This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/29OCJ0tFdmK6ctGIZXOix9zDVIY.cer File: 29OCJ0tFdmK6ctGIZXOix9zDVIY.cer (raw, json) Hash identifier: yDsMxJ1KqsP1XUF0b0YlRan573R1TQa0raM2fmdQYFk= Subject key identifier: DB:D3:82:27:4B:45:76:62:BA:72:D1:88:65:73:A2:C7:DC:C3:54:86 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCB5C32A442C7F2EED711F0542C9B0D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/52/f12029-6758-4233-9dfc-c654356b07c4/1/29OCJ0tFdmK6ctGIZXOix9zDVIY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/52/f12029-6758-4233-9dfc-c654356b07c4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:20:38 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 57780 IP: 91.210.153.0/24 IP: 2a06:5f80::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:cb:5c:32:a4:42:c7:f2:ee:d7:11:f0:54:2c:9b:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:20:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dbd382274b457662ba72d1886573a2c7dcc35486 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a6:01:3c:ba:6a:d8:87:54:4d:12:ec:a1:80:3c: d9:a1:23:9b:ac:3c:27:f5:98:55:9c:b7:2f:49:36: ed:d3:f6:40:65:f6:0b:53:29:c8:8d:f6:23:3f:f2: a6:87:4b:69:23:1a:3a:d4:42:0b:6c:f5:2d:cd:b3: c8:9c:57:92:c4:0c:65:a6:c0:56:b0:20:b1:01:06: a3:e5:44:81:6d:86:a4:02:a7:9c:4e:64:96:5b:74: 11:3d:cf:ed:2c:40:fb:38:b6:9f:54:70:30:80:41: c2:4e:73:bd:58:83:ae:37:06:78:2f:96:b2:0c:4a: 39:e3:1d:f2:7d:09:b3:79:40:fe:8b:fa:3d:d7:20: de:04:84:53:36:85:cf:af:b2:f3:12:a9:70:a0:9d: 59:3e:03:63:1e:88:ed:bc:51:b8:f1:84:d4:37:04: 26:2c:4f:e2:25:e1:f5:71:a6:12:5f:74:17:b5:90: 9e:1e:02:47:5a:a2:fa:fc:99:5e:38:6a:a0:5e:a7: 52:36:2f:25:62:86:9e:7e:87:e7:53:71:8f:e1:e6: e3:ed:e6:37:b5:c6:06:2d:d7:ab:d6:c5:c4:5a:29: a7:47:fa:ea:6c:0c:3d:1b:1a:88:31:ea:d7:32:ff: 43:50:d7:0e:7d:9b:b2:dc:96:d0:35:05:88:d2:b9: f6:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:D3:82:27:4B:45:76:62:BA:72:D1:88:65:73:A2:C7:DC:C3:54:86 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f12029-6758-4233-9dfc-c654356b07c4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/52/f12029-6758-4233-9dfc-c654356b07c4/1/29OCJ0tFdmK6ctGIZXOix9zDVIY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.210.153.0/24 IPv6: 2a06:5f80::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 57780 Signature Algorithm: sha256WithRSAEncryption 39:75:88:13:0e:46:5c:6f:ba:79:8b:b1:9d:a1:5a:d8:bb:98: a8:79:dd:80:47:47:21:d6:12:29:03:bd:bd:31:e1:9a:7b:ca: 8e:48:3f:a7:6f:3c:ab:c6:88:f2:69:7a:c9:44:63:07:3b:ba: f0:2a:79:bd:c6:f7:e9:50:62:e9:e7:28:9f:e5:8c:d9:a7:74: 13:ac:bb:74:be:98:8b:07:a0:b1:86:ad:1c:56:98:7e:78:90: f8:25:0f:21:b0:a0:b3:bd:db:7f:2b:a9:dc:c0:cd:9f:2c:4c: 10:ba:3f:43:4f:5d:92:02:a7:51:27:7a:e1:6e:71:1e:33:3f: 85:74:22:fe:89:f8:51:6e:ed:12:03:7e:3b:86:af:27:dd:6d: 7d:a9:21:3d:c8:5f:e1:32:03:c6:ce:89:f2:15:79:d7:1e:59: 06:57:52:14:79:b6:a2:89:87:40:cc:f1:11:0c:ba:56:65:09: 2e:02:cc:3f:52:e2:41:aa:d7:41:9c:3e:5a:d8:ec:0b:a7:e6: ba:7a:aa:ec:94:b3:dc:99:1d:01:19:a8:77:98:b1:e9:cd:a1: b3:15:ab:94:9c:03:91:da:03:20:bc:f9:63:fb:11:d6:2f:5b: b7:c3:30:64:86:54:d0:21:49:42:07:90:7d:7e:5a:df:2d:2c: d3:66:d9:b8 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9y1wypELH8u7XEfBULJsNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgyMDM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYmQzODIyNzRiNDU3NjYyYmE3MmQxODg2NTczYTJjN2RjYzM1NDg2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApgE8umrYh1RNEuyhgDzZoSObrDwn 9ZhVnLcvSTbt0/ZAZfYLUynIjfYjP/Kmh0tpIxo61EILbPUtzbPInFeSxAxlpsBW sCCxAQaj5USBbYakAqecTmSWW3QRPc/tLED7OLafVHAwgEHCTnO9WIOuNwZ4L5ay DEo54x3yfQmzeUD+i/o91yDeBIRTNoXPr7LzEqlwoJ1ZPgNjHojtvFG48YTUNwQm LE/iJeH1caYSX3QXtZCeHgJHWqL6/JleOGqgXqdSNi8lYoaefofnU3GP4ebj7eY3 tcYGLder1sXEWimnR/rqbAw9GxqIMerXMv9DUNcOfZuy3JbQNQWI0rn2iQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFNvTgidLRXZiunLRiGVzosfcw1SGMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUyL2YxMjAy OS02NzU4LTQyMzMtOWRmYy1jNjU0MzU2YjA3YzQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTIvZjEyMDI5 LTY3NTgtNDIzMy05ZGZjLWM2NTQzNTZiMDdjNC8xLzI5T0NKMHRGZG1LNmN0R0la WE9peDl6RFZJWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAW9KZMA0EAgACMAcDBQAqBl+AMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDhtDANBgkqhkiG9w0BAQsFAAOCAQEAOXWIEw5GXG+6 eYuxnaFa2LuYqHndgEdHIdYSKQO9vTHhmnvKjkg/p288q8aI8ml6yURjBzu68Cp5 vcb36VBi6econ+WM2ad0E6y7dL6YiwegsYatHFaYfniQ+CUPIbCgs73bfyup3MDN nyxMELo/Q09dkgKnUSd64W5xHjM/hXQi/on4UW7tEgN+O4avJ91tfakhPchf4TID xs6J8hV51x5ZBldSFHm2oomHQMzxEQy6VmUJLgLMP1LiQarXQZw+WtjsC6fmunqq 7JSz3JkdARmod5ix6c2hsxWrlJwDkdoDILz5Y/sR1i9bt8MwZIZU0CFJQgeQfX5a 3y0s02bZuA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:00 2026 by rpki-client