This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VdCGNM-l6BZpPCt54ui4ruuvWXY.cer File: VdCGNM-l6BZpPCt54ui4ruuvWXY.cer (raw, json) Hash identifier: 0Q/PoWSaLUA0IGKKHxq2NeXqqVdgpd5mMa+TMV/k7qs= Subject key identifier: 55:D0:86:34:CF:A5:E8:16:69:3C:2B:79:E2:E8:B8:AE:EB:AF:59:76 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C808587F653642687DE7781A9501AAB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/VdCGNM-l6BZpPCt54ui4ruuvWXY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:19:16 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201111 IP: 185.82.240.0/22 IP: 2a05:9600::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:85:87:f6:53:64:26:87:de:77:81:a9:50:1a:ab Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=55d08634cfa5e816693c2b79e2e8b8aeebaf5976 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b1:25:26:8c:9c:28:96:f0:27:ad:8d:e6:9f:79: 63:e5:47:24:11:ff:35:e9:74:bd:69:0f:0d:e0:57: 69:58:36:34:0c:a5:59:23:6c:08:67:5e:e9:6e:1f: 5f:9b:c9:b5:c7:58:73:98:6e:70:cd:55:33:75:3a: c6:62:ad:16:6a:6f:aa:e4:07:1f:ba:ee:e0:64:d7: 05:e4:a5:e6:26:4c:7f:19:e5:f7:fb:26:48:ce:3f: ca:5a:7a:a7:62:67:8b:4d:87:c9:c9:59:8b:0f:99: 19:91:f2:46:86:e2:67:05:af:db:61:db:4f:46:27: 5b:a4:ea:54:cf:c0:d9:b2:5a:55:fd:9d:04:46:e4: 5b:c0:f7:2f:56:03:d6:05:c6:b2:08:ae:70:46:26: 85:5a:c1:44:1e:54:be:fb:48:b3:90:63:80:7a:fe: 58:fa:b4:77:4c:84:e9:54:7c:b3:f3:fc:b6:b6:29: 20:10:a6:f0:30:a4:dd:06:47:1f:2c:cb:ac:b4:f5: 33:83:6c:45:a4:3b:28:72:87:42:fb:77:0a:d4:8d: 40:5a:62:29:85:3b:b2:d7:1d:8b:52:6f:78:ac:34: e8:76:e5:3e:1d:4d:90:97:d0:31:fb:c7:49:8c:c6: 8e:27:8d:df:74:50:52:08:f5:b7:fa:01:df:6d:25: f6:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:D0:86:34:CF:A5:E8:16:69:3C:2B:79:E2:E8:B8:AE:EB:AF:59:76 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/1da73f-082e-4f17-b6a1-0575d0a46baa/1/VdCGNM-l6BZpPCt54ui4ruuvWXY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.82.240.0/22 IPv6: 2a05:9600::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201111 Signature Algorithm: sha256WithRSAEncryption 2b:ac:04:f4:13:c6:8c:57:93:59:5f:a2:a0:a1:a3:ef:54:0e: 29:0f:1f:f4:18:e4:f4:4f:e3:ef:cb:cb:cf:17:16:41:70:ad: fa:28:1b:6c:65:2e:aa:f1:84:2a:04:8f:e4:2e:b7:dd:1c:33: 56:1c:dd:3f:6f:c4:8e:5f:fb:f3:ba:e6:48:7c:f3:9c:a3:e1: d0:1b:99:47:4e:36:73:4d:fa:cd:2d:b9:5a:58:ba:f2:48:49: 0a:d4:cc:d9:f1:34:17:a3:7a:2b:5b:42:96:e9:55:11:a7:71: e6:63:ee:e5:15:a9:00:91:0a:d1:cb:d0:fc:d9:37:01:f2:23: 14:80:e6:45:39:56:66:03:6c:ad:e2:4c:35:93:8b:40:2c:ec: e8:e7:4c:18:27:02:1c:70:c8:90:f7:d8:60:7a:ad:34:f7:30: e4:2e:3a:d4:e1:cb:91:57:be:a3:2f:20:33:0e:ea:69:2e:a6: c7:84:bd:5e:ac:57:0c:2e:cc:cf:82:6f:62:ba:c9:e9:81:dc: b7:8d:6f:97:e7:31:be:3b:5b:3d:17:bd:4d:fb:ec:cc:96:24: 57:35:10:fe:7e:d2:84:00:50:14:de:07:90:53:8e:73:27:0c: 40:8a:64:d1:e2:9c:12:d8:59:80:2b:27:28:b2:2a:2c:b6:c9: 51:cd:4b:85 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt8gIWH9lNkJofed4GpUBqrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NWQwODYzNGNmYTVlODE2NjkzYzJiNzllMmU4YjhhZWViYWY1OTc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsSUmjJwolvAnrY3mn3lj5UckEf81 6XS9aQ8N4FdpWDY0DKVZI2wIZ17pbh9fm8m1x1hzmG5wzVUzdTrGYq0Wam+q5Acf uu7gZNcF5KXmJkx/GeX3+yZIzj/KWnqnYmeLTYfJyVmLD5kZkfJGhuJnBa/bYdtP RidbpOpUz8DZslpV/Z0ERuRbwPcvVgPWBcayCK5wRiaFWsFEHlS++0izkGOAev5Y +rR3TITpVHyz8/y2tikgEKbwMKTdBkcfLMustPUzg2xFpDsocodC+3cK1I1AWmIp hTuy1x2LUm94rDToduU+HU2Ql9Ax+8dJjMaOJ43fdFBSCPW3+gHfbSX20wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFFXQhjTPpegWaTwreeLouK7rr1l2MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM1LzFkYTcz Zi0wODJlLTRmMTctYjZhMS0wNTc1ZDBhNDZiYWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzUvMWRhNzNm LTA4MmUtNGYxNy1iNmExLTA1NzVkMGE0NmJhYS8xL1ZkQ0dOTS1sNkJacFBDdDU0 dWk0cnV1dldYWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuVLwMA0EAgACMAcDBQMqBZYAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMRlzANBgkqhkiG9w0BAQsFAAOCAQEAK6wE9BPGjFeT WV+ioKGj71QOKQ8f9Bjk9E/j78vLzxcWQXCt+igbbGUuqvGEKgSP5C633RwzVhzd P2/Ejl/787rmSHzznKPh0BuZR042c036zS25Wli68khJCtTM2fE0F6N6K1tClulV Eadx5mPu5RWpAJEK0cvQ/Nk3AfIjFIDmRTlWZgNsreJMNZOLQCzs6OdMGCcCHHDI kPfYYHqtNPcw5C461OHLkVe+oy8gMw7qaS6mx4S9XqxXDC7Mz4JvYrrJ6YHct41v l+cxvjtbPRe9TfvszJYkVzUQ/n7ShABQFN4HkFOOcycMQIpk0eKcEthZgCsnKLIq LLbJUc1LhQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:17 2026 by rpki-client