This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9NwmxibFHF3vbyRm849VslApZC8.cer File: 9NwmxibFHF3vbyRm849VslApZC8.cer (raw, json) Hash identifier: pqdZCO3MZop90ix32SJMDA8vzS73dEn5e7PIRmor8bc= Subject key identifier: F4:DC:26:C6:26:C5:1C:5D:EF:6F:24:66:F3:8F:55:B2:50:29:64:2F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE4341C0B1ED7F7C91A7C9521638FF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/90/0879d8-f216-45ab-bf87-23e1dadf106c/1/9NwmxibFHF3vbyRm849VslApZC8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/90/0879d8-f216-45ab-bf87-23e1dadf106c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:19:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210364 IP: 193.200.33.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:43:41:c0:b1:ed:7f:7c:91:a7:c9:52:16:38:ff Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f4dc26c626c51c5def6f2466f38f55b25029642f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:12:51:0f:dd:d0:4f:04:63:19:e4:42:b3:a5: f3:19:c5:61:f0:b1:16:4c:a9:83:30:0c:b5:b4:bd: fc:12:e8:d5:6e:d9:8f:03:8d:17:ef:cc:49:22:d6: c6:9a:17:59:df:39:71:49:4e:ea:73:c6:27:c3:36: 58:24:d6:9b:ec:b3:23:24:eb:80:e3:56:12:46:31: 52:62:d3:ed:73:af:1f:d7:c9:cc:5e:39:7a:a6:9c: 4c:7b:c3:fc:66:0e:45:17:ed:ec:7d:05:f8:01:7d: c9:b1:2d:cf:58:12:fc:4b:2b:ae:c0:41:93:9d:f8: 54:0a:d3:ff:c8:3f:b3:bf:e0:49:34:1d:2a:98:01: 91:77:68:fb:bb:a5:e6:c5:21:41:78:49:f7:7e:49: 4d:0d:cd:c1:cb:0a:1f:0a:f9:9f:21:1a:fa:81:46: 77:d1:25:58:76:54:db:0e:38:ea:90:7b:5e:63:46: 63:e7:fc:3e:28:9b:2c:e1:c9:ce:06:51:52:3c:b5: f5:55:20:8e:86:84:7f:3b:be:dc:3c:8f:f2:5c:59: 70:6b:dd:88:d4:01:72:d2:b5:26:67:70:d0:d9:1a: 47:57:e0:74:15:eb:fe:49:58:95:42:9d:de:48:e2: 55:1e:07:99:b2:48:95:84:57:a4:e9:db:d2:8f:37: 7c:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F4:DC:26:C6:26:C5:1C:5D:EF:6F:24:66:F3:8F:55:B2:50:29:64:2F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/0879d8-f216-45ab-bf87-23e1dadf106c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/90/0879d8-f216-45ab-bf87-23e1dadf106c/1/9NwmxibFHF3vbyRm849VslApZC8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.200.33.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210364 Signature Algorithm: sha256WithRSAEncryption 09:4e:77:42:6d:2b:31:46:ec:33:dc:09:8e:55:5c:d0:b0:2c: 3b:b3:95:1f:6e:fd:00:85:07:73:14:04:97:c3:54:9d:0a:b5: 21:df:d9:73:f0:c0:8d:e6:76:2e:0f:88:01:52:38:55:cb:36: f8:b0:66:29:32:08:67:64:91:29:a3:cf:cc:7a:06:40:ab:a7: 1c:96:20:15:7d:1c:5a:dc:fe:b8:9d:98:64:51:a4:64:b8:e9: db:81:73:2e:de:33:45:e8:57:97:d4:fa:d9:c5:33:db:cd:9c: 34:d5:8f:aa:19:ca:03:09:56:1f:aa:b1:27:ae:4d:06:cd:63: 5e:33:3f:45:75:f2:b0:c2:5b:5c:a5:ed:65:7d:58:b5:54:f2: d6:6a:09:98:62:e4:23:e8:7f:f6:2c:14:0d:c4:ed:7f:70:f7: 62:05:4d:c1:ae:82:0d:c4:1a:1b:72:ad:a4:f6:8b:6d:a7:04: 62:02:9d:d5:0c:f9:f8:d3:c0:14:c5:0a:b4:c8:b8:b2:9b:36: ff:06:91:3a:58:e9:38:53:75:86:16:1f:b3:06:d6:3b:0e:96: e7:d7:1d:c1:f3:2b:49:24:7e:01:90:e3:8a:97:8c:8c:15:81: bf:f0:5f:66:64:fa:de:bf:8d:bf:a8:3f:32:5f:66:fd:57:b7: 3f:2a:12:9f -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt87kNBwLHtf3yRp8lSFjj/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNGRjMjZjNjI2YzUxYzVkZWY2ZjI0NjZmMzhmNTViMjUwMjk2NDJmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnhJRD93QTwRjGeRCs6XzGcVh8LEW TKmDMAy1tL38EujVbtmPA40X78xJItbGmhdZ3zlxSU7qc8YnwzZYJNab7LMjJOuA 41YSRjFSYtPtc68f18nMXjl6ppxMe8P8Zg5FF+3sfQX4AX3JsS3PWBL8SyuuwEGT nfhUCtP/yD+zv+BJNB0qmAGRd2j7u6XmxSFBeEn3fklNDc3BywofCvmfIRr6gUZ3 0SVYdlTbDjjqkHteY0Zj5/w+KJss4cnOBlFSPLX1VSCOhoR/O77cPI/yXFlwa92I 1AFy0rUmZ3DQ2RpHV+B0Fev+SViVQp3eSOJVHgeZskiVhFek6dvSjzd8RwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFPTcJsYmxRxd728kZvOPVbJQKWQvMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkwLzA4Nzlk OC1mMjE2LTQ1YWItYmY4Ny0yM2UxZGFkZjEwNmMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTAvMDg3OWQ4 LWYyMTYtNDVhYi1iZjg3LTIzZTFkYWRmMTA2Yy8xLzlOd214aWJGSEYzdmJ5Um04 NDlWc2xBcFpDOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwcghMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwM1vDANBgkqhkiG9w0BAQsFAAOCAQEACU53Qm0rMUbsM9wJjlVc0LAsO7OVH279 AIUHcxQEl8NUnQq1Id/Zc/DAjeZ2Lg+IAVI4Vcs2+LBmKTIIZ2SRKaPPzHoGQKun HJYgFX0cWtz+uJ2YZFGkZLjp24FzLt4zRehXl9T62cUz282cNNWPqhnKAwlWH6qx J65NBs1jXjM/RXXysMJbXKXtZX1YtVTy1moJmGLkI+h/9iwUDcTtf3D3YgVNwa6C DcQaG3KtpPaLbacEYgKd1Qz5+NPAFMUKtMi4sps2/waROljpOFN1hhYfswbWOw6W 59cdwfMrSSR+AZDjipeMjBWBv/BfZmT63r+Nv6g/Ml9m/Ve3PyoSnw== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:18 2026 by rpki-client