This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1UaPVMDUlYH2m1Q4PVVz_3dWIOw.cer File: 1UaPVMDUlYH2m1Q4PVVz_3dWIOw.cer (raw, json) Hash identifier: 5zQRSDUAQIc0cN0FXfxnG/ZqtFn70SfgOMnD3ifTXQY= Subject key identifier: D5:46:8F:54:C0:D4:95:81:F6:9B:54:38:3D:55:73:FF:77:56:20:EC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78346332BA57C31C2A8EEB5C05A7A6B9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cf/5e8421-1b41-4567-89a4-2c5a7ab49319/1/1UaPVMDUlYH2m1Q4PVVz_3dWIOw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cf/5e8421-1b41-4567-89a4-2c5a7ab49319/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.159.4.0/22 IP: 2a13:11c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:63:32:ba:57:c3:1c:2a:8e:eb:5c:05:a7:a6:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d5468f54c0d49581f69b54383d5573ff775620ec Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:10:e8:27:ad:df:d6:da:ec:61:6e:4a:87:40: 09:8a:75:48:43:2d:e2:02:49:c7:49:9a:4a:43:23: df:a1:c1:1d:bf:b8:6c:41:a5:89:aa:cb:f6:6b:c8: 48:f0:2f:9b:24:9c:26:e9:45:5a:c9:ce:a7:6d:9d: a8:60:10:e4:2e:c9:91:37:28:17:4f:f7:9c:5f:ed: 8c:08:a6:de:e4:74:a8:5b:64:d5:6d:4d:16:f6:24: 8d:30:61:2b:74:89:9f:47:38:fc:76:94:5f:36:21: 84:b0:03:37:09:e4:58:e4:33:7d:21:80:6a:75:69: ce:47:59:cd:aa:86:ca:56:f3:88:12:f3:9c:50:66: b0:18:28:f0:42:7e:11:b9:7a:22:94:34:6f:65:d7: 0b:e7:b5:a4:46:92:23:6a:b5:10:52:41:3f:29:a6: 7e:44:70:29:da:98:ea:8c:16:69:a7:cd:2c:49:89: 93:cc:98:03:4a:14:8f:65:db:cb:f1:79:13:72:63: 17:46:d0:c5:62:37:d5:89:7e:a1:e6:f5:4a:e4:27: 50:37:4d:8b:3e:a5:bb:b2:ba:30:46:70:b7:f7:42: d1:72:63:68:57:2a:42:33:48:32:22:37:57:69:3e: d1:93:f8:45:f1:de:bf:85:36:bd:ac:77:ac:93:84: 7c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D5:46:8F:54:C0:D4:95:81:F6:9B:54:38:3D:55:73:FF:77:56:20:EC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5e8421-1b41-4567-89a4-2c5a7ab49319/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cf/5e8421-1b41-4567-89a4-2c5a7ab49319/1/1UaPVMDUlYH2m1Q4PVVz_3dWIOw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.159.4.0/22 IPv6: 2a13:11c0::/32 Signature Algorithm: sha256WithRSAEncryption 69:8c:74:52:ab:c1:de:3f:a5:19:6e:2e:be:55:d6:df:fc:95: 47:4e:93:9e:e9:89:e2:6a:7b:cb:ff:91:94:92:be:f2:7a:d5: 1f:b5:36:47:a7:6a:84:ed:a5:81:23:f6:2c:b3:4d:16:2a:b0: 9a:60:54:6d:47:50:62:15:ca:56:2b:06:e1:75:53:04:09:ec: 7a:1d:66:f0:a5:cc:76:72:ef:d9:c0:ed:cf:b4:93:f0:6e:cf: 78:7b:c5:55:74:29:73:79:5f:13:ae:91:49:29:47:d2:13:78: 41:3e:18:19:e7:d9:c4:a7:c9:0f:9a:90:b0:6d:46:be:ca:de: c5:de:6d:c3:9c:55:5f:41:86:98:1a:e5:69:de:0e:39:b7:fa: 09:a5:da:05:4d:41:ff:92:46:18:36:ea:63:72:85:37:55:aa: 5c:a3:af:05:cc:cd:09:e1:a1:41:d6:f9:83:fb:24:43:50:e5: 19:7f:a0:f4:36:72:9e:fe:27:b4:68:ad:62:a1:e5:fd:d5:54: 06:ae:f4:b2:34:8c:96:86:27:5f:15:74:c1:e6:2f:5f:42:cd: 91:ec:4c:f4:88:bb:d2:cb:69:96:69:d6:3b:fb:27:e9:6d:5d: 3c:fa:4c:6a:1b:5f:52:a9:0c:73:e7:4c:b8:20:58:e0:a3:3b: 00:90:c9:9e -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt4NGMyulfDHCqO61wFp6a5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNTQ2OGY1NGMwZDQ5NTgxZjY5YjU0MzgzZDU1NzNmZjc3NTYyMGVjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxxDoJ63f1trsYW5Kh0AJinVIQy3i AknHSZpKQyPfocEdv7hsQaWJqsv2a8hI8C+bJJwm6UVayc6nbZ2oYBDkLsmRNygX T/ecX+2MCKbe5HSoW2TVbU0W9iSNMGErdImfRzj8dpRfNiGEsAM3CeRY5DN9IYBq dWnOR1nNqobKVvOIEvOcUGawGCjwQn4RuXoilDRvZdcL57WkRpIjarUQUkE/KaZ+ RHAp2pjqjBZpp80sSYmTzJgDShSPZdvL8XkTcmMXRtDFYjfViX6h5vVK5CdQN02L PqW7srowRnC390LRcmNoVypCM0gyIjdXaT7Rk/hF8d6/hTa9rHesk4R8PwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFNVGj1TA1JWB9ptUOD1Vc/93ViDsMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NmLzVlODQy MS0xYjQxLTQ1NjctODlhNC0yYzVhN2FiNDkzMTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2YvNWU4NDIx LTFiNDEtNDU2Ny04OWE0LTJjNWE3YWI0OTMxOS8xLzFVYVBWTURVbFlIMm0xUTRQ VlZ6XzNkV0lPdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuZ8EMA0EAgACMAcDBQAqExHAMA0GCSqGSIb3 DQEBCwUAA4IBAQBpjHRSq8HeP6UZbi6+Vdbf/JVHTpOe6YnianvL/5GUkr7yetUf tTZHp2qE7aWBI/Yss00WKrCaYFRtR1BiFcpWKwbhdVMECex6HWbwpcx2cu/ZwO3P tJPwbs94e8VVdClzeV8TrpFJKUfSE3hBPhgZ59nEp8kPmpCwbUa+yt7F3m3DnFVf QYaYGuVp3g45t/oJpdoFTUH/kkYYNupjcoU3Vapco68FzM0J4aFB1vmD+yRDUOUZ f6D0NnKe/ie0aK1ioeX91VQGrvSyNIyWhidfFXTB5i9fQs2R7Ez0iLvSy2mWadY7 +yfpbV08+kxqG19SqQxz50y4IFjgozsAkMme -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:16 2026 by rpki-client