This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/GE__PPkA52quDSzS533-riTF0kw.cer File: GE__PPkA52quDSzS533-riTF0kw.cer (raw, json) Hash identifier: Ho7EiN7ykFvdUaVMN672K5Rda/zNawYsRWC2ivyIRM8= Subject key identifier: 18:4F:FF:3C:F9:00:E7:6A:AE:0D:2C:D2:E7:7D:FE:AE:24:C5:D2:4C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCA8CF6EF3A957A3E075910A13AA531 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/GE__PPkA52quDSzS533-riTF0kw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:44 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198312 IP: 37.0.96.0/21 IP: 2a03:6a60::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:8c:f6:ef:3a:95:7a:3e:07:59:10:a1:3a:a5:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=184fff3cf900e76aae0d2cd2e77dfeae24c5d24c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:1e:3a:55:f6:90:dc:a1:ba:70:08:ae:4e:a3: b5:ec:d2:53:51:3a:e2:0b:40:80:d8:52:d6:02:5b: 71:6f:33:ba:58:4c:f8:24:0c:b2:fe:d2:4a:4c:00: 03:cf:94:2c:05:6d:71:6d:bf:29:26:70:d2:38:bc: d9:f0:57:0c:0f:be:eb:ab:8e:91:e1:f5:ca:b8:ba: 66:b7:47:25:34:ec:08:3f:d1:d2:06:7b:dd:aa:29: 14:60:b6:c6:b8:27:e2:b9:44:c2:06:c2:33:8e:bd: 70:42:81:d9:09:f5:fb:83:c0:cb:da:f8:6c:d6:fe: b8:68:c2:8a:10:dd:07:27:08:41:f2:c8:36:31:9c: fd:e3:50:bd:aa:cd:97:c1:cc:16:7c:89:f6:1c:96: ba:6c:42:ce:a2:6e:fc:bb:db:4e:d4:6f:3a:5a:f6: 35:bc:f2:b3:9d:fa:8b:a6:47:4b:63:6b:6c:ba:33: 52:56:a3:9c:f2:c2:8b:c2:9b:a7:7b:3a:67:7a:19: 3d:2f:b3:c9:68:b0:97:c0:c3:f3:0c:05:fe:9b:e0: ba:c4:63:bf:44:5c:24:8a:2f:f1:63:38:c0:d9:3a: ef:a9:06:c1:ba:c1:c8:a9:38:28:e7:66:63:d6:b1: 39:a6:8a:ed:fb:bf:e5:51:7e:62:15:d5:d0:d8:fe: 1e:87 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:4F:FF:3C:F9:00:E7:6A:AE:0D:2C:D2:E7:7D:FE:AE:24:C5:D2:4C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/a9666e-fcf0-4fb6-a452-38b392c6e1bf/1/GE__PPkA52quDSzS533-riTF0kw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.0.96.0/21 IPv6: 2a03:6a60::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198312 Signature Algorithm: sha256WithRSAEncryption 11:f5:7d:1d:3e:48:94:f0:6c:dd:eb:b4:78:9a:70:42:9a:c2: 37:ae:da:97:ce:f0:77:57:5d:e9:1a:54:9a:52:8c:91:f5:e0: 50:c9:f7:fb:fa:7b:83:08:c5:7e:4c:f8:8a:d1:3c:4d:1b:11: 64:f2:79:d4:f8:d0:97:5b:5b:57:51:c6:65:e7:d6:2c:24:11: 32:b3:f9:6f:96:12:9c:d2:94:97:4b:5b:5c:f7:3b:22:90:fd: 8e:df:b0:9e:0e:5e:1f:32:66:40:d0:cd:be:85:12:9a:5b:06: 75:0e:f7:58:47:e8:26:8e:18:bc:3e:08:70:fc:8a:be:42:8e: 5b:61:fb:fb:53:0c:ff:1d:57:c6:07:4b:b9:e6:96:c6:77:4a: 4b:ff:81:79:65:9b:f6:ae:04:2f:b7:b6:6a:b4:a5:35:b6:7a: bc:ee:5f:d6:9b:cd:7f:ef:72:d9:4c:4d:fe:59:a9:48:2f:6f: 0c:27:ee:c1:2a:77:74:ef:54:38:d7:3f:da:b7:9e:00:7b:ed: a2:7c:03:7e:29:d3:af:19:bc:82:e0:46:84:d1:5e:00:5b:cc: 01:82:37:75:6f:c4:6a:40:64:f0:5e:0f:48:90:b9:c7:4e:39: 96:2c:ca:42:02:4b:fa:ae:a9:a0:cc:8b:f0:7a:79:66:cd:75: 5e:73:15:38 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9yoz27zqVej4HWRChOqUxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxODRmZmYzY2Y5MDBlNzZhYWUwZDJjZDJlNzdkZmVhZTI0YzVkMjRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoB46VfaQ3KG6cAiuTqO17NJTUTri C0CA2FLWAltxbzO6WEz4JAyy/tJKTAADz5QsBW1xbb8pJnDSOLzZ8FcMD77rq46R 4fXKuLpmt0clNOwIP9HSBnvdqikUYLbGuCfiuUTCBsIzjr1wQoHZCfX7g8DL2vhs 1v64aMKKEN0HJwhB8sg2MZz941C9qs2XwcwWfIn2HJa6bELOom78u9tO1G86WvY1 vPKznfqLpkdLY2tsujNSVqOc8sKLwpunezpnehk9L7PJaLCXwMPzDAX+m+C6xGO/ RFwkii/xYzjA2TrvqQbBusHIqTgo52Zj1rE5port+7/lUX5iFdXQ2P4ehwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFBhP/zz5AOdqrg0s0ud9/q4kxdJMMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y1L2E5NjY2 ZS1mY2YwLTRmYjYtYTQ1Mi0zOGIzOTJjNmUxYmYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUvYTk2NjZl LWZjZjAtNGZiNi1hNDUyLTM4YjM5MmM2ZTFiZi8xL0dFX19QUGtBNTJxdURTelM1 MzMtcmlURjBrdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQDJQBgMA0EAgACMAcDBQAqA2pgMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMGqDANBgkqhkiG9w0BAQsFAAOCAQEAEfV9HT5IlPBs 3eu0eJpwQprCN67al87wd1dd6RpUmlKMkfXgUMn3+/p7gwjFfkz4itE8TRsRZPJ5 1PjQl1tbV1HGZefWLCQRMrP5b5YSnNKUl0tbXPc7IpD9jt+wng5eHzJmQNDNvoUS mlsGdQ73WEfoJo4YvD4IcPyKvkKOW2H7+1MM/x1XxgdLueaWxndKS/+BeWWb9q4E L7e2arSlNbZ6vO5f1pvNf+9y2UxN/lmpSC9vDCfuwSp3dO9UONc/2reeAHvtonwD finTrxm8guBGhNFeAFvMAYI3dW/EakBk8F4PSJC5x045lizKQgJL+q6poMyL8Hp5 Zs11XnMVOA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:30 2026 by rpki-client