This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/A1DfePx4WBNyTsZmSN-bSU-bjac.cer File: A1DfePx4WBNyTsZmSN-bSU-bjac.cer (raw, json) Hash identifier: Czn1nEK9hAd+ukqDMAgzXeT8aFqmJpVK35iFn0pxJzQ= Subject key identifier: 03:50:DF:78:FC:78:58:13:72:4E:C6:66:48:DF:9B:49:4F:9B:8D:A7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834E25CD5BF764D74252D84FD25405A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/A1DfePx4WBNyTsZmSN-bSU-bjac.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 59905 IP: 91.220.77.0/24 IP: 147.78.136.0/22 IP: 185.49.220.0/22 IP: 185.92.124.0/22 IP: 2a03:8b20::/32 IP: 2a04:b980::/29 IP: 2a09:2440::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e2:5c:d5:bf:76:4d:74:25:2d:84:fd:25:40:5a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0350df78fc785813724ec66648df9b494f9b8da7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:c6:88:23:07:f8:e2:f9:e6:12:bb:5f:1e:7d: 50:55:ef:81:a1:05:25:2a:ad:c6:91:6a:ec:92:c5: 74:96:94:ec:99:0c:92:23:1e:5f:bb:96:0f:96:5d: 1e:bc:52:94:ab:40:26:04:a9:4e:74:ec:55:4f:26: 74:55:9f:a8:2d:41:0f:2b:84:e6:1c:af:7e:d9:61: 07:77:c0:40:90:6f:16:9d:f4:dc:89:69:81:0b:a2: 57:2d:d4:6e:0f:b0:0e:bc:0a:ce:9d:9c:13:24:c0: 40:fa:54:c0:e7:04:0f:3b:07:5c:97:83:be:56:62: 5e:f4:8f:c3:66:6d:af:b8:31:41:af:cc:7e:0e:cf: 80:7b:82:85:3e:30:6e:b7:83:cb:41:93:8a:29:a2: b6:2c:11:5c:f7:e2:33:93:4e:80:0b:01:d8:7e:a5: 2f:47:25:e1:39:b7:99:83:b7:5b:54:e3:1e:88:9d: 2a:75:a6:27:d4:87:c8:46:a3:f0:e6:ed:fd:1a:07: 1e:0e:b1:9b:d8:0e:08:41:4f:25:7f:6a:2e:4b:0f: fd:8b:55:55:fb:56:68:cd:52:03:c3:2f:4b:bb:a2: 41:bd:f6:a3:eb:16:6a:d5:b6:4f:bd:be:ab:e5:d7: d8:50:d6:b4:d8:d8:e8:e0:a2:08:d3:c7:c4:0c:0f: 5d:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:50:DF:78:FC:78:58:13:72:4E:C6:66:48:DF:9B:49:4F:9B:8D:A7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/ab586e-4b2a-47f6-ace8-d292ab7ce9fa/1/A1DfePx4WBNyTsZmSN-bSU-bjac.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.220.77.0/24 147.78.136.0/22 185.49.220.0/22 185.92.124.0/22 IPv6: 2a03:8b20::/32 2a04:b980::/29 2a09:2440::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 59905 Signature Algorithm: sha256WithRSAEncryption 32:0f:b8:01:29:65:da:46:c1:ea:03:82:fe:2c:c1:c6:c6:fe: 71:71:0b:c6:d4:56:a4:85:dd:03:ab:34:55:77:a6:22:68:24: 7e:96:d3:93:e6:4b:2d:07:77:cd:67:a9:c8:e5:25:76:f5:b1: 8d:b1:34:69:72:6d:59:d0:94:2d:92:d8:e3:07:4a:c3:54:20: de:d2:50:33:9f:4f:2a:86:5d:c7:a9:f7:d8:4f:49:fe:f4:bf: 26:e3:13:95:ad:f3:c3:3b:e2:99:7b:ed:b2:65:ac:98:2e:4d: c0:e4:3f:62:73:90:49:23:a1:08:40:df:83:72:e9:0c:21:4b: 26:79:1a:c3:2a:ac:95:7b:3e:9a:c1:0f:61:58:64:09:64:c4: ae:5f:53:53:42:04:51:e4:ac:fe:96:08:51:29:0c:0e:59:d2: 80:3b:ea:f7:cf:d8:52:bb:9a:29:0a:a9:83:7b:b0:d9:92:1e: 58:1d:9d:35:dc:c5:b7:4f:d1:45:61:70:2d:24:08:98:78:59: 9d:dc:ac:93:65:97:8c:33:54:0e:95:06:37:8a:48:73:6f:24: 29:c4:f6:2c:8f:69:15:fa:d8:a6:7d:03:dc:72:e4:d3:40:44: 8b:ea:98:94:ab:12:6f:17:b6:2f:85:be:d9:d3:b0:1f:f4:fc: 8a:6e:38:1f -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgISAZt4NOJc1b92TXQlLYT9JUBaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzUwZGY3OGZjNzg1ODEzNzI0ZWM2NjY0OGRmOWI0OTRmOWI4ZGE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtMaIIwf44vnmErtfHn1QVe+BoQUl Kq3GkWrsksV0lpTsmQySIx5fu5YPll0evFKUq0AmBKlOdOxVTyZ0VZ+oLUEPK4Tm HK9+2WEHd8BAkG8WnfTciWmBC6JXLdRuD7AOvArOnZwTJMBA+lTA5wQPOwdcl4O+ VmJe9I/DZm2vuDFBr8x+Ds+Ae4KFPjBut4PLQZOKKaK2LBFc9+Izk06ACwHYfqUv RyXhObeZg7dbVOMeiJ0qdaYn1IfIRqPw5u39GgceDrGb2A4IQU8lf2ouSw/9i1VV +1ZozVIDwy9Lu6JBvfaj6xZq1bZPvb6r5dfYUNa02Njo4KII08fEDA9d2wIDAQAB o4ICzzCCAsswHQYDVR0OBBYEFANQ33j8eFgTck7GZkjfm0lPm42nMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFiL2FiNTg2 ZS00YjJhLTQ3ZjYtYWNlOC1kMjkyYWI3Y2U5ZmEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIvYWI1ODZl LTRiMmEtNDdmNi1hY2U4LWQyOTJhYjdjZTlmYS8xL0ExRGZlUHg0V0JOeVRzWm1T Ti1iU1UtYmphYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CME4GCCsGAQUF BwEHAQH/BD8wPTAeBAIAATAYAwQAW9xNAwQCk06IAwQCuTHcAwQCuVx8MBsEAgAC MBUDBQAqA4sgAwUDKgS5gAMFAyoJJEAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQID AOoBMA0GCSqGSIb3DQEBCwUAA4IBAQAyD7gBKWXaRsHqA4L+LMHGxv5xcQvG1Fak hd0DqzRVd6YiaCR+ltOT5kstB3fNZ6nI5SV29bGNsTRpcm1Z0JQtktjjB0rDVCDe 0lAzn08qhl3HqffYT0n+9L8m4xOVrfPDO+KZe+2yZayYLk3A5D9ic5BJI6EIQN+D cukMIUsmeRrDKqyVez6awQ9hWGQJZMSuX1NTQgRR5Kz+lghRKQwOWdKAO+r3z9hS u5opCqmDe7DZkh5YHZ013MW3T9FFYXAtJAiYeFmd3KyTZZeMM1QOlQY3ikhzbyQp xPYsj2kV+timfQPccuTTQESL6piUqxJvF7Yvhb7Z07Af9PyKbjgf -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:15 2026 by rpki-client