This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer File: 31JSbz0oJ2UyXBWm5XZdfNfx-J4.cer (raw, json) Hash identifier: uzfWG1t2L6KK5Y1jXi3Uz7KxJbd5CmzXeBMDHABu+sQ= Subject key identifier: DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5BFEC5FF65A04644DFC23742C860C7 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:18:59 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207831 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:fe:c5:ff:65:a0:46:44:df:c2:37:42:c8:60:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:18:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=df52526f3d282765325c15a6e5765d7cd7f1f89e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:76:8e:8d:c2:7a:5a:e1:fc:55:33:a6:bc:96: ce:98:7b:e3:8a:4a:ea:21:24:91:00:43:11:4d:15: 92:75:ca:83:68:c5:44:0b:d9:79:77:c1:6e:33:0c: b6:78:25:bc:84:ad:27:0b:29:df:ac:18:89:5b:81: 30:77:f5:47:4c:17:27:92:e2:e1:91:2c:cc:b4:66: b0:9b:76:34:07:53:fd:39:ac:ab:04:8e:e1:b6:14: fc:72:16:e6:4c:1f:7c:52:f9:f0:2e:e3:dd:3b:04: 33:f3:21:7b:12:b7:54:f0:b0:85:61:fe:19:9e:bc: d1:a1:a8:3c:97:af:7c:90:8e:f2:16:75:15:b2:fa: 53:e4:0c:ed:f8:9e:b6:ce:98:7c:5d:d0:a6:7c:e5: 27:16:83:f3:90:9b:0a:73:50:c7:80:53:ac:df:4a: df:2f:1e:5b:11:4e:75:e0:27:23:6b:97:0b:2e:8f: bf:a0:0e:7a:03:58:e9:24:0c:8f:f9:18:bb:39:cb: ff:a9:1c:dc:cb:85:b8:b3:9c:d2:db:97:3c:a9:8d: 19:60:45:05:b1:24:6e:d4:f0:ed:d4:c8:81:fd:d4: 4c:9d:64:5a:86:d2:3c:02:f8:d4:cb:81:0a:36:9a: 3d:72:53:ff:2b:12:14:b5:82:a9:ff:93:78:57:f5: aa:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:52:52:6F:3D:28:27:65:32:5C:15:A6:E5:76:5D:7C:D7:F1:F8:9E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f3/0bf6db-cc7d-4697-9aec-623e6c9c4464/1/31JSbz0oJ2UyXBWm5XZdfNfx-J4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 207831 Signature Algorithm: sha256WithRSAEncryption 71:c1:ba:db:2d:59:95:61:9b:de:96:7c:0d:ac:4e:48:1e:fa: c1:71:d7:99:49:ff:c3:0c:ee:0a:39:2b:f4:b7:2b:e8:09:f8: 7f:6e:75:86:12:72:66:fe:21:76:88:ce:87:53:bc:c2:ba:40: 13:73:34:35:67:8e:2c:40:7c:b5:42:0c:aa:e7:14:43:5a:ad: a8:a6:a7:0f:7d:3b:f7:bb:16:73:0c:8e:88:a4:86:57:92:ec: 99:3c:d4:2e:50:7a:73:b0:32:f0:1c:f4:2a:03:8a:6b:95:0c: f8:4e:a7:ee:40:4a:9a:f1:ff:16:53:cc:ab:c4:67:98:37:60: 0f:49:0b:0b:27:e9:53:db:8d:1c:61:13:b8:88:36:19:95:db: c9:3c:c7:98:17:a3:f5:f2:5b:71:0a:f9:09:7a:74:0b:1b:ca: ee:90:b2:12:32:37:33:eb:3d:4b:7d:df:34:0f:2f:8b:f2:0c: 72:01:1c:20:2f:02:25:02:02:a8:bb:33:2a:af:84:97:06:00: a3:7c:38:fb:57:54:c1:2d:08:c5:ec:81:91:d2:5d:3c:1e:b6: 96:b8:11:19:af:fa:15:16:d8:e0:6b:91:32:77:3d:25:0c:8b: d8:4c:e2:c9:53:84:b7:03:6e:57:fe:8a:81:22:6c:84:b6:94: 16:d9:f1:8c -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt9W/7F/2WgRkTfwjdCyGDHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxODU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZjUyNTI2ZjNkMjgyNzY1MzI1YzE1YTZlNTc2NWQ3Y2Q3ZjFmODllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3aOjcJ6WuH8VTOmvJbOmHvjikrq ISSRAEMRTRWSdcqDaMVEC9l5d8FuMwy2eCW8hK0nCynfrBiJW4Ewd/VHTBcnkuLh kSzMtGawm3Y0B1P9OayrBI7hthT8chbmTB98UvnwLuPdOwQz8yF7ErdU8LCFYf4Z nrzRoag8l698kI7yFnUVsvpT5Azt+J62zph8XdCmfOUnFoPzkJsKc1DHgFOs30rf Lx5bEU514Ccja5cLLo+/oA56A1jpJAyP+Ri7Ocv/qRzcy4W4s5zS25c8qY0ZYEUF sSRu1PDt1MiB/dRMnWRahtI8AvjUy4EKNpo9clP/KxIUtYKp/5N4V/WqawIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFN9SUm89KCdlMlwVpuV2XXzX8fieMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YzLzBiZjZk Yi1jYzdkLTQ2OTctOWFlYy02MjNlNmM5YzQ0NjQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjMvMGJmNmRi LWNjN2QtNDY5Ny05YWVjLTYyM2U2YzljNDQ2NC8xLzMxSlNiejBvSjJVeVhCV201 WFpkZk5meC1KNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMr1zANBgkqhkiG9w0BAQsFAAOCAQEAccG62y1ZlWGb 3pZ8DaxOSB76wXHXmUn/wwzuCjkr9Lcr6An4f251hhJyZv4hdojOh1O8wrpAE3M0 NWeOLEB8tUIMqucUQ1qtqKanD30797sWcwyOiKSGV5LsmTzULlB6c7Ay8Bz0KgOK a5UM+E6n7kBKmvH/FlPMq8RnmDdgD0kLCyfpU9uNHGETuIg2GZXbyTzHmBej9fJb cQr5CXp0CxvK7pCyEjI3M+s9S33fNA8vi/IMcgEcIC8CJQICqLszKq+ElwYAo3w4 +1dUwS0IxeyBkdJdPB62lrgRGa/6FRbY4GuRMnc9JQyL2EziyVOEtwNuV/6KgSJs hLaUFtnxjA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:25 2026 by rpki-client