This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.cer File: J-Nn2N7PfWJuVHgPgOVzYNLAeM0.cer (raw, json) Hash identifier: 0y2d1p0zrMA8dEPzSF8dnwYVwOWdjhafz+shQvDnqBU= Subject key identifier: 27:E3:67:D8:DE:CF:7D:62:6E:54:78:0F:80:E5:73:60:D2:C0:78:CD Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77592313029FC6C4F9CB13307F4FCF0E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204184 AS: 204616 IP: 185.245.52.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:23:13:02:9f:c6:c4:f9:cb:13:30:7f:4f:cf:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=27e367d8decf7d626e54780f80e57360d2c078cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:e1:5c:1e:6f:9b:dc:57:de:cf:18:57:49:8f: 3f:4b:5e:90:51:86:1b:b5:4c:20:ed:cd:b9:03:7b: 59:3e:2d:49:27:a1:ba:28:96:81:7e:90:a8:12:08: 5e:d5:c7:12:c5:e0:ed:94:ec:20:98:12:1e:a8:c2: d9:36:34:93:5a:0d:06:21:91:55:bf:cc:bc:ea:4a: fc:17:f4:8e:f5:12:59:eb:27:f7:08:02:38:5f:d1: 21:51:1d:e1:72:52:00:f0:38:55:54:54:d4:02:ee: 17:cf:82:28:ea:e5:ae:2c:c2:4d:75:70:d5:6a:dc: 3f:2f:74:28:26:fe:bd:3a:13:68:15:55:f4:ed:99: a5:77:1c:53:e0:c3:32:71:00:c9:9a:fe:41:ca:89: 27:73:0e:3d:e3:63:f6:99:13:25:83:01:c4:48:33: 47:cb:af:57:21:9d:a6:fe:0e:d0:ae:c1:d0:99:0d: d8:d0:87:03:bd:75:1d:ba:9e:99:c5:79:c4:68:d9: 25:9d:75:f9:1e:04:e4:a5:1f:e4:4c:15:d9:5d:8e: c1:46:bb:4b:10:41:ef:1d:de:0d:d3:20:dc:52:a9: 6e:9f:f4:32:53:e3:c0:14:b0:6b:62:ce:6c:cd:6b: 2c:9f:99:96:ce:dc:87:7a:e7:60:53:d9:b8:93:43: 28:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 27:E3:67:D8:DE:CF:7D:62:6E:54:78:0F:80:E5:73:60:D2:C0:78:CD X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/72/5f0579-0efa-422b-aa68-a434fd088fd0/1/J-Nn2N7PfWJuVHgPgOVzYNLAeM0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.245.52.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204184 204616 Signature Algorithm: sha256WithRSAEncryption 85:d5:cc:7e:e5:fc:52:01:d1:74:6c:ad:4a:90:c2:e4:90:41: ab:da:2b:1e:9f:6b:69:cb:93:a1:e1:2d:2f:45:ae:cf:c3:9f: 62:d9:30:e2:2b:31:fe:89:39:37:e9:29:a8:80:9b:ee:e3:39: 6b:10:0f:45:f0:7e:35:e9:db:18:4c:f3:4e:2e:bb:cb:a5:81: a6:ed:c3:1f:27:f9:db:b0:b9:f7:60:f0:08:19:88:e8:e5:e3: af:5f:f8:21:57:18:09:16:2b:4d:33:30:73:5c:6b:6f:fc:28: 22:a7:3f:e6:00:c4:95:59:b1:5f:27:04:02:f8:be:1c:47:9a: f8:08:a3:73:45:b0:9b:21:f6:d1:4f:43:70:26:d5:5f:a0:1b: 9b:08:86:a5:c2:82:76:4a:84:c0:e2:74:22:13:b8:6f:56:5e: 63:b8:b3:4c:99:48:20:28:ee:11:1b:7f:44:7e:25:52:71:fa: 87:30:55:e2:5a:4a:65:39:eb:3b:09:94:35:a1:59:a7:e6:cf: 9f:9f:69:9e:a7:80:f1:46:0b:e9:86:8a:c7:2e:70:89:b0:da: 84:ce:83:23:0a:c0:c6:1a:b0:8c:52:c1:d0:f5:c7:d5:b6:c0: 95:82:f6:58:e4:9f:ee:a9:c4:bf:30:e1:3a:41:91:ac:ab:7f: d4:3a:db:e3 -----BEGIN CERTIFICATE----- MIIFmTCCBIGgAwIBAgISAZt3WSMTAp/GxPnLEzB/T88OMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyN2UzNjdkOGRlY2Y3ZDYyNmU1NDc4MGY4MGU1NzM2MGQyYzA3OGNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOFcHm+b3FfezxhXSY8/S16QUYYb tUwg7c25A3tZPi1JJ6G6KJaBfpCoEghe1ccSxeDtlOwgmBIeqMLZNjSTWg0GIZFV v8y86kr8F/SO9RJZ6yf3CAI4X9EhUR3hclIA8DhVVFTUAu4Xz4Io6uWuLMJNdXDV atw/L3QoJv69OhNoFVX07ZmldxxT4MMycQDJmv5Byokncw4942P2mRMlgwHESDNH y69XIZ2m/g7QrsHQmQ3Y0IcDvXUdup6ZxXnEaNklnXX5HgTkpR/kTBXZXY7BRrtL EEHvHd4N0yDcUqlun/QyU+PAFLBrYs5szWssn5mWztyHeudgU9m4k0MotQIDAQAB o4ICpTCCAqEwHQYDVR0OBBYEFCfjZ9jez31iblR4D4Dlc2DSwHjNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzcyLzVmMDU3 OS0wZWZhLTQyMmItYWE2OC1hNDM0ZmQwODhmZDAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzIvNWYwNTc5 LTBlZmEtNDIyYi1hYTY4LWE0MzRmZDA4OGZkMC8xL0otTm4yTjdQZldKdVZIZ1Bn T1Z6WU5MQWVNMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCufU0MB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoC AwMdmAIDAx9IMA0GCSqGSIb3DQEBCwUAA4IBAQCF1cx+5fxSAdF0bK1KkMLkkEGr 2isen2tpy5Oh4S0vRa7Pw59i2TDiKzH+iTk36SmogJvu4zlrEA9F8H416dsYTPNO LrvLpYGm7cMfJ/nbsLn3YPAIGYjo5eOvX/ghVxgJFitNMzBzXGtv/Cgipz/mAMSV WbFfJwQC+L4cR5r4CKNzRbCbIfbRT0NwJtVfoBubCIalwoJ2SoTA4nQiE7hvVl5j uLNMmUggKO4RG39EfiVScfqHMFXiWkplOes7CZQ1oVmn5s+fn2mep4DxRgvphorH LnCJsNqEzoMjCsDGGrCMUsHQ9cfVtsCVgvZY5J/uqcS/MOE6QZGsq3/UOtvj -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:02 2026 by rpki-client