This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VICpFlHjeO69hx0K3WleZ3v1DS4.cer File: VICpFlHjeO69hx0K3WleZ3v1DS4.cer (raw, json) Hash identifier: kwSvjegPFaBgpQLaPTFz2gYrmRtpnIvbwe4tgSjo9xg= Subject key identifier: 54:80:A9:16:51:E3:78:EE:BD:87:1D:0A:DD:69:5E:67:7B:F5:0D:2E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834AB73503BF8AC7FDFF9C733138241 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/c12b1f-b419-4f7e-94d4-c9a5cd9c144d/1/VICpFlHjeO69hx0K3WleZ3v1DS4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/c12b1f-b419-4f7e-94d4-c9a5cd9c144d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:56 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 213037 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:ab:73:50:3b:f8:ac:7f:df:f9:c7:33:13:82:41 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:56 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=5480a91651e378eebd871d0add695e677bf50d2e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:fa:8c:98:c1:e0:ed:27:8e:6b:79:88:6f:82: 4d:6d:f9:28:73:d0:fe:e2:65:85:e0:92:18:7f:17: 74:e6:d7:12:d2:de:a3:53:b5:00:b1:52:84:2a:c4: 92:7e:15:d3:e9:dd:84:ee:ab:1f:de:04:db:36:97: 41:85:79:39:e1:80:25:5d:55:c8:56:35:a4:4a:94: 16:96:7a:81:f6:c1:8d:5b:a0:38:d4:ec:e6:4b:83: 51:8d:89:71:8b:a6:9e:07:2b:ce:e5:a0:9d:fc:a9: a1:69:ad:5b:17:9d:9b:11:51:c5:88:54:04:3c:0a: c4:99:a5:e6:61:9b:cc:53:20:e7:4c:7c:7c:fd:58: 29:24:78:d6:ff:c3:92:c4:4a:8b:f4:be:4d:13:d0: 6e:6d:52:e3:98:ed:66:1f:ee:12:ad:28:85:d8:93: f0:23:8b:8f:ca:76:fe:6c:ae:09:e9:9f:15:93:e7: 88:91:78:a0:8e:d3:bb:84:94:ef:1f:f1:e2:88:04: f8:9d:a7:03:d5:6c:bd:2c:b3:27:56:86:57:0d:60: 3d:1b:25:dc:99:df:99:0b:af:78:77:f7:5d:ff:55: 64:cf:9d:91:ed:d2:7e:82:0d:2e:95:e6:2e:df:d1: a6:dd:76:eb:e4:34:f4:02:d2:5a:6d:26:0f:4f:7c: 10:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 54:80:A9:16:51:E3:78:EE:BD:87:1D:0A:DD:69:5E:67:7B:F5:0D:2E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/c12b1f-b419-4f7e-94d4-c9a5cd9c144d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/c12b1f-b419-4f7e-94d4-c9a5cd9c144d/1/VICpFlHjeO69hx0K3WleZ3v1DS4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 213037 Signature Algorithm: sha256WithRSAEncryption 50:97:d1:ee:94:c6:08:1f:53:a3:d3:89:63:02:e9:6d:4a:a1: 24:8d:33:1b:30:01:a0:c9:05:11:55:85:a0:a5:bf:d5:0a:08: e9:46:18:6f:30:47:1c:6b:69:99:d3:24:06:71:0f:53:a8:4d: 87:33:75:78:b1:aa:58:5f:c8:04:7d:eb:30:b5:b1:60:da:cf: 84:49:14:da:4d:d8:8e:79:f6:aa:0d:c9:d9:ee:e8:5a:8b:b5: 62:43:59:f5:c7:d3:60:db:d0:59:8d:85:b9:7e:13:63:ff:5d: 01:c4:25:d3:d6:1a:32:49:34:be:44:a3:c7:8d:f0:8d:3e:90: 51:da:0c:5c:eb:95:f0:38:2d:5b:53:43:1a:54:25:cc:3e:75: 4f:71:f3:e5:48:f2:38:91:52:74:a7:7c:35:59:08:6c:50:ba: d0:d6:3f:96:0c:77:83:dc:c1:38:c5:43:ef:81:ae:d8:43:7e: 12:e0:11:f6:f2:8e:43:0e:04:e8:d4:c9:64:8a:18:2f:e2:24: a3:d5:b2:57:f8:14:d0:d8:f0:c8:87:e8:47:bb:35:4a:a8:55: fd:46:3d:fe:27:88:0a:ab:8e:cb:35:c5:d3:c4:72:ec:83:a2: 4c:47:4f:82:28:f9:fb:5e:82:83:b3:0e:d6:01:ba:e7:dd:fb: 1f:05:71:fa -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt4NKtzUDv4rH/f+cczE4JBMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzU2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NDgwYTkxNjUxZTM3OGVlYmQ4NzFkMGFkZDY5NWU2NzdiZjUwZDJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuPqMmMHg7SeOa3mIb4JNbfkoc9D+ 4mWF4JIYfxd05tcS0t6jU7UAsVKEKsSSfhXT6d2E7qsf3gTbNpdBhXk54YAlXVXI VjWkSpQWlnqB9sGNW6A41OzmS4NRjYlxi6aeByvO5aCd/Kmhaa1bF52bEVHFiFQE PArEmaXmYZvMUyDnTHx8/VgpJHjW/8OSxEqL9L5NE9BubVLjmO1mH+4SrSiF2JPw I4uPynb+bK4J6Z8Vk+eIkXigjtO7hJTvH/HiiAT4nacD1Wy9LLMnVoZXDWA9GyXc md+ZC694d/dd/1Vkz52R7dJ+gg0uleYu39Gm3Xbr5DT0AtJabSYPT3wQjQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFFSAqRZR43juvYcdCt1pXmd79Q0uMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU1L2MxMmIx Zi1iNDE5LTRmN2UtOTRkNC1jOWE1Y2Q5YzE0NGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUvYzEyYjFm LWI0MTktNGY3ZS05NGQ0LWM5YTVjZDljMTQ0ZC8xL1ZJQ3BGbEhqZU82OWh4MEsz V2xlWjN2MURTNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNALTANBgkqhkiG9w0BAQsFAAOCAQEAUJfR7pTGCB9T o9OJYwLpbUqhJI0zGzABoMkFEVWFoKW/1QoI6UYYbzBHHGtpmdMkBnEPU6hNhzN1 eLGqWF/IBH3rMLWxYNrPhEkU2k3Yjnn2qg3J2e7oWou1YkNZ9cfTYNvQWY2FuX4T Y/9dAcQl09YaMkk0vkSjx43wjT6QUdoMXOuV8DgtW1NDGlQlzD51T3Hz5UjyOJFS dKd8NVkIbFC60NY/lgx3g9zBOMVD74Gu2EN+EuAR9vKOQw4E6NTJZIoYL+Iko9Wy V/gU0NjwyIfoR7s1SqhV/UY9/ieICquOyzXF08Ry7IOiTEdPgij5+16Cg7MO1gG6 5937HwVx+g== -----END CERTIFICATE-----Generated at Mon Feb 9 19:50:37 2026 by rpki-client