This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4iJ3_fZYKO9AtYzhAZRllVB_EzA.cer File: 4iJ3_fZYKO9AtYzhAZRllVB_EzA.cer (raw, json) Hash identifier: 9rOv6vLl45tGcd3jnKgXNKTH4RzZpQHMXx65365KQUc= Subject key identifier: E2:22:77:FD:F6:58:28:EF:40:B5:8C:E1:01:94:65:95:50:7F:13:30 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C809A78A8648467E43503CB75EFD8CB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/4iJ3_fZYKO9AtYzhAZRllVB_EzA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:19:21 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 200083 IP: 46.29.88.0/21 IP: 62.182.16.0/21 IP: 77.72.200.0/21 IP: 185.41.8.0/22 IP: 2a04:84c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:9a:78:a8:64:84:67:e4:35:03:cb:75:ef:d8:cb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:19:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e22277fdf65828ef40b58ce101946595507f1330 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:78:c4:af:53:74:8b:f6:f4:45:d1:2d:98:3b: 72:36:15:8e:21:62:e3:9a:a0:d6:6b:ed:d4:be:db: 62:ae:f1:1c:81:c0:ad:83:32:99:9f:5d:00:26:ec: 62:9b:cb:30:eb:54:18:24:88:4d:c2:07:4b:45:49: bc:d0:4b:d3:1e:9e:e4:3c:3f:98:45:1f:b8:c2:27: e5:24:78:77:47:1d:38:c3:04:52:d4:79:22:a5:65: 87:44:c3:80:94:28:af:24:d4:41:6c:74:54:3c:54: 80:04:5a:dc:00:8c:d9:a9:d4:ea:cc:64:fc:90:1f: cb:0b:d6:5f:1c:43:ac:9e:2c:71:02:d3:16:bd:60: fe:23:f6:c5:fd:6d:a3:10:2b:8f:d2:a5:f8:16:36: 11:11:4c:c4:d5:b1:7d:40:6e:26:e6:e8:fa:f3:56: d2:47:46:ea:d5:45:09:d8:47:8d:5c:70:4f:90:d1: c5:7e:9a:8f:73:20:34:2a:c4:7b:4f:20:af:15:f0: 13:5c:79:b4:d3:bc:73:b2:5e:66:70:23:bf:32:29: ee:5e:29:e4:1e:d9:22:e2:0a:46:eb:c2:0a:19:2a: 85:83:de:7b:39:ea:0b:54:83:f5:51:07:34:24:5e: d0:01:57:2e:94:59:47:aa:f3:66:b4:af:dd:6c:41: 89:73 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E2:22:77:FD:F6:58:28:EF:40:B5:8C:E1:01:94:65:95:50:7F:13:30 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/481786-77fd-4316-96ce-822b842c3c0e/1/4iJ3_fZYKO9AtYzhAZRllVB_EzA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.29.88.0/21 62.182.16.0/21 77.72.200.0/21 185.41.8.0/22 IPv6: 2a04:84c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 200083 Signature Algorithm: sha256WithRSAEncryption 3e:11:3f:e2:e4:c3:90:af:71:27:95:68:22:37:8f:7c:11:7b: d2:df:30:3f:96:c1:12:a3:cd:5d:80:0b:10:73:bd:0b:35:cc: 3c:12:64:c9:bd:e9:f1:87:87:b3:f0:e9:7f:e2:ef:47:2d:e4: 21:fe:53:cb:68:b4:f8:de:fe:1c:51:f3:cf:12:8f:91:2e:b1: 02:0c:42:05:54:80:e2:79:eb:13:0a:18:50:4c:b1:00:e9:80: 31:a7:23:35:66:46:2b:61:24:d7:4c:81:17:6d:b0:6d:c4:ed: 84:71:5a:22:d0:54:5e:48:46:39:1f:7d:b9:1f:1c:28:98:86: 2b:91:af:00:43:02:d5:c9:8b:3e:4d:84:fa:58:ad:15:52:9d: 25:14:c6:cb:c6:3f:bd:b2:dc:41:f2:f5:eb:c8:46:f2:73:c6: 34:70:0f:52:b4:83:db:e4:01:74:17:cf:c2:ba:e4:ad:75:dd: b4:f1:48:60:89:7d:2f:51:20:23:81:22:c5:c6:ba:d6:9a:21: 26:46:91:ad:7d:01:a3:aa:2f:fe:cd:00:17:b9:29:d6:48:8c: 48:34:5a:a9:fc:6a:94:fc:5f:b5:47:49:e5:9c:d5:d4:69:89: c4:cd:a2:b9:7a:c7:c4:7a:f3:2e:08:bf:57:e3:4f:91:f0:f8: 83:07:e5:32 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgISAZt8gJp4qGSEZ+Q1A8t179jLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxOTIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMjIyNzdmZGY2NTgyOGVmNDBiNThjZTEwMTk0NjU5NTUwN2YxMzMwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3jEr1N0i/b0RdEtmDtyNhWOIWLj mqDWa+3UvttirvEcgcCtgzKZn10AJuxim8sw61QYJIhNwgdLRUm80EvTHp7kPD+Y RR+4wiflJHh3Rx04wwRS1HkipWWHRMOAlCivJNRBbHRUPFSABFrcAIzZqdTqzGT8 kB/LC9ZfHEOsnixxAtMWvWD+I/bF/W2jECuP0qX4FjYREUzE1bF9QG4m5uj681bS R0bq1UUJ2EeNXHBPkNHFfpqPcyA0KsR7TyCvFfATXHm007xzsl5mcCO/MinuXink Htki4gpG68IKGSqFg957OeoLVIP1UQc0JF7QAVculFlHqvNmtK/dbEGJcwIDAQAB o4ICwTCCAr0wHQYDVR0OBBYEFOIid/32WCjvQLWM4QGUZZVQfxMwMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjLzQ4MTc4 Ni03N2ZkLTQzMTYtOTZjZS04MjJiODQyYzNjMGUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMvNDgxNzg2 LTc3ZmQtNDMxNi05NmNlLTgyMmI4NDJjM2MwZS8xLzRpSjNfZlpZS085QXRZemhB WlJsbFZCX0V6QS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQDLh1YAwQDPrYQAwQDTUjIAwQCuSkIMA0EAgAC MAcDBQMqBITAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMNkzANBgkqhkiG9w0B AQsFAAOCAQEAPhE/4uTDkK9xJ5VoIjePfBF70t8wP5bBEqPNXYALEHO9CzXMPBJk yb3p8YeHs/Dpf+LvRy3kIf5Ty2i0+N7+HFHzzxKPkS6xAgxCBVSA4nnrEwoYUEyx AOmAMacjNWZGK2Ek10yBF22wbcTthHFaItBUXkhGOR99uR8cKJiGK5GvAEMC1cmL Pk2E+litFVKdJRTGy8Y/vbLcQfL168hG8nPGNHAPUrSD2+QBdBfPwrrkrXXdtPFI YIl9L1EgI4Eixca61pohJkaRrX0Bo6ov/s0AF7kp1kiMSDRaqfxqlPxftUdJ5ZzV 1GmJxM2iuXrHxHrzLgi/V+NPkfD4gwflMg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:30 2026 by rpki-client