This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer File: KbEhDskQXHF9CY-fDQDZ3qIyJTk.cer (raw, json) Hash identifier: 6i8kTWqwVpYBITkf0BZ4zAdGUP85MbTPTuHOXo0Ytt8= Subject key identifier: 29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C12D86BF588F2D41947B9FAA7D937A0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:19:28 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205957 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:d8:6b:f5:88:f2:d4:19:47:b9:fa:a7:d9:37:a0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:19:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=29b1210ec9105c717d098f9f0d00d9dea2322539 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a2:01:03:d9:7c:87:55:05:85:43:d8:70:0b:10: 90:ae:83:26:86:a1:cd:d8:32:b8:8b:8a:14:89:09: 01:8b:24:e0:88:66:b2:d2:6a:82:b2:57:23:6e:de: d6:55:f0:24:d5:1f:68:c4:75:26:86:34:96:37:44: 4f:fc:22:2b:32:72:65:47:08:be:7d:90:d6:30:5d: 89:fa:ea:e4:64:0d:ca:31:f3:04:73:43:6f:54:d7: 57:44:22:c8:4d:b1:bb:8d:d3:83:cc:27:a0:de:dd: 79:29:ab:86:36:cd:32:27:19:35:df:bb:51:a5:1b: ba:30:11:82:06:86:0f:f0:b9:96:a4:55:dc:9b:57: 11:e2:c6:83:ea:6e:b8:0b:48:a8:ec:08:23:4e:b7: d7:1f:7d:5f:6a:24:cd:6f:e5:42:ca:3d:c2:6a:8c: f9:11:cf:63:80:06:b7:8c:4b:df:f5:6a:ce:1d:33: 5f:9a:58:80:1b:38:30:54:08:39:89:22:90:df:54: ee:ee:74:ac:f5:64:29:98:bd:0a:68:c9:1c:fb:a1: cc:09:6e:90:bb:d2:e2:e6:ed:5c:ce:29:ac:d2:a7: 1d:71:13:a5:05:7a:f0:b5:49:a1:cf:22:64:2b:3c: 72:44:ef:39:a3:aa:e1:c2:22:31:3f:52:b2:c0:02: ad:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 29:B1:21:0E:C9:10:5C:71:7D:09:8F:9F:0D:00:D9:DE:A2:32:25:39 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/a00c61-2d87-4620-913f-0e464ca39e75/1/KbEhDskQXHF9CY-fDQDZ3qIyJTk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 205957 Signature Algorithm: sha256WithRSAEncryption 02:ab:03:f4:bb:91:85:a8:22:ca:a2:73:8f:00:17:a1:f1:25: 39:02:41:88:6e:62:c1:87:74:06:61:98:8d:8a:2a:c3:4e:f2: fa:a0:ee:39:d6:96:61:40:f1:53:b2:b8:2f:2b:23:72:05:56: d7:3d:54:d1:91:6d:82:81:ba:bc:f3:8c:49:f8:d0:3d:42:67: 80:13:a6:71:4c:00:10:51:bd:05:cf:b6:d8:e9:00:8a:32:b2: ca:88:68:11:d4:54:b2:0f:0a:ea:34:7e:c8:06:50:c6:0d:ff: 23:61:40:f8:5c:6e:4e:cd:27:e5:e5:fd:bd:f4:08:9e:6c:4f: d4:75:a0:09:4e:7d:99:13:00:c6:f7:51:1b:cf:b0:1f:51:a5: 9b:ad:75:32:25:84:7f:1d:d4:1f:f4:2c:1b:af:68:e2:7f:b3: c7:dc:a0:c2:60:43:01:e9:86:3f:ca:94:36:0d:5d:03:ce:75: c8:83:cd:95:77:14:2b:e0:9a:7e:d2:f1:6d:34:58:ac:bd:55: 47:86:e7:45:e1:bc:5b:cd:9c:2f:ee:73:b0:20:96:47:5e:ca: 59:8c:1e:4e:6c:bc:ff:66:11:81:84:48:8d:a8:a8:7d:08:55: 35:c7:9b:9a:fb:de:a4:bd:06:02:41:89:ac:22:b6:34:30:0c: 40:ec:05:50 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt8Ethr9Yjy1BlHufqn2TegMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxOTI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyOWIxMjEwZWM5MTA1YzcxN2QwOThmOWYwZDAwZDlkZWEyMzIyNTM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAogED2XyHVQWFQ9hwCxCQroMmhqHN 2DK4i4oUiQkBiyTgiGay0mqCslcjbt7WVfAk1R9oxHUmhjSWN0RP/CIrMnJlRwi+ fZDWMF2J+urkZA3KMfMEc0NvVNdXRCLITbG7jdODzCeg3t15KauGNs0yJxk137tR pRu6MBGCBoYP8LmWpFXcm1cR4saD6m64C0io7AgjTrfXH31faiTNb+VCyj3Caoz5 Ec9jgAa3jEvf9WrOHTNfmliAGzgwVAg5iSKQ31Tu7nSs9WQpmL0KaMkc+6HMCW6Q u9Li5u1czims0qcdcROlBXrwtUmhzyJkKzxyRO85o6rhwiIxP1KywAKtNwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFCmxIQ7JEFxxfQmPnw0A2d6iMiU5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA3L2EwMGM2 MS0yZDg3LTQ2MjAtOTEzZi0wZTQ2NGNhMzllNzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvYTAwYzYx LTJkODctNDYyMC05MTNmLTBlNDY0Y2EzOWU3NS8xL0tiRWhEc2tRWEhGOUNZLWZE UURaM3FJeUpUay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMkhTANBgkqhkiG9w0BAQsFAAOCAQEAAqsD9LuRhagi yqJzjwAXofElOQJBiG5iwYd0BmGYjYoqw07y+qDuOdaWYUDxU7K4LysjcgVW1z1U 0ZFtgoG6vPOMSfjQPUJngBOmcUwAEFG9Bc+22OkAijKyyohoEdRUsg8K6jR+yAZQ xg3/I2FA+FxuTs0n5eX9vfQInmxP1HWgCU59mRMAxvdRG8+wH1Glm611MiWEfx3U H/QsG69o4n+zx9ygwmBDAemGP8qUNg1dA851yIPNlXcUK+CaftLxbTRYrL1VR4bn ReG8W82cL+5zsCCWR17KWYweTmy8/2YRgYRIjaiofQhVNcebmvvepL0GAkGJrCK2 NDAMQOwFUA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:50 2026 by rpki-client