This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/30bUnMNHZ_jQJK_yla1qky55FeA.cer File: 30bUnMNHZ_jQJK_yla1qky55FeA.cer (raw, json) Hash identifier: lKpZKjZfwBQbJ6gHlfrH0FhV3o5K+Lwh9nZ9CKZSb8w= Subject key identifier: DF:46:D4:9C:C3:47:67:F8:D0:24:AF:F2:95:AD:6A:93:2E:79:15:E0 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA329B70F6377DFB800BE6A69217524 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/30bUnMNHZ_jQJK_yla1qky55FeA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 60557 IP: 2001:678:ce4::/48 IP: 2001:678:ce8::/48 IP: 2001:678:cec::/48 IP: 2001:678:cf0::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:29:b7:0f:63:77:df:b8:00:be:6a:69:21:75:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df46d49cc34767f8d024aff295ad6a932e7915e0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:00:39:59:97:06:31:7f:c5:3d:19:84:5a:d4: 65:f0:c4:dd:70:b6:66:dd:30:a2:d1:37:7b:25:84: 3f:85:bd:9e:12:9f:fb:e9:5c:1f:3f:52:23:47:fb: e1:64:a3:f1:36:20:61:21:a9:91:1f:f4:4b:06:ee: 02:05:6f:a5:55:31:01:3f:4d:4e:4e:02:75:ff:a2: dc:61:69:f3:8e:9e:ca:8c:84:04:24:e5:57:68:79: cf:28:dd:41:b3:c9:e1:05:8b:6b:43:33:99:00:fe: 86:d9:c3:32:5c:18:70:cc:39:15:26:ee:f1:90:74: 05:88:1d:b8:2b:70:67:d2:d0:dd:d1:bc:89:9f:9c: 6f:5a:d7:b1:78:09:3f:fb:2e:5c:cb:fe:1a:ee:2f: 51:c7:11:93:3f:af:a7:32:98:26:4f:f7:ea:54:74: 51:bf:57:75:38:1b:1a:26:35:c0:c0:df:5c:14:d0: 5f:5d:4c:2d:5e:da:4d:78:b8:11:3b:69:f5:c2:86: 57:b7:a1:81:02:c4:17:1f:da:88:f1:43:f2:56:63: d2:e7:7f:9c:2d:b1:da:51:57:20:35:60:8a:c8:17: ea:d4:b7:52:88:ab:f3:ee:9a:0e:a5:ad:ae:1e:6c: f2:5a:47:4d:40:b2:a2:c8:55:cf:15:e4:cb:4c:9a: 3c:f7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:46:D4:9C:C3:47:67:F8:D0:24:AF:F2:95:AD:6A:93:2E:79:15:E0 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/73/9b973d-1f2f-4c77-9dd0-1f732046b74c/1/30bUnMNHZ_jQJK_yla1qky55FeA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:ce4::/48 2001:678:ce8::/48 2001:678:cec::/48 2001:678:cf0::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 60557 Signature Algorithm: sha256WithRSAEncryption 19:5a:7d:61:1d:4f:77:67:fa:33:6e:ff:86:b5:02:c9:c5:d0: cf:e5:54:48:c1:e3:f8:54:c0:c2:86:63:06:20:0c:dc:dc:99: 89:ca:7c:43:10:3a:96:6a:b5:7a:7a:db:8e:40:9c:43:21:cb: 54:2a:eb:50:cb:b3:13:5f:8e:9a:56:cb:ae:6b:65:97:45:7e: 86:fc:cf:3a:8a:31:0e:74:f7:ab:d7:b1:3a:4c:37:d0:c1:f8: 22:f8:26:53:33:fd:f0:e3:8a:5b:41:91:69:d8:99:f2:eb:fb: d0:63:20:fa:a0:d9:16:b5:f4:b1:4a:51:d4:ff:b2:e4:2a:14: d7:ec:87:d2:5e:0e:3e:a8:29:66:70:6b:eb:4b:ca:cd:70:cb: 39:aa:b7:33:59:42:ed:1c:d4:0d:12:70:91:52:3f:75:de:28: aa:86:e9:a9:19:c8:ce:cb:5f:01:e9:d1:4f:f2:59:8a:1e:2e: c2:57:f7:0d:96:5f:cb:a6:c6:68:0b:ce:9a:b5:16:c4:f1:ef: d3:58:d5:37:3b:78:00:41:d3:0a:53:51:0a:30:55:71:e5:ea: 86:e0:61:8b:1c:d5:0c:f2:3e:00:af:e5:a4:0a:64:f6:aa:d4: 4f:74:f7:0c:fc:f6:55:67:c7:e2:3d:d4:59:01:43:d0:25:9f: 67:a8:8b:b7 -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgISAZt7oym3D2N337gAvmppIXUkMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjQ2ZDQ5Y2MzNDc2N2Y4ZDAyNGFmZjI5NWFkNmE5MzJlNzkxNWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0QA5WZcGMX/FPRmEWtRl8MTdcLZm 3TCi0Td7JYQ/hb2eEp/76VwfP1IjR/vhZKPxNiBhIamRH/RLBu4CBW+lVTEBP01O TgJ1/6LcYWnzjp7KjIQEJOVXaHnPKN1Bs8nhBYtrQzOZAP6G2cMyXBhwzDkVJu7x kHQFiB24K3Bn0tDd0byJn5xvWtexeAk/+y5cy/4a7i9RxxGTP6+nMpgmT/fqVHRR v1d1OBsaJjXAwN9cFNBfXUwtXtpNeLgRO2n1woZXt6GBAsQXH9qI8UPyVmPS53+c LbHaUVcgNWCKyBfq1LdSiKvz7poOpa2uHmzyWkdNQLKiyFXPFeTLTJo89wIDAQAB o4ICvjCCArowHQYDVR0OBBYEFN9G1JzDR2f40CSv8pWtapMueRXgMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzczLzliOTcz ZC0xZjJmLTRjNzctOWRkMC0xZjczMjA0NmI3NGMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzMvOWI5NzNk LTFmMmYtNGM3Ny05ZGQwLTFmNzMyMDQ2Yjc0Yy8xLzMwYlVuTU5IWl9qUUpLX3ls YTFxa3k1NUZlQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUF BwEHAQH/BC4wLDAqBAIAAjAkAwcAIAEGeAzkAwcAIAEGeAzoAwcAIAEGeAzsAwcA IAEGeAzwMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDsjTANBgkqhkiG9w0BAQsF AAOCAQEAGVp9YR1Pd2f6M27/hrUCycXQz+VUSMHj+FTAwoZjBiAM3NyZicp8QxA6 lmq1enrbjkCcQyHLVCrrUMuzE1+OmlbLrmtll0V+hvzPOooxDnT3q9exOkw30MH4 IvgmUzP98OOKW0GRadiZ8uv70GMg+qDZFrX0sUpR1P+y5CoU1+yH0l4OPqgpZnBr 60vKzXDLOaq3M1lC7RzUDRJwkVI/dd4oqobpqRnIzstfAenRT/JZih4uwlf3DZZf y6bGaAvOmrUWxPHv01jVNzt4AEHTClNRCjBVceXqhuBhixzVDPI+AK/lpApk9qrU T3T3DPz2VWfH4j3UWQFD0CWfZ6iLtw== -----END CERTIFICATE-----Generated at Tue Jan 27 11:14:27 2026 by rpki-client