This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/AoNhMH79nzq-_mm9FN4OG9YLbmo.cer File: AoNhMH79nzq-_mm9FN4OG9YLbmo.cer (raw, json) Hash identifier: jaPJuME0y+xmL5mBN5FRRUH5CKyqrgEWKx5MFrD/0ho= Subject key identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797F19607271A01E193236E6BD380F0F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.25.124.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:19:60:72:71:a0:1e:19:32:36:e6:bd:38:0f:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=028361307efd9f3abefe69bd14de0e1bd60b6e6a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:a4:ec:bb:d4:de:e2:86:ef:b6:d4:1f:80:d1: da:a8:8b:07:1d:bb:0a:77:be:45:97:95:8e:74:2d: 04:55:a0:85:0e:aa:dd:01:ab:46:c7:7f:5b:2e:33: 54:0f:39:08:ff:f7:b0:54:b2:b2:a8:f2:cb:4d:6c: 0e:73:18:03:99:53:50:7c:ef:24:50:4a:9b:ab:8e: 56:ab:6f:5d:ea:2d:fb:6d:b1:b3:ce:6e:42:82:2f: cd:08:b6:68:7a:de:46:1e:d5:84:65:2b:91:a7:11: d2:97:d8:07:66:8a:3f:62:63:31:aa:a6:ff:36:89: 69:dd:b0:35:1b:85:7c:10:1d:4c:22:c4:c0:a2:cc: bc:cd:e1:35:8c:95:b2:9b:8e:96:f8:2b:60:3c:50: 35:db:36:eb:91:0b:a2:01:c0:34:f6:9f:8c:fd:a7: d9:90:27:e3:d6:ef:91:dd:6c:95:66:3c:b2:12:4a: 37:40:c8:05:cf:eb:1b:c7:27:87:fd:b5:2a:05:be: 23:35:6e:08:f7:80:29:44:5c:50:0a:1c:ce:f6:8d: aa:5a:fd:1e:43:bb:d0:5b:a9:5b:48:2a:18:48:70: ae:f8:8a:a2:7f:f6:a7:ca:0b:6a:6e:b2:da:c7:54: 8e:bb:26:02:56:d7:5c:cc:4d:00:a8:f2:c3:8a:fc: 8c:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 02:83:61:30:7E:FD:9F:3A:BE:FE:69:BD:14:DE:0E:1B:D6:0B:6E:6A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/cc/e8101a-240f-4e32-a097-27c273a60788/1/AoNhMH79nzq-_mm9FN4OG9YLbmo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.25.124.0/23 Signature Algorithm: sha256WithRSAEncryption 4e:5c:27:bb:eb:a2:cf:50:52:ef:2c:90:43:6f:ac:7e:a3:88: 95:69:53:b4:e8:e5:11:56:0c:90:e7:5c:0a:62:0d:68:60:1c: 4c:9f:24:b1:21:a7:71:6d:ce:22:49:6e:6f:85:1b:ec:b7:37: b1:7a:cf:d3:0b:5f:e7:2a:78:d9:bf:b4:68:dc:9b:89:12:83: de:70:2e:17:f4:cf:92:3f:cd:0f:96:3a:85:0f:c2:8c:f9:49: 78:b1:5a:32:1f:c4:df:0b:02:79:a2:0c:cc:f1:a6:27:05:ab: 9b:9a:b8:ac:96:e9:56:3b:52:17:38:54:8f:c8:d4:c9:5d:d9: 5e:2c:e1:b0:e0:f7:1f:14:61:f3:eb:45:47:83:1d:92:ad:b0: 61:59:56:d2:99:cc:bd:e8:17:33:dc:cf:31:83:79:8c:13:1a: a0:7d:8c:21:c6:52:d0:a6:4c:96:7f:df:58:9f:09:b0:53:69: 45:6f:fa:bf:1d:5c:b4:23:b3:4a:09:da:a4:42:86:bc:16:e9: 39:a9:8f:f5:49:9e:f3:7e:d2:bd:44:50:37:a7:0a:c8:f5:31: 83:9a:b6:5b:c3:26:83:a4:d8:29:15:ac:2a:bb:a0:52:68:3c: e1:f4:35:b0:10:1e:b6:1f:1f:17:19:de:c4:93:84:fc:b8:bd: a2:08:ad:3f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt5fxlgcnGgHhkyNua9OA8PMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMjgzNjEzMDdlZmQ5ZjNhYmVmZTY5YmQxNGRlMGUxYmQ2MGI2ZTZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy6Tsu9Te4obvttQfgNHaqIsHHbsK d75Fl5WOdC0EVaCFDqrdAatGx39bLjNUDzkI//ewVLKyqPLLTWwOcxgDmVNQfO8k UEqbq45Wq29d6i37bbGzzm5Cgi/NCLZoet5GHtWEZSuRpxHSl9gHZoo/YmMxqqb/ Nolp3bA1G4V8EB1MIsTAosy8zeE1jJWym46W+CtgPFA12zbrkQuiAcA09p+M/afZ kCfj1u+R3WyVZjyyEko3QMgFz+sbxyeH/bUqBb4jNW4I94ApRFxQChzO9o2qWv0e Q7vQW6lbSCoYSHCu+Iqif/anygtqbrLax1SOuyYCVtdczE0AqPLDivyMUQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFAKDYTB+/Z86vv5pvRTeDhvWC25qMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2NjL2U4MTAx YS0yNDBmLTRlMzItYTA5Ny0yN2MyNzNhNjA3ODgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvY2MvZTgxMDFh LTI0MGYtNGUzMi1hMDk3LTI3YzI3M2E2MDc4OC8xL0FvTmhNSDc5bnpxLV9tbTlG TjRPRzlZTGJtby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBwRl8MA0GCSqGSIb3DQEBCwUAA4IBAQBOXCe7 66LPUFLvLJBDb6x+o4iVaVO06OURVgyQ51wKYg1oYBxMnySxIadxbc4iSW5vhRvs tzexes/TC1/nKnjZv7Ro3JuJEoPecC4X9M+SP80PljqFD8KM+Ul4sVoyH8TfCwJ5 ogzM8aYnBaubmrislulWO1IXOFSPyNTJXdleLOGw4PcfFGHz60VHgx2SrbBhWVbS mcy96Bcz3M8xg3mMExqgfYwhxlLQpkyWf99YnwmwU2lFb/q/HVy0I7NKCdqkQoa8 Fuk5qY/1SZ7zftK9RFA3pwrI9TGDmrZbwyaDpNgpFawqu6BSaDzh9DWwEB62Hx8X Gd7Ek4T8uL2iCK0/ -----END CERTIFICATE-----Generated at Mon Feb 9 20:50:34 2026 by rpki-client