This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/UsbdFxnihP9ccH-BIujtDYeVrz0.cer File: UsbdFxnihP9ccH-BIujtDYeVrz0.cer (raw, json) Hash identifier: eygcUgsSyfugxsZ/PuBqymWX2SDqqWn9XxO2YMNxdM4= Subject key identifier: 52:C6:DD:17:19:E2:84:FF:5C:70:7F:81:22:E8:ED:0D:87:95:AF:3D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCA6DF6E62E96E9256997E636204488 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/UsbdFxnihP9ccH-BIujtDYeVrz0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210593 AS: 211808 IP: 91.247.175.0/24 IP: 185.237.187.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:6d:f6:e6:2e:96:e9:25:69:97:e6:36:20:44:88 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=52c6dd1719e284ff5c707f8122e8ed0d8795af3d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d5:1a:21:b5:d1:25:2b:c7:a7:ec:61:ce:be:3a: e1:16:3a:c9:ac:fb:c0:f3:9e:4f:e1:a1:32:00:bd: 44:c1:ea:3b:4f:b8:f6:80:b3:d1:b2:1c:5c:8a:c9: ee:23:f4:48:0b:ed:83:04:f6:01:43:a9:c0:81:90: 62:3e:fe:bb:30:9c:79:2b:f6:a0:95:57:59:eb:53: 00:32:8b:68:42:bc:36:c4:f4:1d:8f:13:cb:5d:aa: bf:f8:00:af:9f:e5:3d:06:fc:7b:6b:50:88:68:57: 2a:69:6b:e4:97:fb:e3:05:94:33:cf:20:71:b6:b9: c3:40:85:1d:a0:e1:97:00:96:cd:54:0d:5d:78:dc: 46:e0:a4:72:88:b9:68:f7:8b:18:e6:e9:3e:94:1b: 5e:e3:3d:81:fd:09:b1:88:71:7c:5a:85:2b:9f:77: 1d:06:99:ab:a9:ab:00:f4:47:cf:55:55:3a:73:a2: d4:db:ed:c5:55:07:06:23:a8:0a:df:3b:16:ae:36: f2:d7:67:8a:9d:0b:da:1d:c6:1b:38:89:0b:c4:d3: d7:a5:75:b3:83:fc:52:7a:dc:56:45:fd:a8:e2:8f: ae:21:95:50:81:a3:2d:c3:00:0f:e7:1b:2b:13:30: d4:9e:90:7c:5a:0c:53:5d:4b:84:ac:43:26:64:24: 3e:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 52:C6:DD:17:19:E2:84:FF:5C:70:7F:81:22:E8:ED:0D:87:95:AF:3D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d4/10b28e-f928-4a30-94f3-69d406e18653/1/UsbdFxnihP9ccH-BIujtDYeVrz0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.247.175.0/24 185.237.187.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210593 211808 Signature Algorithm: sha256WithRSAEncryption 04:8d:1d:06:e2:27:fe:69:e2:32:b0:cc:5f:5b:5c:e8:e1:94: 4a:a9:dc:cb:1b:e0:3e:f9:72:46:8e:30:03:97:32:8f:1c:94: 85:fe:3a:20:fd:27:df:05:95:51:45:72:c9:34:96:5a:0c:6e: 25:97:c6:25:34:e6:da:b0:b4:11:40:72:98:61:13:5e:76:7b: c4:3b:8c:0f:dd:0b:0c:8f:b2:2c:56:80:e4:61:91:51:09:f8: f8:99:33:d6:0f:75:b3:65:d4:38:7d:3b:77:12:09:6b:dc:84: a9:fb:18:b4:93:fe:07:c0:76:29:6a:6d:d8:ef:5b:59:27:c3: cb:34:f5:0a:73:01:b9:86:b1:0f:a5:15:ca:95:8c:f8:80:5e: 57:5a:17:41:22:7a:1a:11:27:7d:06:d2:46:bb:ea:02:d7:ef: 43:89:ba:d0:7e:7a:e0:2f:73:e1:a7:91:56:ce:b0:a6:15:40: c8:ef:63:e8:29:36:54:41:ac:36:24:54:a8:0a:95:fc:fe:3a: 4f:a2:4c:ed:cf:37:1a:78:b4:ca:e2:f1:95:c8:85:48:62:0d: 78:78:87:de:d7:10:b1:26:27:71:9e:ef:dc:b8:1d:ed:d4:57: 62:d0:d9:65:41:9a:59:44:f4:39:9a:fd:e4:50:cb:9f:fc:e5: d1:ff:06:d3 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgISAZt9ym325i6W6SVpl+Y2IESIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1MmM2ZGQxNzE5ZTI4NGZmNWM3MDdmODEyMmU4ZWQwZDg3OTVhZjNkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1RohtdElK8en7GHOvjrhFjrJrPvA 855P4aEyAL1Eweo7T7j2gLPRshxcisnuI/RIC+2DBPYBQ6nAgZBiPv67MJx5K/ag lVdZ61MAMotoQrw2xPQdjxPLXaq/+ACvn+U9Bvx7a1CIaFcqaWvkl/vjBZQzzyBx trnDQIUdoOGXAJbNVA1deNxG4KRyiLlo94sY5uk+lBte4z2B/QmxiHF8WoUrn3cd BpmrqasA9EfPVVU6c6LU2+3FVQcGI6gK3zsWrjby12eKnQvaHcYbOIkLxNPXpXWz g/xSetxWRf2o4o+uIZVQgaMtwwAP5xsrEzDUnpB8WgxTXUuErEMmZCQ+TQIDAQAB o4ICqzCCAqcwHQYDVR0OBBYEFFLG3RcZ4oT/XHB/gSLo7Q2Hla89MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q0LzEwYjI4 ZS1mOTI4LTRhMzAtOTRmMy02OWQ0MDZlMTg2NTMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDQvMTBiMjhl LWY5MjgtNGEzMC05NGYzLTY5ZDQwNmUxODY1My8xL1VzYmRGeG5paFA5Y2NILUJJ dWp0RFllVnJ6MC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAW/evAwQAue27MB8GCCsGAQUFBwEIAQH/BBAw DqAMMAoCAwM2oQIDAztgMA0GCSqGSIb3DQEBCwUAA4IBAQAEjR0G4if+aeIysMxf W1zo4ZRKqdzLG+A++XJGjjADlzKPHJSF/jog/SffBZVRRXLJNJZaDG4ll8YlNOba sLQRQHKYYRNednvEO4wP3QsMj7IsVoDkYZFRCfj4mTPWD3WzZdQ4fTt3Eglr3ISp +xi0k/4HwHYpam3Y71tZJ8PLNPUKcwG5hrEPpRXKlYz4gF5XWhdBInoaESd9BtJG u+oC1+9DibrQfnrgL3Php5FWzrCmFUDI72PoKTZUQaw2JFSoCpX8/jpPokztzzca eLTK4vGVyIVIYg14eIfe1xCxJidxnu/cuB3t1Fdi0NllQZpZRPQ5mv3kUMuf/OXR /wbT -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:28 2026 by rpki-client