This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.cer File: BmuiCcUMAqhYtUMIyCrlvzAu-qQ.cer (raw, json) Hash identifier: DHR6ekFZFpaVBAXpRORuwbw7Ah1pigbyzcM0TsUYB58= Subject key identifier: 06:6B:A2:09:C5:0C:02:A8:58:B5:43:08:C8:2A:E5:BF:30:2E:FA:A4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C6A6BB14E41D49374F53DD977E1912 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:17:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208965 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:a6:bb:14:e4:1d:49:37:4f:53:dd:97:7e:19:12 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=066ba209c50c02a858b54308c82ae5bf302efaa4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e2:0f:3a:f3:68:b5:7a:8b:dd:8d:24:85:64:bd: 54:8b:2b:21:6a:cb:e2:50:07:4f:82:12:86:e2:63: 3c:39:1e:e9:a2:62:8f:e7:57:07:4e:84:4e:8e:e5: 95:9c:74:12:b1:1e:e5:33:bd:a6:bb:4e:8d:2c:4b: 71:8a:bf:bb:1a:58:0b:8e:1d:ce:83:3f:0f:8a:6c: 00:fc:bd:ad:4b:f1:31:be:09:98:c7:0c:17:cd:f2: e4:ac:e1:2e:a5:33:4f:9a:7d:42:7d:29:07:80:d6: 55:18:ed:63:12:0f:ae:7f:c5:5d:ec:f7:34:ef:cb: 1d:df:f3:51:ae:0b:80:57:a3:97:98:46:11:27:16: 1b:3e:1a:70:85:95:53:7a:cb:1d:b8:d9:e3:fc:aa: 71:95:e9:4d:03:7f:df:88:ef:88:6a:cd:62:94:ec: 7e:c0:2a:c5:f8:10:05:34:2a:9d:b9:55:74:12:57: c7:24:c0:ff:9d:f3:8d:10:59:9e:64:88:d9:98:0a: 1e:0e:12:87:69:74:ab:5b:65:21:96:d3:bb:1c:3d: a5:c7:46:7f:42:9c:76:fd:a6:e1:67:4c:75:57:45: 79:e2:79:1a:1b:c5:7a:ce:d0:c7:3f:ac:d6:d4:b6: c1:e4:6a:5f:c4:fb:18:d4:cc:aa:53:32:a6:30:96: c0:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 06:6B:A2:09:C5:0C:02:A8:58:B5:43:08:C8:2A:E5:BF:30:2E:FA:A4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/21/3151b8-d8f1-4102-936f-93ffec5c3c81/1/BmuiCcUMAqhYtUMIyCrlvzAu-qQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 208965 Signature Algorithm: sha256WithRSAEncryption 5b:52:42:94:56:4d:b6:63:f5:60:77:88:e8:8b:d1:58:a7:fe: d8:d4:ae:c6:ce:03:18:51:9b:ad:3a:5b:25:fe:29:c5:8a:3e: 9c:1e:7c:2c:ae:88:00:41:af:b3:11:6e:28:b8:5f:66:31:f2: 4f:82:3a:db:2b:ba:f8:c7:57:d8:6d:27:49:0d:55:3b:72:c7: 98:a0:4b:3d:fc:29:0e:f5:ac:21:7d:b1:8c:dc:30:b3:cd:4c: ab:d9:80:fc:de:9d:7e:8f:10:ad:43:56:2d:8f:66:bc:96:f6: 66:85:4c:88:e4:9c:9c:a5:47:51:9b:de:03:5d:ec:28:4e:d2: ac:e2:c7:dd:17:8a:1c:7e:fb:f0:50:aa:5e:58:77:01:13:fa: 83:06:a5:00:37:9a:5f:3f:22:f8:1b:77:68:78:16:f4:6b:94: 4e:b4:9d:7f:b6:7b:ae:b9:db:43:56:02:05:5a:68:39:d7:04: f4:87:fa:57:cc:33:3d:d6:40:5e:a7:dd:29:9e:92:2a:c6:eb: ad:78:5e:2c:8d:1b:51:44:0a:a9:c7:3c:28:04:03:69:70:80: 8d:dc:7f:33:cd:87:d2:a1:0b:52:56:6a:99:d1:06:49:88:6b: 72:cc:b4:93:c5:9f:c9:3c:61:33:34:66:15:36:90:14:4e:ba: 02:e8:49:ce -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt3xqa7FOQdSTdPU92XfhkSMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwNjZiYTIwOWM1MGMwMmE4NThiNTQzMDhjODJhZTViZjMwMmVmYWE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4g8682i1eovdjSSFZL1Uiyshasvi UAdPghKG4mM8OR7pomKP51cHToROjuWVnHQSsR7lM72mu06NLEtxir+7GlgLjh3O gz8PimwA/L2tS/ExvgmYxwwXzfLkrOEupTNPmn1CfSkHgNZVGO1jEg+uf8Vd7Pc0 78sd3/NRrguAV6OXmEYRJxYbPhpwhZVTessduNnj/KpxlelNA3/fiO+Ias1ilOx+ wCrF+BAFNCqduVV0ElfHJMD/nfONEFmeZIjZmAoeDhKHaXSrW2UhltO7HD2lx0Z/ Qpx2/abhZ0x1V0V54nkaG8V6ztDHP6zW1LbB5GpfxPsY1MyqUzKmMJbAWQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFAZrognFDAKoWLVDCMgq5b8wLvqkMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzIxLzMxNTFi OC1kOGYxLTQxMDItOTM2Zi05M2ZmZWM1YzNjODEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjEvMzE1MWI4 LWQ4ZjEtNDEwMi05MzZmLTkzZmZlYzVjM2M4MS8xL0JtdWlDY1VNQXFoWXRVTUl5 Q3JsdnpBdS1xUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMwRTANBgkqhkiG9w0BAQsFAAOCAQEAW1JClFZNtmP1 YHeI6IvRWKf+2NSuxs4DGFGbrTpbJf4pxYo+nB58LK6IAEGvsxFuKLhfZjHyT4I6 2yu6+MdX2G0nSQ1VO3LHmKBLPfwpDvWsIX2xjNwws81Mq9mA/N6dfo8QrUNWLY9m vJb2ZoVMiOScnKVHUZveA13sKE7SrOLH3ReKHH778FCqXlh3ARP6gwalADeaXz8i +Bt3aHgW9GuUTrSdf7Z7rrnbQ1YCBVpoOdcE9If6V8wzPdZAXqfdKZ6SKsbrrXhe LI0bUUQKqcc8KAQDaXCAjdx/M82H0qELUlZqmdEGSYhrcsy0k8WfyTxhMzRmFTaQ FE66AuhJzg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:14:17 2026 by rpki-client