This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/TQ1ZQ8JANzDegY4xubX_HYwcnEc.cer File: TQ1ZQ8JANzDegY4xubX_HYwcnEc.cer (raw, json) Hash identifier: 4hNHYUtviA7dLheK2PYXzXBjsn/S7JbtNUYHiFKOXhg= Subject key identifier: 4D:0D:59:43:C2:40:37:30:DE:81:8E:31:B9:B5:FF:1D:8C:1C:9C:47 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F83F6E5DFA341923900DFE19DE91EF2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/91/cce5ba-ff93-4438-a8e3-4a637c6d9938/1/TQ1ZQ8JANzDegY4xubX_HYwcnEc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/91/cce5ba-ff93-4438-a8e3-4a637c6d9938/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:21:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 209385 IP: 185.232.124.0/22 IP: 2a0c:a500::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:f6:e5:df:a3:41:92:39:00:df:e1:9d:e9:1e:f2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:21:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4d0d5943c2403730de818e31b9b5ff1d8c1c9c47 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d6:58:43:52:51:cd:08:c4:11:b7:d7:34:0f:87: 5a:a8:6c:2d:c6:49:98:f9:30:74:72:a7:9a:ed:4a: 3f:fb:ea:60:8c:2c:52:07:1f:a0:ef:4c:77:0c:54: 5b:18:7c:14:f8:1a:84:4b:0c:77:4b:8b:51:16:84: e3:0e:61:ec:2f:60:5e:c8:86:c3:94:ea:e9:e5:c3: 57:b5:15:65:16:ea:b7:69:9e:3f:cb:3a:e9:95:0a: df:f9:63:a5:2a:8e:26:51:bb:29:f8:18:fc:e6:62: 30:7a:63:46:2c:f5:5e:13:43:26:64:93:c6:0a:35: 49:7f:72:62:c2:eb:25:d3:f4:d5:bb:7c:d3:0f:b3: 7d:66:f0:b1:68:89:72:d7:5d:17:97:60:9f:c2:40: 80:bf:82:0b:13:90:d8:e4:ed:57:bc:5f:0d:6b:bf: 79:9d:17:36:6a:fb:ad:12:98:08:57:ba:89:d5:1c: 8d:b3:65:f5:92:03:f3:bb:21:c0:37:a2:66:b2:e8: 0e:2e:8c:d4:74:c9:3f:7f:dc:05:71:e4:76:97:a8: d1:de:dc:9f:09:bf:70:6a:05:e1:28:82:1b:56:7b: 40:fa:6f:a3:11:70:c8:54:22:6e:e1:81:e4:07:94: fd:5e:16:1c:3b:d7:15:57:c1:8e:0a:18:e8:ac:21: 76:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:0D:59:43:C2:40:37:30:DE:81:8E:31:B9:B5:FF:1D:8C:1C:9C:47 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/cce5ba-ff93-4438-a8e3-4a637c6d9938/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/91/cce5ba-ff93-4438-a8e3-4a637c6d9938/1/TQ1ZQ8JANzDegY4xubX_HYwcnEc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.232.124.0/22 IPv6: 2a0c:a500::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 209385 Signature Algorithm: sha256WithRSAEncryption ab:49:b5:39:b5:66:24:7c:4f:ef:e7:56:99:a6:7d:6d:02:86: 10:d7:27:4b:0b:33:40:d5:3f:7b:e4:17:c3:8d:5d:2a:b7:2b: de:f1:40:20:b1:32:90:2c:42:21:53:3e:f1:a9:bf:cf:46:d7: 21:eb:e1:a2:f7:92:31:f8:02:b4:13:03:7e:4f:b6:7d:91:47: c7:9e:17:1a:9f:c6:51:bf:6a:ee:c3:b7:7e:73:e1:1b:80:d4: 98:d3:65:b1:6e:40:96:0c:49:6c:23:dc:64:6b:76:58:5b:f7: a6:b0:98:1b:71:9f:5e:3d:45:d4:c4:76:c5:25:f1:ea:ba:0c: b7:16:d1:11:ee:e8:93:0b:6e:42:c3:95:d6:32:9b:11:f6:63: d9:a2:ce:63:a7:06:a4:88:0c:7b:b0:80:65:df:b2:5e:39:0f: b3:90:86:51:be:c5:d1:17:2d:37:ce:74:31:17:1e:bc:b3:49: f2:2f:a6:86:14:e2:60:66:0b:89:05:9f:f2:a5:fa:f8:9c:11: 59:5f:c2:2e:79:bb:b0:e8:a1:cb:c9:b8:06:aa:17:3e:c9:9f: e3:a2:0b:91:a6:24:cd:03:38:4c:f2:d7:16:49:c8:36:8a:7e: ff:0e:a6:49:d0:bd:b1:ed:09:5b:08:ab:14:8a:56:e1:80:c0: 30:fc:b5:6d -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt/g/bl36NBkjkA3+Gd6R7yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMTUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDBkNTk0M2MyNDAzNzMwZGU4MThlMzFiOWI1ZmYxZDhjMWM5YzQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1lhDUlHNCMQRt9c0D4daqGwtxkmY +TB0cqea7Uo/++pgjCxSBx+g70x3DFRbGHwU+BqESwx3S4tRFoTjDmHsL2BeyIbD lOrp5cNXtRVlFuq3aZ4/yzrplQrf+WOlKo4mUbsp+Bj85mIwemNGLPVeE0MmZJPG CjVJf3Jiwusl0/TVu3zTD7N9ZvCxaIly110Xl2CfwkCAv4ILE5DY5O1XvF8Na795 nRc2avutEpgIV7qJ1RyNs2X1kgPzuyHAN6JmsugOLozUdMk/f9wFceR2l6jR3tyf Cb9wagXhKIIbVntA+m+jEXDIVCJu4YHkB5T9XhYcO9cVV8GOChjorCF22wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFE0NWUPCQDcw3oGOMbm1/x2MHJxHMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzkxL2NjZTVi YS1mZjkzLTQ0MzgtYThlMy00YTYzN2M2ZDk5MzgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTEvY2NlNWJh LWZmOTMtNDQzOC1hOGUzLTRhNjM3YzZkOTkzOC8xL1RRMVpROEpBTnpEZWdZNHh1 YlhfSFl3Y25FYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCueh8MA0EAgACMAcDBQAqDKUAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMx6TANBgkqhkiG9w0BAQsFAAOCAQEAq0m1ObVmJHxP 7+dWmaZ9bQKGENcnSwszQNU/e+QXw41dKrcr3vFAILEykCxCIVM+8am/z0bXIevh oveSMfgCtBMDfk+2fZFHx54XGp/GUb9q7sO3fnPhG4DUmNNlsW5AlgxJbCPcZGt2 WFv3prCYG3GfXj1F1MR2xSXx6roMtxbREe7okwtuQsOV1jKbEfZj2aLOY6cGpIgM e7CAZd+yXjkPs5CGUb7F0RctN850MRcevLNJ8i+mhhTiYGYLiQWf8qX6+JwRWV/C Lnm7sOihy8m4BqoXPsmf46ILkaYkzQM4TPLXFknINop+/w6mSdC9se0JWwirFIpW 4YDAMPy1bQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:51 2026 by rpki-client