This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3Cc-HiGEHOLDNf4clhznaAF-7ik.cer File: 3Cc-HiGEHOLDNf4clhznaAF-7ik.cer (raw, json) Hash identifier: 6QhDBL1IRjGz0RJ70Tg61I/xS9LN/omRB5r6mcWFbiw= Subject key identifier: DC:27:3E:1E:21:84:1C:E2:C3:35:FE:1C:96:1C:E7:68:01:7E:EE:29 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77589BA326C48486D8BBCF7FAC8CA24B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f0/b4a71a-eb37-469a-8bb5-27841f507735/1/3Cc-HiGEHOLDNf4clhznaAF-7ik.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f0/b4a71a-eb37-469a-8bb5-27841f507735/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:17:34 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51857 IP: 91.220.147.0/24 IP: 185.232.212.0/22 IP: 2001:67c:390::/48 IP: 2a0c:c100::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:9b:a3:26:c4:84:86:d8:bb:cf:7f:ac:8c:a2:4b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:17:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc273e1e21841ce2c335fe1c961ce768017eee29 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:50:94:1f:59:7f:79:02:ba:a8:fd:45:db:c2: 88:d3:36:c6:68:d8:23:fa:ca:c4:cb:3c:85:dc:6b: ba:8f:82:ed:b7:18:1f:86:a7:7e:3c:e6:85:be:3a: e1:eb:21:fd:82:c9:04:45:d0:c8:f0:af:4f:31:25: da:fc:25:37:bd:1d:57:f7:b7:45:4f:22:a3:10:d3: 9b:58:ee:d3:28:97:97:99:00:cc:69:c4:65:0e:d4: 43:98:00:07:84:e7:6b:1f:84:77:62:90:73:69:60: c7:3d:be:4b:01:52:de:f3:cb:60:13:02:2c:70:de: 1b:54:35:8a:23:02:10:d8:d0:6d:e3:da:40:b4:fe: b0:bd:75:dd:31:83:e9:c0:b2:02:09:79:c2:1b:b0: c6:6d:7a:6c:9a:2f:64:41:eb:9b:96:3a:eb:33:c2: 7e:aa:a3:c2:6d:11:35:3e:f6:d9:ad:76:7d:33:64: 1f:63:57:38:d8:d2:27:f9:6b:74:c6:99:72:9c:dc: 59:c3:9e:34:6c:30:ed:fd:a5:11:0a:66:99:2f:33: f9:27:c8:14:fb:ee:4f:f4:d6:72:84:8b:36:31:69: 73:ae:97:84:8a:b4:11:ad:d8:95:34:a7:b7:d3:69: c3:50:33:d7:24:cc:4c:5b:21:7e:72:b2:b0:37:60: 2e:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:27:3E:1E:21:84:1C:E2:C3:35:FE:1C:96:1C:E7:68:01:7E:EE:29 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b4a71a-eb37-469a-8bb5-27841f507735/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/b4a71a-eb37-469a-8bb5-27841f507735/1/3Cc-HiGEHOLDNf4clhznaAF-7ik.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.147.0/24 185.232.212.0/22 IPv6: 2001:67c:390::/48 2a0c:c100::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51857 Signature Algorithm: sha256WithRSAEncryption ad:73:88:2c:8d:0d:41:c5:3f:6b:9a:13:a8:ff:72:d6:04:02: f1:4e:5a:2d:32:b2:a9:4f:3b:be:85:45:5d:58:96:5e:92:15: 8a:79:c5:36:c2:0e:38:38:b6:ea:8a:9b:d3:37:8a:8f:a2:cd: bb:89:3e:0c:56:84:70:4f:fe:63:15:ac:bc:16:df:4c:a7:fc: 09:0b:15:9a:74:a3:76:f2:d3:96:65:35:6b:cf:0d:61:a0:11: 2c:f9:af:2c:f0:e6:36:d2:91:f2:cd:31:99:63:58:dc:02:2f: 84:ae:a6:df:fd:a3:e8:11:d1:ad:da:8d:13:d5:26:57:9d:be: 0b:26:0d:e9:f4:53:e4:e1:bb:17:ea:f5:5c:7d:99:08:1b:d6: 41:3b:3c:99:fd:05:33:a1:28:9f:ce:57:e1:fc:00:2a:0c:f2: 36:de:a4:c0:e4:c6:a8:df:f3:24:93:e0:ff:78:fe:32:c3:20: c0:ac:91:31:c3:af:cc:ba:cb:ac:dc:e3:4f:2d:6b:55:1e:61: 38:3b:4a:a7:83:db:17:ff:c9:d9:a6:a3:02:a5:4a:78:90:36: ae:c4:84:a6:cb:3c:90:46:15:1b:be:91:e1:ae:ad:13:26:f6: 11:7b:e2:f8:fb:70:c9:67:1a:0a:ab:ff:19:86:3d:a8:74:84: 1a:48:55:df -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgISAZt3WJujJsSEhti7z3+sjKJLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxNzM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzI3M2UxZTIxODQxY2UyYzMzNWZlMWM5NjFjZTc2ODAxN2VlZTI5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuVCUH1l/eQK6qP1F28KI0zbGaNgj +srEyzyF3Gu6j4Lttxgfhqd+POaFvjrh6yH9gskERdDI8K9PMSXa/CU3vR1X97dF TyKjENObWO7TKJeXmQDMacRlDtRDmAAHhOdrH4R3YpBzaWDHPb5LAVLe88tgEwIs cN4bVDWKIwIQ2NBt49pAtP6wvXXdMYPpwLICCXnCG7DGbXpsmi9kQeubljrrM8J+ qqPCbRE1PvbZrXZ9M2QfY1c42NIn+Wt0xplynNxZw540bDDt/aURCmaZLzP5J8gU ++5P9NZyhIs2MWlzrpeEirQRrdiVNKe302nDUDPXJMxMWyF+crKwN2AucwIDAQAB o4ICvjCCArowHQYDVR0OBBYEFNwnPh4hhBziwzX+HJYc52gBfu4pMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YwL2I0YTcx YS1lYjM3LTQ2OWEtOGJiNS0yNzg0MWY1MDc3MzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAvYjRhNzFh LWViMzctNDY5YS04YmI1LTI3ODQxZjUwNzczNS8xLzNDYy1IaUdFSE9MRE5mNGNs aHpuYUFGLTdpay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMD0GCCsGAQUF BwEHAQH/BC4wLDASBAIAATAMAwQAW9yTAwQCuejUMBYEAgACMBADBwAgAQZ8A5AD BQMqDMEAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDKkTANBgkqhkiG9w0BAQsF AAOCAQEArXOILI0NQcU/a5oTqP9y1gQC8U5aLTKyqU87voVFXViWXpIVinnFNsIO ODi26oqb0zeKj6LNu4k+DFaEcE/+YxWsvBbfTKf8CQsVmnSjdvLTlmU1a88NYaAR LPmvLPDmNtKR8s0xmWNY3AIvhK6m3/2j6BHRrdqNE9UmV52+CyYN6fRT5OG7F+r1 XH2ZCBvWQTs8mf0FM6Eon85X4fwAKgzyNt6kwOTGqN/zJJPg/3j+MsMgwKyRMcOv zLrLrNzjTy1rVR5hODtKp4PbF//J2aajAqVKeJA2rsSEpss8kEYVG76R4a6tEyb2 EXvi+PtwyWcaCqv/GYY9qHSEGkhV3w== -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:34 2026 by rpki-client