This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/N-DLWK4j1HOuE6c0G3pzvdECig0.cer File: N-DLWK4j1HOuE6c0G3pzvdECig0.cer (raw, json) Hash identifier: n+NHuE78bQuN1idsGEBXsSWYVlFoIVUeJP5Xea13bY0= Subject key identifier: 37:E0:CB:58:AE:23:D4:73:AE:13:A7:34:1B:7A:73:BD:D1:02:8A:0D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC8BB5971B2CCCC35C38562B4DCD76B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/af/46c38b-4324-44aa-9bb5-386910dcb903/1/N-DLWK4j1HOuE6c0G3pzvdECig0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/af/46c38b-4324-44aa-9bb5-386910dcb903/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:54 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206876 IP: 185.173.136.0/22 IP: 2a0b:5500::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:bb:59:71:b2:cc:cc:35:c3:85:62:b4:dc:d7:6b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=37e0cb58ae23d473ae13a7341b7a73bdd1028a0d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:85:0b:cd:3a:b6:98:ce:a2:e8:f5:b4:2f:81:97: 9a:68:b7:d3:2b:71:73:81:56:b8:dd:f4:63:56:b3: be:8f:ad:62:ea:15:7c:01:fa:fc:f8:e7:d4:2b:c3: 3d:ba:ce:0f:12:06:d5:19:ea:5d:47:af:f5:fa:03: 3f:b2:bd:90:f8:8c:49:b0:b6:81:42:fb:32:3d:fe: 1c:32:c4:aa:c2:8e:5a:1f:e6:d7:31:f1:02:01:e9: 68:1c:b6:d7:e1:7c:9b:b5:c9:2c:82:c5:a5:bb:61: fb:56:4f:54:54:3b:eb:3a:44:40:4e:54:37:8b:9e: c0:83:f6:8d:b4:4d:fb:62:57:8e:9d:ed:21:a7:cc: ab:8d:d8:ba:b6:a7:81:0d:69:b1:5f:0e:c0:19:3d: d8:46:58:12:4a:0f:b9:b3:cd:f9:e3:be:7f:7c:14: 1a:8e:2f:59:ed:95:20:02:b7:0b:99:95:30:8b:cb: d7:0f:cd:4e:d8:79:30:ea:3c:c0:1c:67:7f:af:b6: 70:97:61:67:66:50:3b:50:60:ab:72:81:82:37:fb: a7:c1:d1:e0:a5:5f:87:34:47:33:95:b5:93:76:c4: 50:ed:e6:16:37:1f:04:ab:7b:0d:ae:96:86:ad:61: f2:89:1c:ca:29:f7:9f:c0:be:20:64:55:3d:4a:af: 63:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E0:CB:58:AE:23:D4:73:AE:13:A7:34:1B:7A:73:BD:D1:02:8A:0D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/46c38b-4324-44aa-9bb5-386910dcb903/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/af/46c38b-4324-44aa-9bb5-386910dcb903/1/N-DLWK4j1HOuE6c0G3pzvdECig0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.173.136.0/22 IPv6: 2a0b:5500::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206876 Signature Algorithm: sha256WithRSAEncryption 3e:90:dd:ce:eb:1e:ff:04:04:ce:ce:e4:0c:b7:f7:f0:56:f0: 1e:08:30:69:e9:66:93:20:3d:d2:59:96:f5:2e:e7:57:9f:e4: 68:f0:a5:9b:26:d2:d2:ec:ed:98:a1:71:ec:e0:0c:c5:dd:65: 05:c9:e0:57:50:c8:2a:b3:0e:e5:d3:b8:fb:9a:e6:1c:1c:bf: 51:5c:68:68:2d:e7:01:c3:e1:e6:b8:75:54:2f:63:af:ed:25: 5c:e7:bb:a7:fc:ee:b5:3f:3d:36:64:5b:ab:58:a6:5c:90:40: 1e:44:96:57:3e:f8:58:0b:cb:72:03:b6:7f:3c:3f:de:87:8c: 54:e3:1f:14:6f:ed:5d:16:5b:56:da:5d:1e:c0:82:66:0f:55: 48:a7:5f:c4:ea:54:9c:ed:c6:8f:c1:e7:55:31:61:90:54:81: 25:54:0d:5c:b3:ff:ff:27:89:ec:2b:9c:a3:85:42:38:dd:44: 44:50:6e:7f:55:1d:57:13:76:aa:4e:ec:e4:01:cc:64:59:2b: 98:54:03:5e:54:3c:cc:ce:5e:e5:cb:a7:80:ca:7e:a1:a3:0d: 72:05:1f:01:2c:33:6a:db:d7:de:b4:32:ec:ea:56:c7:3b:7d: 46:27:68:31:10:22:40:44:be:6f:97:df:1a:33:37:89:c3:d3: b9:7a:43:07 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt6yLtZcbLMzDXDhWK03NdrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzN2UwY2I1OGFlMjNkNDczYWUxM2E3MzQxYjdhNzNiZGQxMDI4YTBkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhQvNOraYzqLo9bQvgZeaaLfTK3Fz gVa43fRjVrO+j61i6hV8Afr8+OfUK8M9us4PEgbVGepdR6/1+gM/sr2Q+IxJsLaB QvsyPf4cMsSqwo5aH+bXMfECAeloHLbX4XybtcksgsWlu2H7Vk9UVDvrOkRATlQ3 i57Ag/aNtE37YleOne0hp8yrjdi6tqeBDWmxXw7AGT3YRlgSSg+5s835475/fBQa ji9Z7ZUgArcLmZUwi8vXD81O2Hkw6jzAHGd/r7Zwl2FnZlA7UGCrcoGCN/unwdHg pV+HNEczlbWTdsRQ7eYWNx8Eq3sNrpaGrWHyiRzKKfefwL4gZFU9Sq9jawIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFDfgy1iuI9RzrhOnNBt6c73RAooNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FmLzQ2YzM4 Yi00MzI0LTQ0YWEtOWJiNS0zODY5MTBkY2I5MDMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWYvNDZjMzhi LTQzMjQtNDRhYS05YmI1LTM4NjkxMGRjYjkwMy8xL04tRExXSzRqMUhPdUU2YzBH M3B6dmRFQ2lnMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCua2IMA0EAgACMAcDBQMqC1UAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMoHDANBgkqhkiG9w0BAQsFAAOCAQEAPpDdzuse/wQE zs7kDLf38FbwHggwaelmkyA90lmW9S7nV5/kaPClmybS0uztmKFx7OAMxd1lBcng V1DIKrMO5dO4+5rmHBy/UVxoaC3nAcPh5rh1VC9jr+0lXOe7p/zutT89NmRbq1im XJBAHkSWVz74WAvLcgO2fzw/3oeMVOMfFG/tXRZbVtpdHsCCZg9VSKdfxOpUnO3G j8HnVTFhkFSBJVQNXLP//yeJ7Cuco4VCON1ERFBuf1UdVxN2qk7s5AHMZFkrmFQD XlQ8zM5e5cungMp+oaMNcgUfASwzatvX3rQy7OpWxzt9RidoMRAiQES+b5ffGjM3 icPTuXpDBw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:29 2026 by rpki-client