This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2VJzaCBuPppZJAgd9jiAJG5cVBo.cer File: 2VJzaCBuPppZJAgd9jiAJG5cVBo.cer (raw, json) Hash identifier: 3EPk2Ewhv9N3PzTkOd/sgk6ql3biL598TthVRdIP2u0= Subject key identifier: D9:52:73:68:20:6E:3E:9A:59:24:08:1D:F6:38:80:24:6E:5C:54:1A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A3573D655BF0789A50A423C30919E1 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d8/82129a-5263-43d2-bc63-19620615579b/1/2VJzaCBuPppZJAgd9jiAJG5cVBo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d8/82129a-5263-43d2-bc63-19620615579b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 140.105.0.0/16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:57:3d:65:5b:f0:78:9a:50:a4:23:c3:09:19:e1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=d9527368206e3e9a5924081df63880246e5c541a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:67:a9:40:58:67:6f:c4:d9:09:b2:cb:bc:9a: fb:78:83:68:9d:84:12:89:7d:0a:c5:a8:56:34:83: e7:75:f8:ed:6f:5e:b7:10:28:0f:5d:13:67:17:83: e7:72:6c:27:28:3d:6b:37:49:fc:aa:24:4c:12:e2: da:5e:97:0b:ef:aa:ca:f9:7b:86:8f:36:cd:2c:86: 9d:be:65:ff:57:86:ab:e2:b0:19:ac:9f:ff:55:c5: db:5e:b2:94:69:d1:6e:39:1f:c6:df:ee:cd:70:cc: fd:34:40:6c:63:38:6a:a0:f2:b4:54:64:b9:28:9d: dd:6e:e9:fa:58:89:fa:47:bc:97:19:a8:c5:ad:1c: eb:23:16:7e:4b:2c:10:f4:1f:a0:71:65:77:05:99: 00:1a:38:23:3d:34:a0:9b:1d:49:4c:96:d9:f5:93: c7:8f:61:90:33:5f:6c:45:82:36:64:12:47:b0:0f: ff:2c:9d:89:d3:07:43:e0:d5:b6:8b:2a:4f:13:0c: 26:5e:0a:13:8a:96:b0:28:9f:10:54:b8:e3:ff:d6: e1:24:b1:5f:27:91:73:14:9c:36:32:28:5b:08:76: 70:ec:ad:2c:c7:c0:4c:d6:53:5d:c8:75:ad:0c:b2: d9:d4:bd:c6:a2:d9:eb:2b:22:dd:d7:8d:d4:29:2a: 5d:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: D9:52:73:68:20:6E:3E:9A:59:24:08:1D:F6:38:80:24:6E:5C:54:1A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/82129a-5263-43d2-bc63-19620615579b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/82129a-5263-43d2-bc63-19620615579b/1/2VJzaCBuPppZJAgd9jiAJG5cVBo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 140.105.0.0/16 Signature Algorithm: sha256WithRSAEncryption 4e:f7:a3:e3:48:ce:5c:64:3f:74:e9:63:7f:51:33:47:aa:dd: 7e:80:ee:37:a7:ed:ad:e3:d2:05:25:50:70:db:e5:6d:9c:6c: 3d:4d:03:93:44:81:a1:e3:61:0d:ae:59:6c:d0:40:da:ef:70: 46:cb:20:34:ae:bd:24:64:7d:11:9c:06:03:e3:6b:a0:da:ba: e1:5b:c1:37:5c:45:4b:e2:da:7a:a3:ed:c3:f6:b8:27:1b:fc: 1d:ec:91:0f:ed:b9:8e:1b:45:3c:14:88:14:2a:53:3f:38:c1: 5d:2a:bb:b1:b0:e3:fb:2a:bf:ac:79:3b:0c:38:2a:31:4a:64: d6:99:0f:db:86:f8:a5:43:86:2e:8c:fd:85:f6:5c:5e:ac:91: 1c:3e:47:94:a5:20:ae:1c:84:72:db:1e:3c:64:ce:fc:a4:fe: 68:c4:e9:1d:9c:c1:30:ab:a7:b5:0e:95:de:fd:66:67:fd:83: 52:8d:8b:31:a8:61:24:d6:49:48:7f:f9:22:9e:2f:a9:cb:9e: b0:1e:c1:6a:c5:d9:01:3e:4a:1d:d5:cc:57:2f:11:18:16:12: d9:4b:6e:e2:52:e6:78:36:68:fa:f6:d0:4d:36:74:25:9d:4d: c2:4d:3c:85:27:cf:d4:7c:6a:ef:e4:72:00:4f:00:a9:0d:44: 50:d3:d5:71 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgISAZt4o1c9ZVvweJpQpCPDCRnhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkOTUyNzM2ODIwNmUzZTlhNTkyNDA4MWRmNjM4ODAyNDZlNWM1NDFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+GepQFhnb8TZCbLLvJr7eINonYQS iX0KxahWNIPndfjtb163ECgPXRNnF4PncmwnKD1rN0n8qiRMEuLaXpcL76rK+XuG jzbNLIadvmX/V4ar4rAZrJ//VcXbXrKUadFuOR/G3+7NcMz9NEBsYzhqoPK0VGS5 KJ3dbun6WIn6R7yXGajFrRzrIxZ+SywQ9B+gcWV3BZkAGjgjPTSgmx1JTJbZ9ZPH j2GQM19sRYI2ZBJHsA//LJ2J0wdD4NW2iypPEwwmXgoTipawKJ8QVLjj/9bhJLFf J5FzFJw2MihbCHZw7K0sx8BM1lNdyHWtDLLZ1L3GotnrKyLd143UKSpdFwIDAQAB o4ICgzCCAn8wHQYDVR0OBBYEFNlSc2ggbj6aWSQIHfY4gCRuXFQaMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q4LzgyMTI5 YS01MjYzLTQzZDItYmM2My0xOTYyMDYxNTU3OWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgvODIxMjlh LTUyNjMtNDNkMi1iYzYzLTE5NjIwNjE1NTc5Yi8xLzJWSnphQ0J1UHBwWkpBZ2Q5 amlBSkc1Y1ZCby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUF BwEHAQH/BA8wDTALBAIAATAFAwMAjGkwDQYJKoZIhvcNAQELBQADggEBAE73o+NI zlxkP3TpY39RM0eq3X6A7jen7a3j0gUlUHDb5W2cbD1NA5NEgaHjYQ2uWWzQQNrv cEbLIDSuvSRkfRGcBgPja6DauuFbwTdcRUvi2nqj7cP2uCcb/B3skQ/tuY4bRTwU iBQqUz84wV0qu7Gw4/sqv6x5Oww4KjFKZNaZD9uG+KVDhi6M/YX2XF6skRw+R5Sl IK4chHLbHjxkzvyk/mjE6R2cwTCrp7UOld79Zmf9g1KNizGoYSTWSUh/+SKeL6nL nrAewWrF2QE+Sh3VzFcvERgWEtlLbuJS5ng2aPr20E02dCWdTcJNPIUnz9R8au/k cgBPAKkNRFDT1XE= -----END CERTIFICATE-----Generated at Tue Feb 10 01:06:11 2026 by rpki-client