This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UoUm3npC8eCAkWhA7r85A4uJPRY.cer File: UoUm3npC8eCAkWhA7r85A4uJPRY.cer (raw, json) Hash identifier: DT/F6uRl4bdWO6qaFEWBi+ww/skvcw4SA4NQQ9Z1St4= Subject key identifier: 52:85:26:DE:7A:42:F1:E0:80:91:68:40:EE:BF:39:03:8B:89:3D:16 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5AF6E65E4032CB0FF561B774DC51A9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:17:52 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212710 IP: 193.58.100.0/22 IP: 2a09:2900::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:f6:e6:5e:40:32:cb:0f:f5:61:b7:74:dc:51:a9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:17:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=528526de7a42f1e080916840eebf39038b893d16 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8c:48:d7:53:ce:39:94:c4:d0:f2:75:b1:c7:8a: 41:3d:22:65:e4:b6:62:a5:2b:c2:b0:66:30:9d:16: 2e:dd:79:6b:0a:5b:38:c4:13:66:31:b6:9f:5c:77: da:78:6a:67:89:54:87:41:f2:cb:a7:85:8e:42:ff: e0:8a:27:9d:85:06:b9:db:fd:ee:96:be:01:81:7d: 27:81:4f:96:6c:61:73:dd:84:96:e3:17:80:8c:38: a4:15:d6:e7:41:77:05:25:fd:b7:bf:0b:7a:49:26: 8b:91:89:bb:48:f4:e2:03:32:18:23:09:bc:d8:e2: ae:2a:cf:63:ae:fa:a7:f6:e4:ec:dc:2d:5b:ba:7b: 80:47:2b:36:31:e6:1d:5f:6d:8b:47:df:1c:a8:e8: af:60:1f:8c:e0:68:34:66:cd:a7:e3:a0:96:b1:52: a8:44:10:4c:95:0e:25:e0:c2:cf:54:57:66:a2:00: 4b:65:65:a0:51:0e:44:75:1e:dd:31:1c:8e:82:ab: 4e:81:9a:fa:57:be:a1:06:af:c7:c3:3d:a4:b1:bd: 2a:14:c1:ee:c2:37:51:87:21:26:3e:09:fb:df:f8: 3f:e0:25:75:1c:a7:95:7d:a5:a7:5b:f4:d2:c5:e3: bf:86:88:ad:e3:39:8e:8b:94:b2:d7:f0:0f:55:76: 81:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:85:26:DE:7A:42:F1:E0:80:91:68:40:EE:BF:39:03:8B:89:3D:16 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/07/96a928-819c-476c-bae1-50c9f5b3c3e4/1/UoUm3npC8eCAkWhA7r85A4uJPRY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.58.100.0/22 IPv6: 2a09:2900::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212710 Signature Algorithm: sha256WithRSAEncryption 8a:a9:68:3f:6d:fa:ba:5e:8d:8e:a0:cb:f1:b1:33:e9:e4:31: 0e:82:cb:7f:0e:14:21:fd:e5:87:2a:f7:ad:19:a5:81:4e:f6: 33:7a:ba:62:16:64:17:29:42:e3:86:ab:9b:e3:50:d2:b1:b6: 56:02:49:af:34:fd:d3:9e:a6:1d:2e:9c:ee:d7:28:cd:6b:51: 11:f4:1b:8e:1d:8c:03:5d:cf:af:8b:0e:9e:11:91:8a:87:a5: a9:a1:dd:c4:46:0c:63:b1:4a:ae:d0:10:9a:be:29:86:e6:33: a2:5e:54:0d:a4:14:96:f9:6a:0c:eb:7c:e7:95:4f:4c:a4:ce: d7:53:8b:98:52:4a:b7:1e:e2:7b:fb:95:4f:3d:69:bf:60:d8: 0f:02:b3:7e:2e:e7:ea:6f:3d:89:04:0c:21:2f:1c:e6:33:1d: 45:5c:ba:9c:34:52:e5:1b:1a:3f:cc:78:4f:06:59:a2:53:ea: 27:95:93:2c:3a:7e:a5:24:5b:49:0f:73:6b:f7:30:76:ff:d2: c7:be:d2:66:89:0e:04:e1:c4:57:9d:fd:b3:71:73:63:8c:a6: a5:e6:ed:db:62:f9:81:0a:b4:fd:fc:06:1b:a1:11:fb:b6:f1: 01:73:68:39:25:73:6c:ba:b5:58:5b:14:a8:21:eb:be:af:70: 7f:7b:41:86 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9WvbmXkAyyw/1Ybd03FGpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxNzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1Mjg1MjZkZTdhNDJmMWUwODA5MTY4NDBlZWJmMzkwMzhiODkzZDE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEjXU845lMTQ8nWxx4pBPSJl5LZi pSvCsGYwnRYu3XlrCls4xBNmMbafXHfaeGpniVSHQfLLp4WOQv/giiedhQa52/3u lr4BgX0ngU+WbGFz3YSW4xeAjDikFdbnQXcFJf23vwt6SSaLkYm7SPTiAzIYIwm8 2OKuKs9jrvqn9uTs3C1bunuARys2MeYdX22LR98cqOivYB+M4Gg0Zs2n46CWsVKo RBBMlQ4l4MLPVFdmogBLZWWgUQ5EdR7dMRyOgqtOgZr6V76hBq/Hwz2ksb0qFMHu wjdRhyEmPgn73/g/4CV1HKeVfaWnW/TSxeO/hoit4zmOi5Sy1/APVXaBYQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFFKFJt56QvHggJFoQO6/OQOLiT0WMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA3Lzk2YTky OC04MTljLTQ3NmMtYmFlMS01MGM5ZjViM2MzZTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDcvOTZhOTI4 LTgxOWMtNDc2Yy1iYWUxLTUwYzlmNWIzYzNlNC8xL1VvVW0zbnBDOGVDQWtXaEE3 cjg1QTR1SlBSWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCwTpkMA0EAgACMAcDBQMqCSkAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM+5jANBgkqhkiG9w0BAQsFAAOCAQEAiqloP236ul6N jqDL8bEz6eQxDoLLfw4UIf3lhyr3rRmlgU72M3q6YhZkFylC44arm+NQ0rG2VgJJ rzT9056mHS6c7tcozWtREfQbjh2MA13Pr4sOnhGRioelqaHdxEYMY7FKrtAQmr4p huYzol5UDaQUlvlqDOt855VPTKTO11OLmFJKtx7ie/uVTz1pv2DYDwKzfi7n6m89 iQQMIS8c5jMdRVy6nDRS5RsaP8x4TwZZolPqJ5WTLDp+pSRbSQ9za/cwdv/Sx77S ZokOBOHEV539s3FzY4ympebt22L5gQq0/fwGG6ER+7bxAXNoOSVzbLq1WFsUqCHr vq9wf3tBhg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:14 2026 by rpki-client