This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1tuqG1LzpzKJ_3aKy3uqfzh_lV8.cer File: 1tuqG1LzpzKJ_3aKy3uqfzh_lV8.cer (raw, json) Hash identifier: sgL4SrBuGcfiGFjfJT3vplfCMsMiVgdHfU5S7PvE9pA= Subject key identifier: D6:DB:AA:1B:52:F3:A7:32:89:FF:76:8A:CB:7B:AA:7F:38:7F:95:5F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ECFDE504D42094C5E0B061BBD0BEF6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f0/b0b6e7-3e23-4426-8c84-fab83d403558/1/1tuqG1LzpzKJ_3aKy3uqfzh_lV8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f0/b0b6e7-3e23-4426-8c84-fab83d403558/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 91.208.0.0/24 IP: 91.208.16.0/24 IP: 91.208.19.0/24 IP: 91.208.21.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 19:40:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:fd:e5:04:d4:20:94:c5:e0:b0:61:bb:d0:be:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d6dbaa1b52f3a73289ff768acb7baa7f387f955f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:f3:b1:b3:bd:89:64:66:1f:6b:4f:21:b9:63: 6c:94:d7:b3:d2:4e:2d:e3:25:0d:88:32:24:28:17: 64:d8:05:f1:4a:e2:d9:56:d3:f5:5f:d9:86:af:7a: d2:d5:6f:85:f7:b3:46:12:33:2b:88:59:a0:59:95: 60:9a:a4:8b:09:86:15:50:4b:5c:74:c4:03:af:61: ab:27:83:17:dc:56:a1:44:2d:c1:da:7d:8a:26:5e: 43:ff:7c:8b:e8:f6:e1:d9:41:95:fa:87:b4:7c:d2: 09:f8:f0:9a:48:1c:74:87:b6:65:e8:62:3a:f6:ae: 31:2f:f9:60:98:b4:f8:cb:71:bd:b2:fe:10:ce:bb: f4:b6:df:4c:07:b8:2d:c1:f7:1c:f9:57:df:48:23: de:1c:ef:3e:a3:4c:7d:9f:1c:64:a6:22:f7:92:10: 61:7e:0b:fb:5f:b9:bc:af:88:9b:c5:44:2c:6b:09: b1:d7:02:01:3b:83:9d:75:44:8b:f0:5c:13:2e:70: 45:d7:5f:7b:da:17:eb:6e:c1:47:dc:dc:c5:e8:9c: 04:81:34:c8:bc:c2:be:ad:68:01:b8:9b:ad:aa:da: d5:d7:65:eb:90:7b:54:6e:77:ba:77:af:ad:4f:a1: 49:03:ec:28:6c:51:d7:7d:12:7b:94:46:7a:88:c1: c7:05 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D6:DB:AA:1B:52:F3:A7:32:89:FF:76:8A:CB:7B:AA:7F:38:7F:95:5F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b0b6e7-3e23-4426-8c84-fab83d403558/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b0b6e7-3e23-4426-8c84-fab83d403558/1/1tuqG1LzpzKJ_3aKy3uqfzh_lV8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.208.0.0/24 91.208.16.0/24 91.208.19.0/24 91.208.21.0/24 Signature Algorithm: sha256WithRSAEncryption 61:f5:de:ca:18:f1:0b:18:3f:10:33:8b:ce:32:fe:92:ff:20: 78:a4:87:2a:47:45:87:31:b6:9e:d5:f3:3e:ce:ba:07:af:5d: f8:3e:81:20:00:19:8f:ff:e2:15:e4:52:3b:93:cd:93:40:ef: e7:1d:6f:3c:36:11:ca:c6:18:ac:88:62:0f:1f:3e:9d:17:15: 4a:4a:c6:fc:ed:a5:71:bc:5c:5b:ca:97:8b:4c:67:a9:51:50: 48:f9:f2:c5:f7:0d:cf:f2:02:81:d1:8b:12:0f:f3:9e:9b:dd: 4b:f4:4e:4a:24:70:cb:a4:b5:a5:b1:cd:5f:98:19:18:32:24: 1a:8b:55:b4:ae:53:7c:6c:c1:de:30:18:9c:9a:55:eb:53:83: d3:23:64:37:e3:9e:8d:cf:4f:24:82:7c:70:a9:a9:c6:75:4a: ea:98:67:66:ec:a4:3a:e7:97:02:f0:d3:1f:bb:c2:dc:fa:08: 09:fd:a3:18:b7:cf:d7:79:ad:10:cd:78:31:0c:94:bb:fa:c0: a6:92:90:4d:06:9d:d3:03:50:b5:59:47:a4:fb:79:bf:aa:00: 42:ec:b9:61:6f:ab:7b:45:f8:28:bd:70:a3:24:f4:c3:77:ab: 28:4c:1a:27:4a:94:ea:9b:ad:17:ac:fe:eb:3f:51:45:bb:8f: e0:5a:91:1a -----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgISAZt57P3lBNQglMXgsGG70L72MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkNmRiYWExYjUyZjNhNzMyODlmZjc2OGFjYjdiYWE3ZjM4N2Y5NTVmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnvOxs72JZGYfa08huWNslNez0k4t 4yUNiDIkKBdk2AXxSuLZVtP1X9mGr3rS1W+F97NGEjMriFmgWZVgmqSLCYYVUEtc dMQDr2GrJ4MX3FahRC3B2n2KJl5D/3yL6Pbh2UGV+oe0fNIJ+PCaSBx0h7Zl6GI6 9q4xL/lgmLT4y3G9sv4Qzrv0tt9MB7gtwfcc+VffSCPeHO8+o0x9nxxkpiL3khBh fgv7X7m8r4ibxUQsawmx1wIBO4OddUSL8FwTLnBF11972hfrbsFH3NzF6JwEgTTI vMK+rWgBuJutqtrV12XrkHtUbne6d6+tT6FJA+wobFHXfRJ7lEZ6iMHHBQIDAQAB o4ICljCCApIwHQYDVR0OBBYEFNbbqhtS86cyif92ist7qn84f5VfMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YwL2IwYjZl Ny0zZTIzLTQ0MjYtOGM4NC1mYWI4M2Q0MDM1NTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAvYjBiNmU3 LTNlMjMtNDQyNi04Yzg0LWZhYjgzZDQwMzU1OC8xLzF0dXFHMUx6cHpLSl8zYUt5 M3VxZnpoX2xWOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDEGCCsGAQUF BwEHAQH/BCIwIDAeBAIAATAYAwQAW9AAAwQAW9AQAwQAW9ATAwQAW9AVMA0GCSqG SIb3DQEBCwUAA4IBAQBh9d7KGPELGD8QM4vOMv6S/yB4pIcqR0WHMbae1fM+zroH r134PoEgABmP/+IV5FI7k82TQO/nHW88NhHKxhisiGIPHz6dFxVKSsb87aVxvFxb ypeLTGepUVBI+fLF9w3P8gKB0YsSD/Oem91L9E5KJHDLpLWlsc1fmBkYMiQai1W0 rlN8bMHeMBicmlXrU4PTI2Q3456Nz08kgnxwqanGdUrqmGdm7KQ655cC8NMfu8Lc +ggJ/aMYt8/Xea0QzXgxDJS7+sCmkpBNBp3TA1C1WUek+3m/qgBC7Llhb6t7Rfgo vXCjJPTDd6soTBonSpTqm60XrP7rP1FFu4/gWpEa -----END CERTIFICATE-----Generated at Fri Jan 2 23:51:57 2026 by rpki-client