This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SqvRp2WuXL4dyT2vAk06R-cqyRg.cer File: SqvRp2WuXL4dyT2vAk06R-cqyRg.cer (raw, json) Hash identifier: 6aA7Fpugb3vzp3Tlvok83DwhP1G89sO/9TFsYBzx6E8= Subject key identifier: 4A:AB:D1:A7:65:AE:5C:BE:1D:C9:3D:AF:02:4D:3A:47:E7:2A:C9:18 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77596DC22412D8D6E0023C4C2FEE4DA6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/SqvRp2WuXL4dyT2vAk06R-cqyRg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:18:28 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210961 IP: 2001:67c:30::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:59:6d:c2:24:12:d8:d6:e0:02:3c:4c:2f:ee:4d:a6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4aabd1a765ae5cbe1dc93daf024d3a47e72ac918 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:cc:6b:03:cc:e8:d0:12:29:17:9d:87:b3:cd: 51:3f:6b:6b:a1:ee:18:07:36:3e:14:7e:ea:26:bf: 59:44:1f:b2:5e:41:f9:bb:b2:bc:61:c0:88:db:a8: 8d:ba:fa:07:83:f0:47:a1:d7:06:d0:e6:09:06:ad: e3:ca:34:4c:86:2e:19:98:52:ec:56:13:e0:dd:94: 88:a3:c7:7c:76:a6:08:e9:6f:21:b6:cd:18:3f:ab: fe:69:fd:ac:42:5c:eb:4d:5d:85:31:c5:a4:90:28: 5d:78:ab:5c:04:a6:39:bb:d3:47:20:28:6b:31:c7: 9e:3e:3d:77:4f:59:ed:ab:f0:53:48:d7:fa:89:38: 09:16:72:c9:bb:64:4b:76:de:63:41:c3:cc:2e:bb: 36:42:39:62:a3:d7:73:99:69:98:74:62:f3:11:37: ba:c7:5a:42:00:55:6f:9b:7a:56:4e:09:ef:09:b2: b1:b8:8c:19:10:b8:93:d4:67:6a:cb:83:65:2b:b0: e2:71:55:92:6c:ce:7b:b9:f8:99:53:e3:03:8b:54: 00:47:ba:c0:a1:79:47:ec:52:9a:b5:a9:0e:a2:d6: 6b:23:46:1c:02:60:08:c5:6e:0d:85:a6:16:0e:a1: 01:80:c3:fe:e6:40:95:16:f2:63:ed:9e:46:ef:70: 86:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4A:AB:D1:A7:65:AE:5C:BE:1D:C9:3D:AF:02:4D:3A:47:E7:2A:C9:18 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d7/fbf239-5f8a-4d6a-a0cb-44ac6adb3a49/1/SqvRp2WuXL4dyT2vAk06R-cqyRg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:30::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210961 Signature Algorithm: sha256WithRSAEncryption 43:3c:d9:3b:f7:bd:5c:81:58:98:0a:a1:78:cb:0f:c3:52:b0: 2a:95:bf:56:7f:3d:af:33:fd:1c:c1:a0:04:8c:2e:b3:af:4b: e3:01:ff:bf:af:e3:be:52:73:f0:99:62:e0:bb:30:16:2a:e8: c6:f3:e5:21:92:83:fa:96:15:02:ca:07:2e:24:1b:60:8a:7f: 89:75:aa:b3:34:63:64:5f:02:23:19:df:c7:98:23:f6:bd:28: f5:6b:2c:dd:09:0a:2c:e1:44:7a:24:8f:44:d6:23:6b:50:90: 28:80:8f:19:bb:4c:a9:0c:14:8a:11:ce:66:6e:95:5b:55:e4: f4:71:81:3d:b1:b5:42:51:2e:e8:c9:b7:92:83:13:e3:f9:1f: 04:f9:22:6a:1c:f0:73:d1:e0:01:c7:7e:de:8a:97:27:fa:49: c1:fb:4c:0d:a7:70:4f:ed:49:5e:7f:9c:df:87:20:af:f8:6a: bc:45:4e:9e:b8:56:1d:4c:dc:9a:63:23:44:45:89:e6:45:99: 9b:7f:fa:e6:54:76:71:f2:8e:52:4b:05:ce:d0:d5:bb:1a:2e: 00:a8:40:47:45:da:6f:07:49:cc:01:4c:f6:e7:dd:5f:94:0e: e5:52:6f:0c:a5:ec:85:89:57:4b:0f:68:9a:8f:04:64:fe:5b: cb:41:90:f9 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt3WW3CJBLY1uACPEwv7k2mMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YWFiZDFhNzY1YWU1Y2JlMWRjOTNkYWYwMjRkM2E0N2U3MmFjOTE4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw8xrA8zo0BIpF52Hs81RP2troe4Y BzY+FH7qJr9ZRB+yXkH5u7K8YcCI26iNuvoHg/BHodcG0OYJBq3jyjRMhi4ZmFLs VhPg3ZSIo8d8dqYI6W8hts0YP6v+af2sQlzrTV2FMcWkkChdeKtcBKY5u9NHIChr MceePj13T1ntq/BTSNf6iTgJFnLJu2RLdt5jQcPMLrs2Qjlio9dzmWmYdGLzETe6 x1pCAFVvm3pWTgnvCbKxuIwZELiT1Gdqy4NlK7DicVWSbM57ufiZU+MDi1QAR7rA oXlH7FKatakOotZrI0YcAmAIxW4NhaYWDqEBgMP+5kCVFvJj7Z5G73CGgwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFEqr0adlrly+Hck9rwJNOkfnKskYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q3L2ZiZjIz OS01ZjhhLTRkNmEtYTBjYi00NGFjNmFkYjNhNDkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDcvZmJmMjM5 LTVmOGEtNGQ2YS1hMGNiLTQ0YWM2YWRiM2E0OS8xL1NxdlJwMld1WEw0ZHlUMnZB azA2Ui1jcXlSZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAAwMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwM4ETANBgkqhkiG9w0BAQsFAAOCAQEAQzzZO/e9XIFYmAqheMsPw1KwKpW/ Vn89rzP9HMGgBIwus69L4wH/v6/jvlJz8Jli4LswFiroxvPlIZKD+pYVAsoHLiQb YIp/iXWqszRjZF8CIxnfx5gj9r0o9Wss3QkKLOFEeiSPRNYja1CQKICPGbtMqQwU ihHOZm6VW1Xk9HGBPbG1QlEu6Mm3koMT4/kfBPkiahzwc9HgAcd+3oqXJ/pJwftM DadwT+1JXn+c34cgr/hqvEVOnrhWHUzcmmMjREWJ5kWZm3/65lR2cfKOUksFztDV uxouAKhAR0XabwdJzAFM9ufdX5QO5VJvDKXshYlXSw9omo8EZP5by0GQ+Q== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:13 2026 by rpki-client