This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/S1dyWwpgXU3cxGS3Dcs6FipfBVs.cer File: S1dyWwpgXU3cxGS3Dcs6FipfBVs.cer (raw, json) Hash identifier: JgEBLcvj4/FF6aAdAkOVdQwQRE3kuchnXHi55GiqnUc= Subject key identifier: 4B:57:72:5B:0A:60:5D:4D:DC:C4:64:B7:0D:CB:3A:16:2A:5F:05:5B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B2286FB06E91ABC96A1C0CD3AA6DF5806 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/S1dyWwpgXU3cxGS3Dcs6FipfBVs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Mon 15 Dec 2025 15:00:30 +0000 Certificate not after: Wed 01 Jul 2026 00:00:00 +0000 Subordinate resources: AS: 51440 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 19 Dec 2025 22:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:22:86:fb:06:e9:1a:bc:96:a1:c0:cd:3a:a6:df:58:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Dec 15 15:00:30 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4b57725b0a605d4ddcc464b70dcb3a162a5f055b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:4f:e1:6c:fe:17:db:ac:b3:7d:46:ab:c7:cb: 40:3e:53:57:56:38:00:b7:b6:00:7c:8c:f6:bf:44: 34:bd:aa:e5:51:35:21:33:90:a1:50:68:0b:0c:63: 02:8c:33:4d:a7:4c:0f:23:87:c0:72:e3:86:03:ce: bf:7e:6b:57:cc:72:d6:a0:3c:da:b7:b8:d2:df:98: f1:0f:fb:99:5f:41:cd:b3:a8:2d:b5:20:ec:8e:06: e7:af:2d:ed:06:cf:4b:25:28:9a:a6:fe:40:47:15: 74:7f:db:9f:78:8d:93:b1:d1:bb:ba:b4:df:1b:4a: f5:28:59:01:91:31:f0:6c:58:d8:c8:c3:0c:50:06: fd:58:1f:19:0c:dc:04:e6:81:0f:fb:aa:58:47:7d: ce:6a:b9:16:2c:f4:4f:ee:5d:76:90:01:a9:64:04: 29:ab:b5:76:76:0f:dd:85:cc:cc:ba:d0:16:c0:f4: c0:d9:de:7a:40:71:7c:45:b3:ce:51:dc:6a:e0:3a: dd:ea:95:fb:bd:1a:5e:99:d7:5b:e8:15:11:27:63: 1e:93:62:f0:3f:df:df:be:24:01:aa:32:d1:05:16: a8:88:38:da:26:52:33:aa:4c:72:d5:65:35:57:b7: bf:31:a8:63:3a:36:91:89:f0:18:d0:1f:af:80:ef: 21:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:57:72:5B:0A:60:5D:4D:DC:C4:64:B7:0D:CB:3A:16:2A:5F:05:5B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/be/e005c2-affa-458f-aaf8-8af56e733600/1/S1dyWwpgXU3cxGS3Dcs6FipfBVs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 51440 Signature Algorithm: sha256WithRSAEncryption 52:3a:89:99:9b:47:56:76:b3:df:12:74:53:a4:2f:ad:1f:57: ea:e9:9e:e7:d8:b3:81:2a:e9:00:ea:92:58:1d:8f:6b:c9:7e: 80:b2:4e:40:88:db:16:f0:32:23:03:53:5b:34:43:c5:26:78: 57:cb:96:13:bd:cb:23:6d:ae:94:2d:31:c2:e2:6f:52:40:75: 85:1a:84:d2:37:5d:81:d2:c1:80:cb:75:4a:66:97:08:ae:27: 28:b0:c4:88:53:8f:f6:3f:e6:b3:9d:bf:9d:50:04:b2:fc:15: 01:de:68:df:88:13:ae:20:f0:59:c3:ee:3c:44:61:13:2b:65: 5d:d0:0f:51:fa:47:a4:61:e6:c0:49:89:44:4b:c6:ca:31:46: 64:dc:14:96:34:f1:b5:38:8c:a7:4a:e7:41:36:03:92:bd:10: 8b:9f:1c:14:00:ac:38:e8:c2:84:22:7b:c8:7a:ce:b6:98:73: ee:ef:48:38:be:06:f2:82:ae:11:e5:28:04:7c:f7:46:47:84: 48:1d:74:76:29:de:fe:16:3a:5b:f9:62:3b:0b:d7:82:de:8a: 06:c8:2c:47:95:77:37:50:91:d9:eb:e0:bf:48:e4:ac:02:76: 07:03:e5:1e:d9:03:21:59:34:15:f9:d9:6e:29:97:08:f0:af: 74:ec:da:ab -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZsihvsG6Rq8lqHAzTqm31gGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjUxMjE1MTUwMDMwWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YjU3NzI1YjBhNjA1ZDRkZGNjNDY0YjcwZGNiM2ExNjJhNWYwNTViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm0/hbP4X26yzfUarx8tAPlNXVjgA t7YAfIz2v0Q0varlUTUhM5ChUGgLDGMCjDNNp0wPI4fAcuOGA86/fmtXzHLWoDza t7jS35jxD/uZX0HNs6gttSDsjgbnry3tBs9LJSiapv5ARxV0f9ufeI2TsdG7urTf G0r1KFkBkTHwbFjYyMMMUAb9WB8ZDNwE5oEP+6pYR33OarkWLPRP7l12kAGpZAQp q7V2dg/dhczMutAWwPTA2d56QHF8RbPOUdxq4Drd6pX7vRpemddb6BURJ2Mek2Lw P9/fviQBqjLRBRaoiDjaJlIzqkxy1WU1V7e/MahjOjaRifAY0B+vgO8hYQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFEtXclsKYF1N3MRktw3LOhYqXwVbMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JlL2UwMDVj Mi1hZmZhLTQ1OGYtYWFmOC04YWY1NmU3MzM2MDAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmUvZTAwNWMy LWFmZmEtNDU4Zi1hYWY4LThhZjU2ZTczMzYwMC8xL1MxZHlXd3BnWFUzY3hHUzNE Y3M2RmlwZkJWcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDI8DANBgkqhkiG9w0BAQsFAAOCAQEAUjqJmZtHVnaz 3xJ0U6QvrR9X6ume59izgSrpAOqSWB2Pa8l+gLJOQIjbFvAyIwNTWzRDxSZ4V8uW E73LI22ulC0xwuJvUkB1hRqE0jddgdLBgMt1SmaXCK4nKLDEiFOP9j/ms52/nVAE svwVAd5o34gTriDwWcPuPERhEytlXdAPUfpHpGHmwEmJREvGyjFGZNwUljTxtTiM p0rnQTYDkr0Qi58cFACsOOjChCJ7yHrOtphz7u9IOL4G8oKuEeUoBHz3RkeESB10 dine/hY6W/liOwvXgt6KBsgsR5V3N1CR2evgv0jkrAJ2BwPlHtkDIVk0FfnZbimX CPCvdOzaqw== -----END CERTIFICATE-----Generated at Fri Dec 19 07:22:31 2025 by rpki-client