This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/T4BFzPUJd-vDBmo87tj9MvHwI94.cer File: T4BFzPUJd-vDBmo87tj9MvHwI94.cer (raw, json) Hash identifier: qaJbUdAQT75aTxyiGmsueKnasLeQcc/Q6/BBsF9v+xE= Subject key identifier: 4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79102682CD6EB10C68F81542C7EECA9B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:17:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 35445 IP: 85.188.64.0 -- 85.188.191.255 IP: 2001:67c:191c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:26:82:cd:6e:b1:0c:68:f8:15:42:c7:ee:ca:9b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:17:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4f8045ccf50977ebc3066a3ceed8fd32f1f023de Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:f9:b9:c3:8d:0d:19:04:03:aa:fb:18:69:56: 91:92:63:d6:4b:bf:a8:b6:68:6e:75:b4:35:13:6b: 22:4d:c2:4e:66:e5:2b:76:be:f5:38:c3:01:46:ee: 47:6a:e1:63:2c:55:04:f9:18:34:f0:b3:6a:8e:39: fa:9f:69:8d:8f:5b:76:58:4e:fb:9e:51:6d:30:69: f9:cf:44:db:fd:75:5a:4f:7c:9a:3b:8f:cc:a7:80: ef:88:f3:51:e5:c7:78:72:6b:cf:7a:18:1f:9a:91: dd:5f:26:67:ab:e2:ad:05:81:78:c5:60:9d:f4:72: f5:6c:98:85:32:35:9b:c8:2e:e6:03:d3:4e:b7:c2: a0:7a:90:9b:65:80:79:f3:68:49:52:ea:f3:41:26: 9d:c6:34:c9:0c:83:8e:dc:27:b8:61:5d:99:42:b4: e1:cc:50:ac:a8:e5:ea:e1:50:35:eb:6e:af:76:f2: e1:d5:e6:c6:68:1f:11:a9:ac:23:dc:3d:b8:03:32: ab:be:5e:35:01:08:38:40:b0:86:5a:d5:4b:fd:d2: 8b:8e:54:b2:65:50:01:57:80:61:97:59:d6:e9:fe: 1e:21:07:1b:02:40:54:54:f8:9a:77:0e:96:55:f1: 66:bb:5e:fe:22:2d:4c:37:8f:2f:b8:f5:0f:1d:a6: 00:6f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:80:45:CC:F5:09:77:EB:C3:06:6A:3C:EE:D8:FD:32:F1:F0:23:DE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2f/7d9e10-2c19-4dd8-a80f-40c8697bbde9/1/T4BFzPUJd-vDBmo87tj9MvHwI94.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 85.188.64.0-85.188.191.255 IPv6: 2001:67c:191c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 35445 Signature Algorithm: sha256WithRSAEncryption 49:61:d2:9e:89:a3:4a:1e:12:d2:66:fb:12:95:d1:91:a3:af: 11:4b:36:41:0b:cd:a1:eb:d5:86:35:1f:10:98:43:c9:72:8f: 37:8f:5a:a7:38:94:47:a1:ed:08:6a:58:cc:5f:36:33:7c:ba: ee:05:d2:ce:c2:df:c9:11:57:82:25:4f:39:b5:50:37:08:75: fc:4c:4e:9d:67:0e:cf:60:19:ec:d8:c5:3c:d0:e6:19:d3:8e: 1e:2f:a8:00:aa:58:76:b9:44:a4:e6:70:db:4c:d7:cb:4e:25: f8:04:81:23:8e:bf:3f:5d:49:0d:e9:bf:f6:4e:51:21:fc:dc: 9a:90:1b:e3:98:22:ed:b3:b6:25:1b:cf:50:b3:93:1f:63:cd: 64:ba:3f:9d:34:82:e7:af:b5:5d:68:34:e9:c3:ba:a8:e0:6a: dc:1e:a8:ae:82:ce:62:2b:b7:67:bf:f2:2f:ab:01:78:64:d8: e9:dd:b7:e5:9b:8e:5a:a5:90:75:a8:88:dd:fc:ab:2d:02:12: 78:cd:24:72:00:e0:ae:f8:b6:d7:46:05:21:4d:df:2c:11:4c: 26:bc:68:bc:96:2a:f6:d5:1e:a2:af:cf:ef:4b:52:64:2b:76: b1:69:b2:0e:ce:3c:67:ae:5b:3e:6f:01:94:eb:12:d9:8d:2b: e3:4b:3e:19 -----BEGIN CERTIFICATE----- MIIFrTCCBJWgAwIBAgISAZt5ECaCzW6xDGj4FULH7sqbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxNzQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZjgwNDVjY2Y1MDk3N2ViYzMwNjZhM2NlZWQ4ZmQzMmYxZjAyM2RlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsPm5w40NGQQDqvsYaVaRkmPWS7+o tmhudbQ1E2siTcJOZuUrdr71OMMBRu5HauFjLFUE+Rg08LNqjjn6n2mNj1t2WE77 nlFtMGn5z0Tb/XVaT3yaO4/Mp4DviPNR5cd4cmvPehgfmpHdXyZnq+KtBYF4xWCd 9HL1bJiFMjWbyC7mA9NOt8KgepCbZYB582hJUurzQSadxjTJDIOO3Ce4YV2ZQrTh zFCsqOXq4VA1626vdvLh1ebGaB8Rqawj3D24AzKrvl41AQg4QLCGWtVL/dKLjlSy ZVABV4Bhl1nW6f4eIQcbAkBUVPiadw6WVfFmu17+Ii1MN48vuPUPHaYAbwIDAQAB o4ICuTCCArUwHQYDVR0OBBYEFE+ARcz1CXfrwwZqPO7Y/TLx8CPeMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJmLzdkOWUx MC0yYzE5LTRkZDgtYTgwZi00MGM4Njk3YmJkZTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmYvN2Q5ZTEw LTJjMTktNGRkOC1hODBmLTQwYzg2OTdiYmRlOS8xL1Q0QkZ6UFVKZC12REJtbzg3 dGo5TXZId0k5NC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDgGCCsGAQUF BwEHAQH/BCkwJzAUBAIAATAOMAwDBAZVvEADBAZVvIAwDwQCAAIwCQMHACABBnwZ HDAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgMAinUwDQYJKoZIhvcNAQELBQADggEB AElh0p6Jo0oeEtJm+xKV0ZGjrxFLNkELzaHr1YY1HxCYQ8lyjzePWqc4lEeh7Qhq WMxfNjN8uu4F0s7C38kRV4IlTzm1UDcIdfxMTp1nDs9gGezYxTzQ5hnTjh4vqACq WHa5RKTmcNtM18tOJfgEgSOOvz9dSQ3pv/ZOUSH83JqQG+OYIu2ztiUbz1Czkx9j zWS6P500guevtV1oNOnDuqjgatweqK6CzmIrt2e/8i+rAXhk2Ondt+WbjlqlkHWo iN38qy0CEnjNJHIA4K74ttdGBSFN3ywRTCa8aLyWKvbVHqKvz+9LUmQrdrFpsg7O PGeuWz5vAZTrEtmNK+NLPhk= -----END CERTIFICATE-----Generated at Mon Feb 9 19:46:37 2026 by rpki-client