This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JNuhs13nN_cbfFUN9fS0ToNka40.cer File: JNuhs13nN_cbfFUN9fS0ToNka40.cer (raw, json) Hash identifier: +Gc/q+29jxjkrXg8O202VHR1yG+uy0K3JvS7DGnNIRs= Subject key identifier: 24:DB:A1:B3:5D:E7:37:F7:1B:7C:55:0D:F5:F4:B4:4E:83:64:6B:8D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7F29562A7157DFD285217F5465D9B3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/41/895e9f-d541-4564-9947-da04e2f39b88/1/JNuhs13nN_cbfFUN9fS0ToNka40.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/41/895e9f-d541-4564-9947-da04e2f39b88/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:17:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.62.2.0/24 IP: 2a13:d480::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:29:56:2a:71:57:df:d2:85:21:7f:54:65:d9:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:17:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=24dba1b35de737f71b7c550df5f4b44e83646b8d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ac:49:59:cb:00:90:8e:75:da:bd:63:08:60:7d: 17:a7:8c:4f:ed:f1:2a:c7:22:66:e7:c1:61:4e:54: 86:7b:cc:2d:4f:fd:f2:09:12:50:24:ec:c8:10:59: b0:db:ff:91:b3:27:24:8e:30:35:41:b9:0c:0b:7b: bb:c8:a9:c4:96:33:bd:99:41:50:7e:3c:b8:83:3d: 50:98:08:d6:b0:3d:66:3b:2a:ce:ed:3b:f6:14:bf: e3:4b:95:c1:67:7c:c1:45:6f:ec:22:8f:37:71:b0: cc:50:a8:25:be:8f:4b:f4:85:8b:a3:fa:20:dc:79: 9d:e9:4e:26:6d:e8:c0:90:2e:b1:16:41:6a:61:9d: 03:9e:29:cf:39:75:6d:2a:6b:03:04:da:1b:e4:c2: 8f:7d:b7:3a:c2:b9:3c:96:4a:11:5b:9b:7a:65:6e: 43:1b:17:f0:c5:a7:4d:fc:9e:b5:f6:a1:fe:a7:65: ec:29:db:a6:88:c5:48:d2:05:5c:1b:45:b7:38:47: 00:75:09:9f:f5:e6:42:c9:83:55:f6:79:95:00:66: 84:eb:78:01:9c:72:6f:78:b5:39:eb:df:f6:d3:b3: 64:7a:3d:3b:fe:5a:45:49:39:46:74:62:e5:2e:fa: b3:9f:15:82:03:20:f7:47:a3:f2:3f:fd:be:30:de: 07:b7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 24:DB:A1:B3:5D:E7:37:F7:1B:7C:55:0D:F5:F4:B4:4E:83:64:6B:8D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/895e9f-d541-4564-9947-da04e2f39b88/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/895e9f-d541-4564-9947-da04e2f39b88/1/JNuhs13nN_cbfFUN9fS0ToNka40.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.62.2.0/24 IPv6: 2a13:d480::/29 Signature Algorithm: sha256WithRSAEncryption 8b:f0:16:2b:bb:61:ee:7d:e0:64:d4:2c:36:7c:4b:e4:e9:4e: 5b:d4:b5:cf:09:a7:d7:e3:8a:e6:27:39:86:08:6b:7f:ed:50: cd:c4:c3:c7:d5:d2:53:37:cf:27:cc:cc:a4:26:3d:1a:c1:d9: 78:75:4c:ef:cb:8d:c0:bb:86:bc:de:91:cf:89:86:1a:f6:1a: 06:f0:72:55:17:a5:d2:50:2f:2a:99:ca:82:f4:46:28:dd:74: 21:b5:aa:f2:22:ab:b0:16:82:0f:d9:b5:8e:82:ba:08:8d:93: 02:78:c0:05:03:1d:a9:6d:c9:af:85:e1:98:68:21:d5:34:6a: ea:26:68:28:27:68:23:e2:6a:0b:bf:3f:37:4f:1c:22:c0:b7: 71:b6:db:5e:b9:a8:9e:d6:d1:81:92:fa:0a:06:9d:b0:45:d7: a2:bd:08:e7:36:c9:2c:f8:b9:40:e1:25:52:b0:39:02:9a:99: 5c:fd:37:1e:4d:94:0a:b1:54:fc:cf:6a:89:fd:6d:b4:fc:b8: 75:8a:7e:01:f4:84:2c:00:a6:d2:ad:13:03:69:f3:6e:f0:58: aa:4f:87:64:2a:8a:d6:d5:8b:15:f5:67:6b:fd:f6:55:59:da: 3a:2e:3b:90:0d:37:ae:4e:17:77:67:02:60:4b:7d:a0:08:ff: 00:3e:d2:30 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt8fylWKnFX39KFIX9UZdmzMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxNzQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNGRiYTFiMzVkZTczN2Y3MWI3YzU1MGRmNWY0YjQ0ZTgzNjQ2YjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArElZywCQjnXavWMIYH0Xp4xP7fEq xyJm58FhTlSGe8wtT/3yCRJQJOzIEFmw2/+RsyckjjA1QbkMC3u7yKnEljO9mUFQ fjy4gz1QmAjWsD1mOyrO7Tv2FL/jS5XBZ3zBRW/sIo83cbDMUKglvo9L9IWLo/og 3Hmd6U4mbejAkC6xFkFqYZ0DninPOXVtKmsDBNob5MKPfbc6wrk8lkoRW5t6ZW5D GxfwxadN/J619qH+p2XsKdumiMVI0gVcG0W3OEcAdQmf9eZCyYNV9nmVAGaE63gB nHJveLU569/207Nkej07/lpFSTlGdGLlLvqznxWCAyD3R6PyP/2+MN4HtwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFCTbobNd5zf3G3xVDfX0tE6DZGuNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQxLzg5NWU5 Zi1kNTQxLTQ1NjQtOTk0Ny1kYTA0ZTJmMzliODgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDEvODk1ZTlm LWQ1NDEtNDU2NC05OTQ3LWRhMDRlMmYzOWI4OC8xL0pOdWhzMTNuTl9jYmZGVU45 ZlMwVG9Oa2E0MC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuT4CMA0EAgACMAcDBQMqE9SAMA0GCSqGSIb3 DQEBCwUAA4IBAQCL8BYru2HufeBk1Cw2fEvk6U5b1LXPCafX44rmJzmGCGt/7VDN xMPH1dJTN88nzMykJj0awdl4dUzvy43Au4a83pHPiYYa9hoG8HJVF6XSUC8qmcqC 9EYo3XQhtaryIquwFoIP2bWOgroIjZMCeMAFAx2pbcmvheGYaCHVNGrqJmgoJ2gj 4moLvz83TxwiwLdxttteuaie1tGBkvoKBp2wRdeivQjnNsks+LlA4SVSsDkCmplc /TceTZQKsVT8z2qJ/W20/Lh1in4B9IQsAKbSrRMDafNu8FiqT4dkKorW1YsV9Wdr /fZVWdo6LjuQDTeuThd3ZwJgS32gCP8APtIw -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:09 2026 by rpki-client