This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/25v841gk9uybXJ85qBFQzhYYEic.cer File: 25v841gk9uybXJ85qBFQzhYYEic.cer (raw, json) Hash identifier: Qu0ptODzoxty7/xsYrTkbd2tRABLjQuipb9mYPOIUEY= Subject key identifier: DB:9B:FC:E3:58:24:F6:EC:9B:5C:9F:39:A8:11:50:CE:16:18:12:27 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA336C9161C3649AB583B867C0A46CB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4a/b38707-39ce-4ccb-97a0-9b70d60c4800/1/25v841gk9uybXJ85qBFQzhYYEic.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4a/b38707-39ce-4ccb-97a0-9b70d60c4800/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:32 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 35765 IP: 87.247.192.0/19 IP: 195.128.104.0/21 IP: 2a03:7660::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:36:c9:16:1c:36:49:ab:58:3b:86:7c:0a:46:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db9bfce35824f6ec9b5c9f39a81150ce16181227 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:30:e8:e0:c0:d1:fe:51:52:ea:6b:d9:cd:ee: 6c:bb:1c:ba:e9:0b:ca:00:ef:7a:b0:ed:a8:e6:d8: 8d:af:1b:a7:fb:82:a6:9c:99:de:bb:70:cc:40:3d: 93:65:87:f7:70:2a:2d:5c:a4:89:aa:5c:ae:5c:66: d1:0d:17:72:4f:6f:a6:94:71:bc:4d:7e:40:34:54: 92:bd:22:c6:bd:b3:db:a5:77:4b:98:0a:eb:e2:19: 47:67:26:aa:6d:37:4b:5c:b7:dc:d6:22:06:ba:af: 9e:73:b5:fb:d9:d0:52:3e:1e:dc:3d:bf:95:d3:65: 40:a3:3d:a6:d4:b2:d0:7b:4f:d0:e4:b9:34:35:f5: aa:71:6f:60:4c:89:6e:08:de:b2:19:f4:66:15:e6: 3a:94:09:d6:02:b3:66:de:e1:a7:df:5d:02:45:4f: 14:eb:1e:28:56:ac:7c:b1:60:49:b1:d3:03:34:d6: 50:5d:ff:8b:c5:bc:c0:fd:57:eb:4d:5d:06:81:60: 30:fe:e3:5d:0d:de:0c:68:c8:08:fc:f3:0a:bd:24: 9c:5b:bf:57:13:71:7a:ee:72:ec:38:ba:08:f8:84: bc:95:2d:15:30:6c:23:2c:30:8f:dc:66:56:04:17: e8:35:c8:8c:10:83:d8:e7:e7:8a:96:2f:76:17:d6: 16:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:9B:FC:E3:58:24:F6:EC:9B:5C:9F:39:A8:11:50:CE:16:18:12:27 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/b38707-39ce-4ccb-97a0-9b70d60c4800/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4a/b38707-39ce-4ccb-97a0-9b70d60c4800/1/25v841gk9uybXJ85qBFQzhYYEic.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.247.192.0/19 195.128.104.0/21 IPv6: 2a03:7660::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 35765 Signature Algorithm: sha256WithRSAEncryption 47:ab:4d:33:40:4e:44:05:00:0c:ec:64:19:43:46:1d:4b:31: 3e:cc:dc:81:33:79:92:b8:73:fb:0a:57:d8:5a:dc:f8:ab:8a: ee:39:60:61:34:7e:0b:23:a1:c1:6b:26:99:83:63:c5:13:7c: fe:9b:6e:0c:b8:4b:52:df:d9:44:f8:a0:cb:84:c4:f2:8d:fd: a6:1a:48:90:3c:84:9f:a6:66:97:dc:93:3c:82:24:22:3f:5b: 98:8e:07:d7:b6:09:c2:37:f8:62:c3:d5:93:14:4f:c5:74:c0: 19:f6:f2:fd:04:1d:f6:b6:a7:30:4f:79:4b:0f:ff:e1:52:ec: 16:eb:ea:36:09:7f:2f:52:33:d0:13:87:62:3e:7a:c8:5a:d6: a0:95:a8:60:7c:ac:f8:f4:36:c6:ad:47:c6:93:dd:6f:cd:73: 85:27:b5:25:c6:b5:1e:b4:9c:37:28:fe:b0:2e:5d:76:d1:a5: 48:ba:cd:e3:64:41:c0:e6:2e:1f:e4:b8:b9:7d:cc:b5:11:1d: 63:8a:27:67:18:ea:10:26:0e:5f:a7:8b:84:53:9a:d8:d6:15: dc:7e:06:32:ba:89:9f:d0:12:ea:a6:f5:e3:a7:66:ce:6d:dd: 8a:5e:56:eb:b7:67:c9:1b:e6:59:d2:26:12:18:98:60:a9:57: d0:1e:e0:0b -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt7ozbJFhw2SatYO4Z8CkbLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjliZmNlMzU4MjRmNmVjOWI1YzlmMzlhODExNTBjZTE2MTgxMjI3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzTDo4MDR/lFS6mvZze5suxy66QvK AO96sO2o5tiNrxun+4KmnJneu3DMQD2TZYf3cCotXKSJqlyuXGbRDRdyT2+mlHG8 TX5ANFSSvSLGvbPbpXdLmArr4hlHZyaqbTdLXLfc1iIGuq+ec7X72dBSPh7cPb+V 02VAoz2m1LLQe0/Q5Lk0NfWqcW9gTIluCN6yGfRmFeY6lAnWArNm3uGn310CRU8U 6x4oVqx8sWBJsdMDNNZQXf+LxbzA/VfrTV0GgWAw/uNdDd4MaMgI/PMKvSScW79X E3F67nLsOLoI+IS8lS0VMGwjLDCP3GZWBBfoNciMEIPY5+eKli92F9YWuQIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFNub/ONYJPbsm1yfOagRUM4WGBInMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRhL2IzODcw Ny0zOWNlLTRjY2ItOTdhMC05YjcwZDYwYzQ4MDAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGEvYjM4NzA3 LTM5Y2UtNGNjYi05N2EwLTliNzBkNjBjNDgwMC8xLzI1djg0MWdrOXV5YlhKODVx QkZRemhZWUVpYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQFV/fAAwQDw4BoMA0EAgACMAcDBQAqA3ZgMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwCLtTANBgkqhkiG9w0BAQsFAAOCAQEAR6tN M0BORAUADOxkGUNGHUsxPszcgTN5krhz+wpX2Frc+KuK7jlgYTR+CyOhwWsmmYNj xRN8/ptuDLhLUt/ZRPigy4TE8o39phpIkDyEn6Zml9yTPIIkIj9bmI4H17YJwjf4 YsPVkxRPxXTAGfby/QQd9ranME95Sw//4VLsFuvqNgl/L1Iz0BOHYj56yFrWoJWo YHys+PQ2xq1HxpPdb81zhSe1Jca1HrScNyj+sC5ddtGlSLrN42RBwOYuH+S4uX3M tREdY4onZxjqECYOX6eLhFOa2NYV3H4GMrqJn9AS6qb146dmzm3dil5W67dnyRvm WdImEhiYYKlX0B7gCw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:27 2026 by rpki-client