This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer File: 3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.cer (raw, json) Hash identifier: b5ZwW7TgXmJY7NrySXo2G9abhAPkacVIkJN1TKCAL2g= Subject key identifier: DC:69:17:64:5D:9D:22:04:35:F9:1C:7E:46:C8:11:0C:F8:9A:CB:E4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA3463694D5B0C8B81C19BF220F7D00 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:17:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204661 IP: 185.172.224.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:46:36:94:d5:b0:c8:b8:1c:19:bf:22:0f:7d:00 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc6917645d9d220435f91c7e46c8110cf89acbe4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:4a:66:90:5d:a7:e0:7f:80:c1:c0:c7:23:af: c4:5b:12:39:05:38:bb:e8:b8:29:29:b5:4b:5f:8f: 2a:59:bd:38:52:26:4c:19:12:d9:8c:c9:d2:84:0a: 96:60:6a:e3:51:b9:2b:a3:5b:ac:92:2a:78:89:b1: 1f:0e:16:6c:37:cd:91:a9:88:82:6e:46:d2:1f:92: a6:71:f4:16:cd:21:51:e5:78:7a:25:a0:09:24:af: a6:3c:b5:8b:86:2b:90:2c:f8:ed:e0:2f:ca:a1:99: 9a:72:f4:68:2d:b7:f5:4d:7d:d8:ec:7e:3d:e1:2f: c3:2d:16:00:2a:20:d4:d6:7d:75:e3:ce:45:78:b9: ae:0b:ac:96:ae:b7:50:23:1b:82:54:28:26:0e:f3: 85:5d:b3:41:a4:47:90:43:07:c4:dd:08:f4:da:bb: 7b:90:48:49:1a:c3:92:4d:d8:b7:ea:fe:3f:16:a1: 0a:24:ef:e1:0b:07:83:08:a8:ba:cd:06:39:1c:ad: e9:aa:c3:83:fa:05:a6:a3:a7:0d:1f:28:f5:35:f5: d4:1d:cb:bd:d7:05:20:08:62:c8:5a:03:a0:69:f6: 1e:a8:b6:4a:23:a1:06:6b:fc:d5:0c:af:54:98:f6: 0d:74:b5:83:4d:30:db:34:78:c2:d8:26:e1:b1:d0: 31:bf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:69:17:64:5D:9D:22:04:35:F9:1C:7E:46:C8:11:0C:F8:9A:CB:E4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/3544a7-d556-4701-957a-428be9008fba/1/3GkXZF2dIgQ1-Rx-RsgRDPiay-Q.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.172.224.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204661 Signature Algorithm: sha256WithRSAEncryption 66:c6:52:7e:97:92:13:d4:6e:1f:bb:de:39:11:60:2b:b4:2a: 7b:6a:ee:58:c2:7c:4b:7c:90:48:f7:8b:ab:9d:39:95:10:72: fd:9f:43:fa:c3:6d:eb:f5:3a:8a:6f:20:75:27:3d:00:ba:1d: 8b:26:34:f2:37:79:44:56:47:ca:f5:32:87:22:b2:10:1f:fc: 3d:4d:14:83:95:82:75:ed:72:d5:94:a5:5c:e6:a1:33:b8:a5: b3:e4:61:4a:78:6e:84:58:8a:0e:52:38:f2:cc:88:31:1a:90: a6:65:e1:1f:97:39:05:ac:22:37:c6:8d:72:5f:41:ac:f6:36: 0e:ae:65:9c:db:52:4c:2c:84:37:38:28:88:fe:09:75:fd:4e: 60:ec:05:2d:0b:df:74:92:bb:01:5a:18:5a:a1:bc:d1:4e:9b: e2:ca:63:c0:2f:3d:15:81:f9:28:9f:5f:3c:68:94:83:ea:ee: f8:c3:b6:c8:74:3b:d9:5d:5d:da:97:41:dd:5d:cc:6d:dc:13: 42:3e:4b:3f:fe:c6:5a:96:b5:89:95:79:e4:02:f9:ce:dc:9a: ec:96:10:13:4c:45:b1:b6:6b:4c:ca:71:10:a5:a5:12:44:3a: b5:b8:5f:19:6a:82:86:5b:d7:99:6e:82:b5:60:6e:7b:d1:04: 19:ea:f7:c7 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt7o0Y2lNWwyLgcGb8iD30AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzY5MTc2NDVkOWQyMjA0MzVmOTFjN2U0NmM4MTEwY2Y4OWFjYmU0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAl0pmkF2n4H+AwcDHI6/EWxI5BTi7 6LgpKbVLX48qWb04UiZMGRLZjMnShAqWYGrjUbkro1uskip4ibEfDhZsN82RqYiC bkbSH5KmcfQWzSFR5Xh6JaAJJK+mPLWLhiuQLPjt4C/KoZmacvRoLbf1TX3Y7H49 4S/DLRYAKiDU1n11485FeLmuC6yWrrdQIxuCVCgmDvOFXbNBpEeQQwfE3Qj02rt7 kEhJGsOSTdi36v4/FqEKJO/hCweDCKi6zQY5HK3pqsOD+gWmo6cNHyj1NfXUHcu9 1wUgCGLIWgOgafYeqLZKI6EGa/zVDK9UmPYNdLWDTTDbNHjC2CbhsdAxvwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFNxpF2RdnSIENfkcfkbIEQz4msvkMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY1LzM1NDRh Ny1kNTU2LTQ3MDEtOTU3YS00MjhiZTkwMDhmYmEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvMzU0NGE3 LWQ1NTYtNDcwMS05NTdhLTQyOGJlOTAwOGZiYS8xLzNHa1haRjJkSWdRMS1SeC1S c2dSRFBpYXktUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCuazgMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMfdTANBgkqhkiG9w0BAQsFAAOCAQEAZsZSfpeSE9RuH7veORFgK7Qqe2ruWMJ8 S3yQSPeLq505lRBy/Z9D+sNt6/U6im8gdSc9ALodiyY08jd5RFZHyvUyhyKyEB/8 PU0Ug5WCde1y1ZSlXOahM7ils+RhSnhuhFiKDlI48syIMRqQpmXhH5c5BawiN8aN cl9BrPY2Dq5lnNtSTCyENzgoiP4Jdf1OYOwFLQvfdJK7AVoYWqG80U6b4spjwC89 FYH5KJ9fPGiUg+ru+MO2yHQ72V1d2pdB3V3MbdwTQj5LP/7GWpa1iZV55AL5ztya 7JYQE0xFsbZrTMpxEKWlEkQ6tbhfGWqChlvXmW6CtWBue9EEGer3xw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:25 2026 by rpki-client