This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9hUWPY_cRSP7uCJN89wgese94ck.cer File: 9hUWPY_cRSP7uCJN89wgese94ck.cer (raw, json) Hash identifier: 3AmfjUTmHFd8NvEdzUtTS2ypwBpujPXu+ZA1wnJBWPw= Subject key identifier: F6:15:16:3D:8F:DC:45:23:FB:B8:22:4D:F3:DC:20:7A:C7:BD:E1:C9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA46B236A995AC51104D4F13AE1ED80 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e7/05b659-d19b-43cd-9fcc-d539857e2e2f/1/9hUWPY_cRSP7uCJN89wgese94ck.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e7/05b659-d19b-43cd-9fcc-d539857e2e2f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:18:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 3287 AS: 213691 IP: 83.143.152.0/23 IP: 91.213.213.0/24 IP: 185.238.196.0/23 IP: 193.106.232.0/22 IP: 217.72.8.0/22 IP: 2a0c:bc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:6b:23:6a:99:5a:c5:11:04:d4:f1:3a:e1:ed:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f615163d8fdc4523fbb8224df3dc207ac7bde1c9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:00:0b:77:8b:41:b4:a8:1c:ce:4d:22:7f:92: 80:77:85:52:53:7e:8f:5d:5e:e7:6e:fd:d3:b9:e2: 9f:27:d0:ce:81:41:11:07:0a:3a:49:84:8b:f1:b8: 3f:94:cc:a3:73:89:a7:9c:28:b0:38:11:cb:b7:0a: 54:28:da:67:38:0b:4c:b4:1a:9f:da:61:dc:30:0e: 8f:b8:1e:12:e2:e6:ec:95:2c:c1:9c:5b:89:7c:d5: 49:87:ab:12:5e:f5:1e:23:e8:bd:00:b5:0a:82:61: b5:fa:94:1c:6c:48:60:2e:c2:11:7c:13:5b:94:99: cd:12:f5:bc:d3:b1:0e:09:2a:a1:88:b7:ff:78:73: 59:4b:03:f3:ba:9e:80:cb:19:f5:16:7a:34:71:48: 87:a6:91:8b:9d:3f:65:59:d4:60:57:25:6b:fe:5e: a8:38:f8:c3:4c:89:25:59:45:5e:6e:7f:f2:8b:00: 97:9d:ce:b9:5e:77:bd:69:98:5f:86:2f:26:83:ba: 21:26:de:60:a5:f3:0b:e9:93:d3:dd:55:84:1a:39: df:96:f9:29:4b:bd:3e:aa:56:cb:84:ab:5f:6f:9b: 6e:74:20:15:61:4f:34:ee:bc:ac:9d:f9:1c:ee:d9: d8:76:41:73:c1:d3:00:e6:43:16:33:da:2d:76:bb: 64:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:15:16:3D:8F:DC:45:23:FB:B8:22:4D:F3:DC:20:7A:C7:BD:E1:C9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/05b659-d19b-43cd-9fcc-d539857e2e2f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/05b659-d19b-43cd-9fcc-d539857e2e2f/1/9hUWPY_cRSP7uCJN89wgese94ck.