This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/B1JlicUZTx5fu5_cUWZ9rwVi1tk.cer File: B1JlicUZTx5fu5_cUWZ9rwVi1tk.cer (raw, json) Hash identifier: muZ/nY1Af4RPOsStczn0dac7RAzx2jgBk1+yRn2dX1s= Subject key identifier: 07:52:65:89:C5:19:4F:1E:5F:BB:9F:DC:51:66:7D:AF:05:62:D6:D9 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE07C65B96BB3EB6204B3FCD0C7A4F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/B1JlicUZTx5fu5_cUWZ9rwVi1tk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:52 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206041 IP: 185.32.69.0/24 IP: 2a12:c7c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:07:c6:5b:96:bb:3e:b6:20:4b:3f:cd:0c:7a:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07526589c5194f1e5fbb9fdc51667daf0562d6d9 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:64:b3:e1:eb:03:85:83:ae:37:80:96:2c:8d: 7a:70:ed:f2:50:c4:20:6d:bb:1f:a0:94:a7:98:72: 5d:e7:06:0b:eb:16:c1:8d:56:5b:74:a3:5d:80:56: e6:e2:f4:e6:1e:df:a8:a2:3b:ca:c4:88:c4:18:90: c9:90:52:6f:92:06:2d:a1:64:d1:e3:0c:86:7a:a9: 6b:38:8d:d5:f7:a4:01:0c:77:32:1f:c2:7e:30:52: 40:fa:cf:d7:b9:7b:53:1c:ce:48:4f:80:7f:71:a9: e6:ef:74:39:a3:53:6d:4e:3b:cd:4a:87:49:ef:03: aa:45:fe:fc:69:6c:19:15:56:43:26:97:28:a4:09: 0c:11:fe:8b:82:0d:19:1b:ac:1a:1c:56:a4:c0:c0: 28:8f:0a:a9:ac:fd:ca:78:a2:76:d2:80:89:d9:1f: e6:a4:55:ff:f6:38:96:f5:76:8b:7f:df:d7:93:aa: 3c:5c:05:bd:c0:07:aa:bf:4c:f1:bc:64:dc:ba:bd: 13:15:57:09:e5:9b:20:21:dc:73:e7:15:23:fc:0e: 67:00:e5:fe:3c:6e:2d:db:aa:2b:0e:74:6c:99:68: 93:e6:b5:f2:e7:cd:f9:2c:f8:f2:11:48:a2:9a:2e: ae:b2:e6:0b:e8:7d:6c:1e:ab:83:4e:b7:65:7c:89: 0d:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:52:65:89:C5:19:4F:1E:5F:BB:9F:DC:51:66:7D:AF:05:62:D6:D9 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/a5a774-8553-4414-ac3c-dd170c1fd33c/1/B1JlicUZTx5fu5_cUWZ9rwVi1tk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.32.69.0/24 IPv6: 2a12:c7c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206041 Signature Algorithm: sha256WithRSAEncryption 08:a7:f8:cc:73:8a:fb:20:43:5c:35:90:6c:2b:37:b3:78:f0: 09:f0:20:ef:16:c5:10:eb:fb:6c:2a:0d:84:ac:97:94:08:36: 8e:f8:63:9d:06:2b:ce:62:38:90:07:f6:9d:44:16:eb:23:c7: a9:0b:43:7c:ae:95:93:ea:96:f7:07:94:f4:5c:61:67:ab:e3: 7f:e7:c2:7e:3e:02:0b:6f:5b:9d:22:b1:9a:7e:f6:d5:d7:68: b4:dd:70:be:48:ec:5f:36:92:f0:fe:9c:dc:2c:5c:d1:99:c4: 46:65:83:a2:4f:95:21:9f:4f:aa:e9:fb:a5:5d:d9:86:4b:9d: a3:ac:cc:ff:24:9f:d1:1d:ca:68:85:a0:21:3c:0b:3e:94:2e: 17:67:29:79:cd:b2:85:c2:d9:f0:b0:7a:32:12:a1:db:4c:99: fd:e9:ec:2c:2a:9c:5f:72:20:d4:07:ff:35:6d:9d:e9:ba:dd: 56:29:36:02:8e:0a:cd:1f:f5:79:2e:92:62:f3:08:ad:ce:2a: ca:89:95:03:04:57:34:21:5d:64:8c:60:42:8f:c2:4e:73:85: ea:34:4e:7b:1d:b5:f4:ea:b0:76:15:44:c7:64:5c:62:af:4f: 2d:25:75:b9:71:cb:c2:68:eb:54:83:28:e0:78:bd:90:4a:96: 8b:d6:b1:26 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt87gfGW5a7PrYgSz/NDHpPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNzUyNjU4OWM1MTk0ZjFlNWZiYjlmZGM1MTY2N2RhZjA1NjJkNmQ5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzmSz4esDhYOuN4CWLI16cO3yUMQg bbsfoJSnmHJd5wYL6xbBjVZbdKNdgFbm4vTmHt+oojvKxIjEGJDJkFJvkgYtoWTR 4wyGeqlrOI3V96QBDHcyH8J+MFJA+s/XuXtTHM5IT4B/canm73Q5o1NtTjvNSodJ 7wOqRf78aWwZFVZDJpcopAkMEf6Lgg0ZG6waHFakwMAojwqprP3KeKJ20oCJ2R/m pFX/9jiW9XaLf9/Xk6o8XAW9wAeqv0zxvGTcur0TFVcJ5ZsgIdxz5xUj/A5nAOX+ PG4t26orDnRsmWiT5rXy5835LPjyEUiimi6usuYL6H1sHquDTrdlfIkNfQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFAdSZYnFGU8eX7uf3FFmfa8FYtbZMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjL2E1YTc3 NC04NTUzLTQ0MTQtYWMzYy1kZDE3MGMxZmQzM2MvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMvYTVhNzc0 LTg1NTMtNDQxNC1hYzNjLWRkMTcwYzFmZDMzYy8xL0IxSmxpY1VaVHg1ZnU1X2NV V1o5cndWaTF0ay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuSBFMA0EAgACMAcDBQMqEsfAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMk2TANBgkqhkiG9w0BAQsFAAOCAQEACKf4zHOK+yBD XDWQbCs3s3jwCfAg7xbFEOv7bCoNhKyXlAg2jvhjnQYrzmI4kAf2nUQW6yPHqQtD fK6Vk+qW9weU9FxhZ6vjf+fCfj4CC29bnSKxmn721ddotN1wvkjsXzaS8P6c3Cxc 0ZnERmWDok+VIZ9Pqun7pV3Zhkudo6zM/ySf0R3KaIWgITwLPpQuF2cpec2yhcLZ 8LB6MhKh20yZ/ensLCqcX3Ig1Af/NW2d6brdVik2Ao4KzR/1eS6SYvMIrc4qyomV AwRXNCFdZIxgQo/CTnOF6jROex219OqwdhVEx2RcYq9PLSV1uXHLwmjrVIMo4Hi9 kEqWi9axJg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:32 2026 by rpki-client