This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9bMQ6dROhHDWzYAJWQZssA8pHvo.cer File: 9bMQ6dROhHDWzYAJWQZssA8pHvo.cer (raw, json) Hash identifier: UzJ5v7KeZ2saZ50GneEXceXiCMSOclBdew+66bvjrd4= Subject key identifier: F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7910CD666C8A7E1AD2837877A50D379A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:22 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 21308 IP: 193.239.142.0/23 IP: 2001:67c:e00::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:cd:66:6c:8a:7e:1a:d2:83:78:77:a5:0d:37:9a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:22 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f5b310e9d44e8470d6cd800959066cb00f291efa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:ff:4e:78:20:7e:b1:da:7c:47:fb:b1:46:b5: a5:b8:b0:16:1c:82:f1:c1:68:f9:68:ee:ea:05:44: 18:f4:61:09:32:95:2e:80:25:eb:4b:16:e1:96:9d: 08:ab:dd:43:a5:77:3a:a0:c9:88:ea:b4:7a:8e:e8: 6f:ef:e0:26:ff:eb:03:28:57:76:11:5e:16:4a:ee: ab:eb:a7:3b:4e:ce:83:f2:d7:d7:68:d2:c3:9b:75: 27:22:bf:f8:72:11:d4:a8:8a:9e:74:7c:4a:1e:1d: f9:5f:ad:35:99:35:22:9e:2e:88:ef:85:b6:3a:54: b7:f5:c1:7a:21:bd:48:ca:9d:1e:a7:a9:a1:b6:9a: 0e:00:6a:1a:43:76:8b:65:35:6a:3d:d5:b7:f6:43: c8:9b:4a:84:39:21:fe:21:f2:1d:ae:44:9d:97:9d: 6d:bd:74:b5:50:6a:fd:80:12:a3:68:c8:a6:87:a2: 99:60:bf:ea:dc:b3:2d:f4:6c:c1:77:32:07:3f:97: c8:34:a6:e0:93:c3:66:bb:b6:e2:25:e4:6e:24:b5: 36:cc:7c:2d:e3:38:f5:31:b2:b7:09:f9:e4:f3:41: 1f:c2:42:84:0f:6d:87:8d:a1:c8:98:07:29:be:32: 38:c2:5f:14:1f:e4:47:7b:ce:27:0c:ea:b2:b3:0e: bf:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F5:B3:10:E9:D4:4E:84:70:D6:CD:80:09:59:06:6C:B0:0F:29:1E:FA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/f48de1-9f33-4f0a-8676-e836eb3d2f1f/1/9bMQ6dROhHDWzYAJWQZssA8pHvo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.239.142.0/23 IPv6: 2001:67c:e00::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 21308 Signature Algorithm: sha256WithRSAEncryption 4e:26:5a:58:df:90:32:44:0b:14:37:c3:1d:6f:16:70:70:50: a3:4f:f3:35:1e:ea:96:8c:d7:ba:69:af:ac:78:e4:5e:2b:e4: 13:a0:a6:b2:0a:4f:eb:a9:09:c8:29:4f:83:65:6a:4e:f9:90: 50:05:11:79:fc:4a:ea:31:0c:e1:6e:22:ee:bb:49:c5:13:88: e7:7d:8b:ec:80:e0:da:4b:c6:f2:f2:8e:2d:e0:7e:05:c2:39: 15:0b:cc:40:db:58:e0:03:ac:06:d6:bb:7c:b8:1a:58:b2:f5: 32:7f:7f:d3:2a:ae:4c:ba:79:44:d0:48:ed:ee:e2:b0:4b:ef: 83:49:f9:7b:6e:57:a6:fa:3d:a5:57:e5:45:c0:e6:d6:0a:7e: e5:c3:26:b7:d9:14:26:cc:85:c7:47:a5:41:7d:a9:b8:aa:c5: e9:9d:85:c5:7b:14:29:02:2a:a8:ec:f0:79:34:e0:6d:8b:38: 2c:5c:f9:91:12:bc:2b:be:6f:1e:3b:71:65:26:2e:75:58:fc: 2e:03:3b:ed:45:74:c5:9d:e7:d1:e5:2d:c9:5b:1d:38:46:d8: fe:22:76:c3:c1:ae:e7:9f:6d:de:57:e3:1f:2b:79:fd:88:91: 12:4a:c4:b1:60:3a:f1:4e:d4:9c:b5:48:8e:46:43:98:03:72: cd:51:15:45 -----BEGIN CERTIFICATE----- MIIFpDCCBIygAwIBAgISAZt5EM1mbIp+GtKDeHelDTeaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODIyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNWIzMTBlOWQ0NGU4NDcwZDZjZDgwMDk1OTA2NmNiMDBmMjkxZWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx/9OeCB+sdp8R/uxRrWluLAWHILx wWj5aO7qBUQY9GEJMpUugCXrSxbhlp0Iq91DpXc6oMmI6rR6juhv7+Am/+sDKFd2 EV4WSu6r66c7Ts6D8tfXaNLDm3UnIr/4chHUqIqedHxKHh35X601mTUini6I74W2 OlS39cF6Ib1Iyp0ep6mhtpoOAGoaQ3aLZTVqPdW39kPIm0qEOSH+IfIdrkSdl51t vXS1UGr9gBKjaMimh6KZYL/q3LMt9GzBdzIHP5fINKbgk8Nmu7biJeRuJLU2zHwt 4zj1MbK3Cfnk80EfwkKED22HjaHImAcpvjI4wl8UH+RHe84nDOqysw6/zQIDAQAB o4ICsDCCAqwwHQYDVR0OBBYEFPWzEOnUToRw1s2ACVkGbLAPKR76MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE4L2Y0OGRl MS05ZjMzLTRmMGEtODY3Ni1lODM2ZWIzZDJmMWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgvZjQ4ZGUx LTlmMzMtNGYwYS04Njc2LWU4MzZlYjNkMmYxZi8xLzliTVE2ZFJPaEhEV3pZQUpX UVpzc0E4cEh2by5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQBwe+OMA8EAgACMAkDBwAgAQZ8DgAwGQYIKwYB BQUHAQgBAf8ECjAIoAYwBAICUzwwDQYJKoZIhvcNAQELBQADggEBAE4mWljfkDJE CxQ3wx1vFnBwUKNP8zUe6paM17ppr6x45F4r5BOgprIKT+upCcgpT4Nlak75kFAF EXn8SuoxDOFuIu67ScUTiOd9i+yA4NpLxvLyji3gfgXCORULzEDbWOADrAbWu3y4 Gliy9TJ/f9Mqrky6eUTQSO3u4rBL74NJ+XtuV6b6PaVX5UXA5tYKfuXDJrfZFCbM hcdHpUF9qbiqxemdhcV7FCkCKqjs8Hk04G2LOCxc+ZESvCu+bx47cWUmLnVY/C4D O+1FdMWd59HlLclbHThG2P4idsPBruefbd5X4x8ref2IkRJKxLFgOvFO1Jy1SI5G Q5gDcs1RFUU= -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:02 2026 by rpki-client