This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Tx097mN940sTx0umz7TSBb5VYn4.cer File: Tx097mN940sTx0umz7TSBb5VYn4.cer (raw, json) Hash identifier: xJONPHkoELWmNKxP0gZAC6zlCxiECexiUWMpDVeS4oU= Subject key identifier: 4F:1D:3D:EE:63:7D:E3:4B:13:C7:4B:A6:CF:B4:D2:05:BE:55:62:7E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5CED2BA3FD083083198C228E3E16A3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ff/a1adf5-7642-4e90-a07e-1f1b24118d85/1/Tx097mN940sTx0umz7TSBb5VYn4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ff/a1adf5-7642-4e90-a07e-1f1b24118d85/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:20:00 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 39750 IP: 193.8.48.0 -- 193.8.53.255 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:ed:2b:a3:fd:08:30:83:19:8c:22:8e:3e:16:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:20:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4f1d3dee637de34b13c74ba6cfb4d205be55627e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f0:86:10:e5:9f:b5:cd:d7:18:fb:25:24:da:27: 4e:37:7e:ad:d1:a4:f0:33:d5:a6:20:0b:46:79:31: b6:c8:d2:c8:17:69:8a:e0:06:67:62:50:10:3a:66: 5d:8c:84:0c:43:69:fb:6c:13:04:86:fe:48:72:c9: b6:eb:35:bf:f9:de:f6:b0:7c:07:78:50:a0:40:0a: 2a:b2:9f:46:9d:fe:6d:4f:0c:cd:1b:46:2e:7f:c3: c8:c0:76:b2:9d:f7:5b:17:b7:ff:f0:8b:3b:1a:3f: 99:de:c3:8e:dc:1f:1d:2d:c6:9c:35:7c:ab:d4:01: 70:98:ac:b1:b6:8a:ed:e8:30:f6:26:bb:8b:bb:59: fb:2a:0c:e3:b9:61:35:57:d6:78:cf:c4:0c:ec:35: 78:1c:7d:16:4f:d1:f9:84:4c:fc:a9:f7:b0:62:ac: 99:80:b1:33:bf:20:95:5e:c1:d4:37:da:a9:79:c5: 8f:49:98:1a:16:92:1f:e7:2c:26:a4:74:cb:26:78: ea:7d:10:06:85:19:73:f5:94:17:9f:32:b5:6d:8f: d2:25:b8:95:1a:64:82:9b:23:89:e4:c2:b9:ad:4e: 12:5e:13:e3:06:62:85:ae:e9:5c:87:c3:6f:b7:1c: 31:47:8a:3d:5c:95:b4:89:b9:35:81:a8:f9:df:5d: 7c:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4F:1D:3D:EE:63:7D:E3:4B:13:C7:4B:A6:CF:B4:D2:05:BE:55:62:7E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a1adf5-7642-4e90-a07e-1f1b24118d85/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ff/a1adf5-7642-4e90-a07e-1f1b24118d85/1/Tx097mN940sTx0umz7TSBb5VYn4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.8.48.0-193.8.53.255 sbgp-autonomousSysNum: critical Autonomous System Numbers: 39750 Signature Algorithm: sha256WithRSAEncryption 