This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer File: 2Rh8msEPIFFSsSjs3CFXyQJJFqQ.cer (raw, json) Hash identifier: JLr3X7tUXqUF+RGTTZOaT9lftcUdQWi4ofnz0WqdP0s= Subject key identifier: D9:18:7C:9A:C1:0F:20:51:52:B1:28:EC:DC:21:57:C9:02:49:16:A4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77595877375F7DE9A012F4102A0DEDB2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:22 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 47668 IP: 91.208.39.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:58:77:37:5f:7d:e9:a0:12:f4:10:2a:0d:ed:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d9187c9ac10f205152b128ecdc2157c9024916a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:55:5c:eb:af:bf:35:6e:13:f9:c1:ad:5e:a7: 24:be:66:ee:3d:7a:b5:e7:62:12:9e:be:f7:6c:38: c5:75:0e:4b:03:5e:3f:6a:93:d9:c0:be:27:20:26: ff:fc:8b:20:58:c0:75:c6:52:eb:ff:cf:a3:fa:d3: d0:77:74:c9:13:bd:b0:60:7c:02:63:26:8b:93:e9: 54:98:c9:49:10:63:85:24:36:0c:9b:bd:eb:89:d0: 22:94:9f:1f:b7:fe:e4:83:0b:17:be:fd:ca:12:7e: 08:5c:19:c1:e6:a0:9e:b7:8c:de:63:7b:be:53:cb: f7:10:5e:2d:34:1d:1c:b9:00:cb:1f:a6:f2:05:81: fc:ce:68:72:ed:db:83:5c:32:2a:22:1f:c8:6e:c6: 6e:00:e4:94:f3:72:3e:22:f3:f8:71:81:80:27:e4: 59:cb:b6:c8:04:bc:95:22:7f:26:01:af:1a:c8:8a: f4:9a:7d:a8:68:dd:04:44:f8:eb:e0:ee:13:13:1b: 76:a1:fa:43:40:33:c9:7e:11:a7:52:8c:eb:31:e2: 74:da:0a:b2:aa:c3:38:fb:33:c5:81:0f:51:e0:f6: 3a:97:43:4f:4e:e3:f8:a5:9d:61:76:e4:87:e9:3a: a2:8a:d2:ff:fc:8d:68:79:a2:d2:b9:9c:a7:f4:81: 82:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:18:7C:9A:C1:0F:20:51:52:B1:28:EC:DC:21:57:C9:02:49:16:A4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/4ad454-0048-411a-b1ea-24b30606e219/1/2Rh8msEPIFFSsSjs3CFXyQJJFqQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.208.39.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 47668 Signature Algorithm: sha256WithRSAEncryption 41:a9:07:f8:a9:34:75:1d:24:52:95:8b:ac:b5:a8:00:ae:57: c9:24:39:35:00:6e:a0:c4:90:8e:59:5b:e9:bf:17:20:35:0a: 96:d8:1d:f9:bb:fa:5b:3b:65:1e:2a:c5:dc:aa:43:6e:31:27: ba:bc:88:41:c0:82:a7:dd:52:85:98:b6:64:aa:90:29:e3:da: 6e:01:71:8d:be:85:d0:0e:8d:de:b3:c9:3a:0a:68:de:49:9f: bd:db:cd:46:1d:88:c3:c6:19:10:16:cd:0d:62:2d:ac:55:0d: 68:f9:94:10:3f:95:22:6f:f6:63:42:af:fc:84:81:49:83:ed: ac:aa:dd:6e:9d:b3:f5:21:9a:f2:8b:a6:6c:72:ad:10:a1:d1: e9:84:da:db:3d:86:ed:cc:26:78:9f:98:fd:32:46:22:55:83: b7:70:8f:77:7c:35:38:25:2e:57:6c:91:44:5a:c8:0b:52:0f: 30:2c:59:17:86:a1:96:b8:75:e9:f6:7b:51:cf:b1:d2:bf:cd: c7:bf:be:29:f6:9f:03:d8:9e:d0:a7:5a:a0:9f:ea:c3:f3:fb: 04:10:99:a0:09:2f:54:58:58:c7:63:ac:89:37:5b:22:89:e9: 20:0d:fd:3e:f6:eb:af:08:45:26:a9:9b:96:ad:77:4a:87:c6: 7b:f1:0e:61 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt3WVh3N1996aAS9BAqDe2yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTE4N2M5YWMxMGYyMDUxNTJiMTI4ZWNkYzIxNTdjOTAyNDkxNmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvVVc66+/NW4T+cGtXqckvmbuPXq1 52ISnr73bDjFdQ5LA14/apPZwL4nICb//IsgWMB1xlLr/8+j+tPQd3TJE72wYHwC YyaLk+lUmMlJEGOFJDYMm73ridAilJ8ft/7kgwsXvv3KEn4IXBnB5qCet4zeY3u+ U8v3EF4tNB0cuQDLH6byBYH8zmhy7duDXDIqIh/IbsZuAOSU83I+IvP4cYGAJ+RZ y7bIBLyVIn8mAa8ayIr0mn2oaN0ERPjr4O4TExt2ofpDQDPJfhGnUozrMeJ02gqy qsM4+zPFgQ9R4PY6l0NPTuP4pZ1hduSH6TqiitL//I1oeaLSuZyn9IGCMwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFNkYfJrBDyBRUrEo7NwhV8kCSRakMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRjLzRhZDQ1 NC0wMDQ4LTQxMWEtYjFlYS0yNGIzMDYwNmUyMTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMvNGFkNDU0 LTAwNDgtNDExYS1iMWVhLTI0YjMwNjA2ZTIxOS8xLzJSaDhtc0VQSUZGU3NTanMz Q0ZYeVFKSkZxUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9AnMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwC6NDANBgkqhkiG9w0BAQsFAAOCAQEAQakH+Kk0dR0kUpWLrLWoAK5XySQ5NQBu oMSQjllb6b8XIDUKltgd+bv6WztlHirF3KpDbjEnuryIQcCCp91ShZi2ZKqQKePa bgFxjb6F0A6N3rPJOgpo3kmfvdvNRh2Iw8YZEBbNDWItrFUNaPmUED+VIm/2Y0Kv /ISBSYPtrKrdbp2z9SGa8oumbHKtEKHR6YTa2z2G7cwmeJ+Y/TJGIlWDt3CPd3w1 OCUuV2yRRFrIC1IPMCxZF4ahlrh16fZ7Uc+x0r/Nx7++KfafA9ie0KdaoJ/qw/P7 BBCZoAkvVFhYx2OsiTdbIonpIA39PvbrrwhFJqmblq13SofGe/EOYQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:13 2026 by rpki-client