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.143.152.0/23 91.213.213.0/24 185.238.196.0/23 193.106.232.0/22 217.72.8.0/22 IPv6: 2a0c:bc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 3287 213691 Signature Algorithm: sha256WithRSAEncryption 6c:d1:30:75:52:c7:bd:7a:9c:30:99:3a:df:67:a6:b2:63:1d: 63:6d:8e:52:ab:3e:24:86:68:1c:5a:30:a8:2c:b5:cc:3d:50: e4:1d:2c:6d:5a:e5:d1:5d:cb:d4:88:09:f0:3c:f4:8d:4a:f9: 27:92:7f:32:21:b2:30:b2:ac:ea:f9:aa:ec:c9:c7:4c:a2:c3: a3:62:d4:2f:db:79:7e:c4:e3:77:1e:7d:24:84:4f:11:52:76: 60:5d:ef:09:91:08:d5:1e:24:1a:e5:01:35:c8:f4:45:12:53: 11:b8:50:f1:d1:39:8f:68:10:7b:17:8b:b7:30:57:ca:e3:c2: ad:9b:a5:94:0e:94:1f:ca:7a:47:0b:34:83:02:37:c2:ff:c8: ec:51:b2:22:8c:e4:4b:e9:15:26:02:1d:90:61:4c:13:f0:88: 31:46:cf:e4:0e:c5:56:a4:8c:69:1f:af:1a:3d:b5:47:51:be: ff:0a:7c:9d:52:64:94:f4:8f:71:d6:b7:72:82:ee:ee:b8:d4: c3:49:67:57:1d:1f:5d:29:9f:e1:f7:e2:ea:36:e7:0a:88:65: 55:1e:36:fd:4c:0a:e3:f7:0f:5d:1c:42:97:0e:5b:d4:e4:31: 32:a0:75:35:c7:5d:cb:6f:ec:96:96:9a:53:71:d9:3e:77:f1: 0f:38:20:c7 -----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgISAZt7pGsjaplaxREE1PE64e2AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNjE1MTYzZDhmZGM0NTIzZmJiODIyNGRmM2RjMjA3YWM3YmRlMWM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtgALd4tBtKgczk0if5KAd4VSU36P XV7nbv3TueKfJ9DOgUERBwo6SYSL8bg/lMyjc4mnnCiwOBHLtwpUKNpnOAtMtBqf 2mHcMA6PuB4S4ubslSzBnFuJfNVJh6sSXvUeI+i9ALUKgmG1+pQcbEhgLsIRfBNb lJnNEvW807EOCSqhiLf/eHNZSwPzup6Ayxn1Fno0cUiHppGLnT9lWdRgVyVr/l6o OPjDTIklWUVebn/yiwCXnc65Xne9aZhfhi8mg7ohJt5gpfML6ZPT3VWEGjnflvkp S70+qlbLhKtfb5tudCAVYU807rysnfkc7tnYdkFzwdMA5kMWM9otdrtkMQIDAQAB o4ICyzCCAscwHQYDVR0OBBYEFPYVFj2P3EUj+7giTfPcIHrHveHJMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U3LzA1YjY1 OS1kMTliLTQzY2QtOWZjYy1kNTM5ODU3ZTJlMmYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcvMDViNjU5 LWQxOWItNDNjZC05ZmNjLWQ1Mzk4NTdlMmUyZi8xLzloVVdQWV9jUlNQN3VDSk44 OXdnZXNlOTRjay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUF BwEHAQH/BDcwNTAkBAIAATAeAwQBU4+YAwQAW9XVAwQBue7EAwQCwWroAwQC2UgI MA0EAgACMAcDBQMqDAvAMB4GCCsGAQUFBwEIAQH/BA8wDaALMAkCAgzXAgMDQrsw DQYJKoZIhvcNAQELBQADggEBAGzRMHVSx716nDCZOt9nprJjHWNtjlKrPiSGaBxa MKgstcw9UOQdLG1a5dFdy9SICfA89I1K+SeSfzIhsjCyrOr5quzJx0yiw6Ni1C/b eX7E43cefSSETxFSdmBd7wmRCNUeJBrlATXI9EUSUxG4UPHROY9oEHsXi7cwV8rj wq2bpZQOlB/KekcLNIMCN8L/yOxRsiKM5EvpFSYCHZBhTBPwiDFGz+QOxVakjGkf rxo9tUdRvv8KfJ1SZJT0j3HWt3KC7u641MNJZ1cdH10pn+H34uo25wqIZVUeNv1M CuP3D10cQpcOW9TkMTKgdTXHXctv7JaWmlNx2T538Q84IMc= -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:20 2026 by rpki-client