This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/VfrLmru0yp4IZiqT0ucy5wsGwvI.cer File: VfrLmru0yp4IZiqT0ucy5wsGwvI.cer (raw, json) Hash identifier: ZTtgHyZRctOhc7+KAqY3ODMCOl8ygPyFZKRuq0ZYmG8= Subject key identifier: 55:FA:CB:9A:BB:B4:CA:9E:08:66:2A:93:D2:E7:32:E7:0B:06:C2:F2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DC92C8DAA48DE29CE97CD2F90613545 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f0/e23338-1f3f-4acd-a88c-2eccfce112dd/1/VfrLmru0yp4IZiqT0ucy5wsGwvI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f0/e23338-1f3f-4acd-a88c-2eccfce112dd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:18:14 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 89.45.128.0/20 IP: 185.4.84.0/22 IP: 185.84.48.0/22 IP: 185.92.28.0/22 IP: 185.96.108.0/22 IP: 2a02:67c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c9:2c:8d:aa:48:de:29:ce:97:cd:2f:90:61:35:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:18:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=55facb9abbb4ca9e08662a93d2e732e70b06c2f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:0d:f9:68:00:14:56:4d:81:ce:dc:b6:fe:22: 60:b8:0b:ae:f0:fe:d1:eb:9e:b6:8e:6e:e5:73:91: 46:50:fc:a8:34:29:52:82:05:21:d2:47:46:4a:65: 6d:75:65:dd:6e:cd:1a:e5:54:c4:bd:46:0c:fa:4c: b2:6b:c4:26:58:48:45:9a:7e:ed:f6:8a:c2:ac:bb: d8:dc:e7:ac:89:47:6b:7e:77:9d:7a:05:99:8c:52: 7e:04:d2:ec:67:af:ef:49:69:02:e0:77:38:7c:bb: f8:dd:e3:74:e1:b7:0e:18:9e:7c:e3:8d:cf:eb:1d: 72:5d:ba:8e:a0:7d:c7:60:ae:a2:90:4f:09:11:42: fd:1b:0b:86:fb:b8:c3:10:c8:eb:8d:56:0b:ea:d0: a6:c0:1b:a7:99:23:9d:0d:f2:9b:0a:1e:68:56:00: a3:0f:e5:44:d2:d7:9f:a9:4b:53:4b:93:af:fb:68: 39:8b:22:a9:ba:76:7c:90:08:55:36:11:38:a9:93: ab:e9:cc:b2:0f:f5:18:61:4e:04:26:cc:01:fe:6b: eb:b5:10:52:6b:48:47:9e:11:84:7e:99:da:89:03: cc:7d:b0:57:9a:be:38:53:3a:0e:08:03:0e:6c:54: 54:d8:ac:88:47:11:40:07:81:3b:71:e3:c6:30:40: 8e:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 55:FA:CB:9A:BB:B4:CA:9E:08:66:2A:93:D2:E7:32:E7:0B:06:C2:F2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e23338-1f3f-4acd-a88c-2eccfce112dd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f0/e23338-1f3f-4acd-a88c-2eccfce112dd/1/VfrLmru0yp4IZiqT0ucy5wsGwvI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.45.128.0/20 185.4.84.0/22 185.84.48.0/22 185.92.28.0/22 185.96.108.0/22 IPv6: 2a02:67c0::/32 Signature Algorithm: