This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/K0mJ_jyso_MEQ8VKkC9pEhENkZU.cer File: K0mJ_jyso_MEQ8VKkC9pEhENkZU.cer (raw, json) Hash identifier: 872J03S9Fh8uYwVE+h7BhmtgKwB8d1qWyFz30eMARAk= Subject key identifier: 2B:49:89:FE:3C:AC:A3:F3:04:43:C5:4A:90:2F:69:12:11:0D:91:95 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC85856A3273A261F77AB8846FE24CE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/12/9a641f-e4a7-4cc4-acec-5c38e7fe8e81/1/K0mJ_jyso_MEQ8VKkC9pEhENkZU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/12/9a641f-e4a7-4cc4-acec-5c38e7fe8e81/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:28 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205590 AS: 212292 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:58:56:a3:27:3a:26:1f:77:ab:88:46:fe:24:ce Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2b4989fe3caca3f30443c54a902f6912110d9195 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:da:f1:1b:08:61:2d:94:ae:f1:d0:a6:fc:e8:43: bd:f7:5b:19:ae:2d:99:63:03:69:c8:8f:1f:92:4f: a8:f7:7d:88:24:3d:3a:27:dc:9f:b9:27:21:ff:bf: 31:30:75:49:06:49:87:89:98:8e:93:3f:8a:16:5b: 64:56:8e:4d:4b:48:9a:cc:60:ec:10:33:a4:d6:a9: ea:a0:6d:0b:bf:39:b9:43:60:fa:22:c6:6e:27:f8: 6f:5e:0d:1c:44:b2:10:23:59:90:08:ec:c1:d8:3d: c8:73:f7:3a:fa:d4:c6:46:36:61:b5:ce:b3:6d:c1: 92:5e:4e:f4:c3:71:73:08:6b:49:71:fc:6a:b5:e4: e9:b8:db:6e:00:8b:39:d1:b2:6b:b2:37:19:96:f7: ab:da:11:fa:9d:05:67:d6:23:a7:31:f4:e3:27:19: 92:ec:37:a2:90:58:5b:de:dd:4b:fa:46:11:60:9b: 7c:27:77:71:eb:17:56:90:1b:be:a6:0e:bb:cb:1b: 16:7b:8e:b1:a7:5b:75:1a:e1:60:d0:a1:0a:da:0e: 7d:75:37:41:5f:91:e6:3b:34:0b:5b:b7:9e:ab:af: 43:b7:5a:2f:df:01:4e:0c:25:b9:a6:c7:2f:2d:48: 4b:d9:0c:5a:d5:73:ae:32:13:d1:6c:a0:ae:fb:88: 50:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:49:89:FE:3C:AC:A3:F3:04:43:C5:4A:90:2F:69:12:11:0D:91:95 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9a641f-e4a7-4cc4-acec-5c38e7fe8e81/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/9a641f-e4a7-4cc4-acec-5c38e7fe8e81/1/K0mJ_jyso_MEQ8VKkC9pEhENkZU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 205590 212292 Signature Algorithm: sha256WithRSAEncryption 72:f6:0e:c5:32:33:df:46:00:81:aa:94:6b:ef:43:d5:65:5a: b7:9c:90:b8:20:f4:64:b3:8f:2d:f5:53:64:e6:57:68:64:0f: b1:2e:2f:e1:99:f7:0f:a2:24:3b:53:83:c4:ab:f9:d4:77:1c: 78:aa:03:78:d6:eb:3a:fc:d4:04:3e:7e:a5:77:fd:98:db:28: 14:e0:52:9a:44:cd:4b:a4:a9:83:86:03:1c:b5:9b:49:41:c0: 3f:07:ea:12:69:77:33:a0:c4:16:43:23:18:fe:1b:7b:70:90: 47:b2:c4:ad:61:91:7c:ee:54:93:47:f8:7f:33:fc:5e:a9:a2: 09:72:09:61:1e:d1:fa:19:fc:6c:3f:65:7e:eb:e4:b1:42:cb: 90:cf:0a:c8:67:9f:62:84:11:01:95:9e:d3:19:df:f5:75:d8: 64:c2:34:ee:3a:8c:50:f9:ef:e9:aa:58:28:7e:74:ef:c7:a4: a3:9c:04:06:bb:05:77:a2:47:3e:1c:18:50:08:b6:9d:af:73: 97:30:cd:2d:61:5c:d9:aa:5d:e4:be:4f:dc:a5:f0:25:64:ae: fc:75:39:d5:cb:99:d7:d5:72:ff:93:2c:34:36:70:b8:00:a4: 08:23:71:9e:49:cf:da:9d:b8:0c:0e:17:f7:e3:29:97:55:51: 71:17:ed:76 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt6yFhWoyc6Jh93q4hG/iTOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYjQ5ODlmZTNjYWNhM2YzMDQ0M2M1NGE5MDJmNjkxMjExMGQ5MTk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2vEbCGEtlK7x0Kb86EO991sZri2Z YwNpyI8fkk+o932IJD06J9yfuSch/78xMHVJBkmHiZiOkz+KFltkVo5NS0iazGDs EDOk1qnqoG0Lvzm5Q2D6IsZuJ/hvXg0cRLIQI1mQCOzB2D3Ic/c6+tTGRjZhtc6z bcGSXk70w3FzCGtJcfxqteTpuNtuAIs50bJrsjcZlver2hH6nQVn1iOnMfTjJxmS 7DeikFhb3t1L+kYRYJt8J3dx6xdWkBu+pg67yxsWe46xp1t1GuFg0KEK2g59dTdB X5HmOzQLW7eeq69Dt1ov3wFODCW5pscvLUhL2Qxa1XOuMhPRbKCu+4hQJwIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFCtJif48rKPzBEPFSpAvaRIRDZGVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEyLzlhNjQx Zi1lNGE3LTRjYzQtYWNlYy01YzM4ZTdmZThlODEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIvOWE2NDFm LWU0YTctNGNjNC1hY2VjLTVjMzhlN2ZlOGU4MS8xL0swbUpfanlzb19NRVE4Vktr QzlwRWhFTmtaVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEIAQH/BBAwDqAMMAoCAwMjFgIDAz1EMA0GCSqGSIb3DQEBCwUAA4IBAQBy9g7F MjPfRgCBqpRr70PVZVq3nJC4IPRks48t9VNk5ldoZA+xLi/hmfcPoiQ7U4PEq/nU dxx4qgN41us6/NQEPn6ld/2Y2ygU4FKaRM1LpKmDhgMctZtJQcA/B+oSaXczoMQW QyMY/ht7cJBHssStYZF87lSTR/h/M/xeqaIJcglhHtH6GfxsP2V+6+SxQsuQzwrI Z59ihBEBlZ7TGd/1ddhkwjTuOoxQ+e/pqlgofnTvx6SjnAQGuwV3okc+HBhQCLad r3OXMM0tYVzZql3kvk/cpfAlZK78dTnVy5nX1XL/kyw0NnC4AKQII3GeSc/anbgM Dhf34ymXVVFxF+12 -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:08 2026 by rpki-client