This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/37htXnTBI0828hmwXXQ7s6Lir9o.cer File: 37htXnTBI0828hmwXXQ7s6Lir9o.cer (raw, json) Hash identifier: 30Kl366d6fTW0V+OUcG+zbPcMiDiNDHKY6Svpvn0f3E= Subject key identifier: DF:B8:6D:5E:74:C1:23:4F:36:F2:19:B0:5D:74:3B:B3:A2:E2:AF:DA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BE9DDB6CAAE5736956D33D7FD0A213B19 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/37htXnTBI0828hmwXXQ7s6Lir9o.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 23 Jan 2026 07:59:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 176.121.224.0 -- 176.121.247.255 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 10:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e9:dd:b6:ca:ae:57:36:95:6d:33:d7:fd:0a:21:3b:19 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 23 07:59:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dfb86d5e74c1234f36f219b05d743bb3a2e2afda Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:a8:45:51:bf:3b:59:d6:97:b9:c3:33:4a:87: 59:d0:c0:73:e0:39:19:c7:ee:48:9d:01:50:a4:7f: fb:ed:03:0b:af:0b:da:5b:7c:af:36:30:49:e2:9b: 3a:f4:87:7f:c4:e6:34:dd:ef:31:4d:e9:34:f9:4d: bf:82:ef:db:39:c6:f1:72:aa:a0:16:44:fa:66:ab: 69:b3:10:e0:6e:d4:ff:ed:b6:22:71:bf:63:9b:a5: ae:e5:d7:fe:37:fe:c5:89:c9:8f:06:48:7e:f5:2f: 22:b9:03:90:ce:22:a6:ad:4c:64:ee:fe:da:fc:f9: 76:4d:ce:ae:24:61:3c:58:53:65:e5:75:b5:09:b6: c5:c2:50:2b:57:d8:cd:94:0a:e9:6b:69:7d:25:2a: 67:b4:bb:c7:0a:64:79:77:3c:d2:3c:cf:49:61:a3: e7:7f:1f:18:f8:38:6b:8e:81:e2:0b:51:20:8a:ca: c4:d1:9e:32:71:29:2e:d6:a3:8b:06:d3:29:87:98: 11:ae:88:68:27:23:87:a9:ee:22:69:d1:3d:af:35: 65:eb:0a:c9:cf:2b:76:63:c2:12:92:c6:70:a7:0f: 4b:68:2d:04:3f:7b:f6:8a:0f:86:52:a0:03:d7:bc: ab:e6:e1:ed:b3:4d:44:9f:1f:6e:4b:81:13:ee:f5: e8:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DF:B8:6D:5E:74:C1:23:4F:36:F2:19:B0:5D:74:3B:B3:A2:E2:AF:DA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/92e95f-e5d2-49ca-b9c4-f7a77c441f1c/1/37htXnTBI0828hmwXXQ7s6Lir9o.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.121.224.0-176.121.247.255 Signature Algorithm: sha256WithRSAEncryption 06:80:85:69:a0:c0:9d:09:c9:55:43:a1:40:8e:12:a3:59:ed: 5f:fc:52:cc:af:32:07:46:86:6b:25:ac:04:56:75:b2:9b:f5: cb:2d:12:91:17:5a:cc:e5:e2:fd:1c:e5:c6:49:d2:d1:d1:b0: fc:e4:5d:d1:51:1e:a1:f4:aa:67:3c:22:98:cb:c2:44:78:a9: d5:e5:64:d2:1a:4c:75:fa:fa:a4:6b:d7:d5:91:12:26:01:40: 7c:c5:8e:b7:fe:1b:7e:d8:a3:2b:cf:c1:9b:d5:e4:f2:16:81: 54:71:33:7b:0e:0f:a9:dd:3b:4b:56:a1:57:3d:f6:80:84:a7: 54:2f:6c:5b:76:0d:bb:2c:6d:69:3c:d3:6d:e0:a9:e7:aa:80: fe:56:d3:64:ea:82:dd:d6:8a:ac:8e:fd:e8:7e:ef:1a:49:ba: 0d:55:38:e5:06:11:88:43:47:b3:6e:76:6d:f3:59:11:c9:09: 77:b8:b6:49:03:2c:d0:68:bb:86:3b:61:88:24:cb:4a:24:82: 60:c7:3f:0b:c8:56:45:a7:93:75:61:52:67:3b:ee:98:37:9d: 9e:31:ca:30:59:9b:36:30:c7:a1:b2:11:fc:56:8f:d4:61:05: b0:f5:4d:0d:d4:ba:26:46:9a:98:41:fa:1d:67:96:34:92:5f: f5:f2:34:8b -----BEGIN CERTIFICATE----- MIIFgDCCBGigAwIBAgISAZvp3bbKrlc2lW0z1/0KITsZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTIzMDc1OTQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZmI4NmQ1ZTc0YzEyMzRmMzZmMjE5YjA1ZDc0M2JiM2EyZTJhZmRhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnahFUb87WdaXucMzSodZ0MBz4DkZ x+5InQFQpH/77QMLrwvaW3yvNjBJ4ps69Id/xOY03e8xTek0+U2/gu/bOcbxcqqg FkT6ZqtpsxDgbtT/7bYicb9jm6Wu5df+N/7FicmPBkh+9S8iuQOQziKmrUxk7v7a /Pl2Tc6uJGE8WFNl5XW1CbbFwlArV9jNlArpa2l9JSpntLvHCmR5dzzSPM9JYaPn fx8Y+DhrjoHiC1EgisrE0Z4ycSku1qOLBtMph5gRrohoJyOHqe4iadE9rzVl6wrJ zyt2Y8ISksZwpw9LaC0EP3v2ig+GUqAD17yr5uHts01Enx9uS4ET7vXoJwIDAQAB o4ICjDCCAogwHQYDVR0OBBYEFN+4bV50wSNPNvIZsF10O7Oi4q/aMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU4LzkyZTk1 Zi1lNWQyLTQ5Y2EtYjljNC1mN2E3N2M0NDFmMWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgvOTJlOTVm LWU1ZDItNDljYS1iOWM0LWY3YTc3YzQ0MWYxYy8xLzM3aHRYblRCSTA4MjhobXdY WFE3czZMaXI5by5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUF BwEHAQH/BBgwFjAUBAIAATAOMAwDBAWweeADBAOwefAwDQYJKoZIhvcNAQELBQAD ggEBAAaAhWmgwJ0JyVVDoUCOEqNZ7V/8UsyvMgdGhmslrARWdbKb9cstEpEXWszl 4v0c5cZJ0tHRsPzkXdFRHqH0qmc8IpjLwkR4qdXlZNIaTHX6+qRr19WREiYBQHzF jrf+G37YoyvPwZvV5PIWgVRxM3sOD6ndO0tWoVc99oCEp1QvbFt2DbssbWk8023g qeeqgP5W02Tqgt3WiqyO/eh+7xpJug1VOOUGEYhDR7Nudm3zWRHJCXe4tkkDLNBo u4Y7YYgky0okgmDHPwvIVkWnk3VhUmc77pg3nZ4xyjBZmzYwx6GyEfxWj9RhBbD1 TQ3UuiZGmphB+h1nljSSX/XyNIs= -----END CERTIFICATE-----Generated at Mon Jan 26 15:00:35 2026 by rpki-client