This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.cer File: 9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.cer (raw, json) Hash identifier: oyLl9BeBONYOg45tUrxK8o331ZwosGiL3/W8W9vr6HE= Subject key identifier: F6:95:4D:01:03:A7:A3:E6:52:35:4A:74:48:9F:86:DA:F9:A1:A5:9D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B363FE013FE61C89BD0B0F62E439B57 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 58265 IP: 185.200.224.0/22 IP: 193.138.156.0/22 IP: 193.169.184.0/23 IP: 2a0a:b940::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:3f:e0:13:fe:61:c8:9b:d0:b0:f6:2e:43:9b:57 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=f6954d0103a7a3e652354a74489f86daf9a1a59d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:81:87:a9:1a:78:c4:db:b2:ee:a0:f8:aa:a8: 2f:e1:cf:e8:78:ab:31:2f:a1:e4:f1:6b:64:5b:81: dd:90:2d:bf:2d:b6:85:25:a0:fc:62:7b:a1:15:74: 10:4c:c3:3c:2f:0c:e0:51:0d:96:b3:20:ed:fc:64: 2e:45:60:c4:8d:bc:d2:c8:3b:e0:f1:f0:c3:6a:fe: 2b:3a:ed:bf:1b:f3:a6:2d:fe:a6:8c:e0:c8:93:20: 6e:3f:68:5d:4f:4a:57:28:50:88:2b:eb:06:d9:31: 6b:5f:2b:b5:12:7d:89:20:02:d7:af:b6:18:d1:09: 8a:29:b4:0a:90:6a:fb:ef:b0:35:0b:df:f4:81:51: 22:fe:a0:b3:ec:a8:a5:ec:bf:55:9d:59:70:0c:ec: 76:07:6d:66:42:13:3c:05:ed:2b:7c:3a:07:58:6b: 66:3a:94:fe:d9:4f:17:70:9e:e6:c5:33:af:a6:b6: 3c:29:e4:a3:b3:7e:f4:0a:67:f2:7d:71:d5:04:4e: 5f:47:e3:1c:fb:83:52:02:91:bf:ce:c8:b3:18:cc: 44:74:d6:52:87:43:b8:7f:dc:b4:ae:6a:29:4d:2c: 15:72:94:93:53:5b:69:87:dc:9a:91:cf:18:d5:cb: cc:a6:6c:e3:57:67:39:45:e3:dc:24:1b:13:83:c0: a6:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F6:95:4D:01:03:A7:A3:E6:52:35:4A:74:48:9F:86:DA:F9:A1:A5:9D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e3/940550-daab-4c9d-8440-f8c9e0962354/1/9pVNAQOno-ZSNUp0SJ-G2vmhpZ0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.200.224.0/22 193.138.156.0/22 193.169.184.0/23 IPv6: 2a0a:b940::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 58265 Signature Algorithm: sha256WithRSAEncryption 4b:d3:3e:a2:35:3c:23:1a:97:34:04:34:43:ac:e5:94:9e:c5: 8a:7c:9a:75:bb:fc:56:64:d5:73:15:ac:58:45:9b:1c:76:d8: 79:80:73:1a:78:42:1b:75:ef:e4:4c:b5:1d:1e:e5:dc:5a:09: b9:3e:54:de:1f:ff:3e:1a:e9:c2:65:10:ef:cd:c4:85:4f:fd: d8:0b:95:e5:19:cd:33:e2:ce:5a:18:fa:b1:f5:9a:36:af:b5: 98:6b:f1:7a:6c:0d:b2:3a:00:8f:82:3a:ac:7a:ec:4e:fe:18: 59:e6:ce:63:b9:c3:21:33:46:41:8f:da:0f:ca:87:df:b2:2c: 1d:58:eb:58:f7:3f:63:c1:37:ef:76:85:7b:df:a8:d2:a7:55: e2:a2:34:78:26:1f:2a:57:4d:98:41:fb:2d:d2:64:de:00:2e: 0a:7b:6a:1a:4d:1a:f8:b1:41:02:94:88:5e:4f:c7:37:79:67: 86:fe:14:58:a7:a5:37:07:c5:75:7c:1b:65:a8:2c:e2:cd:49: 63:be:8a:1b:98:de:b9:b2:75:b9:32:bf:9a:b0:9f:fb:48:46: fe:91:75:33:6c:0c:86:b3:66:2c:eb:41:3e:cb:43:97:81:b9: ea:26:30:11:fd:c5:e7:d7:38:13:01:2f:d0:cd:ad:b9:cd:f9: 3b:e2:b4:45 -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZt7Nj/gE/5hyJvQsPYuQ5tXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmNjk1NGQwMTAzYTdhM2U2NTIzNTRhNzQ0ODlmODZkYWY5YTFhNTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIGHqRp4xNuy7qD4qqgv4c/oeKsx L6Hk8WtkW4HdkC2/LbaFJaD8YnuhFXQQTMM8LwzgUQ2WsyDt/GQuRWDEjbzSyDvg 8fDDav4rOu2/G/OmLf6mjODIkyBuP2hdT0pXKFCIK+sG2TFrXyu1En2JIALXr7YY 0QmKKbQKkGr777A1C9/0gVEi/qCz7Kil7L9VnVlwDOx2B21mQhM8Be0rfDoHWGtm OpT+2U8XcJ7mxTOvprY8KeSjs370CmfyfXHVBE5fR+Mc+4NSApG/zsizGMxEdNZS h0O4f9y0rmopTSwVcpSTU1tph9yakc8Y1cvMpmzjV2c5RePcJBsTg8CmeQIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFPaVTQEDp6PmUjVKdEifhtr5oaWdMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UzLzk0MDU1 MC1kYWFiLTRjOWQtODQ0MC1mOGM5ZTA5NjIzNTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTMvOTQwNTUw LWRhYWItNGM5ZC04NDQwLWY4YzllMDk2MjM1NC8xLzlwVk5BUU9uby1aU05VcDBT Si1HMnZtaHBaMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQCucjgAwQCwYqcAwQBwam4MA0EAgACMAcDBQMq CrlAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDjmTANBgkqhkiG9w0BAQsFAAOC AQEAS9M+ojU8IxqXNAQ0Q6zllJ7Finyadbv8VmTVcxWsWEWbHHbYeYBzGnhCG3Xv 5Ey1HR7l3FoJuT5U3h//PhrpwmUQ783EhU/92AuV5RnNM+LOWhj6sfWaNq+1mGvx emwNsjoAj4I6rHrsTv4YWebOY7nDITNGQY/aD8qH37IsHVjrWPc/Y8E373aFe9+o 0qdV4qI0eCYfKldNmEH7LdJk3gAuCntqGk0a+LFBApSIXk/HN3lnhv4UWKelNwfF dXwbZags4s1JY76KG5jeubJ1uTK/mrCf+0hG/pF1M2wMhrNmLOtBPstDl4G56iYw Ef3F59c4EwEv0M2tuc35O+K0RQ== -----END CERTIFICATE-----Generated at Mon Feb 9 20:55:28 2026 by rpki-client