This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/3tvumMupuOYloRR7s7VRl9LQoFc.cer File: 3tvumMupuOYloRR7s7VRl9LQoFc.cer (raw, json) Hash identifier: ZvwUwMZC0W1sXKc9sk81EIwYkmjjKRVZ2nd1Q8IlqLY= Subject key identifier: DE:DB:EE:98:CB:A9:B8:E6:25:A1:14:7B:B3:B5:51:97:D2:D0:A0:57 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC925C4AA569212F684694A388B7FDF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:19:21 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 48297 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:25:c4:aa:56:92:12:f6:84:69:4a:38:8b:7f:df Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=dedbee98cba9b8e625a1147bb3b55197d2d0a057 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b3:6d:20:44:e2:f0:82:3d:aa:54:5e:66:90:3f: 7b:6d:d6:f0:00:84:89:46:43:c2:5e:89:3c:53:1d: 50:2a:2d:6b:5a:4a:2f:b3:a8:a1:25:91:8f:8d:3c: bd:dd:c7:c1:70:b6:78:4c:03:11:d4:60:af:77:1b: 61:93:c6:3d:9e:c4:bf:66:66:6c:4f:a8:ab:52:6c: 8b:0f:06:d7:1e:f4:07:9c:99:9b:b3:a4:42:52:98: 70:cc:eb:5a:88:94:ac:c9:ea:84:1a:d6:33:a6:45: df:ea:a2:63:1c:2f:df:97:0b:a4:b7:bc:ee:bd:f8: 3a:51:69:c9:0a:f0:a6:f3:9f:fb:64:7d:35:1e:ff: 4a:32:57:49:59:83:84:65:91:14:cc:48:9a:34:a3: d4:fa:78:b8:f1:8a:0e:f5:af:a5:8c:fd:12:17:ad: 76:83:62:8b:86:f3:96:0b:e1:a8:45:5b:bf:cb:0a: 21:08:19:b2:8c:a3:14:6a:98:03:43:85:79:6b:d7: 23:a6:8d:d7:77:f7:2f:b3:3e:f5:cb:2c:e1:8e:11: f2:8c:56:db:03:74:0a:c7:91:c7:13:bd:22:82:17: 6a:40:5d:dc:1a:08:f6:3f:5e:34:7c:78:c8:6b:95: 63:b6:46:1f:1b:46:2d:0a:79:fc:46:35:e3:80:52: e5:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:DB:EE:98:CB:A9:B8:E6:25:A1:14:7B:B3:B5:51:97:D2:D0:A0:57 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/0ef678-7870-4e08-ab25-18f0b80f250d/1/3tvumMupuOYloRR7s7VRl9LQoFc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 48297 Signature Algorithm: sha256WithRSAEncryption b0:c1:00:f0:65:39:96:72:e2:3d:fb:fa:4a:dc:5a:28:f4:0e: 46:4d:f9:4d:7f:46:09:3b:dd:f1:d8:8a:db:e5:dd:9e:e0:fc: 18:44:1d:4b:f6:8b:84:04:0e:68:88:9f:e9:bb:36:6e:46:37: 8f:e5:3b:4b:e1:95:1b:99:f1:31:4c:8c:39:b2:37:46:26:0b: ee:0f:43:88:43:02:dc:97:7d:70:e4:27:71:04:54:cd:ad:62: 79:52:1f:10:5f:57:69:ff:ab:6a:ec:2b:cd:27:f9:a9:cc:ed: 6e:8e:ef:9e:68:6c:f8:ac:db:29:4f:3f:06:d1:25:75:5f:38: a0:d3:29:27:8a:ee:5e:04:89:c5:4c:dc:88:80:21:90:44:cc: 0e:8a:1e:6f:93:c6:db:cb:fb:21:cc:ae:c5:6c:39:d8:dd:5d: 38:ac:93:da:c3:01:2c:e5:e4:9c:b4:c6:b0:25:17:77:40:28: 10:49:dd:09:2b:c5:31:a0:0d:60:d3:20:36:63:3a:28:9c:95: 91:b7:b7:4c:3f:91:a7:d8:79:d9:31:6b:2a:19:8b:8b:55:8a: 6c:44:0a:30:96:19:05:06:05:18:48:8e:0a:6c:2f:b9:f3:ed: 42:94:16:36:f5:9f:ec:dd:a8:af:30:10:10:af:f2:e3:fc:31: 37:60:21:c6 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt6ySXEqlaSEvaEaUo4i3/fMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkZWRiZWU5OGNiYTliOGU2MjVhMTE0N2JiM2I1NTE5N2QyZDBhMDU3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs20gROLwgj2qVF5mkD97bdbwAISJ RkPCXok8Ux1QKi1rWkovs6ihJZGPjTy93cfBcLZ4TAMR1GCvdxthk8Y9nsS/ZmZs T6irUmyLDwbXHvQHnJmbs6RCUphwzOtaiJSsyeqEGtYzpkXf6qJjHC/flwukt7zu vfg6UWnJCvCm85/7ZH01Hv9KMldJWYOEZZEUzEiaNKPU+ni48YoO9a+ljP0SF612 g2KLhvOWC+GoRVu/ywohCBmyjKMUapgDQ4V5a9cjpo3Xd/cvsz71yyzhjhHyjFbb A3QKx5HHE70ighdqQF3cGgj2P140fHjIa5VjtkYfG0YtCnn8RjXjgFLl6QIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFN7b7pjLqbjmJaEUe7O1UZfS0KBXMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q4LzBlZjY3 OC03ODcwLTRlMDgtYWIyNS0xOGYwYjgwZjI1MGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgvMGVmNjc4 LTc4NzAtNGUwOC1hYjI1LTE4ZjBiODBmMjUwZC8xLzN0dnVtTXVwdU9ZbG9SUjdz N1ZSbDlMUW9GYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwC8qTANBgkqhkiG9w0BAQsFAAOCAQEAsMEA8GU5lnLi Pfv6StxaKPQORk35TX9GCTvd8diK2+XdnuD8GEQdS/aLhAQOaIif6bs2bkY3j+U7 S+GVG5nxMUyMObI3RiYL7g9DiEMC3Jd9cOQncQRUza1ieVIfEF9Xaf+rauwrzSf5 qcztbo7vnmhs+KzbKU8/BtEldV84oNMpJ4ruXgSJxUzciIAhkETMDooeb5PG28v7 IcyuxWw52N1dOKyT2sMBLOXknLTGsCUXd0AoEEndCSvFMaANYNMgNmM6KJyVkbe3 TD+Rp9h52TFrKhmLi1WKbEQKMJYZBQYFGEiOCmwvufPtQpQWNvWf7N2orzAQEK/y 4/wxN2Ahxg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:53 2026 by rpki-client