24:43:e7:68:3c:00:bd:4f:e9:3f:1d:38:8b:39:af:14:57:0d: 7f:ea:1e:6f:81:f9:d0:90:46:66:04:67:8b:26:cc:d1:a9:c7: 72:01:c3:5e:bd:ee:31:aa:1c:08:29:e4:83:2e:15:3d:4f:7b: 02:be:ac:01:04:26:71:82:6b:ba:21:cb:00:35:f0:c8:6d:9f: c4:97:c4:a7:ea:5e:83:6d:1b:21:2b:37:e4:3d:4f:8f:14:87: 14:b7:e1:24:95:0c:c9:b7:83:af:6e:2c:9a:e5:f9:48:d6:8d: ef:0b:d5:b0:15:c2:4e:3b:c1:bd:54:4d:02:61:bb:bb:89:3e: 6a:f2:ae:ab:1f:73:4f:32:2a:05:a5:8e:24:d4:15:f8:f4:8e: 61:54:bd:9e:c1:f6:95:a4:21:61:50:d1:da:5d:6c:08:41:0c: 95:c5:cb:83:1f:cf:6c:c5:76:59:0c:d8:a0:53:b2:28:fc:fd: fc:98:64:a4:c8:4e:28:c1:6c:98:d9:ef:0d:52:68:30:93:68: e4:df:f4:a0:0f:d2:bd:e0:78:7f:a4:4a:3a:d6:da:b0:59:9b: 66:86:de:02:d3:f6:ff:62:c0:c1:8a:35:01:b6:2f:51:5e:34: 4e:09:74:b7:a1:fe:7f:7a:a1:7c:95:e7:66:40:18:87:e5:8e: 1d:c2:d7:6e -----BEGIN CERTIFICATE----- MIIFnDCCBISgAwIBAgISAZt9XO0ro/0IMIMZjCKOPhajMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYyMDAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZjFkM2RlZTYzN2RlMzRiMTNjNzRiYTZjZmI0ZDIwNWJlNTU2MjdlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8IYQ5Z+1zdcY+yUk2idON36t0aTw M9WmIAtGeTG2yNLIF2mK4AZnYlAQOmZdjIQMQ2n7bBMEhv5Icsm26zW/+d72sHwH eFCgQAoqsp9Gnf5tTwzNG0Yuf8PIwHaynfdbF7f/8Is7Gj+Z3sOO3B8dLcacNXyr 1AFwmKyxtort6DD2JruLu1n7KgzjuWE1V9Z4z8QM7DV4HH0WT9H5hEz8qfewYqyZ gLEzvyCVXsHUN9qpecWPSZgaFpIf5ywmpHTLJnjqfRAGhRlz9ZQXnzK1bY/SJbiV GmSCmyOJ5MK5rU4SXhPjBmKFrulch8NvtxwxR4o9XJW0ibk1gaj53118kQIDAQAB o4ICqDCCAqQwHQYDVR0OBBYEFE8dPe5jfeNLE8dLps+00gW+VWJ+MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZmL2ExYWRm NS03NjQyLTRlOTAtYTA3ZS0xZjFiMjQxMThkODUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmYvYTFhZGY1 LTc2NDItNGU5MC1hMDdlLTFmMWIyNDExOGQ4NS8xL1R4MDk3bU45NDBzVHgwdW16 N1RTQmI1VlluNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCcGCCsGAQUF BwEHAQH/BBgwFjAUBAIAATAOMAwDBATBCDADBAHBCDQwGgYIKwYBBQUHAQgBAf8E CzAJoAcwBQIDAJtGMA0GCSqGSIb3DQEBCwUAA4IBAQAkQ+doPAC9T+k/HTiLOa8U Vw1/6h5vgfnQkEZmBGeLJszRqcdyAcNeve4xqhwIKeSDLhU9T3sCvqwBBCZxgmu6 IcsANfDIbZ/El8Sn6l6DbRshKzfkPU+PFIcUt+EklQzJt4Ovbiya5flI1o3vC9Ww FcJOO8G9VE0CYbu7iT5q8q6rH3NPMioFpY4k1BX49I5hVL2ewfaVpCFhUNHaXWwI QQyVxcuDH89sxXZZDNigU7Io/P38mGSkyE4owWyY2e8NUmgwk2jk3/SgD9K94Hh/ pEo61tqwWZtmht4C0/b/YsDBijUBti9RXjROCXS3of5/eqF8ledmQBiH5Y4dwtdu -----END CERTIFICATE-----Generated at Mon Feb 9 16:53:10 2026 by rpki-client