This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8IcQ5uJObWm9XESv6vDunGftOgY.cer File: 8IcQ5uJObWm9XESv6vDunGftOgY.cer (raw, json) Hash identifier: jOSx1+CqRIc4fxJkDnyhPmEXdGzBvAbmV29/QlOxfOY= Subject key identifier: F0:87:10:E6:E2:4E:6D:69:BD:5C:44:AF:EA:F0:EE:9C:67:ED:3A:06 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE1CF587B47CA6E133D2F93B35A1F2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 21231 IP: 80.92.32.0/20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:1c:f5:87:b4:7c:a6:e1:33:d2:f9:3b:35:a1:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f08710e6e24e6d69bd5c44afeaf0ee9c67ed3a06 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:01:aa:63:7f:3c:8a:54:22:f3:95:66:d2:83: ac:bb:98:96:61:d1:47:42:f1:af:f6:cf:a7:63:08: 72:b3:18:56:b4:3e:6a:8a:f7:c1:53:d7:c3:eb:ce: 7f:e6:97:df:1b:04:05:6b:d6:2d:7b:b9:5d:e2:eb: 83:dc:24:65:48:d8:df:60:0f:62:ab:25:c0:f3:a8: 68:94:4d:12:d8:11:61:54:fe:08:79:a0:61:48:31: fd:0f:3e:d8:31:20:75:be:18:3d:51:68:74:10:44: 09:7d:3f:eb:48:a8:d9:4b:e3:3c:8e:fc:9d:8a:22: 92:3b:90:2f:3e:8b:ef:da:3d:fc:66:0a:c3:e2:d3: 03:0c:df:f4:1d:a5:c7:70:96:d8:19:f3:0e:3b:ac: c6:ff:63:cb:fc:36:bf:61:17:ee:bc:ad:20:03:af: a8:09:b6:e9:87:f2:f5:df:c3:ff:c0:8c:a8:a2:2c: d3:cd:f5:7a:11:79:e9:7e:05:67:a3:5b:06:0e:62: 21:9b:c9:63:c2:b1:ad:43:fa:1f:22:85:0d:36:92: 59:9f:fb:10:44:3e:e4:8b:44:9e:27:d3:22:c5:b3: 06:1a:d1:42:e7:63:44:75:e7:c9:4f:cc:0b:aa:15: 9d:53:7e:83:57:02:b1:0e:3f:76:08:ab:81:30:bf: e3:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F0:87:10:E6:E2:4E:6D:69:BD:5C:44:AF:EA:F0:EE:9C:67:ED:3A:06 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/7bbad4-e15a-4bfd-ab32-76e865e2c4bd/1/8IcQ5uJObWm9XESv6vDunGftOgY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.92.32.0/20 sbgp-autonomousSysNum: critical Autonomous System Numbers: 21231 Signature Algorithm: sha256WithRSAEncryption 66:4c:e4:b5:5e:86:eb:c9:8e:a6:a8:e0:38:39:91:14:e8:72: d5:61:b4:19:a8:66:60:df:5d:b3:b3:e7:00:f3:79:68:52:c7: 5f:79:98:fe:97:5d:12:bc:22:aa:f7:92:8f:18:82:8b:36:f8: 93:bf:3f:25:60:dc:19:e8:2e:e7:58:9e:90:e1:25:54:9e:13: f6:fb:81:f1:36:a7:bc:2d:63:4b:17:5f:46:42:91:2b:a9:14: d7:ae:8d:13:91:c8:49:e2:ba:8a:21:66:41:f6:fb:58:b0:67: 64:f0:52:7e:20:93:fc:28:83:82:15:a0:5b:e5:c6:c6:18:94: 9c:34:d5:f1:68:93:20:b4:c8:47:64:bc:de:35:b3:01:74:5d: 23:18:52:47:aa:d7:70:2e:bd:0f:67:40:ab:a5:1e:e2:e2:d1: e6:73:15:a1:22:3b:65:5c:32:8f:77:19:1a:6b:f8:8a:81:62: 0c:e0:6c:a2:96:fc:30:4b:89:99:d5:8c:3d:b9:36:d0:a5:5e: 4f:62:97:ef:32:ba:6a:83:ff:6b:a2:7a:49:7d:e1:46:df:e0: ad:11:f4:08:d9:13:9a:ad:9a:cb:de:a7:02:45:39:e9:39:7a: 60:79:34:63:07:54:f1:50:46:f3:47:c2:5f:5e:e1:a2:05:d6: 91:c9:3d:9a -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt87hz1h7R8puEz0vk7NaHyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmMDg3MTBlNmUyNGU2ZDY5YmQ1YzQ0YWZlYWYwZWU5YzY3ZWQzYTA2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxwGqY388ilQi85Vm0oOsu5iWYdFH QvGv9s+nYwhysxhWtD5qivfBU9fD685/5pffGwQFa9Yte7ld4uuD3CRlSNjfYA9i qyXA86holE0S2BFhVP4IeaBhSDH9Dz7YMSB1vhg9UWh0EEQJfT/rSKjZS+M8jvyd iiKSO5AvPovv2j38ZgrD4tMDDN/0HaXHcJbYGfMOO6zG/2PL/Da/YRfuvK0gA6+o Cbbph/L138P/wIyooizTzfV6EXnpfgVno1sGDmIhm8ljwrGtQ/ofIoUNNpJZn/sQ RD7ki0SeJ9MixbMGGtFC52NEdefJT8wLqhWdU36DVwKxDj92CKuBML/jSQIDAQAB o4ICnzCCApswHQYDVR0OBBYEFPCHEObiTm1pvVxEr+rw7pxn7ToGMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJiLzdiYmFk NC1lMTVhLTRiZmQtYWIzMi03NmU4NjVlMmM0YmQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIvN2JiYWQ0 LWUxNWEtNGJmZC1hYjMyLTc2ZTg2NWUyYzRiZC8xLzhJY1E1dUpPYldtOVhFU3Y2 dkR1bkdmdE9nWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQEUFwgMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AlLvMA0GCSqGSIb3DQEBCwUAA4IBAQBmTOS1XobryY6mqOA4OZEU6HLVYbQZqGZg 312zs+cA83loUsdfeZj+l10SvCKq95KPGIKLNviTvz8lYNwZ6C7nWJ6Q4SVUnhP2 +4HxNqe8LWNLF19GQpErqRTXro0TkchJ4rqKIWZB9vtYsGdk8FJ+IJP8KIOCFaBb 5cbGGJScNNXxaJMgtMhHZLzeNbMBdF0jGFJHqtdwLr0PZ0CrpR7i4tHmcxWhIjtl XDKPdxkaa/iKgWIM4GyilvwwS4mZ1Yw9uTbQpV5PYpfvMrpqg/9ronpJfeFG3+Ct EfQI2ROarZrL3qcCRTnpOXpgeTRjB1TxUEbzR8JfXuGiBdaRyT2a -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:32 2026 by rpki-client