This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/WfJHDAOg8LrQCEaw9nx6Iy1Vcog.cer File: WfJHDAOg8LrQCEaw9nx6Iy1Vcog.cer (raw, json) Hash identifier: WcRzOOqVyNEb0Z8BmL40yUSzHV9mblrCz2AoTv+AqKk= Subject key identifier: 59:F2:47:0C:03:A0:F0:BA:D0:08:46:B0:F6:7C:7A:23:2D:55:72:88 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E3775A9AEAE2F3A8EDD5A75119EB051 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/WfJHDAOg8LrQCEaw9nx6Iy1Vcog.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:18:42 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211595 IP: 2001:678:f10::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:75:a9:ae:ae:2f:3a:8e:dd:5a:75:11:9e:b0:51 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:18:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=59f2470c03a0f0bad00846b0f67c7a232d557288 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:2e:d7:31:5e:c3:5d:f2:5f:7b:5a:29:96:c3: d9:14:4a:33:b4:ac:2f:48:00:31:7a:f1:a0:3b:e4: 5b:4a:50:3f:6d:c5:3d:4f:83:66:6d:e6:8d:39:33: d0:a6:8a:c7:a6:f6:6e:91:3b:45:45:3b:14:30:26: cd:af:93:1e:92:c0:25:79:c1:f3:47:a4:dc:99:be: 01:69:47:18:63:a5:4a:f0:44:29:81:d7:d0:e0:b6: 7c:98:4c:ec:94:00:11:92:93:67:c2:93:0f:24:ec: 67:cc:0d:db:08:03:0f:dc:05:7f:d4:0e:bc:34:eb: 76:6e:15:b7:c1:eb:75:aa:c5:47:1a:94:37:10:8d: 41:8c:45:4a:84:1f:86:c9:5a:54:6b:de:a3:be:b8: ed:c3:54:22:b6:f9:24:f6:a6:05:e4:40:06:d4:d2: d6:c6:7c:f6:ae:97:23:cb:9e:83:f6:0f:c4:0b:23: 8d:93:85:67:bc:57:f4:81:d6:db:c8:54:31:b2:43: 87:f8:ab:80:75:a7:86:0f:a5:00:2d:63:aa:69:0e: 76:b8:29:f2:bf:39:d0:0e:41:4d:25:c5:cf:a7:19: 38:52:eb:47:60:8c:8d:a7:6e:58:b3:88:a4:d1:19: a7:6c:12:7d:c9:f4:dd:09:07:98:67:0f:e4:a3:cb: 87:a5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 59:F2:47:0C:03:A0:F0:BA:D0:08:46:B0:F6:7C:7A:23:2D:55:72:88 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/41/cec6d6-6d34-4107-b672-92bef34e77aa/1/WfJHDAOg8LrQCEaw9nx6Iy1Vcog.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:f10::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211595 Signature Algorithm: sha256WithRSAEncryption 74:80:ae:3c:84:60:4a:bf:90:21:19:a0:20:61:03:38:24:33: 95:0e:df:c2:e8:f6:63:2b:78:9f:cc:37:f8:0c:56:ee:09:35: e1:68:69:ed:3c:ca:49:6b:fa:5f:ea:83:f5:2e:c3:30:21:9f: 78:20:ce:7b:63:83:60:5a:6d:84:49:10:a2:95:5d:4e:b5:4e: f6:1e:b6:2d:b1:46:fb:83:49:f4:4c:98:c5:37:29:09:83:2f: 1a:67:25:9a:41:df:94:01:a6:75:ab:4f:29:38:8d:38:f4:a9: 16:9b:87:6d:f8:f6:04:3e:29:ce:74:11:7b:f9:07:54:b5:89: 1c:ae:91:b0:46:63:67:9d:6e:7b:a7:2e:0e:b8:91:74:7b:58: 33:fe:61:9a:60:4a:18:6a:86:1b:42:60:c4:2a:de:cf:32:98: ba:2e:80:1a:ad:7c:bd:29:68:8f:88:ef:f4:07:37:4c:17:72: 24:7e:c4:35:56:42:e8:75:27:61:1e:8a:93:03:67:44:d9:78: d2:6a:87:d9:1d:70:c3:64:f9:d7:90:04:03:70:97:f0:21:e7: 8d:5c:e9:76:9a:76:49:50:92:9b:29:3b:fd:0b:aa:d8:30:e9: 84:56:bd:81:34:6c:b6:be:bb:3f:b3:55:cd:40:68:0d:53:a8: ad:01:83:81 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt+N3Wprq4vOo7dWnURnrBRMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxODQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg1OWYyNDcwYzAzYTBmMGJhZDAwODQ2YjBmNjdjN2EyMzJkNTU3Mjg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwC7XMV7DXfJfe1oplsPZFEoztKwv SAAxevGgO+RbSlA/bcU9T4NmbeaNOTPQporHpvZukTtFRTsUMCbNr5MeksAlecHz R6Tcmb4BaUcYY6VK8EQpgdfQ4LZ8mEzslAARkpNnwpMPJOxnzA3bCAMP3AV/1A68 NOt2bhW3wet1qsVHGpQ3EI1BjEVKhB+GyVpUa96jvrjtw1Qitvkk9qYF5EAG1NLW xnz2rpcjy56D9g/ECyONk4VnvFf0gdbbyFQxskOH+KuAdaeGD6UALWOqaQ52uCny vznQDkFNJcXPpxk4UutHYIyNp25Ys4ik0RmnbBJ9yfTdCQeYZw/ko8uHpQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFFnyRwwDoPC60AhGsPZ8eiMtVXKIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQxL2NlYzZk Ni02ZDM0LTQxMDctYjY3Mi05MmJlZjM0ZTc3YWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDEvY2VjNmQ2 LTZkMzQtNDEwNy1iNjcyLTkyYmVmMzRlNzdhYS8xL1dmSkhEQU9nOExyUUNFYXc5 bng2SXkxVmNvZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeA8QMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwM6izANBgkqhkiG9w0BAQsFAAOCAQEAdICuPIRgSr+QIRmgIGEDOCQzlQ7f wuj2Yyt4n8w3+AxW7gk14Whp7TzKSWv6X+qD9S7DMCGfeCDOe2ODYFpthEkQopVd TrVO9h62LbFG+4NJ9EyYxTcpCYMvGmclmkHflAGmdatPKTiNOPSpFpuHbfj2BD4p znQRe/kHVLWJHK6RsEZjZ51ue6cuDriRdHtYM/5hmmBKGGqGG0JgxCrezzKYui6A Gq18vSloj4jv9Ac3TBdyJH7ENVZC6HUnYR6KkwNnRNl40mqH2R1ww2T515AEA3CX 8CHnjVzpdpp2SVCSmyk7/Quq2DDphFa9gTRstr67P7NVzUBoDVOorQGDgQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:01 2026 by rpki-client