This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2iHQJGSziv86MckIeNYnI7nHQqY.cer File: 2iHQJGSziv86MckIeNYnI7nHQqY.cer (raw, json) Hash identifier: Vx6B1Or28CpwA95TZSNqtDNhmBVucdXGqzmjILm/Sm4= Subject key identifier: DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F8572A30336B950DE71D8AA51324F52 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:23:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 214107 IP: 81.27.78.0/23 IP: 2a0a:1bc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:72:a3:03:36:b9:50:de:71:d8:aa:51:32:4f:52 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:23:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da21d02464b38aff3a31c90878d62723b9c742a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:c7:52:d6:86:36:af:2e:cc:ac:ac:46:5c:3e: c4:41:ef:d4:d3:6d:34:4a:4c:82:45:ac:6e:cc:ae: f5:b1:ef:0d:0e:e2:1b:82:7f:36:56:bb:db:a0:d1: b4:19:5c:fb:85:94:67:2d:e1:35:8b:53:ab:96:54: 2b:cb:74:ee:e8:f0:ed:bc:08:98:ad:6f:24:11:32: d4:93:84:40:0c:40:ec:a2:63:d3:c0:27:b1:6d:fb: 87:7a:9a:0b:88:5a:39:7f:1b:f8:88:7d:b3:4f:09: 3e:21:49:70:6d:41:27:30:4d:d6:8e:ce:a0:82:67: 5e:44:c1:cb:40:2f:4a:87:91:c7:65:de:11:88:ca: ce:71:f8:a1:01:3c:11:65:10:ad:bd:f0:2d:57:d4: 47:13:00:f5:de:ca:3b:e1:15:0a:67:9c:85:87:5e: dc:61:5e:b0:23:7a:1a:12:63:a6:46:ac:3e:2f:a2: 5f:68:84:96:a2:4c:9b:0b:c1:b8:af:52:2f:05:1a: f8:01:20:cf:f6:d5:23:93:8b:d5:97:8f:27:11:05: da:8b:a5:85:14:d2:11:28:af:89:a1:70:5b:c5:61: fa:dd:9b:53:31:45:d6:05:5c:8f:93:b6:8e:ed:22: c2:47:f0:37:a6:f7:e2:4c:b7:c3:0f:72:36:d0:12: 1a:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:21:D0:24:64:B3:8A:FF:3A:31:C9:08:78:D6:27:23:B9:C7:42:A6 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9c/8e61f4-1a41-4cca-b85c-76f52b1dd718/1/2iHQJGSziv86MckIeNYnI7nHQqY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.27.78.0/23 IPv6: 2a0a:1bc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 214107 Signature Algorithm: sha256WithRSAEncryption 1c:a8:00:1f:c3:b6:5c:d5:87:d4:d0:22:d4:c1:b6:37:7d:d2: 50:be:41:c1:70:eb:ba:1b:8c:d3:f5:04:50:9e:37:09:85:51: 5d:c4:4b:56:e6:15:a5:9b:eb:63:ca:09:01:bb:8c:0a:86:a9: 0b:59:f3:bd:62:67:6f:cb:16:bf:38:d7:a9:f1:0e:ec:e2:2f: aa:c6:e2:7e:57:ce:c8:91:a1:20:34:4d:71:17:d1:15:12:ca: 2d:b3:34:90:7e:6b:6f:f0:e3:cb:37:ef:72:70:f5:5e:25:1c: 98:76:05:d8:f5:97:9f:06:9d:f1:66:90:72:b4:f6:7a:c7:ce: 38:1e:42:3e:64:e2:57:14:75:12:0c:dc:d1:dd:60:28:d6:ba: 89:ce:94:0d:86:e3:2c:e0:62:74:8e:e8:16:34:bf:b5:eb:79: a3:b1:12:2c:f1:1d:d7:0c:9a:94:82:5d:5c:b8:49:3d:4b:cb: a1:ed:eb:6d:f1:62:0e:d6:7d:67:a4:3e:ac:dd:82:5c:88:a2: 65:8c:6d:11:80:fd:af:d6:16:a4:7a:2d:49:04:ae:cd:34:3b: 9b:ad:3a:18:71:c7:15:4b:80:18:15:97:3d:43:bc:05:ad:e1: 71:31:7e:4f:92:06:49:77:0a:a0:d8:7e:c9:b3:64:89:3d:6e: 86:b0:d7:b4 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/hXKjAza5UN5x2KpRMk9SMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTIxZDAyNDY0YjM4YWZmM2EzMWM5MDg3OGQ2MjcyM2I5Yzc0MmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAscdS1oY2ry7MrKxGXD7EQe/U0200 SkyCRaxuzK71se8NDuIbgn82VrvboNG0GVz7hZRnLeE1i1OrllQry3Tu6PDtvAiY rW8kETLUk4RADEDsomPTwCexbfuHepoLiFo5fxv4iH2zTwk+IUlwbUEnME3Wjs6g gmdeRMHLQC9Kh5HHZd4RiMrOcfihATwRZRCtvfAtV9RHEwD13so74RUKZ5yFh17c YV6wI3oaEmOmRqw+L6JfaISWokybC8G4r1IvBRr4ASDP9tUjk4vVl48nEQXai6WF FNIRKK+JoXBbxWH63ZtTMUXWBVyPk7aO7SLCR/A3pvfiTLfDD3I20BIaOQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFNoh0CRks4r/OjHJCHjWJyO5x0KmMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzljLzhlNjFm NC0xYTQxLTRjY2EtYjg1Yy03NmY1MmIxZGQ3MTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWMvOGU2MWY0 LTFhNDEtNGNjYS1iODVjLTc2ZjUyYjFkZDcxOC8xLzJpSFFKR1N6aXY4Nk1ja0ll TlluSTduSFFxWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQBURtOMA0EAgACMAcDBQMqChvAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNEWzANBgkqhkiG9w0BAQsFAAOCAQEAHKgAH8O2XNWH 1NAi1MG2N33SUL5BwXDruhuM0/UEUJ43CYVRXcRLVuYVpZvrY8oJAbuMCoapC1nz vWJnb8sWvzjXqfEO7OIvqsbiflfOyJGhIDRNcRfRFRLKLbM0kH5rb/DjyzfvcnD1 XiUcmHYF2PWXnwad8WaQcrT2esfOOB5CPmTiVxR1Egzc0d1gKNa6ic6UDYbjLOBi dI7oFjS/tet5o7ESLPEd1wyalIJdXLhJPUvLoe3rbfFiDtZ9Z6Q+rN2CXIiiZYxt EYD9r9YWpHotSQSuzTQ7m606GHHHFUuAGBWXPUO8Ba3hcTF+T5IGSXcKoNh+ybNk iT1uhrDXtA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:57 2026 by rpki-client