This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8GDdQD3e9-UZFzs_tNx-iiM0ERU.cer File: 8GDdQD3e9-UZFzs_tNx-iiM0ERU.cer (raw, json) Hash identifier: 04e+8cEmj0vV8ThgRutZ7McWn0+9uixmIuz/YLTL5Oc= Subject key identifier: F0:60:DD:40:3D:DE:F7:E5:19:17:3B:3F:B4:DC:7E:8A:23:34:11:15 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019C2DD0E4EE6B096B6C6C3FFA34E5D52248 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/70/d9d1b3-5911-49e7-81aa-0f0d53ac0e0d/1/8GDdQD3e9-UZFzs_tNx-iiM0ERU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/70/d9d1b3-5911-49e7-81aa-0f0d53ac0e0d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 05 Feb 2026 12:39:50 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201623 IP: 2001:678:ac4::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:2d:d0:e4:ee:6b:09:6b:6c:6c:3f:fa:34:e5:d5:22:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Feb 5 12:39:50 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f060dd403ddef7e519173b3fb4dc7e8a23341115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:76:7f:7f:c0:f1:a9:b1:4e:18:9c:01:17:ec: 62:81:bd:1a:c4:00:cc:c2:c3:e2:45:cd:fc:c6:7b: 8a:b8:ff:3e:90:c3:f4:6a:64:30:37:4d:e2:0e:0a: 2f:dd:88:50:6d:56:6c:10:6e:60:48:56:d3:8a:7b: a7:ae:ce:76:d5:b2:1c:0f:bf:45:97:3d:d7:de:f4: ac:ee:f2:26:e9:70:13:58:71:14:a4:54:84:80:bc: f2:36:d1:51:e3:71:0c:3d:f9:00:2e:3c:21:dd:a2: fd:c6:91:33:03:46:f7:a2:39:54:b6:3c:a2:58:dd: 25:dc:bc:ef:4f:ba:f7:f2:0c:f5:bf:e6:cd:26:fb: 26:16:cd:1d:12:6e:70:82:07:8a:dc:d1:21:3e:df: 67:9c:da:d3:a9:68:43:f4:08:16:3c:3d:ef:7c:be: 0a:de:f7:30:72:77:0d:87:21:33:b2:3c:94:16:c2: d3:cd:ed:01:48:43:0d:4e:ca:fd:5c:a3:c8:74:8c: b7:2c:2b:ea:63:44:65:04:c0:cc:86:1f:f2:79:c4: fa:ee:50:cf:ce:77:0b:40:61:85:a8:28:f7:33:96: 81:0e:73:7f:7b:33:c1:70:21:9a:3a:fc:d1:11:59: 7d:70:c4:f5:70:f8:77:12:9c:63:d7:98:47:d2:56: 86:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:60:DD:40:3D:DE:F7:E5:19:17:3B:3F:B4:DC:7E:8A:23:34:11:15 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/d9d1b3-5911-49e7-81aa-0f0d53ac0e0d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/70/d9d1b3-5911-49e7-81aa-0f0d53ac0e0d/1/8GDdQD3e9-UZFzs_tNx-iiM0ERU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:ac4::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201623 Signature Algorithm: sha256WithRSAEncryption 23:d2:32:b1:f0:b8:6d:2e:8e:b8:b2:98:21:85:9b:cc:ad:91: ea:fa:30:99:7d:04:80:7c:36:9a:80:d9:f4:97:d0:5c:85:23: d4:c6:29:e7:36:e0:da:e0:c2:10:e0:5f:77:d1:c7:61:e7:ad: 4e:15:e9:20:a1:c6:b5:65:24:71:41:a7:2a:99:e4:a4:54:32: c1:d5:c1:51:d0:16:21:9e:1b:e0:49:5f:0b:3d:a0:5b:eb:7c: 94:b2:ea:93:ea:cd:47:dc:a6:e8:42:c2:fd:d4:f7:df:3f:29: 7e:93:5e:7b:8f:c7:8e:0a:e1:6e:67:27:f7:79:c7:de:86:3a: 84:58:e7:8d:22:72:4f:30:3c:43:7b:41:6a:2a:28:3d:75:3c: 01:c3:75:67:25:d2:8f:c1:da:25:e5:38:53:03:74:1f:b3:97: 6c:9a:72:8f:15:c1:bc:e5:90:62:1d:68:c7:11:a3:9e:b5:4e: b3:a9:9a:23:5e:a4:48:0b:dd:dc:24:1c:d9:b1:a5:ad:9d:de: dc:d2:54:e9:62:8e:ce:83:83:01:8b:93:df:4e:b9:73:07:43: b4:81:be:08:b8:ea:bb:86:21:df:dc:0b:ed:49:10:8c:95:73: 6b:5a:ca:cc:5a:ba:41:64:90:7a:99:e1:f8:eb:1f:f1:ce:60: 6b:f5:0e:54 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZwt0OTuawlrbGw/+jTl1SJIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMjA1MTIzOTUwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMDYwZGQ0MDNkZGVmN2U1MTkxNzNiM2ZiNGRjN2U4YTIzMzQxMTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+HZ/f8DxqbFOGJwBF+xigb0axADM wsPiRc38xnuKuP8+kMP0amQwN03iDgov3YhQbVZsEG5gSFbTinunrs521bIcD79F lz3X3vSs7vIm6XATWHEUpFSEgLzyNtFR43EMPfkALjwh3aL9xpEzA0b3ojlUtjyi WN0l3LzvT7r38gz1v+bNJvsmFs0dEm5wggeK3NEhPt9nnNrTqWhD9AgWPD3vfL4K 3vcwcncNhyEzsjyUFsLTze0BSEMNTsr9XKPIdIy3LCvqY0RlBMDMhh/yecT67lDP zncLQGGFqCj3M5aBDnN/ezPBcCGaOvzREVl9cMT1cPh3Epxj15hH0laG4wIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFPBg3UA93vflGRc7P7TcfoojNBEVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcwL2Q5ZDFi My01OTExLTQ5ZTctODFhYS0wZjBkNTNhYzBlMGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzAvZDlkMWIz LTU5MTEtNDllNy04MWFhLTBmMGQ1M2FjMGUwZC8xLzhHRGRRRDNlOS1VWkZ6c190 TngtaWlNMEVSVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeArEMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMTlzANBgkqhkiG9w0BAQsFAAOCAQEAI9IysfC4bS6OuLKYIYWbzK2R6vow mX0EgHw2moDZ9JfQXIUj1MYp5zbg2uDCEOBfd9HHYeetThXpIKHGtWUkcUGnKpnk pFQywdXBUdAWIZ4b4ElfCz2gW+t8lLLqk+rNR9ym6ELC/dT33z8pfpNee4/Hjgrh bmcn93nH3oY6hFjnjSJyTzA8Q3tBaiooPXU8AcN1ZyXSj8HaJeU4UwN0H7OXbJpy jxXBvOWQYh1oxxGjnrVOs6maI16kSAvd3CQc2bGlrZ3e3NJU6WKOzoODAYuT3065 cwdDtIG+CLjqu4Yh39wL7UkQjJVza1rKzFq6QWSQepnh+Osf8c5ga/UOVA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:35 2026 by rpki-client