This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/M-hVC8yfs7FAJgwp1p94mXjcwJo.cer File: M-hVC8yfs7FAJgwp1p94mXjcwJo.cer (raw, json) Hash identifier: VHv/AulFIdP6hWVNu+gXYqvtNUjbDgsG2EIOXMWXqqo= Subject key identifier: 33:E8:55:0B:CC:9F:B3:B1:40:26:0C:29:D6:9F:78:99:78:DC:C0:9A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A323796C236E372EB325EF2AF1CD9D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d6/4116b6-f1c9-49ad-8b0f-ad2497f284f5/1/M-hVC8yfs7FAJgwp1p94mXjcwJo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d6/4116b6-f1c9-49ad-8b0f-ad2497f284f5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.91.188.0/22 IP: 2a05:ed00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:23:79:6c:23:6e:37:2e:b3:25:ef:2a:f1:cd:9d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=33e8550bcc9fb3b140260c29d69f789978dcc09a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8e:4d:03:7a:db:f9:6f:a9:02:a5:c1:f2:46:d9: 6e:b0:ed:be:fa:d9:12:25:58:8d:26:ff:18:03:81: 61:6a:29:a1:74:00:3a:26:4f:28:f0:74:c5:6b:d3: da:cc:aa:e3:e9:6a:9d:a0:ac:4a:45:f0:a8:09:3c: 3e:9e:cf:3a:1a:b2:7a:eb:4a:98:1e:50:4d:96:e8: 63:13:cb:6f:e9:cf:93:1d:f6:f0:85:72:ec:16:6e: b2:6b:b0:8d:8f:27:b7:e6:72:14:24:e4:81:ec:9c: e6:42:ef:4c:57:de:27:3f:98:b8:d4:5d:e1:62:0a: 9a:e1:3f:e6:2e:fb:bf:e3:01:4e:90:40:ef:6b:c9: 50:0f:5a:c7:e2:46:56:02:a0:9b:d4:fa:52:76:b4: c8:d2:4b:84:43:cc:3a:be:06:8b:14:ba:de:82:3d: 94:e2:92:44:c6:04:1d:48:37:4e:53:95:a0:d9:7a: a0:cf:93:84:4d:31:89:d0:0f:a1:cd:db:a7:d5:95: 56:6a:a6:bf:46:8a:b2:7f:8e:cc:d1:41:6f:e4:5f: 59:5b:14:46:51:b3:f5:c6:a0:bd:08:ca:d0:c2:68: a1:f0:33:c3:64:91:a5:c6:41:be:56:98:58:21:4f: 80:b5:3e:79:7b:d4:b5:7b:6f:75:5b:f4:41:ae:8f: dc:bb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 33:E8:55:0B:CC:9F:B3:B1:40:26:0C:29:D6:9F:78:99:78:DC:C0:9A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/4116b6-f1c9-49ad-8b0f-ad2497f284f5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/4116b6-f1c9-49ad-8b0f-ad2497f284f5/1/M-hVC8yfs7FAJgwp1p94mXjcwJo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.91.188.0/22 IPv6: 2a05:ed00::/29 Signature Algorithm: sha256WithRSAEncryption 01:40:9e:d1:04:1e:b9:6f:6b:4b:27:7e:ae:52:e2:22:2a:6a: 1f:dd:e7:20:f5:28:43:02:af:00:df:93:a0:f8:49:95:db:f9: 6a:90:92:57:e0:b1:91:3f:77:00:3d:a9:a1:d9:d7:91:0f:ed: 92:cf:4d:b0:bf:42:8d:db:35:2b:b0:52:86:61:18:be:7d:da: df:2b:a0:c0:5b:db:e4:94:aa:c3:b6:c9:9a:92:a8:c7:e8:b1: c5:d0:35:f7:98:92:4f:c2:e5:a5:20:56:19:5c:f0:a6:cd:87: db:1b:a2:1b:cf:e1:54:12:48:ea:53:af:ef:89:74:d0:2c:da: 02:04:6b:f4:56:9b:c7:61:45:5b:6b:9a:5d:25:f8:59:b1:65: 86:ed:c0:91:f9:e3:95:31:e3:bf:32:51:44:3d:bd:57:a0:aa: 86:b4:d4:f5:62:ae:de:6b:d8:2e:ea:71:70:18:48:72:7f:c4: 0d:73:be:7a:1d:45:9d:f6:41:07:2f:c4:3a:1a:d1:16:0a:49: 9c:ea:d1:23:bb:e2:e8:d0:20:3a:3a:65:75:13:ff:79:82:6c: 21:e5:35:04:ff:be:a7:cc:45:36:15:1d:ba:91:db:36:b8:74: 3c:ee:1b:0f:f8:a1:d2:48:a0:6f:b4:17:32:49:90:a7:da:d0: cd:83:51:37 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt4oyN5bCNuNy6zJe8q8c2dMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzM2U4NTUwYmNjOWZiM2IxNDAyNjBjMjlkNjlmNzg5OTc4ZGNjMDlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjk0Detv5b6kCpcHyRtlusO2++tkS JViNJv8YA4FhaimhdAA6Jk8o8HTFa9PazKrj6WqdoKxKRfCoCTw+ns86GrJ660qY HlBNluhjE8tv6c+THfbwhXLsFm6ya7CNjye35nIUJOSB7JzmQu9MV94nP5i41F3h Ygqa4T/mLvu/4wFOkEDva8lQD1rH4kZWAqCb1PpSdrTI0kuEQ8w6vgaLFLregj2U 4pJExgQdSDdOU5Wg2Xqgz5OETTGJ0A+hzdun1ZVWaqa/Roqyf47M0UFv5F9ZWxRG UbP1xqC9CMrQwmih8DPDZJGlxkG+VphYIU+AtT55e9S1e291W/RBro/cuwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFDPoVQvMn7OxQCYMKdafeJl43MCaMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q2LzQxMTZi Ni1mMWM5LTQ5YWQtOGIwZi1hZDI0OTdmMjg0ZjUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDYvNDExNmI2 LWYxYzktNDlhZC04YjBmLWFkMjQ5N2YyODRmNS8xL00taFZDOHlmczdGQUpnd3Ax cDk0bVhqY3dKby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuVu8MA0EAgACMAcDBQMqBe0AMA0GCSqGSIb3 DQEBCwUAA4IBAQABQJ7RBB65b2tLJ36uUuIiKmof3ecg9ShDAq8A35Og+EmV2/lq kJJX4LGRP3cAPamh2deRD+2Sz02wv0KN2zUrsFKGYRi+fdrfK6DAW9vklKrDtsma kqjH6LHF0DX3mJJPwuWlIFYZXPCmzYfbG6Ibz+FUEkjqU6/viXTQLNoCBGv0VpvH YUVba5pdJfhZsWWG7cCR+eOVMeO/MlFEPb1XoKqGtNT1Yq7ea9gu6nFwGEhyf8QN c756HUWd9kEHL8Q6GtEWCkmc6tEju+Lo0CA6OmV1E/95gmwh5TUE/76nzEU2FR26 kds2uHQ87hsP+KHSSKBvtBcySZCn2tDNg1E3 -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:41 2026 by rpki-client