This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.cer File: MDCZQabYT6Tb3a8PTs2Z-fBDz9w.cer (raw, json) Hash identifier: 6dvNO/2nUSLmPxQ+sn/E/LQkyPe9mUtLA58mM68mxu4= Subject key identifier: 30:30:99:41:A6:D8:4F:A4:DB:DD:AF:0F:4E:CD:99:F9:F0:43:CF:DC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA47E3EE97562EA3B758059FC64801F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:17:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206994 AS: 209011 IP: 94.177.128.0/24 IP: 193.5.147.0/24 IP: 194.28.44.0/24 IP: 2a0c:8180::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:7e:3e:e9:75:62:ea:3b:75:80:59:fc:64:80:1f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=30309941a6d84fa4dbddaf0f4ecd99f9f043cfdc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:2e:88:4a:eb:3e:35:68:10:31:2c:81:b4:ef: 40:58:35:bb:25:ee:40:18:e0:95:31:3e:cc:fc:f9: a7:50:fa:01:04:45:53:ed:74:af:0f:f2:b8:d0:19: 8c:4f:00:0e:78:f8:26:11:74:1f:a7:de:9b:1b:3a: 3e:52:36:d0:ad:47:e8:4a:5f:f0:5f:42:a8:65:db: 9e:a9:91:c7:07:59:e5:b5:c9:f1:2d:65:fe:e7:33: be:3e:39:23:82:54:07:b5:0b:34:76:84:8a:62:d8: 0b:54:82:0e:58:ac:15:d0:8c:db:15:bb:7a:19:d0: 45:d9:86:c5:5a:1e:69:8d:09:72:ad:bb:4c:12:0c: 0f:68:bf:27:9b:d4:da:5c:25:33:51:b3:8d:d5:8d: 5d:07:ce:49:79:b4:96:4b:a1:8b:5e:f5:50:d9:47: 1c:05:52:8a:4f:ff:43:a7:0e:97:64:9c:0b:11:eb: 46:3c:f2:79:09:65:4d:19:d7:7b:99:40:f3:7d:59: f7:d7:8c:78:24:12:68:2f:5e:61:cb:d4:a4:71:39: 08:ac:f6:95:03:cb:89:81:8d:37:9e:f7:fa:19:9b: 21:8a:5d:f9:a2:c7:b3:c8:38:6e:0b:75:d3:b1:39: 45:4b:12:40:fc:6f:7a:a6:e3:ef:58:11:63:15:c6: 0a:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:30:99:41:A6:D8:4F:A4:DB:DD:AF:0F:4E:CD:99:F9:F0:43:CF:DC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/f1af90-355c-484b-b923-d31d4cb1b129/1/MDCZQabYT6Tb3a8PTs2Z-fBDz9w.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.177.128.0/24 193.5.147.0/24 194.28.44.0/24 IPv6: 2a0c:8180::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206994 209011 Signature Algorithm: sha256WithRSAEncryption 93:17:e9:67:7b:e8:19:43:b8:4f:ec:05:33:de:1e:34:c9:35: ab:65:3c:6e:1c:55:0c:be:e9:7c:fc:0f:94:9b:4c:2c:0f:6b: c7:22:6d:60:1f:f9:a8:8e:c1:d7:33:7b:37:73:bf:2f:bd:71: 01:47:6f:fc:d9:32:fb:0c:4b:ea:15:78:5a:3e:c3:8c:c1:36: 0b:fc:d7:92:00:9b:d9:eb:3b:ca:ba:65:98:f6:6a:cc:8b:cd: b1:06:36:3e:38:01:f8:c3:f4:5b:5b:ba:16:2f:cf:d5:15:7a: 1c:c5:20:67:5d:d2:ef:cf:6d:f8:6e:94:2c:43:c4:5f:57:33: 17:51:c9:a9:be:72:00:04:1f:77:22:0e:4a:d3:f2:cc:ef:08: de:47:88:0d:1e:00:a8:e3:75:0c:7e:5f:17:13:74:cb:9a:ff: 6b:13:74:c4:8a:36:12:0e:ed:78:77:e5:c3:33:a0:22:9b:a7: 1c:eb:75:87:27:58:72:de:51:b8:2b:3f:c0:cc:9a:d9:2c:85: 26:a2:7a:87:de:e3:7e:e7:a9:12:c7:a2:3c:f7:2a:78:8a:10: 1f:b2:c4:61:39:cb:b8:ce:8f:43:ef:ed:37:c7:99:cb:4e:62: 15:2d:d5:15:9a:90:0c:a1:2d:e6:69:cf:96:da:e3:19:a4:ac: b6:5c:81:c4 -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgISAZt+pH4+6XVi6jt1gFn8ZIAfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMDMwOTk0MWE2ZDg0ZmE0ZGJkZGFmMGY0ZWNkOTlmOWYwNDNjZmRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAti6ISus+NWgQMSyBtO9AWDW7Je5A GOCVMT7M/PmnUPoBBEVT7XSvD/K40BmMTwAOePgmEXQfp96bGzo+UjbQrUfoSl/w X0KoZdueqZHHB1nltcnxLWX+5zO+PjkjglQHtQs0doSKYtgLVIIOWKwV0IzbFbt6 GdBF2YbFWh5pjQlyrbtMEgwPaL8nm9TaXCUzUbON1Y1dB85JebSWS6GLXvVQ2Ucc BVKKT/9Dpw6XZJwLEetGPPJ5CWVNGdd7mUDzfVn314x4JBJoL15hy9SkcTkIrPaV A8uJgY03nvf6GZshil35osezyDhuC3XTsTlFSxJA/G96puPvWBFjFcYK1wIDAQAB o4ICwDCCArwwHQYDVR0OBBYEFDAwmUGm2E+k292vD07NmfnwQ8/cMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JmL2YxYWY5 MC0zNTVjLTQ4NGItYjkyMy1kMzFkNGNiMWIxMjkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmYvZjFhZjkw LTM1NWMtNDg0Yi1iOTIzLWQzMWQ0Y2IxYjEyOS8xL01EQ1pRYWJZVDZUYjNhOFBU czJaLWZCRHo5dy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQAXrGAAwQAwQWTAwQAwhwsMA0EAgACMAcDBQMq DIGAMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwMokgIDAzBzMA0GCSqGSIb3DQEB CwUAA4IBAQCTF+lne+gZQ7hP7AUz3h40yTWrZTxuHFUMvul8/A+Um0wsD2vHIm1g H/mojsHXM3s3c78vvXEBR2/82TL7DEvqFXhaPsOMwTYL/NeSAJvZ6zvKumWY9mrM i82xBjY+OAH4w/RbW7oWL8/VFXocxSBnXdLvz234bpQsQ8RfVzMXUcmpvnIABB93 Ig5K0/LM7wjeR4gNHgCo43UMfl8XE3TLmv9rE3TEijYSDu14d+XDM6Aim6cc63WH J1hy3lG4Kz/AzJrZLIUmonqH3uN+56kSx6I89yp4ihAfssRhOcu4zo9D7+03x5nL TmIVLdUVmpAMoS3mac+W2uMZpKy2XIHE -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:23 2026 by rpki-client