This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/SwGEomKzUJ4aumGpC-yrMrACVUw.cer File: SwGEomKzUJ4aumGpC-yrMrACVUw.cer (raw, json) Hash identifier: R4Ti5fLkePotXzTpdSZYaeaAyhT0WdFPbmAVLqZxvfg= Subject key identifier: 4B:01:84:A2:62:B3:50:9E:1A:BA:61:A9:0B:EC:AB:32:B0:02:55:4C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E387C4479322256980AD232D4B82177 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:49 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 141.81.0.0/16 IP: 2001:678:734::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:7c:44:79:32:22:56:98:0a:d2:32:d4:b8:21:77 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:49 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4b0184a262b3509e1aba61a90becab32b002554c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:e8:3f:0b:1e:e7:98:d2:b6:e2:13:a9:b9:8f: 1d:98:e0:2c:d9:dc:b1:84:ef:6d:37:07:5b:6d:f3: 50:8e:e8:39:ec:78:76:39:39:d1:a6:b7:35:4c:83: bf:29:ec:60:88:6d:dd:66:4d:d8:91:a0:8f:ee:06: 9d:20:0a:d3:88:3a:e2:0f:68:8d:7c:33:13:08:fe: a0:70:1e:9e:15:c2:c9:c0:06:56:00:b6:62:63:f4: e5:52:51:f1:ec:91:16:96:85:18:ac:7a:9e:9b:ed: 45:82:e4:77:c6:b5:b5:42:eb:a1:31:17:ba:42:5c: 8e:b5:3d:fc:38:4b:35:db:ab:ae:4c:96:f1:da:ce: 76:4b:fe:a3:e9:7c:65:9a:c0:05:22:f6:09:c2:f5: 47:2d:d3:06:1e:73:39:32:e7:32:c3:98:b6:bf:b4: 5e:1b:08:dd:57:20:69:ed:eb:49:c1:4d:d1:ba:23: 93:fb:81:80:3a:89:98:6a:a7:d3:d7:40:c1:99:16: f5:5c:41:1a:88:6c:57:df:f7:58:85:e4:30:d5:7c: 94:91:3d:5c:ae:a4:0b:5e:42:93:57:1d:75:f0:58: 44:37:e2:3d:6b:8b:98:be:c7:34:c7:2c:e3:37:38: 03:14:8d:98:8a:bf:e0:e5:2d:dc:7c:92:84:85:13: e0:69 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4B:01:84:A2:62:B3:50:9E:1A:BA:61:A9:0B:EC:AB:32:B0:02:55:4C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/264ad4-aa1b-46e3-94b2-e35afa36a428/1/SwGEomKzUJ4aumGpC-yrMrACVUw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 141.81.0.0/16 IPv6: 2001:678:734::/48 Signature Algorithm: sha256WithRSAEncryption 56:f8:59:10:0c:99:a3:82:48:3f:dd:75:b2:e8:3b:80:06:32: c8:fc:96:7a:93:57:45:7c:96:83:a9:df:d3:13:64:92:8e:44: 8a:ce:fc:38:d7:73:f4:57:5c:63:8b:ab:14:70:a3:8f:8c:50: 35:34:ed:a9:5e:d6:e0:95:52:02:0e:c0:5e:27:55:86:5e:f1: 0d:3a:27:85:c0:bd:7d:d1:11:9e:ed:0c:d4:72:81:ab:20:54: 39:0e:f0:55:35:d4:24:19:d5:1e:36:ae:69:8b:de:a7:b6:58: b8:17:1d:bf:9c:d0:cb:cc:d9:d3:e4:49:f8:8a:16:db:6e:27: 59:7d:51:b3:89:6a:8b:03:f8:2d:ec:f4:bb:ff:40:a8:d0:e7: 48:df:c1:24:f4:5a:20:0d:22:ea:a1:73:5d:9f:07:9b:90:af: 7d:8f:4e:be:73:6c:c7:a2:e3:73:74:dd:f0:6d:6b:4b:b4:8c: 40:1e:90:6c:24:6a:e5:0a:0e:36:d1:90:a1:dc:46:96:43:95: 0e:c2:79:13:4b:a8:30:41:1b:09:8d:44:13:a4:12:d4:7f:4a: cf:9c:a1:f4:79:5a:05:ef:44:92:30:c8:f6:7f:a0:52:cf:2a: 9f:e1:ef:7a:9c:e4:03:ef:c0:a1:33:cc:12:3d:10:fb:06:6c: 92:b2:1b:a8 -----BEGIN CERTIFICATE----- MIIFiDCCBHCgAwIBAgISAZt+OHxEeTIiVpgK0jLUuCF3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTQ5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0YjAxODRhMjYyYjM1MDllMWFiYTYxYTkwYmVjYWIzMmIwMDI1NTRjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAq+g/Cx7nmNK24hOpuY8dmOAs2dyx hO9tNwdbbfNQjug57Hh2OTnRprc1TIO/KexgiG3dZk3YkaCP7gadIArTiDriD2iN fDMTCP6gcB6eFcLJwAZWALZiY/TlUlHx7JEWloUYrHqem+1FguR3xrW1QuuhMRe6 QlyOtT38OEs126uuTJbx2s52S/6j6XxlmsAFIvYJwvVHLdMGHnM5Mucyw5i2v7Re GwjdVyBp7etJwU3RuiOT+4GAOomYaqfT10DBmRb1XEEaiGxX3/dYheQw1XyUkT1c rqQLXkKTVx118FhEN+I9a4uYvsc0xyzjNzgDFI2Yir/g5S3cfJKEhRPgaQIDAQAB o4IClDCCApAwHQYDVR0OBBYEFEsBhKJis1CeGrphqQvsqzKwAlVMMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFhLzI2NGFk NC1hYTFiLTQ2ZTMtOTRiMi1lMzVhZmEzNmE0MjgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWEvMjY0YWQ0 LWFhMWItNDZlMy05NGIyLWUzNWFmYTM2YTQyOC8xL1N3R0VvbUt6VUo0YXVtR3BD LXlyTXJBQ1ZVdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC8GCCsGAQUF BwEHAQH/BCAwHjALBAIAATAFAwMAjVEwDwQCAAIwCQMHACABBngHNDANBgkqhkiG 9w0BAQsFAAOCAQEAVvhZEAyZo4JIP911sug7gAYyyPyWepNXRXyWg6nf0xNkko5E is78ONdz9FdcY4urFHCjj4xQNTTtqV7W4JVSAg7AXidVhl7xDTonhcC9fdERnu0M 1HKBqyBUOQ7wVTXUJBnVHjauaYvep7ZYuBcdv5zQy8zZ0+RJ+IoW224nWX1Rs4lq iwP4Lez0u/9AqNDnSN/BJPRaIA0i6qFzXZ8Hm5CvfY9OvnNsx6Ljc3Td8G1rS7SM QB6QbCRq5QoONtGQodxGlkOVDsJ5E0uoMEEbCY1EE6QS1H9Kz5yh9HlaBe9EkjDI 9n+gUs8qn+HvepzkA+/AoTPMEj0Q+wZskrIbqA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:57 2026 by rpki-client