This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/28eECSDRxwn_KZrtNoLCP7Qydn0.cer File: 28eECSDRxwn_KZrtNoLCP7Qydn0.cer (raw, json) Hash identifier: DCkrRsWArUmrHzn3eFzjJIo222T5IrScW/hPNtm0e6c= Subject key identifier: DB:C7:84:09:20:D1:C7:09:FF:29:9A:ED:36:82:C2:3F:B4:32:76:7D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7F2F32A2924651F7F30D4DFD650A23 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/28eECSDRxwn_KZrtNoLCP7Qydn0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:17:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 48721 AS: 209588 AS: 211794 IP: 141.98.80.0/22 IP: 194.165.16.0/23 IP: 2a10:9100::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:2f:32:a2:92:46:51:f7:f3:0d:4d:fd:65:0a:23 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dbc7840920d1c709ff299aed3682c23fb432767d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1c:bc:4f:09:05:58:fa:bd:37:6d:5d:5a:ed: 1f:6c:9e:de:f9:4e:0f:94:7d:4a:8e:32:aa:c2:aa: 09:40:bb:19:24:e6:8f:75:40:58:cc:33:2f:71:4c: 12:53:a3:1f:1d:32:b8:89:28:f3:66:c5:d7:db:c7: 1e:d5:39:f8:f5:9c:22:df:4a:d3:57:ba:22:8a:6c: 1e:6a:e7:f2:4d:40:3a:50:23:37:38:f3:31:43:83: 44:d6:eb:26:2e:9c:df:a0:69:44:7c:00:87:86:65: 77:c8:4d:17:dc:77:fe:6d:e3:d7:1c:f1:65:c2:20: 4f:77:7e:ae:6c:e3:e3:f0:02:84:a8:b3:f5:22:3e: af:cb:73:d4:6a:42:55:47:f0:d9:b0:5b:1d:b7:13: 1d:41:8f:73:7e:a3:e0:5a:93:b8:aa:2e:49:bf:f3: de:26:6b:a0:ea:52:18:1b:88:a7:ab:a2:6f:37:6f: bb:32:b9:de:85:d7:9e:d5:c6:73:50:19:c0:1b:30: d4:68:39:60:95:fe:46:cb:8f:92:cc:c1:ca:c5:99: eb:6e:9c:22:5d:e8:a6:fc:97:8a:da:b2:13:21:9d: 6d:af:32:6d:d3:50:a9:6c:52:85:c2:24:79:31:1a: fa:59:92:38:0d:11:dd:70:74:fd:10:51:df:c2:d5: de:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:C7:84:09:20:D1:C7:09:FF:29:9A:ED:36:82:C2:3F:B4:32:76:7D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/54/9521e1-7610-4d43-8683-51be2f9608bc/1/28eECSDRxwn_KZrtNoLCP7Qydn0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.98.80.0/22 194.165.16.0/23 IPv6: 2a10:9100::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 48721 209588 211794 Signature Algorithm: sha256WithRSAEncryption 51:ba:85:b6:cb:23:a0:b0:1b:65:05:28:5c:ec:0b:1c:ea:15: f1:e9:b9:2d:6f:bf:0b:73:ae:2e:87:3b:45:4d:11:a2:00:a7: b7:50:02:ad:00:8c:76:91:32:0e:9b:d5:66:39:e5:7e:ad:9b: b0:fe:d6:0f:23:49:85:74:fb:8d:07:97:64:be:47:57:31:f3: 52:70:5c:e4:b3:3b:a0:0d:75:a0:59:90:ee:e8:9d:fc:17:d2: 33:31:9f:1b:9c:f5:fb:d6:ff:68:b7:14:7e:24:bb:71:6e:26: 1c:94:93:5b:46:7f:9f:94:bf:cd:c2:d9:af:6b:c5:46:84:d4: ed:0f:d7:cb:77:99:40:8e:48:e0:60:b5:09:3b:4f:df:7b:7b: b7:c6:08:9f:50:99:fc:32:9e:7a:8b:83:de:ca:eb:7c:1e:4c: 5c:52:a9:95:b1:7c:05:9e:8c:76:ca:50:5b:37:ee:dc:79:99: 82:1e:c8:ba:18:a9:4e:d6:c2:47:b4:7a:00:a3:6c:d2:6d:6d: d5:82:76:b5:38:8d:0c:c2:49:2f:39:fa:61:6d:51:23:bc:bc: cd:78:0f:64:2d:d0:a1:f8:89:19:f7:e2:f5:19:7f:e3:f3:b0: aa:1a:57:97:16:82:87:41:b2:d6:2e:eb:5d:5d:8a:b8:b2:8b: f1:df:09:36 -----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgISAZt8fy8yopJGUffzDU39ZQojMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYmM3ODQwOTIwZDFjNzA5ZmYyOTlhZWQzNjgyYzIzZmI0MzI3NjdkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBy8TwkFWPq9N21dWu0fbJ7e+U4P lH1KjjKqwqoJQLsZJOaPdUBYzDMvcUwSU6MfHTK4iSjzZsXX28ce1Tn49Zwi30rT V7oiimweaufyTUA6UCM3OPMxQ4NE1usmLpzfoGlEfACHhmV3yE0X3Hf+bePXHPFl wiBPd36ubOPj8AKEqLP1Ij6vy3PUakJVR/DZsFsdtxMdQY9zfqPgWpO4qi5Jv/Pe Jmug6lIYG4inq6JvN2+7Mrnehdee1cZzUBnAGzDUaDlglf5Gy4+SzMHKxZnrbpwi Xeim/JeK2rITIZ1trzJt01CpbFKFwiR5MRr6WZI4DRHdcHT9EFHfwtXetQIDAQAB o4ICvzCCArswHQYDVR0OBBYEFNvHhAkg0ccJ/yma7TaCwj+0MnZ9MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU0Lzk1MjFl MS03NjEwLTRkNDMtODY4My01MWJlMmY5NjA4YmMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTQvOTUyMWUx LTc2MTAtNGQ0My04NjgzLTUxYmUyZjk2MDhiYy8xLzI4ZUVDU0RSeHduX0tacnRO b0xDUDdReWRuMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQCjWJQAwQBwqUQMA0EAgACMAcDBQMqEJEAMCQG CCsGAQUFBwEIAQH/BBUwE6ARMA8CAwC+UQIDAzK0AgMDO1IwDQYJKoZIhvcNAQEL BQADggEBAFG6hbbLI6CwG2UFKFzsCxzqFfHpuS1vvwtzri6HO0VNEaIAp7dQAq0A jHaRMg6b1WY55X6tm7D+1g8jSYV0+40Hl2S+R1cx81JwXOSzO6ANdaBZkO7onfwX 0jMxnxuc9fvW/2i3FH4ku3FuJhyUk1tGf5+Uv83C2a9rxUaE1O0P18t3mUCOSOBg tQk7T997e7fGCJ9QmfwynnqLg97K63weTFxSqZWxfAWejHbKUFs37tx5mYIeyLoY qU7Wwke0egCjbNJtbdWCdrU4jQzCSS85+mFtUSO8vM14D2Qt0KH4iRn34vUZf+Pz sKoaV5cWgodBstYu611diriyi/HfCTY= -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:39 2026 by rpki-client