be: 38:40:f6:eb:0e:ce:8e:dd:5f:8e:ec:97:b8:fa:ce:18:dd:2c: c6:df:c7:3d:7c:78:05:11:17:23:c1:3d:6f:ba:aa:88:af:11: c3:b2:c8:4b -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt6yIOrmdQOT7F9akeGYwO2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNDg1YjZlOWQ4OWZiMDEwMzY5OTcxZWQ4ODg1NzIwNTk4NWQ0OTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqqcPdaKGyKF2p6AIJUmabDCVU/gC k/nsw7SVKti45VqJspTJayKw9loNjaSM7OEPaoN0en+UFjr75iTSeRhDHdiQrM4Y JfReHHtIika9dULHJiTnxrasUFXaZ5wYXvqA4u4Ox7ovWq4RgGAmx20NOoksahip V2XBSROgzsoeYaL5iNvhcQrlcz8DwABSyjWPb973fSJSTZhYcg09ZPJrU0eF6yQL 7ZD5yLn/FWjbKC0CztG+rx2b4sssTcsTHyF7O1jzektHYUXyOPtAA9rydo/JCYKt oyRf2fHHz6Ij2eoSWBazUauh2MpRremKHUFEHpZQ1JFnQ5gRIx/MrLVrywIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFNSFtunYn7AQNplx7YiFcgWYXUkYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U3Lzg1ODkx MC1jNTAxLTQ1OWMtYTMxMy03YWM2ODBlZDVkZDcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcvODU4OTEw LWM1MDEtNDU5Yy1hMzEzLTdhYzY4MGVkNWRkNy8xLzFJVzI2ZGlmc0JBMm1YSHRp SVZ5QlpoZFNSZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCLVdMMA0EAgACMAcDBQMqDveAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMvVTANBgkqhkiG9w0BAQsFAAOCAQEAYsJC3xQHG5eD MMaIDsPsADoNYGDlGZIdNchmrq7839Evslx9RCULR6eyHZiAFNm69YviE545AaN5 TqPii4zI14lMvRn7u9O+WMO0FjPDLUY1xQtQbJO5FpZkCeF0wSyzDpbz2636RN21 00CtMfbTERKWaS1Dqc1D6lsd0UNSs0TrFSqMSIcQO5nEiVwjY05ZnCkcQcXENleW Lg7rJeCrgsA85f+Bo5f1koRObUrm6H7PAgpeidvNVPTVrW1o25PrM8dgTpNkLR0/ Q7o4vMdiWheIj3XbSea+OED26w7Ojt1fjuyXuPrOGN0sxt/HPXx4BREXI8E9b7qq iK8Rw7LISw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:39 2026 by rpki-client