This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/R-Bd8kcXTNNQsa83gzMnx3Arj_8.cer File: R-Bd8kcXTNNQsa83gzMnx3Arj_8.cer (raw, json) Hash identifier: Mh2+dQfRLn8fIP7SALKod07pMByfirJkdST2btVsebg= Subject key identifier: 47:E0:5D:F2:47:17:4C:D3:50:B1:AF:37:83:33:27:C7:70:2B:8F:FF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79103A437B0DC018A4E6C5AEFF7AAC41 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/R-Bd8kcXTNNQsa83gzMnx3Arj_8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:17:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 194.59.178.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 15:35:31 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:3a:43:7b:0d:c0:18:a4:e6:c5:ae:ff:7a:ac:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=47e05df247174cd350b1af37833327c7702b8fff Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:2d:94:9f:c5:8e:7b:0d:02:22:ff:4a:ec:c3: 0d:4c:a5:97:a6:30:02:7c:05:3b:23:66:b3:e2:fc: 2e:b8:3e:80:f3:64:81:a2:9b:4d:63:0c:67:25:e0: 4f:f5:7b:00:e7:95:7b:d2:d0:73:02:76:43:9d:c0: 34:29:de:46:e8:c4:ff:e4:b7:59:68:f2:f2:5b:e9: 01:7c:6e:12:14:93:3b:3e:3b:20:eb:65:f6:c0:fe: e5:f7:bf:71:39:49:ef:38:af:9d:8c:78:49:79:a0: 9b:b1:4a:cd:46:0f:27:75:df:5d:0d:21:4b:e0:72: 3e:1d:aa:9e:af:01:05:27:b3:ed:ae:74:09:00:aa: c5:03:71:e2:73:aa:76:c3:cf:2a:f0:a2:78:e9:5b: 11:3c:46:48:68:fa:de:92:46:d2:40:23:e4:37:21: ff:63:29:9c:c6:b8:f2:07:d6:f3:88:0e:b2:e9:ea: 08:7d:60:1e:8a:74:b4:77:69:46:6f:92:3c:31:09: 4d:36:f7:1a:b9:bb:da:ae:f7:52:22:b2:4c:b6:28: 60:b1:f7:3d:96:e4:c9:5f:25:cc:57:fe:6c:c7:e2: 29:de:bd:e4:78:63:c2:70:0f:ef:e3:90:43:7d:d7: ac:79:ba:97:e4:68:8f:8f:d8:07:ce:fc:e0:d4:a5: 77:03 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:E0:5D:F2:47:17:4C:D3:50:B1:AF:37:83:33:27:C7:70:2B:8F:FF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/38c2e1-8a3f-40b1-8353-aec96f431018/1/R-Bd8kcXTNNQsa83gzMnx3Arj_8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.59.178.0/24 Signature Algorithm: sha256WithRSAEncryption 40:7e:81:80:5e:2c:c0:0d:29:04:03:63:7c:64:f8:78:bd:09: 08:c5:a8:86:76:d9:65:4f:c5:f4:db:88:19:4d:fe:69:c9:35: 42:c5:16:a5:5d:c2:01:b0:48:94:d5:31:12:df:5a:e5:d0:4d: 7f:08:c3:5e:67:da:bf:a3:9e:d4:9e:80:26:1a:fc:9c:37:59: b6:19:57:f5:fa:8f:a0:33:67:f7:1c:1d:90:2b:79:5c:9e:a2: d6:5f:9e:65:0c:b7:45:cd:db:f9:9f:5f:ed:e6:89:b5:09:33: 8c:af:da:2a:12:67:bf:01:f3:ba:30:cf:9e:ab:78:01:c7:fd: c0:33:da:f0:19:19:53:9a:f2:79:bd:78:47:9c:e0:fb:ee:5d: d5:cd:9d:06:0e:42:4b:49:25:cd:2d:70:94:1b:91:59:dc:54: 0c:42:13:ba:e3:48:6b:1b:9b:5f:a3:4d:55:5f:94:f3:19:4d: b4:7a:21:1d:ff:ba:19:45:aa:a8:4e:32:51:69:d2:70:03:85: c5:5f:b3:b8:79:65:4a:89:2d:1b:9e:d2:6a:3f:99:44:f2:4c: 7f:95:aa:18:02:91:5b:b5:2c:6a:50:25:55:7e:41:06:26:a7: 49:00:56:35:6f:c9:29:d1:cb:f4:17:a3:2a:ca:19:a8:55:24: b5:a5:65:7e -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt5EDpDew3AGKTmxa7/eqxBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0N2UwNWRmMjQ3MTc0Y2QzNTBiMWFmMzc4MzMzMjdjNzcwMmI4ZmZmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzi2Un8WOew0CIv9K7MMNTKWXpjAC fAU7I2az4vwuuD6A82SBoptNYwxnJeBP9XsA55V70tBzAnZDncA0Kd5G6MT/5LdZ aPLyW+kBfG4SFJM7Pjsg62X2wP7l979xOUnvOK+djHhJeaCbsUrNRg8ndd9dDSFL 4HI+HaqerwEFJ7PtrnQJAKrFA3Hic6p2w88q8KJ46VsRPEZIaPrekkbSQCPkNyH/ YymcxrjyB9bziA6y6eoIfWAeinS0d2lGb5I8MQlNNvcaubvarvdSIrJMtihgsfc9 luTJXyXMV/5sx+Ip3r3keGPCcA/v45BDfdesebqX5GiPj9gHzvzg1KV3AwIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFEfgXfJHF0zTULGvN4MzJ8dwK4//MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U1LzM4YzJl MS04YTNmLTQwYjEtODM1My1hZWM5NmY0MzEwMTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTUvMzhjMmUx LThhM2YtNDBiMS04MzUzLWFlYzk2ZjQzMTAxOC8xL1ItQmQ4a2NYVE5OUXNhODNn ek1ueDNBcmpfOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwjuyMA0GCSqGSIb3DQEBCwUAA4IBAQBAfoGA XizADSkEA2N8ZPh4vQkIxaiGdtllT8X024gZTf5pyTVCxRalXcIBsEiU1TES31rl 0E1/CMNeZ9q/o57UnoAmGvycN1m2GVf1+o+gM2f3HB2QK3lcnqLWX55lDLdFzdv5 n1/t5om1CTOMr9oqEme/AfO6MM+eq3gBx/3AM9rwGRlTmvJ5vXhHnOD77l3VzZ0G DkJLSSXNLXCUG5FZ3FQMQhO640hrG5tfo01VX5TzGU20eiEd/7oZRaqoTjJRadJw A4XFX7O4eWVKiS0bntJqP5lE8kx/laoYApFbtSxqUCVVfkEGJqdJAFY1b8kp0cv0 F6MqyhmoVSS1pWV+ -----END CERTIFICATE-----Generated at Mon Jan 26 20:02:15 2026 by rpki-client