sha256WithRSAEncryption 4b:d9:f4:b0:12:36:29:60:43:4e:e2:3d:f8:da:91:c5:ff:b9: 11:bb:3b:d7:e6:eb:5d:ae:c5:14:d3:10:56:90:b4:bc:de:1e: 20:a9:40:e9:53:ed:95:65:84:6a:29:f0:ac:25:f6:fb:89:a3: 3f:7d:b2:73:51:76:59:de:13:ea:b3:8b:72:98:f3:5c:6e:29: 67:e8:a4:77:e4:63:42:b0:13:d4:de:57:9c:eb:6d:aa:22:06: 8d:9a:02:ce:c9:6d:fe:c4:c2:8f:2f:9b:22:2d:7a:92:65:1b: 92:a3:10:15:2b:24:8d:c0:2f:f2:8c:a9:a9:30:46:91:a7:7e: 1d:24:3d:4d:3d:5e:c9:c7:1a:1f:4c:a0:6c:84:77:37:4e:50: 0c:a3:03:74:aa:89:89:63:5b:7b:cd:5f:b6:19:9c:e0:7d:aa: d7:b1:f2:06:1a:cf:46:e7:21:5e:1c:02:e1:89:c9:e6:82:02: 36:cd:98:3f:45:28:63:87:e2:6e:ba:6f:8b:10:68:be:a7:f3: 9d:1f:a6:be:5f:32:77:ed:6a:56:08:f3:cd:cb:dd:de:b2:37: a7:85:21:34:a9:44:42:12:90:b8:b7:99:85:71:33:ef:79:6f: f1:ec:a2:2e:96:2d:e0:a4:84:86:a8:1f:51:67:1d:80:22:15: b4:a1:7c:aa -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgISAZt9ySyNqkjeKc6XzS+QYTVFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxODE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1NWZhY2I5YWJiYjRjYTllMDg2NjJhOTNkMmU3MzJlNzBiMDZjMmYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxw35aAAUVk2Bzty2/iJguAuu8P7R 6562jm7lc5FGUPyoNClSggUh0kdGSmVtdWXdbs0a5VTEvUYM+kyya8QmWEhFmn7t 9orCrLvY3OesiUdrfnedegWZjFJ+BNLsZ6/vSWkC4Hc4fLv43eN04bcOGJ58443P 6x1yXbqOoH3HYK6ikE8JEUL9GwuG+7jDEMjrjVYL6tCmwBunmSOdDfKbCh5oVgCj D+VE0tefqUtTS5Ov+2g5iyKpunZ8kAhVNhE4qZOr6cyyD/UYYU4EJswB/mvrtRBS a0hHnhGEfpnaiQPMfbBXmr44UzoOCAMObFRU2KyIRxFAB4E7cePGMECOZwIDAQAB o4ICqzCCAqcwHQYDVR0OBBYEFFX6y5q7tMqeCGYqk9LnMucLBsLyMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YwL2UyMzMz OC0xZjNmLTRhY2QtYTg4Yy0yZWNjZmNlMTEyZGQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjAvZTIzMzM4 LTFmM2YtNGFjZC1hODhjLTJlY2NmY2UxMTJkZC8xL1ZmckxtcnUweXA0SVppcVQw dWN5NXdzR3d2SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEYGCCsGAQUF BwEHAQH/BDcwNTAkBAIAATAeAwQEWS2AAwQCuQRUAwQCuVQwAwQCuVwcAwQCuWBs MA0EAgACMAcDBQAqAmfAMA0GCSqGSIb3DQEBCwUAA4IBAQBL2fSwEjYpYENO4j34 2pHF/7kRuzvX5utdrsUU0xBWkLS83h4gqUDpU+2VZYRqKfCsJfb7iaM/fbJzUXZZ 3hPqs4tymPNcbiln6KR35GNCsBPU3lec622qIgaNmgLOyW3+xMKPL5siLXqSZRuS oxAVKySNwC/yjKmpMEaRp34dJD1NPV7JxxofTKBshHc3TlAMowN0qomJY1t7zV+2 GZzgfarXsfIGGs9G5yFeHALhicnmggI2zZg/RShjh+Juum+LEGi+p/OdH6a+XzJ3 7WpWCPPNy93esjenhSE0qURCEpC4t5mFcTPveW/x7KIuli3gpISGqB9RZx2AIhW0 oXyq -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:18 2026 by rpki-client