This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/B8QNcBYPMIZCEpobcq5a5S24g8Q.cer File: B8QNcBYPMIZCEpobcq5a5S24g8Q.cer (raw, json) Hash identifier: iFumEv139t72tQWtvPKmJrxDCXHfd6RyCOffoOqfnjI= Subject key identifier: 07:C4:0D:70:16:0F:30:86:42:12:9A:1B:72:AE:5A:E5:2D:B8:83:C4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA6970EBB73EC92BD4FCD08FCA64E70 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/B8QNcBYPMIZCEpobcq5a5S24g8Q.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:20:05 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 48166 AS: 59666 IP: 5.250.232.0/21 IP: 89.22.16.0/20 IP: 91.133.0.0/19 IP: 91.210.84.0/22 IP: 178.213.192.0/21 IP: 185.51.208.0/22 IP: 185.61.92.0/22 IP: 194.9.224.0/20 IP: 2a02:7760::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:97:0e:bb:73:ec:92:bd:4f:cd:08:fc:a6:4e:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:20:05 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=07c40d70160f308642129a1b72ae5ae52db883c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:8c:6b:e7:46:66:1e:9b:0b:2f:05:1b:f3:b1: 6b:99:53:14:f3:a0:72:87:3b:a4:f1:53:a5:d0:96: 81:43:ac:20:1d:57:7c:51:f5:4e:a1:97:fe:a9:ec: 92:72:ab:4e:d3:e8:31:86:a2:b9:33:32:24:38:fd: 51:64:ed:8a:dc:58:c7:ae:45:14:36:40:86:4c:ed: 21:30:40:ed:d8:df:64:91:79:7e:6a:83:a3:f0:af: 75:cb:5f:8e:44:af:0b:58:1b:4e:f3:d9:15:81:8e: b8:a0:df:0c:83:e0:47:45:5a:9b:95:d2:9f:10:1c: 5f:39:b9:61:c6:8f:1b:3e:7f:02:75:d0:8b:cc:23: 99:94:30:c1:51:74:6d:a7:9d:52:42:3b:f0:14:cb: df:97:d6:f2:c3:d0:fc:0d:09:43:05:6e:b8:40:e7: f3:60:c3:07:d6:43:2a:fe:75:23:7b:f7:09:14:25: 77:76:c6:b9:f6:25:95:a0:57:37:ee:07:d0:8a:ac: 6e:46:cc:52:41:96:50:38:2c:36:51:4c:24:3d:83: 82:83:7b:33:66:ca:a0:cf:3c:69:3a:00:6f:58:3f: 8d:97:79:44:ec:c2:34:82:62:b3:2d:4f:3b:74:ab: b1:38:26:c7:0f:9c:70:ae:9a:50:ff:a4:b6:24:02: ee:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 07:C4:0D:70:16:0F:30:86:42:12:9A:1B:72:AE:5A:E5:2D:B8:83:C4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/82/e116c2-8f82-4cba-b5ae-97dcbb0086e3/1/B8QNcBYPMIZCEpobcq5a5S24g8Q.