This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/JVf6lW8PU5gNecMs4ebpPv1Ij9c.cer File: JVf6lW8PU5gNecMs4ebpPv1Ij9c.cer (raw, json) Hash identifier: EqTx66yu6UxFN9B4QmRV8W5qRnVwGl+TDtqiFi1Y/Xo= Subject key identifier: 25:57:FA:95:6F:0F:53:98:0D:79:C3:2C:E1:E6:E9:3E:FD:48:8F:D7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78348371E647841CD6A247C79258D6D7 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/JVf6lW8PU5gNecMs4ebpPv1Ij9c.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208118 IP: 152.89.65.0 -- 152.89.67.255 IP: 2a09:2e40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:83:71:e6:47:84:1c:d6:a2:47:c7:92:58:d6:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2557fa956f0f53980d79c32ce1e6e93efd488fd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:92:d2:e4:f2:fc:30:e8:31:8e:9a:c0:8f:aa:58: f7:e0:97:aa:5f:f5:7e:e9:b0:f8:59:59:00:4f:97: 52:ed:d1:a0:95:0d:25:2c:d5:4f:e1:13:f9:46:cc: a3:9f:ae:81:0c:47:a5:4e:33:ff:e6:e0:2b:70:2d: 09:26:1f:dc:e9:45:29:14:06:33:44:29:94:ee:04: 0e:55:de:10:9f:80:c4:58:d6:e3:17:0d:93:ba:97: c5:f5:c9:57:28:f6:53:29:47:35:3a:89:c4:06:05: 1b:8a:af:a0:ea:dc:37:15:b5:df:ca:9c:31:61:2c: 6d:10:14:c9:8a:dd:7a:16:9a:58:c8:8f:91:81:1d: 8a:ca:a8:91:a8:e8:94:22:c2:94:23:27:46:88:06: 4d:27:40:bc:1d:e3:17:56:0b:3a:cd:8b:f9:fc:a7: ac:c4:f7:b0:67:a6:b6:31:e8:4f:4b:21:59:c6:89: 8d:ce:e5:9e:ce:c8:0f:ac:aa:a7:e3:b3:fc:fd:2a: 46:d4:91:75:8a:fd:e7:71:e3:5a:2d:48:cb:83:85: 64:f4:05:bd:3f:f0:99:bc:97:14:25:2c:17:44:72: 14:c1:e3:5c:80:df:42:71:68:4f:42:00:d0:8b:44: a3:5b:20:97:24:67:78:13:1e:3e:9d:07:cc:b3:5d: 47:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 25:57:FA:95:6F:0F:53:98:0D:79:C3:2C:E1:E6:E9:3E:FD:48:8F:D7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/820fea-3c8d-4977-8000-6d7163442244/1/JVf6lW8PU5gNecMs4ebpPv1Ij9c.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 152.89.65.0-152.89.67.255 IPv6: 2a09:2e40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208118 Signature Algorithm: sha256WithRSAEncryption 49:11:b6:67:5b:e2:26:bd:40:32:d5:c0:4c:9d:55:e2:b5:ab: 80:a5:1b:28:f6:b4:e8:d4:ab:a0:03:66:0b:24:83:1c:bc:a4: d0:b9:65:2a:e9:81:5c:f7:29:83:84:86:df:91:0a:25:67:74: c4:5a:fa:e0:ef:81:6f:f1:f4:18:97:ec:c9:43:a6:d5:4e:94: 95:23:27:48:75:43:e8:2e:df:83:86:f6:b1:82:a8:57:c9:71: 61:ab:0b:7c:65:90:56:cc:16:d4:ad:62:97:86:2b:b4:0a:35: 23:50:e7:52:03:6c:68:b4:da:27:1f:a1:5d:52:fd:c5:87:23: e0:e6:4b:fb:b1:db:40:ba:e9:5c:f4:63:90:04:b2:58:73:8d: f1:02:1d:13:59:0e:1b:85:91:e0:b8:90:d5:16:74:b9:81:e7: 1b:aa:cb:57:79:6a:a5:c5:93:70:d4:ef:bb:17:a3:31:d3:8c: ac:1d:94:3b:91:da:09:6f:45:b4:cd:b4:a0:50:c6:fa:13:10: b7:b7:1e:bb:fd:22:14:66:52:6b:85:03:fe:75:2f:cf:80:c2: 04:96:58:b7:f5:a3:b5:27:af:76:5d:8d:9c:42:93:0b:25:fb: a0:9f:e4:6e:7f:5f:04:e8:9d:02:97:27:e6:56:01:df:34:1a: 7c:6a:87:a2 -----BEGIN CERTIFICATE----- MIIFqzCCBJOgAwIBAgISAZt4NINx5keEHNaiR8eSWNbXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyNTU3ZmE5NTZmMGY1Mzk4MGQ3OWMzMmNlMWU2ZTkzZWZkNDg4ZmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAktLk8vww6DGOmsCPqlj34JeqX/V+ 6bD4WVkAT5dS7dGglQ0lLNVP4RP5Rsyjn66BDEelTjP/5uArcC0JJh/c6UUpFAYz RCmU7gQOVd4Qn4DEWNbjFw2TupfF9clXKPZTKUc1OonEBgUbiq+g6tw3FbXfypwx YSxtEBTJit16FppYyI+RgR2KyqiRqOiUIsKUIydGiAZNJ0C8HeMXVgs6zYv5/Kes xPewZ6a2MehPSyFZxomNzuWezsgPrKqn47P8/SpG1JF1iv3nceNaLUjLg4Vk9AW9 P/CZvJcUJSwXRHIUweNcgN9CcWhPQgDQi0SjWyCXJGd4Ex4+nQfMs11HVwIDAQAB o4ICtzCCArMwHQYDVR0OBBYEFCVX+pVvD1OYDXnDLOHm6T79SI/XMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q3LzgyMGZl YS0zYzhkLTQ5NzctODAwMC02ZDcxNjM0NDIyNDQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcvODIwZmVh LTNjOGQtNDk3Ny04MDAwLTZkNzE2MzQ0MjI0NC8xL0pWZjZsVzhQVTVnTmVjTXM0 ZWJwUHYxSWo5Yy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF BwEHAQH/BCcwJTAUBAIAATAOMAwDBACYWUEDBAKYWUAwDQQCAAIwBwMFAyoJLkAw GgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAyz2MA0GCSqGSIb3DQEBCwUAA4IBAQBJ EbZnW+ImvUAy1cBMnVXitauApRso9rTo1KugA2YLJIMcvKTQuWUq6YFc9ymDhIbf kQolZ3TEWvrg74Fv8fQYl+zJQ6bVTpSVIydIdUPoLt+DhvaxgqhXyXFhqwt8ZZBW zBbUrWKXhiu0CjUjUOdSA2xotNonH6FdUv3FhyPg5kv7sdtAuulc9GOQBLJYc43x Ah0TWQ4bhZHguJDVFnS5gecbqstXeWqlxZNw1O+7F6Mx04ysHZQ7kdoJb0W0zbSg UMb6ExC3tx67/SIUZlJrhQP+dS/PgMIElli39aO1J692XY2cQpMLJfugn+Ruf18E 6J0ClyfmVgHfNBp8aoei -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:36 2026 by rpki-client