This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/IsFSYGEl62bVIiY_oDEJu_C7o9o.cer File: IsFSYGEl62bVIiY_oDEJu_C7o9o.cer (raw, json) Hash identifier: UvhITJi7sAougLXBHRjFS2gHTWYjBsM++G0krQ+186g= Subject key identifier: 22:C1:52:60:61:25:EB:66:D5:22:26:3F:A0:31:09:BB:F0:BB:A3:DA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE5E6368FB181DD9A8F4B9BECDB249 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4b/ac25b4-194e-49c4-aab1-0fe4d7f7db3d/1/IsFSYGEl62bVIiY_oDEJu_C7o9o.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4b/ac25b4-194e-49c4-aab1-0fe4d7f7db3d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:19:15 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198874 IP: 91.234.228.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:5e:63:68:fb:18:1d:d9:a8:f4:b9:be:cd:b2:49 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:19:15 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22c152606125eb66d522263fa03109bbf0bba3da Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ea:7c:0a:ae:d8:a1:97:fc:e3:95:cc:58:d1:92: 89:a6:0c:b7:98:88:cf:16:6e:ba:f4:65:06:2b:a0: 46:e3:65:fd:e1:c4:99:ce:58:0a:2d:7e:8f:67:dc: 49:9b:01:66:f5:0f:a3:52:0f:70:08:55:51:52:80: a9:1c:b4:bb:67:6e:a8:73:ab:39:0a:f0:6f:e7:5f: 0f:44:13:7a:f9:5a:3e:f3:fa:11:29:c4:0e:a9:43: b1:9f:84:18:ce:d1:35:2f:68:6d:cb:c5:d3:b0:f8: 44:b9:66:f0:d1:b9:50:30:e1:77:d2:d1:51:d0:1c: 2e:f3:19:e3:da:e0:e8:12:07:43:e7:31:f8:d8:95: 3c:87:c1:0b:05:25:24:40:bd:93:6d:4d:6e:d6:8a: 44:cb:c0:a3:22:43:0a:c4:c3:31:ee:bd:8c:0e:5b: 85:a2:31:eb:8b:59:33:b0:6a:b5:66:8c:1c:60:b5: d8:86:1e:c3:8f:6d:96:87:3e:54:60:c0:6a:e4:e7: ed:a5:25:cf:48:85:e9:ab:1b:0b:87:f1:33:a7:80: e4:11:c3:de:3a:14:14:b5:25:35:52:2e:c8:7c:63: 0c:9d:d7:4e:5d:62:9d:6d:e3:f6:c5:ce:4d:15:3a: ce:f6:ee:f1:38:ab:9e:e1:7d:9e:df:5e:60:e2:40: e6:a3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C1:52:60:61:25:EB:66:D5:22:26:3F:A0:31:09:BB:F0:BB:A3:DA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ac25b4-194e-49c4-aab1-0fe4d7f7db3d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4b/ac25b4-194e-49c4-aab1-0fe4d7f7db3d/1/IsFSYGEl62bVIiY_oDEJu_C7o9o.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.234.228.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198874 Signature Algorithm: sha256WithRSAEncryption 32:a1:07:b7:cc:b2:9c:52:1e:7f:bb:1f:22:be:d0:13:60:ca: 29:9c:37:25:61:c0:37:fd:f3:71:bd:6b:75:93:f8:5e:2a:86: 0a:2c:c8:4e:df:48:e6:b5:ed:b8:72:7a:f1:28:5b:c2:58:32: 89:8c:c0:bc:9e:2b:40:d1:c3:12:f3:36:e5:ad:23:17:8d:ba: 07:9a:83:16:4b:e8:4b:b2:e9:ea:89:a5:b2:9f:1f:aa:12:a8: 07:ca:67:36:1a:8c:bf:62:05:ce:99:d1:4c:bb:40:1e:45:5d: a6:7e:e3:69:28:66:f3:01:c3:fe:4e:4c:11:d4:96:b1:f1:9e: 50:b0:fc:08:f5:13:aa:dd:96:6a:77:22:98:7e:16:26:44:51: a7:12:c3:0a:2f:68:8d:6c:ad:0b:a4:b3:3e:27:06:68:ef:2b: c5:72:bb:34:75:3d:d5:48:3a:41:cc:cc:e2:bd:de:33:2d:60: 8d:7e:f7:79:46:0a:30:29:9f:73:e1:14:bb:2a:7d:7d:f0:89: 8b:bc:d2:fe:35:45:6c:9b:c9:de:8c:64:8a:f8:d1:d5:0d:89: ed:68:0f:91:a8:f5:ec:fb:48:c6:6b:d1:19:00:79:9a:c1:4c: 34:f0:f5:4a:fd:8f:15:ad:da:2e:a5:e5:a1:02:9f:34:dc:c3: a5:08:5d:1b -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt87l5jaPsYHdmo9Lm+zbJJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxOTE1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmMxNTI2MDYxMjVlYjY2ZDUyMjI2M2ZhMDMxMDliYmYwYmJhM2RhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6nwKrtihl/zjlcxY0ZKJpgy3mIjP Fm669GUGK6BG42X94cSZzlgKLX6PZ9xJmwFm9Q+jUg9wCFVRUoCpHLS7Z26oc6s5 CvBv518PRBN6+Vo+8/oRKcQOqUOxn4QYztE1L2hty8XTsPhEuWbw0blQMOF30tFR 0Bwu8xnj2uDoEgdD5zH42JU8h8ELBSUkQL2TbU1u1opEy8CjIkMKxMMx7r2MDluF ojHri1kzsGq1ZowcYLXYhh7Dj22Whz5UYMBq5OftpSXPSIXpqxsLh/Ezp4DkEcPe OhQUtSU1Ui7IfGMMnddOXWKdbeP2xc5NFTrO9u7xOKue4X2e315g4kDmowIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFCLBUmBhJetm1SImP6AxCbvwu6PaMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRiL2FjMjVi NC0xOTRlLTQ5YzQtYWFiMS0wZmU0ZDdmN2RiM2QvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGIvYWMyNWI0 LTE5NGUtNDljNC1hYWIxLTBmZTRkN2Y3ZGIzZC8xL0lzRlNZR0VsNjJiVklpWV9v REVKdV9DN285by5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW+rkMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMI2jANBgkqhkiG9w0BAQsFAAOCAQEAMqEHt8yynFIef7sfIr7QE2DKKZw3JWHA N/3zcb1rdZP4XiqGCizITt9I5rXtuHJ68ShbwlgyiYzAvJ4rQNHDEvM25a0jF426 B5qDFkvoS7Lp6omlsp8fqhKoB8pnNhqMv2IFzpnRTLtAHkVdpn7jaShm8wHD/k5M EdSWsfGeULD8CPUTqt2WancimH4WJkRRpxLDCi9ojWytC6SzPicGaO8rxXK7NHU9 1Ug6QczM4r3eMy1gjX73eUYKMCmfc+EUuyp9ffCJi7zS/jVFbJvJ3oxkivjR1Q2J 7WgPkaj17PtIxmvRGQB5msFMNPD1Sv2PFa3aLqXloQKfNNzDpQhdGw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:52 2026 by rpki-client