This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/435CoUa5C6fNMxrWoT7vHaL7pEA.cer File: 435CoUa5C6fNMxrWoT7vHaL7pEA.cer (raw, json) Hash identifier: ziMvfFIMYMM+xzt2saX/3To+W2yGjmCjqL3vC4mcVro= Subject key identifier: E3:7E:42:A1:46:B9:0B:A7:CD:33:1A:D6:A1:3E:EF:1D:A2:FB:A4:40 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCAC6719DCD7F128D9D4B7F208491E2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:59 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 3338 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:c6:71:9d:cd:7f:12:8d:9d:4b:7f:20:84:91:e2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e37e42a146b90ba7cd331ad6a13eef1da2fba440 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fd:7c:3b:92:f3:f3:20:ff:cc:4b:01:86:ab:3e: fc:a6:41:08:9e:1b:d2:3d:ad:44:38:04:cc:b5:f3: eb:93:77:19:61:b7:af:a5:49:b7:09:8e:9f:1a:86: 79:6e:22:d1:cc:18:5c:15:28:44:87:e5:ae:a4:e6: 5b:bd:30:8b:12:69:b8:fa:fa:ec:93:5e:85:53:0d: 84:29:d2:ea:3d:f1:7a:39:4e:fd:69:ac:12:5f:6f: bd:bb:ba:52:49:79:32:c9:f6:90:f8:3b:24:be:07: 72:1b:a3:d6:af:66:b2:d5:03:b6:81:e0:e8:5a:fb: af:8e:55:a4:a8:bb:e2:77:1e:03:d0:b4:f9:ac:72: 3b:f9:ff:33:bd:b9:82:2b:08:c1:c7:c9:3b:88:77: 97:18:d0:41:1e:5b:12:31:2d:68:f7:d3:e8:5c:0d: 8e:73:a1:38:7e:ab:54:c3:ae:15:6b:97:fc:59:ec: b6:65:29:90:b1:8e:c5:f4:aa:69:8b:87:51:bf:e5: bf:92:b2:ef:3d:01:c4:1e:f4:94:bb:ce:0e:8f:2e: df:db:6b:a7:18:17:c6:57:30:17:66:22:2c:15:03: a9:c6:a6:32:e7:fc:2a:51:aa:60:7b:f5:87:ca:e4: 50:1b:83:62:46:c5:1f:e3:c0:41:b3:37:62:dc:be: 76:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:7E:42:A1:46:B9:0B:A7:CD:33:1A:D6:A1:3E:EF:1D:A2:FB:A4:40 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e0/3ece76-0575-46b1-94bf-06329f6e0475/1/435CoUa5C6fNMxrWoT7vHaL7pEA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 3338 Signature Algorithm: sha256WithRSAEncryption 0d:29:8c:3a:92:6b:a2:88:2a:9d:4a:76:e5:f0:68:5e:32:af: a1:14:b6:af:ca:7b:fc:f6:6d:7b:a8:d4:b0:7e:ee:4b:67:70: 08:57:26:0e:b8:6f:f9:86:94:d0:14:20:65:c5:60:9d:b4:3a: 0e:bb:23:cd:0e:e6:f8:79:da:34:90:04:b5:cb:6b:4a:0a:63: 6c:e9:0c:30:4e:3e:9d:d5:a9:34:55:81:f4:47:e8:6f:92:3a: 73:81:91:de:03:09:4e:1c:da:34:30:85:e1:3d:ee:7a:73:3f: 68:a5:18:70:1a:d8:b4:61:be:7f:d6:3b:06:b8:25:84:68:da: 7c:60:79:8d:39:85:8d:89:22:f7:e2:ac:d2:9b:af:42:86:16: 36:eb:a9:84:ea:e8:17:be:cb:5f:7b:97:a3:45:e1:d4:8a:85: 7e:d6:f0:d0:6e:2a:c3:f2:6a:3d:75:3d:77:2f:dc:a7:39:26: a8:10:ce:51:18:4a:f4:7c:4b:54:4d:a9:b0:16:ae:f0:3e:3c: 2f:4d:81:a2:76:ac:ca:81:fc:b6:39:3d:8f:fe:9d:99:d5:47: a8:96:92:0f:40:29:58:78:73:0f:e0:86:1d:ca:4d:96:d8:49: 9d:dc:77:18:23:c2:70:77:d3:99:03:80:62:cb:58:aa:83:ef: 18:35:a7:70 -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgISAZt9ysZxnc1/Eo2dS38ghJHiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzdlNDJhMTQ2YjkwYmE3Y2QzMzFhZDZhMTNlZWYxZGEyZmJhNDQwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/Xw7kvPzIP/MSwGGqz78pkEInhvS Pa1EOATMtfPrk3cZYbevpUm3CY6fGoZ5biLRzBhcFShEh+WupOZbvTCLEmm4+vrs k16FUw2EKdLqPfF6OU79aawSX2+9u7pSSXkyyfaQ+DskvgdyG6PWr2ay1QO2geDo WvuvjlWkqLvidx4D0LT5rHI7+f8zvbmCKwjBx8k7iHeXGNBBHlsSMS1o99PoXA2O c6E4fqtUw64Va5f8Wey2ZSmQsY7F9Kppi4dRv+W/krLvPQHEHvSUu84Ojy7f22un GBfGVzAXZiIsFQOpxqYy5/wqUapge/WHyuRQG4NiRsUf48BBszdi3L52gwIDAQAB o4ICfjCCAnowHQYDVR0OBBYEFON+QqFGuQunzTMa1qE+7x2i+6RAMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UwLzNlY2U3 Ni0wNTc1LTQ2YjEtOTRiZi0wNjMyOWY2ZTA0NzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTAvM2VjZTc2 LTA1NzUtNDZiMS05NGJmLTA2MzI5ZjZlMDQ3NS8xLzQzNUNvVWE1QzZmTk14cldv VDd2SGFMN3BFQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBkGCCsGAQUF BwEIAQH/BAowCKAGMAQCAg0KMA0GCSqGSIb3DQEBCwUAA4IBAQANKYw6kmuiiCqd Snbl8GheMq+hFLavynv89m17qNSwfu5LZ3AIVyYOuG/5hpTQFCBlxWCdtDoOuyPN Dub4edo0kAS1y2tKCmNs6QwwTj6d1ak0VYH0R+hvkjpzgZHeAwlOHNo0MIXhPe56 cz9opRhwGti0Yb5/1jsGuCWEaNp8YHmNOYWNiSL34qzSm69ChhY266mE6ugXvstf e5ejReHUioV+1vDQbirD8mo9dT13L9ynOSaoEM5RGEr0fEtUTamwFq7wPjwvTYGi dqzKgfy2OT2P/p2Z1UeolpIPQClYeHMP4IYdyk2W2Emd3HcYI8Jwd9OZA4Biy1iq g+8YNadw -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:23 2026 by rpki-client