This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ASMR-Ap6dumuA7jBPYLYPpwPgyI.cer File: ASMR-Ap6dumuA7jBPYLYPpwPgyI.cer (raw, json) Hash identifier: 71CSeyda8UFOPy8rGF6cHhsE82oo+BpVDrgZIUAOl9o= Subject key identifier: 01:23:11:F8:0A:7A:76:E9:AE:03:B8:C1:3D:82:D8:3E:9C:0F:83:22 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7758CBD05F89A692954C9F7CD56DE7DE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/0396ee-0aea-47f3-b9fe-5b9ba91de33d/1/ASMR-Ap6dumuA7jBPYLYPpwPgyI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/0396ee-0aea-47f3-b9fe-5b9ba91de33d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:17:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.176.47.0/24 IP: 193.176.61.0/24 IP: 2001:67c:2784::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:cb:d0:5f:89:a6:92:95:4c:9f:7c:d5:6d:e7:de Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=012311f80a7a76e9ae03b8c13d82d83e9c0f8322 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:ff:95:12:26:fa:19:42:4f:b2:d1:5e:46:4d: dc:65:70:86:12:36:e5:56:fc:f9:fb:a5:4e:8f:fd: 4a:54:d4:22:6c:cc:0f:22:3e:f1:5e:fb:bd:48:59: c3:fd:a7:9e:c5:2d:37:4c:5a:50:2f:15:00:13:2f: ab:e7:ca:52:c4:76:e9:40:f6:89:3d:f3:96:1a:7e: f1:dc:0e:1a:ce:0d:e8:8c:27:f8:6e:03:e4:e5:6b: bf:90:c2:60:3c:81:cc:bf:79:63:f9:79:81:87:1c: 31:09:e6:38:b5:cb:a0:e2:df:6e:c2:56:be:45:2f: 7a:c1:df:7a:22:e2:c6:6e:1f:ba:d7:d2:1d:bc:60: 07:85:39:1a:2b:59:57:1c:2b:c8:4a:0b:a7:65:a1: e1:98:28:c9:71:e0:cb:32:7a:8f:d0:a2:f3:55:f2: bc:bd:1c:7e:61:4f:3f:4a:85:c8:d9:47:32:a8:16: e9:85:df:7e:41:10:30:e2:72:25:60:89:ea:c7:8b: cd:5c:45:ea:04:1e:b4:0b:d3:de:3f:75:f4:81:4f: 90:e6:64:16:46:97:00:13:71:24:f9:87:ba:f2:c7: 72:d2:18:55:b8:3c:f6:a3:a2:fa:ad:80:5f:69:8a: e9:b1:80:44:22:ad:70:8f:c0:9d:80:74:57:ea:ea: b6:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 01:23:11:F8:0A:7A:76:E9:AE:03:B8:C1:3D:82:D8:3E:9C:0F:83:22 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0396ee-0aea-47f3-b9fe-5b9ba91de33d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0396ee-0aea-47f3-b9fe-5b9ba91de33d/1/ASMR-Ap6dumuA7jBPYLYPpwPgyI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.176.47.0/24 193.176.61.0/24 IPv6: 2001:67c:2784::/48 Signature Algorithm: sha256WithRSAEncryption 59:d6:f4:58:d1:30:78:2c:9c:49:72:fb:b3:09:05:30:68:46: ac:9d:71:83:d3:7c:2d:93:c2:5f:6f:3b:5d:75:08:2a:62:6d: 1f:8b:0f:7d:3d:a7:51:bd:a7:b4:c4:97:2a:b0:a6:56:8f:3e: 79:b2:af:80:a2:ff:b0:95:08:7d:e8:1a:2a:b2:8b:10:d5:95: 65:83:6e:1b:b0:2b:49:29:5d:64:4c:01:cc:f5:55:cb:26:bc: cc:20:67:2f:d2:e9:30:75:55:f1:48:95:07:d3:9f:18:3b:eb: 69:0d:9c:40:52:85:dc:15:eb:5c:46:b4:05:f9:37:be:6e:1d: 32:d2:89:05:d3:c1:76:bd:91:7f:2e:54:36:cb:79:24:2b:14: 0a:fd:52:14:bf:67:ab:1a:d3:00:1c:67:1f:3c:d1:7d:a8:1a: d9:8d:cb:f2:38:1b:04:ac:b7:40:b8:99:f0:c8:a8:76:fe:96: c1:1a:ac:7f:51:a7:ba:ce:f8:fc:1e:5b:38:b0:f2:aa:2b:7c: b0:ce:6f:38:0d:d4:e4:ca:59:e8:d5:e5:ca:96:1b:7a:c0:89: 5c:47:dc:4e:2e:be:f3:4c:7a:5f:97:fb:07:1d:98:e4:69:cb: ff:7e:86:2c:c2:81:1a:1c:c3:8e:f6:4c:1e:25:92:af:7e:18: 5d:23:3e:e8 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgISAZt3WMvQX4mmkpVMn3zVbefeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMTIzMTFmODBhN2E3NmU5YWUwM2I4YzEzZDgyZDgzZTljMGY4MzIyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArv+VEib6GUJPstFeRk3cZXCGEjbl Vvz5+6VOj/1KVNQibMwPIj7xXvu9SFnD/aeexS03TFpQLxUAEy+r58pSxHbpQPaJ PfOWGn7x3A4azg3ojCf4bgPk5Wu/kMJgPIHMv3lj+XmBhxwxCeY4tcug4t9uwla+ RS96wd96IuLGbh+619IdvGAHhTkaK1lXHCvISgunZaHhmCjJceDLMnqP0KLzVfK8 vRx+YU8/SoXI2UcyqBbphd9+QRAw4nIlYInqx4vNXEXqBB60C9PeP3X0gU+Q5mQW RpcAE3Ek+Ye68sdy0hhVuDz2o6L6rYBfaYrpsYBEIq1wj8CdgHRX6uq2awIDAQAB o4ICmzCCApcwHQYDVR0OBBYEFAEjEfgKenbprgO4wT2C2D6cD4MiMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY0LzAzOTZl ZS0wYWVhLTQ3ZjMtYjlmZS01YjliYTkxZGUzM2QvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjQvMDM5NmVl LTBhZWEtNDdmMy1iOWZlLTViOWJhOTFkZTMzZC8xL0FTTVItQXA2ZHVtdUE3akJQ WUxZUHB3UGd5SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF BwEHAQH/BCcwJTASBAIAATAMAwQAwbAvAwQAwbA9MA8EAgACMAkDBwAgAQZ8J4Qw DQYJKoZIhvcNAQELBQADggEBAFnW9FjRMHgsnEly+7MJBTBoRqydcYPTfC2Twl9v O111CCpibR+LD309p1G9p7TElyqwplaPPnmyr4Ci/7CVCH3oGiqyixDVlWWDbhuw K0kpXWRMAcz1VcsmvMwgZy/S6TB1VfFIlQfTnxg762kNnEBShdwV61xGtAX5N75u HTLSiQXTwXa9kX8uVDbLeSQrFAr9UhS/Z6sa0wAcZx880X2oGtmNy/I4GwSst0C4 mfDIqHb+lsEarH9Rp7rO+PweWziw8qorfLDObzgN1OTKWejV5cqWG3rAiVxH3E4u vvNMel+X+wcdmORpy/9+hizCgRocw472TB4lkq9+GF0jPug= -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:26 2026 by rpki-client