This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Pj0cIad6Cw9_DOZjPhPgxXvtsIs.cer File: Pj0cIad6Cw9_DOZjPhPgxXvtsIs.cer (raw, json) Hash identifier: Waa61yvImjt+86M8V2ZM80Rby7EWZf7kWhbmru02JU4= Subject key identifier: 3E:3D:1C:21:A7:7A:0B:0F:7F:0C:E6:63:3E:13:E0:C5:7B:ED:B0:8B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC8D8D1E392C3EAFC0A5BACC5CFDBA2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d8/0e9e00-46e6-4863-9320-098f2598e5e3/1/Pj0cIad6Cw9_DOZjPhPgxXvtsIs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d8/0e9e00-46e6-4863-9320-098f2598e5e3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:19:01 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 48712 IP: 194.28.32.0/22 IP: 195.130.197.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:d8:d1:e3:92:c3:ea:fc:0a:5b:ac:c5:cf:db:a2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:19:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3e3d1c21a77a0b0f7f0ce6633e13e0c57bedb08b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:cf:3b:09:8a:71:04:b3:e7:ad:30:12:fe:b0: 8f:b0:cf:7b:29:01:c5:97:e1:8b:50:b6:c3:e8:6b: 55:68:7a:25:87:f6:ce:1f:23:ba:a5:b6:dd:b5:2b: a9:37:67:f2:18:f7:87:73:9e:ab:ce:70:f5:0f:25: 53:ce:ab:d4:8a:91:9e:ae:ff:f2:96:e6:f6:e3:35: e1:14:af:5a:cd:81:90:6c:70:0b:25:a1:fe:f2:3f: 25:02:7c:03:46:0a:f6:41:4e:0b:89:28:5a:ea:d3: 39:ac:2d:bc:25:a1:b8:1b:5e:92:12:c5:a6:28:d7: 4c:36:ad:b6:19:57:f6:f2:59:f1:c4:a3:e6:a7:b7: da:21:b8:fb:43:d5:f2:b6:fa:e1:3d:64:da:09:48: 81:d3:71:87:91:38:fc:62:9b:48:e4:cc:79:04:f8: b8:52:4d:15:4d:af:c8:24:02:29:4a:62:f0:ff:ac: 08:a9:a0:0a:1b:cb:b9:83:22:21:b9:b2:79:01:c2: f9:31:c9:01:63:2c:e7:8d:2f:c9:b6:c2:bc:6a:d7: 95:62:a1:f2:35:8b:4b:4d:e8:2b:dd:60:82:20:68: 8a:61:ab:3a:60:62:0f:a1:20:7b:70:b6:2e:72:56: 7e:94:b0:a9:24:1f:e6:b5:aa:c2:ff:7d:92:9e:e7: 69:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3E:3D:1C:21:A7:7A:0B:0F:7F:0C:E6:63:3E:13:E0:C5:7B:ED:B0:8B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/0e9e00-46e6-4863-9320-098f2598e5e3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/0e9e00-46e6-4863-9320-098f2598e5e3/1/Pj0cIad6Cw9_DOZjPhPgxXvtsIs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.28.32.0/22 195.130.197.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 48712 Signature Algorithm: sha256WithRSAEncryption 95:6a:a4:01:9e:db:39:51:b7:f7:4e:80:d8:b7:0a:90:69:28: 0a:71:91:b2:03:af:d3:ab:89:03:5a:c4:3e:58:85:37:0c:7a: 4a:e1:b7:e3:f2:b7:87:bc:88:bd:93:8a:76:51:8a:44:75:ab: 69:f2:b7:12:4d:28:0c:f2:6a:b9:49:0b:5b:6f:f5:4c:87:3d: fc:0a:ac:1a:e0:3e:2b:e0:46:5b:fb:a8:59:a8:c2:12:e1:ad: f5:07:ca:9b:c7:b3:4d:e8:f8:86:18:22:88:cc:6b:7f:35:1f: de:e0:20:c6:ac:c6:06:19:ad:e7:8b:e0:a6:3e:42:a0:c8:c7: 02:ef:1f:89:5f:c0:79:35:fe:ad:61:f2:b5:19:82:7c:37:18: 29:38:5b:3c:c6:ec:29:e1:94:c8:e0:f9:c0:d1:46:c6:4a:e2: 8c:78:98:b7:71:e1:60:1d:a1:ee:b7:2d:e8:96:60:28:0a:c4: 52:c3:cc:84:b5:cf:71:4a:bc:86:82:bd:46:40:28:b1:dc:fb: 4f:07:70:42:67:f0:fc:09:1b:8e:aa:5b:cd:12:6e:b8:07:6e: 0c:27:07:40:ba:cb:e2:f7:66:ba:c2:50:c1:79:65:be:f6:95: ea:63:de:e0:03:17:a8:4a:16:75:07:71:0c:72:62:89:b6:f4: 62:34:6c:f3 -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt6yNjR45LD6vwKW6zFz9uiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxOTAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZTNkMWMyMWE3N2EwYjBmN2YwY2U2NjMzZTEzZTBjNTdiZWRiMDhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr887CYpxBLPnrTAS/rCPsM97KQHF l+GLULbD6GtVaHolh/bOHyO6pbbdtSupN2fyGPeHc56rznD1DyVTzqvUipGerv/y lub24zXhFK9azYGQbHALJaH+8j8lAnwDRgr2QU4LiSha6tM5rC28JaG4G16SEsWm KNdMNq22GVf28lnxxKPmp7faIbj7Q9XytvrhPWTaCUiB03GHkTj8YptI5Mx5BPi4 Uk0VTa/IJAIpSmLw/6wIqaAKG8u5gyIhubJ5AcL5MckBYyznjS/JtsK8ateVYqHy NYtLTegr3WCCIGiKYas6YGIPoSB7cLYuclZ+lLCpJB/mtarC/32SnudpqQIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFD49HCGnegsPfwzmYz4T4MV77bCLMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q4LzBlOWUw MC00NmU2LTQ4NjMtOTMyMC0wOThmMjU5OGU1ZTMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgvMGU5ZTAw LTQ2ZTYtNDg2My05MzIwLTA5OGYyNTk4ZTVlMy8xL1BqMGNJYWQ2Q3c5X0RPWmpQ aFBneFh2dHNJcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQCwhwgAwQAw4LFMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwC+SDANBgkqhkiG9w0BAQsFAAOCAQEAlWqkAZ7bOVG3906A2LcKkGko CnGRsgOv06uJA1rEPliFNwx6SuG34/K3h7yIvZOKdlGKRHWrafK3Ek0oDPJquUkL W2/1TIc9/AqsGuA+K+BGW/uoWajCEuGt9QfKm8ezTej4hhgiiMxrfzUf3uAgxqzG Bhmt54vgpj5CoMjHAu8fiV/AeTX+rWHytRmCfDcYKThbPMbsKeGUyOD5wNFGxkri jHiYt3HhYB2h7rct6JZgKArEUsPMhLXPcUq8hoK9RkAosdz7TwdwQmfw/Akbjqpb zRJuuAduDCcHQLrL4vdmusJQwXllvvaV6mPe4AMXqEoWdQdxDHJiibb0YjRs8w== -----END CERTIFICATE-----Generated at Mon Feb 9 15:03:51 2026 by rpki-client