This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/R928ziYovwn65r8EQhjGV-i9PG4.cer File: R928ziYovwn65r8EQhjGV-i9PG4.cer (raw, json) Hash identifier: lm8DtnMVEx4eLL+/pz1Ab3JmtWpA3zLoe24aZ9Bnqq8= Subject key identifier: 47:DD:BC:CE:26:28:BF:09:FA:E6:BF:04:42:18:C6:57:E8:BD:3C:6E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC7EEF92D3621F625DF400558048654 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/a3b355-9afa-434e-8098-50d709bffeb5/1/R928ziYovwn65r8EQhjGV-i9PG4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/a3b355-9afa-434e-8098-50d709bffeb5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:01 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215239 IP: 45.143.0.0/22 IP: 176.118.178.0/24 IP: 2a14:2d40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:ee:f9:2d:36:21:f6:25:df:40:05:58:04:86:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=47ddbcce2628bf09fae6bf044218c657e8bd3c6e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:7f:ba:64:12:2a:b7:69:4f:6f:9a:fa:92:ee: b3:81:9e:a5:c5:cc:89:eb:15:73:3c:af:b0:bc:15: 29:51:12:55:4f:63:df:76:83:80:e6:b4:92:b2:32: d1:33:75:c8:1f:a8:ee:cd:46:a5:3f:6a:87:64:4f: cf:41:14:52:bf:e3:90:f4:54:6c:9d:20:98:4f:66: 68:62:d3:a4:ef:5a:9e:11:12:57:ff:fe:e8:eb:01: d1:84:6b:ce:ab:4f:f7:51:2e:bf:6e:f8:5c:db:59: c0:e2:c6:f5:b5:73:ba:06:33:13:4f:43:72:55:91: ae:4b:18:28:02:aa:c4:2f:21:ef:51:70:e5:88:5c: 58:96:d5:e3:1d:0d:3a:f4:4c:77:e1:f9:e8:a5:25: db:10:61:53:f9:56:1d:f5:eb:22:9b:ed:91:d3:f5: c6:ea:08:80:a0:56:98:ba:dc:4f:c9:03:60:7b:b7: 1e:09:13:f7:db:2f:ae:39:db:2d:45:bf:d3:d6:06: 34:46:d8:2e:5e:34:9d:b6:67:72:3f:43:d9:bd:a2: e6:6a:3f:58:d5:b3:d9:6d:c9:52:1a:31:08:03:f4: ff:a1:b3:db:f7:a6:21:bf:42:fd:10:fb:cf:44:f2: a3:50:2d:22:22:74:7b:13:27:44:0d:b0:52:d1:70: d7:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 47:DD:BC:CE:26:28:BF:09:FA:E6:BF:04:42:18:C6:57:E8:BD:3C:6E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/a3b355-9afa-434e-8098-50d709bffeb5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/a3b355-9afa-434e-8098-50d709bffeb5/1/R928ziYovwn65r8EQhjGV-i9PG4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.143.0.0/22 176.118.178.0/24 IPv6: 2a14:2d40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215239 Signature Algorithm: sha256WithRSAEncryption 6e:33:e2:8a:6f:a3:37:4a:e7:25:a3:5f:02:33:82:b6:5b:97: 40:b4:dd:01:76:f6:ba:66:5d:60:df:b3:72:6c:20:ec:d8:b6: 10:7b:21:2e:30:d5:6c:25:e6:22:f9:25:4f:48:38:a1:26:4f: ca:0e:56:9d:0a:79:6f:2e:b3:68:35:f1:31:31:7c:85:ef:3b: 3b:85:b1:4b:a9:6e:04:06:cc:77:f5:7a:c5:ec:11:8e:8e:22: da:1f:15:49:50:1e:06:6d:27:41:e5:26:f4:1b:08:e2:ab:f5: f1:f0:a2:06:59:c3:79:46:70:25:14:fb:8a:a6:ea:6a:6a:45: bc:a1:5c:d9:ba:6f:1b:86:11:38:c6:55:e1:f1:e0:51:59:c8: 5f:55:cc:d0:9d:7f:3a:25:ca:d9:5f:44:13:78:5d:8e:ca:48: 8e:04:2a:62:4e:f6:c8:8a:48:26:3d:69:e4:f7:6e:dc:c7:7a: 77:ce:28:d9:94:cb:0e:5e:5c:c5:53:fc:8c:fc:41:d6:c9:e5: ea:f4:10:2d:38:1c:3d:fe:f0:d4:4f:ac:63:8b:2d:dd:58:fa: 7f:0c:16:6c:2b:64:78:76:73:b5:c3:09:0a:9d:d7:5b:49:00: 50:9e:15:f0:1b:51:54:75:44:71:22:c9:5f:71:18:af:06:ab: de:07:e2:2c -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt6x+75LTYh9iXfQAVYBIZUMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0N2RkYmNjZTI2MjhiZjA5ZmFlNmJmMDQ0MjE4YzY1N2U4YmQzYzZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1X+6ZBIqt2lPb5r6ku6zgZ6lxcyJ 6xVzPK+wvBUpURJVT2PfdoOA5rSSsjLRM3XIH6juzUalP2qHZE/PQRRSv+OQ9FRs nSCYT2ZoYtOk71qeERJX//7o6wHRhGvOq0/3US6/bvhc21nA4sb1tXO6BjMTT0Ny VZGuSxgoAqrELyHvUXDliFxYltXjHQ069Ex34fnopSXbEGFT+VYd9esim+2R0/XG 6giAoFaYutxPyQNge7ceCRP32y+uOdstRb/T1gY0RtguXjSdtmdyP0PZvaLmaj9Y 1bPZbclSGjEIA/T/obPb96Yhv0L9EPvPRPKjUC0iInR7EydEDbBS0XDXeQIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFEfdvM4mKL8J+ua/BEIYxlfovTxuMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JlL2EzYjM1 NS05YWZhLTQzNGUtODA5OC01MGQ3MDliZmZlYjUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUvYTNiMzU1 LTlhZmEtNDM0ZS04MDk4LTUwZDcwOWJmZmViNS8xL1I5Mjh6aVlvdnduNjVyOEVR aGpHVi1pOVBHNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQCLY8AAwQAsHayMA0EAgACMAcDBQMqFC1AMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwNIxzANBgkqhkiG9w0BAQsFAAOCAQEAbjPi im+jN0rnJaNfAjOCtluXQLTdAXb2umZdYN+zcmwg7Ni2EHshLjDVbCXmIvklT0g4 oSZPyg5WnQp5by6zaDXxMTF8he87O4WxS6luBAbMd/V6xewRjo4i2h8VSVAeBm0n QeUm9BsI4qv18fCiBlnDeUZwJRT7iqbqampFvKFc2bpvG4YROMZV4fHgUVnIX1XM 0J1/OiXK2V9EE3hdjspIjgQqYk72yIpIJj1p5Pdu3Md6d84o2ZTLDl5cxVP8jPxB 1snl6vQQLTgcPf7w1E+sY4st3Vj6fwwWbCtkeHZztcMJCp3XW0kAUJ4V8BtRVHVE cSLJX3EYrwar3gfiLA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:34 2026 by rpki-client