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.250.232.0/21 89.22.16.0/20 91.133.0.0/19 91.210.84.0/22 178.213.192.0/21 185.51.208.0/22 185.61.92.0/22 194.9.224.0/20 IPv6: 2a02:7760::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 48166 59666 Signature Algorithm: sha256WithRSAEncryption 63:33:26:54:c0:6e:c0:28:e5:c1:31:92:c0:0f:87:5e:d2:1a: 7c:17:70:40:63:d7:84:ea:a7:72:7d:66:99:7a:12:1c:1a:64: c0:4b:55:31:a2:99:cc:7e:02:7c:2b:6b:95:c3:3d:84:e2:c9: b9:56:d1:23:f1:bc:31:a5:57:ca:0a:3f:fc:aa:a1:10:d0:5a: 2f:6f:e2:66:21:f5:37:b4:58:8a:ca:e2:b7:11:31:7c:4a:d3: ab:a8:00:48:dc:1d:fc:3f:dd:74:1d:e6:62:e4:c3:1b:b6:62: ac:31:50:d6:37:6d:76:88:04:67:67:99:f8:55:74:9e:ab:28: 46:c6:91:0c:b5:6d:e9:82:1c:02:d5:f2:9e:d7:c2:bb:40:42: 8e:2f:42:0d:8f:41:d5:9e:f4:5c:94:5f:f7:8b:b8:0b:00:60: cd:c5:59:3b:9d:02:9a:bb:20:83:d2:2a:ee:32:06:96:ce:aa: 1c:f1:6c:1b:81:16:d6:af:90:8b:10:fa:6f:55:35:ca:2e:44: da:32:65:23:06:47:ea:2d:42:2f:2c:cd:22:41:d0:c8:90:ac: ff:96:75:0e:ba:9f:bc:86:12:b4:76:40:5e:2e:8f:21:bb:7c: cb:b6:2b:e3:09:3b:5d:cd:ef:a8:d8:6a:62:ca:67:fe:e1:f6: 14:3f:72:c2 -----BEGIN CERTIFICATE----- MIIF0jCCBLqgAwIBAgISAZt+ppcOu3Pskr1PzQj8pk5wMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIyMDA1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwN2M0MGQ3MDE2MGYzMDg2NDIxMjlhMWI3MmFlNWFlNTJkYjg4M2M0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjoxr50ZmHpsLLwUb87FrmVMU86By hzuk8VOl0JaBQ6wgHVd8UfVOoZf+qeyScqtO0+gxhqK5MzIkOP1RZO2K3FjHrkUU NkCGTO0hMEDt2N9kkXl+aoOj8K91y1+ORK8LWBtO89kVgY64oN8Mg+BHRVqbldKf EBxfOblhxo8bPn8CddCLzCOZlDDBUXRtp51SQjvwFMvfl9byw9D8DQlDBW64QOfz YMMH1kMq/nUje/cJFCV3dsa59iWVoFc37gfQiqxuRsxSQZZQOCw2UUwkPYOCg3sz ZsqgzzxpOgBvWD+Nl3lE7MI0gmKzLU87dKuxOCbHD5xwrppQ/6S2JALu4wIDAQAB o4IC3jCCAtowHQYDVR0OBBYEFAfEDXAWDzCGQhKaG3KuWuUtuIPEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgyL2UxMTZj Mi04ZjgyLTRjYmEtYjVhZS05N2RjYmIwMDg2ZTMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODIvZTExNmMy LThmODItNGNiYS1iNWFlLTk3ZGNiYjAwODZlMy8xL0I4UU5jQllQTUlaQ0Vwb2Jj cTVhNVMyNGc4US5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFgGCCsGAQUF BwEHAQH/BEkwRzA2BAIAATAwAwQDBfroAwQEWRYQAwQFW4UAAwQCW9JUAwQDstXA AwQCuTPQAwQCuT1cAwQEwgngMA0EAgACMAcDBQAqAndgMB8GCCsGAQUFBwEIAQH/ BBAwDqAMMAoCAwC8JgIDAOkSMA0GCSqGSIb3DQEBCwUAA4IBAQBjMyZUwG7AKOXB MZLAD4de0hp8F3BAY9eE6qdyfWaZehIcGmTAS1UxopnMfgJ8K2uVwz2E4sm5VtEj 8bwxpVfKCj/8qqEQ0Fovb+JmIfU3tFiKyuK3ETF8StOrqABI3B38P910HeZi5MMb tmKsMVDWN212iARnZ5n4VXSeqyhGxpEMtW3pghwC1fKe18K7QEKOL0INj0HVnvRc lF/3i7gLAGDNxVk7nQKauyCD0iruMgaWzqoc8WwbgRbWr5CLEPpvVTXKLkTaMmUj BkfqLUIvLM0iQdDIkKz/lnUOup+8hhK0dkBeLo8hu3zLtivjCTtdze+o2Gpiymf+ 4fYUP3LC -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:40 2026 by rpki-client