This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2rdA9mZfmYP1QGHcoWUCYa1vITg.cer File: 2rdA9mZfmYP1QGHcoWUCYa1vITg.cer (raw, json) Hash identifier: zuJHJoHMov4Oak4jQFsPrRto3rvuwzVNoJTwfz5VFX4= Subject key identifier: DA:B7:40:F6:66:5F:99:83:F5:40:61:DC:A1:65:02:61:AD:6F:21:38 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB833BCFECDD712240DD610BEC1848 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/135cf4-086f-4516-a3eb-1b7c92a61df6/1/2rdA9mZfmYP1QGHcoWUCYa1vITg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/135cf4-086f-4516-a3eb-1b7c92a61df6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:24 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.100.16.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:83:3b:cf:ec:dd:71:22:40:dd:61:0b:ec:18:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dab740f6665f9983f54061dca1650261ad6f2138 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:6f:fe:5a:b0:ed:77:7d:31:6c:78:b0:72:b5: 51:89:4f:e1:eb:f4:00:62:43:d6:1e:24:96:39:3a: 7c:68:9e:e1:13:df:4c:48:ad:2e:eb:24:33:32:16: 56:f1:94:a9:c3:37:56:90:86:3e:8e:43:41:45:c0: 8d:31:9a:53:35:ad:f9:1a:13:60:9c:8d:ff:90:d3: ce:58:ff:bf:ac:90:f3:73:b0:3a:df:84:5e:9a:e4: 9a:84:cf:fa:65:76:7f:12:1c:8b:fe:e5:ed:04:2a: 34:cd:26:ec:b1:b0:b4:a5:90:0d:cd:e4:cc:9b:c3: df:7b:55:55:28:5a:e7:dc:16:e3:82:4b:20:4d:18: 3f:68:5e:1b:d1:20:92:e1:80:8a:4b:5b:16:12:ec: 35:60:35:df:fc:34:7a:f8:5e:1e:2b:42:17:58:b5: de:4b:b1:33:60:a6:17:38:ee:15:d5:2f:6f:25:b7: 41:d2:f7:2f:28:cd:9c:bf:7f:e1:6e:03:c2:63:dd: 3b:4c:3a:e2:55:d0:b7:95:30:a0:a2:1c:7e:a9:f5: 0c:d8:54:6e:a3:bc:06:eb:e6:da:e8:9a:43:00:97: ee:87:4d:73:12:1e:67:81:a8:eb:d5:58:f7:1f:48: 82:b4:af:c6:15:22:fa:8d:53:b4:2c:b5:6b:8b:2b: 91:55 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:B7:40:F6:66:5F:99:83:F5:40:61:DC:A1:65:02:61:AD:6F:21:38 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/135cf4-086f-4516-a3eb-1b7c92a61df6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/135cf4-086f-4516-a3eb-1b7c92a61df6/1/2rdA9mZfmYP1QGHcoWUCYa1vITg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.100.16.0/22 Signature Algorithm: sha256WithRSAEncryption 67:b9:39:69:56:c6:c1:c1:45:dc:64:e4:86:d2:38:fc:97:b3: cd:3c:0b:77:af:dd:a8:ed:76:dd:53:28:39:41:ad:b7:e3:fe: 72:9e:4e:fb:a0:08:8c:6d:8f:0a:5c:07:7e:d6:0f:02:96:65: 74:24:bc:c1:15:72:49:52:ce:33:48:fe:91:8e:96:4e:fe:9a: a4:39:51:65:a1:f5:3c:f2:7c:13:95:6f:5f:c3:55:49:03:4f: 8e:15:93:c4:15:a0:ed:f5:f1:31:22:4e:0e:04:9a:3b:8c:21: 98:82:82:24:ce:25:c5:50:ea:6a:98:51:ae:c7:48:81:9d:8d: 2f:21:15:31:c0:13:ee:5e:42:9b:68:f5:18:70:9c:58:ac:4c: c5:04:06:7d:e0:26:ab:e7:00:dc:a7:f4:00:09:c5:ff:99:e4: 55:77:fb:84:13:50:71:8a:df:29:9b:66:08:7e:fa:93:4a:0e: a0:2d:b6:d1:23:2c:17:80:cf:98:4d:d0:ef:99:35:ae:e0:f4: 4c:2b:5a:af:e8:88:90:f2:10:26:66:df:50:2c:0e:2e:d2:56: 86:d1:f2:10:21:6f:64:0b:4a:cd:b0:b1:29:34:63:c1:77:2a: 4e:d7:26:33:79:42:34:22:05:07:17:67:a4:2a:17:b8:da:78: 8d:10:07:75 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt264M7z+zdcSJA3WEL7BhIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYWI3NDBmNjY2NWY5OTgzZjU0MDYxZGNhMTY1MDI2MWFkNmYyMTM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsW/+WrDtd30xbHiwcrVRiU/h6/QA YkPWHiSWOTp8aJ7hE99MSK0u6yQzMhZW8ZSpwzdWkIY+jkNBRcCNMZpTNa35GhNg nI3/kNPOWP+/rJDzc7A634RemuSahM/6ZXZ/EhyL/uXtBCo0zSbssbC0pZANzeTM m8Pfe1VVKFrn3BbjgksgTRg/aF4b0SCS4YCKS1sWEuw1YDXf/DR6+F4eK0IXWLXe S7EzYKYXOO4V1S9vJbdB0vcvKM2cv3/hbgPCY907TDriVdC3lTCgohx+qfUM2FRu o7wG6+ba6JpDAJfuh01zEh5ngajr1Vj3H0iCtK/GFSL6jVO0LLVriyuRVQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFNq3QPZmX5mD9UBh3KFlAmGtbyE4MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY1LzEzNWNm NC0wODZmLTQ1MTYtYTNlYi0xYjdjOTJhNjFkZjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvMTM1Y2Y0 LTA4NmYtNDUxNi1hM2ViLTFiN2M5MmE2MWRmNi8xLzJyZEE5bVpmbVlQMVFHSGNv V1VDWWExdklUZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCuWQQMA0GCSqGSIb3DQEBCwUAA4IBAQBnuTlp VsbBwUXcZOSG0jj8l7PNPAt3r92o7XbdUyg5Qa234/5ynk77oAiMbY8KXAd+1g8C lmV0JLzBFXJJUs4zSP6RjpZO/pqkOVFlofU88nwTlW9fw1VJA0+OFZPEFaDt9fEx Ik4OBJo7jCGYgoIkziXFUOpqmFGux0iBnY0vIRUxwBPuXkKbaPUYcJxYrEzFBAZ9 4Car5wDcp/QACcX/meRVd/uEE1Bxit8pm2YIfvqTSg6gLbbRIywXgM+YTdDvmTWu 4PRMK1qv6IiQ8hAmZt9QLA4u0laG0fIQIW9kC0rNsLEpNGPBdypO1yYzeUI0IgUH F2ekKhe42niNEAd1 -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:50 2026 by rpki-client