This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/K1iORmAJUgViBhvvZbf0gpgomGU.cer File: K1iORmAJUgViBhvvZbf0gpgomGU.cer (raw, json) Hash identifier: BoL3A2ykLdQiPniilorgLWf04//MtqLELFhO2wo/+8g= Subject key identifier: 2B:58:8E:46:60:09:52:05:62:06:1B:EF:65:B7:F4:82:98:28:98:65 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BDD8F474A72EB63378AE4E0D2075C3226 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/375f16-6aee-462a-a6f8-ccafb82473a5/1/K1iORmAJUgViBhvvZbf0gpgomGU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/375f16-6aee-462a-a6f8-ccafb82473a5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Tue 20 Jan 2026 22:38:33 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 214598 IP: 2a00:4ac0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:dd:8f:47:4a:72:eb:63:37:8a:e4:e0:d2:07:5c:32:26 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 20 22:38:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2b588e466009520562061bef65b7f48298289865 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c8:d6:a6:6a:a5:80:e5:58:ea:6b:23:b9:d2:c2: 5c:69:8f:2d:cb:ab:18:31:3b:63:f6:67:a6:ff:29: 29:56:bc:58:a9:49:b1:19:16:1c:85:0c:a5:d4:55: 07:ad:3e:79:02:8a:a9:82:46:ee:6b:36:fe:57:95: 04:db:70:82:ba:61:75:75:ba:29:3a:1b:10:c9:49: ea:69:d3:52:a1:32:43:90:04:c8:09:58:44:ee:5b: 58:88:dd:72:7e:c9:8a:35:d9:42:b9:ae:ba:00:d6: 6c:fc:98:46:7d:82:e5:81:05:a1:7e:41:ab:a5:0c: a0:44:6d:75:a1:f4:f9:a3:e0:43:ac:10:97:41:6c: a6:44:e3:82:f7:fd:1e:c1:4e:0a:d6:03:04:10:10: b1:0d:e0:70:50:22:96:ee:ec:0b:ff:67:66:dc:30: 96:08:5c:4e:c3:31:43:f8:df:2c:47:09:79:b3:de: e7:e6:20:72:88:0c:a9:b2:9c:43:44:be:46:c7:d9: c6:60:82:11:21:7c:03:1e:b1:a0:01:ab:7c:48:8a: 2f:65:12:da:09:c5:b7:72:3d:82:31:8d:9b:c8:05: cc:aa:9b:00:b3:48:3e:58:5c:de:0b:fa:e2:b6:73: e8:c1:de:7e:d7:81:47:af:d2:c2:76:64:b7:60:12: 5b:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2B:58:8E:46:60:09:52:05:62:06:1B:EF:65:B7:F4:82:98:28:98:65 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/375f16-6aee-462a-a6f8-ccafb82473a5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/375f16-6aee-462a-a6f8-ccafb82473a5/1/K1iORmAJUgViBhvvZbf0gpgomGU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a00:4ac0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 214598 Signature Algorithm: sha256WithRSAEncryption 83:56:90:1a:ac:19:7c:ff:d8:13:4a:67:e5:10:e5:1a:4d:d7: a4:7a:52:42:89:49:67:b8:20:9e:eb:c0:67:da:18:18:68:fb: 21:8d:bf:79:29:64:64:94:1e:c4:81:36:e4:cc:b2:0f:5c:de: 71:75:a5:68:c3:83:5a:30:e9:23:6e:45:6c:32:76:0b:57:2e: aa:c8:3e:b2:37:cf:b5:93:55:32:b8:4d:c0:b3:25:be:55:95: d3:91:7f:35:7f:a4:c9:4a:8d:5a:7b:0e:18:81:2c:89:5f:76: c0:8f:42:31:55:7a:7f:e9:51:d5:49:ba:e8:79:78:56:53:f7: 7b:be:13:d5:55:91:a7:f2:ac:3f:94:53:54:1b:29:a0:fe:04: 86:a1:7d:42:8b:31:2d:1d:37:b1:86:e7:b4:1c:41:c8:1a:bb: 1c:f5:d7:ea:8a:7d:65:a7:df:31:d1:27:88:86:83:8e:72:20: 46:11:8f:cc:53:d2:d0:2e:46:81:40:1d:7d:2f:33:9d:4c:43: 43:56:18:56:2c:23:1e:4f:a7:3e:a7:96:0a:ed:50:a9:ad:9a: b5:b4:5f:8a:1f:85:46:5b:af:dc:a0:7c:b2:b8:73:08:0f:2f: 05:a9:8f:2f:b8:da:a7:cf:c0:80:23:d7:e2:6b:2d:ff:97:3b: 14:84:0e:4a -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgISAZvdj0dKcutjN4rk4NIHXDImMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTIwMjIzODMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyYjU4OGU0NjYwMDk1MjA1NjIwNjFiZWY2NWI3ZjQ4Mjk4Mjg5ODY1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyNamaqWA5VjqayO50sJcaY8ty6sY MTtj9mem/ykpVrxYqUmxGRYchQyl1FUHrT55Aoqpgkbuazb+V5UE23CCumF1dbop OhsQyUnqadNSoTJDkATICVhE7ltYiN1yfsmKNdlCua66ANZs/JhGfYLlgQWhfkGr pQygRG11ofT5o+BDrBCXQWymROOC9/0ewU4K1gMEEBCxDeBwUCKW7uwL/2dm3DCW CFxOwzFD+N8sRwl5s97n5iByiAypspxDRL5Gx9nGYIIRIXwDHrGgAat8SIovZRLa CcW3cj2CMY2byAXMqpsAs0g+WFzeC/ritnPowd5+14FHr9LCdmS3YBJbgQIDAQAB o4ICoTCCAp0wHQYDVR0OBBYEFCtYjkZgCVIFYgYb72W39IKYKJhlMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk5LzM3NWYx Ni02YWVlLTQ2MmEtYTZmOC1jY2FmYjgyNDczYTUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkvMzc1ZjE2 LTZhZWUtNDYyYS1hNmY4LWNjYWZiODI0NzNhNS8xL0sxaU9SbUFKVWdWaUJodnZa YmYwZ3Bnb21HVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF BwEHAQH/BBEwDzANBAIAAjAHAwUDKgBKwDAaBggrBgEFBQcBCAEB/wQLMAmgBzAF AgMDRkYwDQYJKoZIhvcNAQELBQADggEBAINWkBqsGXz/2BNKZ+UQ5RpN16R6UkKJ SWe4IJ7rwGfaGBho+yGNv3kpZGSUHsSBNuTMsg9c3nF1pWjDg1ow6SNuRWwydgtX LqrIPrI3z7WTVTK4TcCzJb5VldORfzV/pMlKjVp7DhiBLIlfdsCPQjFVen/pUdVJ uuh5eFZT93u+E9VVkafyrD+UU1QbKaD+BIahfUKLMS0dN7GG57QcQcgauxz11+qK fWWn3zHRJ4iGg45yIEYRj8xT0tAuRoFAHX0vM51MQ0NWGFYsIx5Ppz6nlgrtUKmt mrW0X4ofhUZbr9ygfLK4cwgPLwWpjy+42qfPwIAj1+JrLf+XOxSEDko= -----END CERTIFICATE-----Generated at Mon Feb 2 08:06:59 2026 by rpki-client