This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9kPwNSrfyYrIgBuU5aAH5wcLB6w.cer File: 9kPwNSrfyYrIgBuU5aAH5wcLB6w.cer (raw, json) Hash identifier: 7Uetyp9q7OD3AKIp2LPvLDW6CkcukqMSENCAqplK724= Subject key identifier: F6:43:F0:35:2A:DF:C9:8A:C8:80:1B:94:E5:A0:07:E7:07:0B:07:AC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A379FFB20F8F1FD96BAC775F700ABE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ab/6ac77a-4a5f-4d39-8cfa-005fc07cedc8/1/9kPwNSrfyYrIgBuU5aAH5wcLB6w.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ab/6ac77a-4a5f-4d39-8cfa-005fc07cedc8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 8930 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:79:ff:b2:0f:8f:1f:d9:6b:ac:77:5f:70:0a:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f643f0352adfc98ac8801b94e5a007e7070b07ac Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bb:86:3e:f8:8e:77:92:4d:8e:1c:bf:72:ca:18: 7b:c7:0c:96:d8:81:b2:92:7b:58:bf:89:4b:d1:6c: 47:9a:ef:1c:27:c0:de:04:08:4b:d4:5a:fb:17:f0: 30:e7:bb:3e:7d:94:44:da:10:07:94:46:f2:d7:3b: 25:22:77:54:34:a6:19:aa:43:c9:3c:59:ac:09:49: 41:b9:b1:51:d7:8d:45:ed:ea:ff:b8:66:d9:4a:97: aa:96:c7:e0:8f:fe:15:92:0b:17:a3:61:d6:a8:35: 48:31:d3:09:ed:30:1b:d3:58:01:19:7f:cc:3c:e2: 43:52:89:80:a0:bb:9a:95:f7:19:c5:3c:9d:ea:45: d9:bf:03:bc:78:e4:f8:f0:e5:b6:60:77:0d:8c:35: d7:6b:0c:98:9c:f3:95:7e:e0:b5:12:2c:22:86:dd: d6:7f:ec:21:27:57:82:a2:7c:eb:1b:50:58:bc:d5: c8:27:d5:40:7e:57:82:cd:c9:ac:bc:6e:a5:d4:1a: 65:5c:78:ee:73:34:e9:4a:8e:c7:79:99:98:ec:3a: 7e:e1:30:79:34:0e:a3:9b:18:a2:49:8d:d9:11:cb: ec:ba:eb:29:b8:8d:21:15:a6:23:0d:d7:19:c3:a3: 1b:2f:cd:36:26:e6:87:56:08:91:2b:37:9d:4f:e8: 9c:23 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:43:F0:35:2A:DF:C9:8A:C8:80:1B:94:E5:A0:07:E7:07:0B:07:AC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6ac77a-4a5f-4d39-8cfa-005fc07cedc8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ab/6ac77a-4a5f-4d39-8cfa-005fc07cedc8/1/9kPwNSrfyYrIgBuU5aAH5wcLB6w.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 8930 Signature Algorithm: sha256WithRSAEncryption b1:8c:d2:b8:99:f4:96:1a:5c:c9:df:4f:f9:97:50:f1:f3:de: 59:9d:3b:ef:b7:fb:35:02:a7:cb:f2:ef:ba:a7:db:c2:dc:6b: 58:90:c9:b7:1d:90:3a:6b:ac:f5:9a:a3:bb:d6:7d:6b:61:ac: a5:06:11:c0:76:a7:63:59:65:7b:66:f9:95:72:d3:18:ca:a2: 0d:0a:d2:c7:14:d0:41:f8:ea:7a:45:75:c5:01:e2:4f:1d:be: 24:48:9f:b7:ce:30:7a:33:bd:f4:29:6e:1f:5e:7c:f0:4b:d7: 13:07:74:f7:ba:f9:ce:f6:50:9a:51:b7:7f:a4:45:10:ab:84: 9f:3a:42:ca:b0:be:dc:b8:96:53:0c:66:34:0f:51:9d:8a:ed: c2:ee:d2:b8:2f:e0:ae:a1:af:aa:55:32:f2:35:0f:86:7a:e6: b3:bc:c1:6b:19:84:57:92:5b:e4:26:be:18:88:f4:7c:fc:95: 1e:88:21:ef:3f:03:48:98:43:d8:5f:61:0f:4a:1f:76:7e:3f: e6:e2:9f:01:21:13:4a:63:99:95:bf:47:7f:48:7c:d8:50:89: 81:60:8d:1c:cb:2c:df:16:62:4c:cb:3b:72:a1:fb:90:ea:ab: a4:f3:16:e6:0c:3d:3b:0c:b0:2d:e8:04:5d:f7:51:68:02:0a: 22:84:84:ca -----BEGIN CERTIFICATE----- MIIFcjCCBFqgAwIBAgISAZt4o3n/sg+PH9lrrHdfcAq+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNjQzZjAzNTJhZGZjOThhYzg4MDFiOTRlNWEwMDdlNzA3MGIwN2FjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu4Y++I53kk2OHL9yyhh7xwyW2IGy kntYv4lL0WxHmu8cJ8DeBAhL1Fr7F/Aw57s+fZRE2hAHlEby1zslIndUNKYZqkPJ PFmsCUlBubFR141F7er/uGbZSpeqlsfgj/4VkgsXo2HWqDVIMdMJ7TAb01gBGX/M POJDUomAoLualfcZxTyd6kXZvwO8eOT48OW2YHcNjDXXawyYnPOVfuC1Eiwiht3W f+whJ1eConzrG1BYvNXIJ9VAfleCzcmsvG6l1BplXHjuczTpSo7HeZmY7Dp+4TB5 NA6jmxiiSY3ZEcvsuuspuI0hFaYjDdcZw6MbL802JuaHVgiRKzedT+icIwIDAQAB o4ICfjCCAnowHQYDVR0OBBYEFPZD8DUq38mKyIAblOWgB+cHCwesMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FiLzZhYzc3 YS00YTVmLTRkMzktOGNmYS0wMDVmYzA3Y2VkYzgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWIvNmFjNzdh LTRhNWYtNGQzOS04Y2ZhLTAwNWZjMDdjZWRjOC8xLzlrUHdOU3JmeVlySWdCdVU1 YUFINXdjTEI2dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBkGCCsGAQUF BwEIAQH/BAowCKAGMAQCAiLiMA0GCSqGSIb3DQEBCwUAA4IBAQCxjNK4mfSWGlzJ 30/5l1Dx895ZnTvvt/s1AqfL8u+6p9vC3GtYkMm3HZA6a6z1mqO71n1rYaylBhHA dqdjWWV7ZvmVctMYyqINCtLHFNBB+Op6RXXFAeJPHb4kSJ+3zjB6M730KW4fXnzw S9cTB3T3uvnO9lCaUbd/pEUQq4SfOkLKsL7cuJZTDGY0D1Gdiu3C7tK4L+Cuoa+q VTLyNQ+GeuazvMFrGYRXklvkJr4YiPR8/JUeiCHvPwNImEPYX2EPSh92fj/m4p8B IRNKY5mVv0d/SHzYUImBYI0cyyzfFmJMyztyofuQ6quk8xbmDD07DLAt6ARd91Fo AgoihITK -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:46 2026 by rpki-client