This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4aWhf1DBNbGFHOwsdrD9cPncx54.cer File: 4aWhf1DBNbGFHOwsdrD9cPncx54.cer (raw, json) Hash identifier: MNevoQD5++HfJqWNoXXLLMvyhTjs0kDVm5tVCfLyp/I= Subject key identifier: E1:A5:A1:7F:50:C1:35:B1:85:1C:EC:2C:76:B0:FD:70:F9:DC:C7:9E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B35C3654CE1DC334AA653EB2D9D66F8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/f9f8fa-2988-445c-be94-913575c58f4a/1/4aWhf1DBNbGFHOwsdrD9cPncx54.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/f9f8fa-2988-445c-be94-913575c58f4a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:17:59 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202731 IP: 2001:678:1e4::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:c3:65:4c:e1:dc:33:4a:a6:53:eb:2d:9d:66:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:17:59 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e1a5a17f50c135b1851cec2c76b0fd70f9dcc79e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:42:f9:fc:a1:aa:b6:33:e1:f4:23:a3:84:68: 59:cd:44:fd:02:04:c6:e3:8d:80:53:c3:10:e6:38: 5b:df:f6:e9:47:fe:1b:be:e0:20:6d:d2:97:d1:8f: f4:ff:6b:33:92:d9:7c:65:96:90:d8:63:b7:15:12: d6:fa:00:4f:43:b1:15:06:f0:ab:6f:2b:1e:10:d6: 8f:5d:d9:b9:52:fe:a8:eb:8b:9b:a6:4b:7a:58:6f: e6:72:cc:20:a0:dc:09:95:7a:9b:02:c2:2e:81:b9: 95:ef:ce:7c:98:bd:c1:7e:b6:00:00:d3:10:77:e9: 68:fa:75:0e:bd:12:8d:84:f2:55:15:a1:bc:0f:97: 88:7e:a9:23:20:12:21:69:2c:81:47:37:20:5b:f1: e5:8a:06:de:b3:4b:33:a0:d4:88:95:14:c0:92:06: 4e:8f:d1:e7:c7:32:b5:8c:5e:f7:f7:5d:23:94:13: 20:16:2b:c9:63:9a:e6:41:7b:35:4b:31:cd:2f:d4: 05:99:8d:41:31:97:eb:89:43:62:cc:5b:97:c4:67: 73:18:fb:74:1b:54:e0:18:51:d9:50:5e:8e:ff:30: 31:55:05:33:3b:14:87:28:15:0f:86:46:f1:57:95: 01:b5:bd:59:47:73:33:48:fa:fa:d3:80:ba:b8:c1: 37:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E1:A5:A1:7F:50:C1:35:B1:85:1C:EC:2C:76:B0:FD:70:F9:DC:C7:9E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/f9f8fa-2988-445c-be94-913575c58f4a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/f9f8fa-2988-445c-be94-913575c58f4a/1/4aWhf1DBNbGFHOwsdrD9cPncx54.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1e4::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202731 Signature Algorithm: sha256WithRSAEncryption 77:44:2a:1e:ad:b1:9a:0f:08:fc:10:4a:da:d7:5a:d5:38:fd: c3:4e:6c:d3:ef:05:47:72:a7:4b:ae:88:89:11:dd:84:59:8f: c3:05:6d:71:13:46:e6:d4:c1:b9:8b:5c:9d:9a:e0:ac:85:a6: 10:3a:a7:6a:e6:ae:26:52:9b:5c:70:58:cc:34:64:25:cb:29: e1:2d:ad:3e:cc:c6:e0:04:4a:22:71:1d:99:2d:d8:33:b1:d1: 6f:09:8f:15:c8:71:5d:c1:fc:e7:e6:f1:3b:b4:24:4f:21:47: 0c:94:7a:7d:5d:e3:6c:1d:94:bf:fb:ff:df:db:9d:c2:60:5a: cf:4f:e5:37:5f:65:06:50:ff:f7:41:3e:7f:b0:20:71:e9:73: cc:40:1e:8f:73:a7:aa:d8:37:f2:e3:af:99:2e:2b:19:7a:16: da:98:9c:9b:f1:8e:9d:3f:fb:63:05:58:1b:c3:85:0a:e4:e2: a1:41:94:56:b5:97:5a:bc:3a:5b:ab:71:77:8d:ce:5e:6c:cb: e3:a0:ab:3e:78:fe:20:30:e9:59:c0:d0:45:28:6a:4f:da:8a: b0:83:9d:08:2e:47:d0:f8:63:8d:5f:c9:cd:cc:63:8d:00:f7: a7:e9:30:1a:4d:77:aa:f5:c6:d9:6e:7c:5b:be:d9:3c:34:2d: 7b:81:07:d5 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt7NcNlTOHcM0qmU+stnWb4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxNzU5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMWE1YTE3ZjUwYzEzNWIxODUxY2VjMmM3NmIwZmQ3MGY5ZGNjNzllMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyEL5/KGqtjPh9COjhGhZzUT9AgTG 442AU8MQ5jhb3/bpR/4bvuAgbdKX0Y/0/2szktl8ZZaQ2GO3FRLW+gBPQ7EVBvCr byseENaPXdm5Uv6o64ubpkt6WG/mcswgoNwJlXqbAsIugbmV7858mL3BfrYAANMQ d+lo+nUOvRKNhPJVFaG8D5eIfqkjIBIhaSyBRzcgW/Hligbes0szoNSIlRTAkgZO j9HnxzK1jF73910jlBMgFivJY5rmQXs1SzHNL9QFmY1BMZfriUNizFuXxGdzGPt0 G1TgGFHZUF6O/zAxVQUzOxSHKBUPhkbxV5UBtb1ZR3MzSPr604C6uME3xwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFOGloX9QwTWxhRzsLHaw/XD53MeeMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgyL2Y5Zjhm YS0yOTg4LTQ0NWMtYmU5NC05MTM1NzVjNThmNGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIvZjlmOGZh LTI5ODgtNDQ1Yy1iZTk0LTkxMzU3NWM1OGY0YS8xLzRhV2hmMURCTmJHRkhPd3Nk ckQ5Y1BuY3g1NC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAHkMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMX6zANBgkqhkiG9w0BAQsFAAOCAQEAd0QqHq2xmg8I/BBK2tda1Tj9w05s 0+8FR3KnS66IiRHdhFmPwwVtcRNG5tTBuYtcnZrgrIWmEDqnauauJlKbXHBYzDRk Jcsp4S2tPszG4ARKInEdmS3YM7HRbwmPFchxXcH85+bxO7QkTyFHDJR6fV3jbB2U v/v/39udwmBaz0/lN19lBlD/90E+f7AgcelzzEAej3Onqtg38uOvmS4rGXoW2pic m/GOnT/7YwVYG8OFCuTioUGUVrWXWrw6W6txd43OXmzL46CrPnj+IDDpWcDQRShq T9qKsIOdCC5H0PhjjV/JzcxjjQD3p+kwGk13qvXG2W58W77ZPDQte4EH1Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:06 2026 by rpki-client