This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3GsGuFW_l8OXvbhRaUS02xhmP5I.cer File: 3GsGuFW_l8OXvbhRaUS02xhmP5I.cer (raw, json) Hash identifier: m3mkIulK7sl4ojUNONDMdjzxAQC9DnaEvVFj/AbVIYc= Subject key identifier: DC:6B:06:B8:55:BF:97:C3:97:BD:B8:51:69:44:B4:DB:18:66:3F:92 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E96894D6AF0C282F71BDEB668C01E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/39721b99-0b2e-4f77-9a2f-8c335a3e27ad/0/DC6B06B855BF97C397BDB8516944B4DB18663F92.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/39721b99-0b2e-4f77-9a2f-8c335a3e27ad/0/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:17 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197919 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:96:89:4d:6a:f0:c2:82:f7:1b:de:b6:68:c0:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dc6b06b855bf97c397bdb8516944b4db18663f92 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:cf:ea:7f:a8:60:00:17:23:4a:35:1a:66:f7: bc:9d:70:ff:71:d7:51:d2:f1:f6:ab:74:be:06:43: 3b:50:3c:21:65:f0:80:f5:44:d9:f8:30:a3:0b:78: 55:ae:24:b8:4f:04:44:ff:8d:fc:46:2c:10:b8:6d: 7c:17:dd:bb:46:e8:00:86:46:5e:fc:82:ec:d6:c4: 92:45:73:35:dc:8f:ae:db:eb:70:f1:c4:cc:7b:c0: 31:be:09:d4:b4:dc:d8:96:01:6f:ca:5e:72:cb:e5: 61:6c:6e:05:5a:80:8a:4d:39:f1:c6:56:d0:78:30: 18:b1:e2:e7:d0:f5:6e:89:b4:04:10:04:71:d2:1b: ac:33:08:95:cc:16:fd:77:22:24:31:3d:c2:5b:58: ab:42:ec:67:c8:df:18:c5:f8:89:94:72:66:80:36: c7:d1:a0:20:5c:2c:fc:22:a2:a1:ee:3c:cf:e5:41: 1a:2c:f7:63:81:db:52:fd:3e:3f:cb:14:ee:f2:59: df:92:c2:a4:f2:5b:cd:7b:0f:00:ef:a6:a7:ec:80: 64:0b:5d:e0:2c:a9:13:6a:04:32:76:ce:56:8f:76: 3e:1b:5b:a0:65:bf:b8:33:0f:da:89:57:35:47:a6: 79:16:dc:a9:b9:11:af:b0:ea:f2:2c:bc:00:c2:40: 09:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DC:6B:06:B8:55:BF:97:C3:97:BD:B8:51:69:44:B4:DB:18:66:3F:92 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/39721b99-0b2e-4f77-9a2f-8c335a3e27ad/0/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/39721b99-0b2e-4f77-9a2f-8c335a3e27ad/0/DC6B06B855BF97C397BDB8516944B4DB18663F92.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 197919 Signature Algorithm: sha256WithRSAEncryption 93:b3:b4:01:4d:66:53:90:04:04:47:9a:c7:52:d6:cc:92:a9: 4a:4a:28:52:06:a9:6f:67:a6:0b:f5:dd:81:31:93:b7:13:00: 4e:fd:56:ad:20:ef:e6:dd:c1:0f:4f:de:77:d6:63:1f:4e:3c: 9c:74:84:f3:71:2b:8e:ee:77:59:24:ca:15:ec:37:38:0c:20: ee:1a:9f:9e:29:87:2c:6c:1a:13:fa:87:f2:54:91:ae:3f:bb: e2:13:71:ae:89:a6:28:93:c5:46:da:55:be:aa:c0:80:e9:90: 1b:49:97:c1:37:9a:4a:9a:b7:a2:74:3f:76:bb:09:c0:52:a3: 33:4e:d5:01:fa:25:d4:e7:4b:3a:7e:89:90:f6:9e:07:9f:1f: 31:b6:2b:ff:21:8f:c9:eb:8f:62:fe:d9:fd:b8:18:98:7d:bd: c7:a0:27:8e:36:50:13:a1:12:a7:8f:72:81:1a:82:3a:20:7d: 7d:1e:fb:92:ea:bb:6f:02:20:49:3b:fd:f5:b1:61:cc:99:4b: e9:70:b4:3b:dd:c3:85:e4:00:c4:a0:7e:b3:36:bc:f2:bc:61: 2c:2b:bb:2a:5a:64:db:11:4f:8b:53:14:2b:83:15:a2:a4:14: e3:67:41:e8:58:0e:8e:31:b1:91:92:57:6a:10:30:6d:7e:d0: d5:f1:9a:e7 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgISAZt5fpaJTWrwwoL3G962aMAeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYzZiMDZiODU1YmY5N2MzOTdiZGI4NTE2OTQ0YjRkYjE4NjYzZjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq8/qf6hgABcjSjUaZve8nXD/cddR 0vH2q3S+BkM7UDwhZfCA9UTZ+DCjC3hVriS4TwRE/438RiwQuG18F927RugAhkZe /ILs1sSSRXM13I+u2+tw8cTMe8AxvgnUtNzYlgFvyl5yy+VhbG4FWoCKTTnxxlbQ eDAYseLn0PVuibQEEARx0husMwiVzBb9dyIkMT3CW1irQuxnyN8YxfiJlHJmgDbH 0aAgXCz8IqKh7jzP5UEaLPdjgdtS/T4/yxTu8lnfksKk8lvNew8A76an7IBkC13g LKkTagQyds5Wj3Y+G1ugZb+4Mw/aiVc1R6Z5FtypuRGvsOryLLwAwkAJaQIDAQAB o4ICmzCCApcwHQYDVR0OBBYEFNxrBrhVv5fDl724UWlEtNsYZj+SMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzM5NzIx Yjk5LTBiMmUtNGY3Ny05YTJmLThjMzM1YTNlMjdhZC8wLzCBiwYIKwYBBQUHMAqG f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMzk3 MjFiOTktMGIyZS00Zjc3LTlhMmYtOGMzMzVhM2UyN2FkLzAvREM2QjA2Qjg1NUJG OTdDMzk3QkRCODUxNjk0NEI0REIxODY2M0Y5Mi5tZnQwPAYIKwYBBQUHMA2GMGh0 dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgMDBR8w DQYJKoZIhvcNAQELBQADggEBAJOztAFNZlOQBARHmsdS1sySqUpKKFIGqW9npgv1 3YExk7cTAE79Vq0g7+bdwQ9P3nfWYx9OPJx0hPNxK47ud1kkyhXsNzgMIO4an54p hyxsGhP6h/JUka4/u+ITca6JpiiTxUbaVb6qwIDpkBtJl8E3mkqat6J0P3a7CcBS ozNO1QH6JdTnSzp+iZD2ngefHzG2K/8hj8nrj2L+2f24GJh9vcegJ442UBOhEqeP coEagjogfX0e+5Lqu28CIEk7/fWxYcyZS+lwtDvdw4XkAMSgfrM2vPK8YSwruypa ZNsRT4tTFCuDFaKkFONnQehYDo4xsZGSV2oQMG1+0NXxmuc= -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:32 2026 by rpki-client