This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EdGf2unFPY0oseQcqROcM1VrpiU.cer File: EdGf2unFPY0oseQcqROcM1VrpiU.cer (raw, json) Hash identifier: ZKB9az7hy7A3nbvzznaQwCI3gKhFKL9LfxpuLHLY5Ic= Subject key identifier: 11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC8F9AAB0B49FE1E70946D99FC3764F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:19:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 199795 AS: 210465 IP: 80.88.144.0/21 IP: 146.19.99.0/24 IP: 185.45.184.0/22 IP: 2a12:8900::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:f9:aa:b0:b4:9f:e1:e7:09:46:d9:9f:c3:76:4f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=11d19fdae9c53d8d28b1e41ca9139c33556ba625 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:19:09:e5:1d:92:1c:2c:cd:2a:d1:f5:31:06: 73:74:a0:54:9a:88:88:8b:53:71:59:2f:32:d3:13: c9:e6:9f:b9:f5:c8:2e:5a:83:4c:c9:4a:f3:7b:cf: bd:24:17:75:a1:15:09:09:0d:56:32:d0:6f:24:74: a2:53:41:65:9f:90:7c:d0:3c:41:97:e5:43:23:b9: a4:7a:14:7f:82:fb:58:ac:a4:0b:c5:72:98:cf:b5: 7e:80:01:e7:70:ba:1a:e6:ed:6b:e8:04:65:a6:33: b2:f9:e2:8c:af:e4:61:ea:ce:91:f5:74:83:68:07: b7:98:94:82:ac:30:8f:6e:a7:f2:44:e2:36:20:67: b6:49:47:69:e9:ce:34:aa:7b:b2:c6:ae:d6:01:74: 62:67:57:43:a0:86:30:a0:67:5d:28:67:78:9c:d1: c8:43:82:55:d2:73:79:7c:a2:45:16:07:4d:60:b2: 15:f2:21:ab:b4:c9:e5:88:ca:8f:28:83:4c:21:29: fc:87:2f:da:1e:3f:2d:b5:11:f6:4b:c4:fa:fe:e5: d4:74:c1:8b:0b:c8:94:d4:91:9c:29:8c:16:aa:e2: a0:fc:85:92:34:82:5a:5e:22:1e:5f:30:24:63:01: 13:92:9e:2c:86:82:1c:d6:9d:9e:71:62:1b:b2:74: 42:0f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:D1:9F:DA:E9:C5:3D:8D:28:B1:E4:1C:A9:13:9C:33:55:6B:A6:25 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6a/5c46d2-9818-4afc-880e-1cc5fd2544e9/1/EdGf2unFPY0oseQcqROcM1VrpiU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.88.144.0/21 146.19.99.0/24 185.45.184.0/22 IPv6: 2a12:8900::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 199795 210465 Signature Algorithm: sha256WithRSAEncryption 9b:22:9d:78:ac:48:65:bb:07:d9:a2:b2:93:4e:bc:bb:7a:da: 22:0c:ed:3b:92:95:ed:d4:7f:07:a8:95:1d:2d:f3:03:77:40: a5:96:50:97:18:16:0e:c1:8a:29:c7:e4:35:08:2a:b4:e7:54: ce:e6:bb:cd:bb:32:55:9c:a4:fe:6b:16:7b:64:89:bc:51:28: 14:0e:ff:f1:a5:e0:c3:3f:50:a7:6f:d6:04:dc:f5:ec:eb:5d: 0e:78:42:45:26:33:34:89:96:c3:f5:15:0e:7a:a1:13:0c:41: 35:97:97:7e:61:0c:f8:77:ee:cf:02:05:d5:a6:99:e9:c9:1d: d1:e6:9c:05:8f:50:cc:38:b2:e6:07:27:5e:7e:0f:22:d3:a2: dc:27:ed:ac:19:cc:5d:29:39:50:46:32:8f:75:2f:7b:88:12: 7c:1f:1b:a6:7f:9d:52:8a:4c:5d:ea:76:03:38:14:25:c4:5f: 29:d1:e9:b3:27:ad:db:95:48:8e:9f:21:1f:df:ed:c0:29:02: 9c:5c:2a:a1:a2:c5:5b:8d:8a:69:13:d8:96:1f:c8:94:e5:cf: 85:10:18:bf:4f:a8:5e:56:cf:37:a9:8b:93:d6:d5:da:b4:23: 46:dd:51:91:56:91:84:a2:f1:9f:5d:77:e8:c5:cd:2b:dd:cb: c6:7a:4d:6b -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgISAZt6yPmqsLSf4ecJRtmfw3ZPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMWQxOWZkYWU5YzUzZDhkMjhiMWU0MWNhOTEzOWMzMzU1NmJhNjI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5RkJ5R2SHCzNKtH1MQZzdKBUmoiI i1NxWS8y0xPJ5p+59cguWoNMyUrze8+9JBd1oRUJCQ1WMtBvJHSiU0Fln5B80DxB l+VDI7mkehR/gvtYrKQLxXKYz7V+gAHncLoa5u1r6ARlpjOy+eKMr+Rh6s6R9XSD aAe3mJSCrDCPbqfyROI2IGe2SUdp6c40qnuyxq7WAXRiZ1dDoIYwoGddKGd4nNHI Q4JV0nN5fKJFFgdNYLIV8iGrtMnliMqPKINMISn8hy/aHj8ttRH2S8T6/uXUdMGL C8iU1JGcKYwWquKg/IWSNIJaXiIeXzAkYwETkp4shoIc1p2ecWIbsnRCDwIDAQAB o4ICwDCCArwwHQYDVR0OBBYEFBHRn9rpxT2NKLHkHKkTnDNVa6YlMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZhLzVjNDZk Mi05ODE4LTRhZmMtODgwZS0xY2M1ZmQyNTQ0ZTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmEvNWM0NmQy LTk4MTgtNGFmYy04ODBlLTFjYzVmZDI1NDRlOS8xL0VkR2YydW5GUFkwb3NlUWNx Uk9jTTFWcnBpVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQDUFiQAwQAkhNjAwQCuS24MA0EAgACMAcDBQMq EokAMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwMMcwIDAzYhMA0GCSqGSIb3DQEB CwUAA4IBAQCbIp14rEhluwfZorKTTry7etoiDO07kpXt1H8HqJUdLfMDd0ClllCX GBYOwYopx+Q1CCq051TO5rvNuzJVnKT+axZ7ZIm8USgUDv/xpeDDP1Cnb9YE3PXs 610OeEJFJjM0iZbD9RUOeqETDEE1l5d+YQz4d+7PAgXVppnpyR3R5pwFj1DMOLLm Bydefg8i06LcJ+2sGcxdKTlQRjKPdS97iBJ8Hxumf51Sikxd6nYDOBQlxF8p0emz J63blUiOnyEf3+3AKQKcXCqhosVbjYppE9iWH8iU5c+FEBi/T6heVs83qYuT1tXa tCNG3VGRVpGEovGfXXfoxc0r3cvGek1r -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:06 2026 by rpki-client