This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2HGZiqFAq3wf8kDqsMkjWRPJboo.cer File: 2HGZiqFAq3wf8kDqsMkjWRPJboo.cer (raw, json) Hash identifier: YbsVZXEJIbLyg46ZTD5XOU5i0UqeSEhdEskCBq/QOjs= Subject key identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B775925A9D4537920761BFE24C3EA702C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49639 IP: 91.213.61.0/24 IP: 2001:67c:52c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:25:a9:d4:53:79:20:76:1b:fe:24:c3:ea:70:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d871998aa140ab7c1ff240eab0c9235913c96e8a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:c3:aa:4f:b1:25:c0:ed:52:ef:3a:8e:f4:65: 8c:b5:21:2b:2f:cb:41:d4:7b:f3:34:7f:cd:2e:f1: f8:56:2d:84:68:7b:a8:e8:71:f1:50:31:1a:72:c8: 0b:76:91:9f:1d:0f:51:ea:44:0b:1b:6b:6a:31:1a: 85:0b:f3:0d:b5:2f:72:9b:8b:0b:3e:02:64:79:b7: 99:fa:85:a8:d5:23:43:4a:1b:e3:1c:d2:4c:d1:3d: fb:b4:48:3f:58:a8:92:e0:98:b9:fd:57:27:88:f3: 96:95:8f:19:bd:fb:37:8f:cb:ec:d5:1b:15:09:b6: 91:55:05:10:ae:ee:f3:89:f4:af:f2:44:5e:be:74: aa:74:19:e7:b5:2b:b0:d2:33:9f:4c:13:c6:0d:12: 2e:56:c0:34:0c:0b:33:24:21:e9:18:43:f5:02:99: 09:f2:15:5d:71:ae:a6:d6:15:ac:57:78:cf:33:00: 5a:21:25:0d:67:da:f9:12:2d:82:76:87:ff:54:77: 65:ef:44:28:88:5f:cf:61:f0:59:9b:4c:c9:05:f3: 70:9b:0c:a3:6c:cd:6b:74:80:c9:cd:31:87:6a:f0: 39:6d:a4:8c:f4:59:1c:2c:c4:2b:b6:7a:b0:31:47: e4:24:f4:f0:85:a8:8c:f7:c2:5a:be:e2:dd:af:d6: 49:25 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D8:71:99:8A:A1:40:AB:7C:1F:F2:40:EA:B0:C9:23:59:13:C9:6E:8A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f6/33aa24-35ea-4adc-8c05-5a34e52b0b10/1/2HGZiqFAq3wf8kDqsMkjWRPJboo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.213.61.0/24 IPv6: 2001:67c:52c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49639 Signature Algorithm: sha256WithRSAEncryption 6f:b8:04:14:3a:fa:88:c1:0e:56:af:96:f7:9c:cd:c2:21:68: a5:c9:4e:ac:2e:66:21:13:71:22:d2:ec:48:5f:e7:cb:b9:74: 84:24:54:bc:69:58:05:4a:d9:a1:42:d7:23:23:a0:0c:0f:ba: 4d:ad:25:d1:6d:8e:db:6b:40:18:53:12:7f:3f:4a:cf:e2:49: 52:1d:95:e2:3d:6d:45:e0:10:87:7d:e1:6b:5a:1a:ad:53:36: 8e:31:fd:f8:a7:10:6f:35:c4:9c:e8:b1:f2:ab:88:e6:dd:53: 3d:1a:38:22:2f:5c:61:ed:bf:57:91:ab:11:27:da:2c:5e:0a: bb:f7:6f:c3:d7:05:74:7b:d7:4b:8c:a8:6d:55:52:e9:03:e9: e3:68:10:d5:65:d1:e2:71:b5:c5:c6:cb:f7:ce:1d:89:3b:45: 45:6c:b6:bd:3d:fc:2b:aa:6f:94:63:c6:96:5f:17:c9:2d:6f: bc:37:14:d9:02:4a:cc:08:77:3b:29:5f:9d:0c:66:9a:58:94: 68:ac:5b:e4:57:df:03:7f:99:30:b7:e1:d2:dd:c9:37:37:df: 1f:6e:be:db:7c:db:eb:6d:62:8e:bf:1e:40:1f:8e:2f:99:2d: 27:87:bb:13:50:b1:6d:39:88:79:e6:2b:a1:bb:c1:b7:da:a0: 19:07:5c:6a -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt3WSWp1FN5IHYb/iTD6nAsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkODcxOTk4YWExNDBhYjdjMWZmMjQwZWFiMGM5MjM1OTEzYzk2ZThhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArsOqT7ElwO1S7zqO9GWMtSErL8tB 1HvzNH/NLvH4Vi2EaHuo6HHxUDEacsgLdpGfHQ9R6kQLG2tqMRqFC/MNtS9ym4sL PgJkebeZ+oWo1SNDShvjHNJM0T37tEg/WKiS4Ji5/VcniPOWlY8Zvfs3j8vs1RsV CbaRVQUQru7zifSv8kRevnSqdBnntSuw0jOfTBPGDRIuVsA0DAszJCHpGEP1ApkJ 8hVdca6m1hWsV3jPMwBaISUNZ9r5Ei2Cdof/VHdl70QoiF/PYfBZm0zJBfNwmwyj bM1rdIDJzTGHavA5baSM9FkcLMQrtnqwMUfkJPTwhaiM98JavuLdr9ZJJQIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFNhxmYqhQKt8H/JA6rDJI1kTyW6KMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y2LzMzYWEy NC0zNWVhLTRhZGMtOGMwNS01YTM0ZTUyYjBiMTAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjYvMzNhYTI0 LTM1ZWEtNGFkYy04YzA1LTVhMzRlNTJiMGIxMC8xLzJIR1ppcUZBcTN3ZjhrRHFz TWtqV1JQSmJvby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAW9U9MA8EAgACMAkDBwAgAQZ8BSwwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAMHnMA0GCSqGSIb3DQEBCwUAA4IBAQBvuAQUOvqI wQ5Wr5b3nM3CIWilyU6sLmYhE3Ei0uxIX+fLuXSEJFS8aVgFStmhQtcjI6AMD7pN rSXRbY7ba0AYUxJ/P0rP4klSHZXiPW1F4BCHfeFrWhqtUzaOMf34pxBvNcSc6LHy q4jm3VM9GjgiL1xh7b9XkasRJ9osXgq792/D1wV0e9dLjKhtVVLpA+njaBDVZdHi cbXFxsv3zh2JO0VFbLa9Pfwrqm+UY8aWXxfJLW+8NxTZAkrMCHc7KV+dDGaaWJRo rFvkV98Df5kwt+HS3ck3N98fbr7bfNvrbWKOvx5AH44vmS0nh7sTULFtOYh55iuh u8G32qAZB1xq -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:29 2026 by rpki-client