This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BcgcgJdDfNF58xkYPAKC6mzRylE.cer File: BcgcgJdDfNF58xkYPAKC6mzRylE.cer (raw, json) Hash identifier: gdr6AX7zaExcEUzVCrwqllAVeKE0ESrAisXy5Rg0NMM= Subject key identifier: 05:C8:1C:80:97:43:7C:D1:79:F3:19:18:3C:02:82:EA:6C:D1:CA:51 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA5143CB7887B6D94BB510482EF5909 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ee/d93153-4609-4672-85b4-974fd239b0ed/1/BcgcgJdDfNF58xkYPAKC6mzRylE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ee/d93153-4609-4672-85b4-974fd239b0ed/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:34 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41616 IP: 81.163.80.0/21 IP: 91.247.152.0/21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:14:3c:b7:88:7b:6d:94:bb:51:04:82:ef:59:09 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:34 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=05c81c8097437cd179f319183c0282ea6cd1ca51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:99:20:93:2e:3d:50:37:a9:da:51:ab:24:d4: 70:f3:10:ba:ac:9b:14:84:15:f3:80:83:0a:ae:f8: 29:b2:a7:4e:3f:dc:24:19:73:0f:51:a0:29:49:ef: b9:48:9d:08:4a:aa:a5:a2:19:6d:09:92:bc:82:9d: 87:65:53:e4:58:fa:8e:2e:d8:95:9a:3b:ce:4b:cf: d9:dd:a4:7b:27:06:05:fe:53:36:82:8c:07:91:6d: f5:77:cb:39:6c:86:51:95:83:e6:a1:b5:a9:be:f0: 49:cc:d1:af:05:08:75:06:90:8f:b0:fd:f8:51:cf: 18:b9:34:fe:10:79:24:f3:fa:b7:2a:a1:62:30:83: 6c:34:5f:35:12:94:fc:11:76:0d:0d:32:2d:48:b5: f1:e6:97:bc:7e:c2:62:a3:00:61:f5:27:75:65:2b: 90:c2:ea:25:b2:3b:08:b9:28:fd:b2:5d:11:f2:04: b4:7f:99:82:38:31:c8:5a:0c:20:b0:72:7b:42:b3: 15:36:56:8a:0a:5e:7d:c5:9b:48:46:bf:d3:5a:fb: a1:be:e4:3a:ab:37:2f:46:7c:e1:07:67:7f:d9:60: 26:fd:86:f7:a9:74:14:db:58:ba:66:bb:84:04:12: 67:8c:c0:5f:26:d5:34:98:80:7b:3c:3f:63:ed:64: 42:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 05:C8:1C:80:97:43:7C:D1:79:F3:19:18:3C:02:82:EA:6C:D1:CA:51 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d93153-4609-4672-85b4-974fd239b0ed/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/d93153-4609-4672-85b4-974fd239b0ed/1/BcgcgJdDfNF58xkYPAKC6mzRylE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.163.80.0/21 91.247.152.0/21 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41616 Signature Algorithm: sha256WithRSAEncryption 8a:e4:1b:0c:d2:7e:76:72:18:d0:4e:ea:92:5a:3e:59:04:a1: d1:4a:b3:c7:6b:eb:07:74:0e:a5:07:69:59:cf:cc:9b:8d:22: 2d:c3:61:97:58:f2:a1:96:c6:3d:ca:61:6e:e8:4b:ad:6a:33: 65:6c:9b:b2:f2:80:96:90:1c:fb:14:23:1b:95:27:63:15:37: ff:ef:92:f0:4f:7b:b5:ed:e5:c9:17:7d:21:76:86:2f:83:10: 31:9a:d6:46:79:13:55:0d:c9:0d:13:d8:6c:49:68:ee:5d:c9: 48:8e:59:a5:28:41:08:9a:46:ab:02:13:1f:af:41:b3:47:17: f3:e9:08:39:c3:a5:45:2c:ec:07:cc:f5:64:59:f6:b0:b6:b1: 0c:bf:51:d1:6e:9f:b4:8d:23:59:f5:60:30:4b:df:47:ef:5b: 41:7e:9d:7f:95:85:f8:30:ae:cd:39:85:cb:c2:b5:c3:02:30: 0f:22:9e:2e:ee:6f:d3:5e:30:37:69:89:a5:74:19:07:15:6c: bc:36:32:52:42:03:65:17:7c:0a:4a:55:a0:99:ee:63:44:77: 84:5f:b0:c4:5b:91:5c:e0:3c:9e:93:3f:48:b0:37:e3:5e:1a: dc:d7:b7:1b:00:a8:d5:8d:e5:3c:c4:4b:ba:7a:2a:e7:35:40: a8:5f:8f:6b -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt7pRQ8t4h7bZS7UQSC71kJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTM0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNWM4MWM4MDk3NDM3Y2QxNzlmMzE5MTgzYzAyODJlYTZjZDFjYTUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy5kgky49UDep2lGrJNRw8xC6rJsU hBXzgIMKrvgpsqdOP9wkGXMPUaApSe+5SJ0ISqqlohltCZK8gp2HZVPkWPqOLtiV mjvOS8/Z3aR7JwYF/lM2gowHkW31d8s5bIZRlYPmobWpvvBJzNGvBQh1BpCPsP34 Uc8YuTT+EHkk8/q3KqFiMINsNF81EpT8EXYNDTItSLXx5pe8fsJiowBh9Sd1ZSuQ wuolsjsIuSj9sl0R8gS0f5mCODHIWgwgsHJ7QrMVNlaKCl59xZtIRr/TWvuhvuQ6 qzcvRnzhB2d/2WAm/Yb3qXQU21i6ZruEBBJnjMBfJtU0mIB7PD9j7WRCMwIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFAXIHICXQ3zRefMZGDwCgups0cpRMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VlL2Q5MzE1 My00NjA5LTQ2NzItODViNC05NzRmZDIzOWIwZWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUvZDkzMTUz LTQ2MDktNDY3Mi04NWI0LTk3NGZkMjM5YjBlZC8xL0JjZ2NnSmREZk5GNTh4a1lQ QUtDNm16UnlsRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQDUaNQAwQDW/eYMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwCikDANBgkqhkiG9w0BAQsFAAOCAQEAiuQbDNJ+dnIY0E7qklo+WQSh 0Uqzx2vrB3QOpQdpWc/Mm40iLcNhl1jyoZbGPcphbuhLrWozZWybsvKAlpAc+xQj G5UnYxU3/++S8E97te3lyRd9IXaGL4MQMZrWRnkTVQ3JDRPYbElo7l3JSI5ZpShB CJpGqwITH69Bs0cX8+kIOcOlRSzsB8z1ZFn2sLaxDL9R0W6ftI0jWfVgMEvfR+9b QX6df5WF+DCuzTmFy8K1wwIwDyKeLu5v014wN2mJpXQZBxVsvDYyUkIDZRd8CkpV oJnuY0R3hF+wxFuRXOA8npM/SLA3414a3Ne3GwCo1Y3lPMRLunoq5zVAqF+Paw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:48 2026 by rpki-client