This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_1VJGZMcZ70mUPxODHPC-z4ijZU.cer File: _1VJGZMcZ70mUPxODHPC-z4ijZU.cer (raw, json) Hash identifier: 8/GaJr3XNO4i0+5PW3LcN4cXM+gr5DXC6kB0l18d6yw= Subject key identifier: FF:55:49:19:93:1C:67:BD:26:50:FC:4E:0C:73:C2:FB:3E:22:8D:95 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5A93B466F9BA906892F3C2E6766F33 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:17:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 58151 IP: 176.117.96.0/21 IP: 2001:67c:2988::/47 IP: 2a03:8c40::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:93:b4:66:f9:ba:90:68:92:f3:c2:e6:76:6f:33 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ff554919931c67bd2650fc4e0c73c2fb3e228d95 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:45:7d:00:f7:71:42:57:7c:c7:68:36:ca:4c: 36:4b:6e:ca:9d:db:32:ab:a3:01:1b:ef:45:3c:a0: 07:df:1a:cd:2c:b9:84:c6:1b:ef:7f:18:a6:4d:dd: 7f:e3:a1:25:81:08:e9:9b:7f:41:38:bf:32:ae:b7: 38:89:18:bb:8d:15:f8:44:d5:28:6c:96:fd:1d:34: fc:c1:76:00:3b:07:f4:22:4a:48:13:99:69:0a:72: 5c:e8:fd:7f:b3:52:fd:f6:19:19:ef:88:4b:3b:60: c5:e8:7b:e3:a5:cb:56:6f:38:47:f2:bd:4c:40:ab: 19:e2:42:24:10:1d:89:57:d0:34:e7:fc:be:84:4c: 79:02:8e:1d:48:a3:5c:60:d3:1f:82:42:fb:65:ec: 87:5d:e4:e9:95:85:5b:8e:d6:28:30:a9:27:7f:3c: ee:2c:ab:ae:75:1d:f8:cf:c4:15:9b:65:35:94:33: 60:14:97:2a:87:e8:f4:4f:13:ed:d6:28:cb:47:4c: 31:ad:92:1d:89:3b:a4:c7:3d:e9:96:f3:69:96:ad: ea:96:9d:d9:8a:8b:b1:d0:96:6d:3f:1b:66:c0:f4: c7:53:6a:f0:c7:27:0a:2e:8d:7d:76:08:3d:fb:66: 8b:53:c1:0c:67:6f:72:7b:74:9f:5d:6b:cc:e6:08: 19:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FF:55:49:19:93:1C:67:BD:26:50:FC:4E:0C:73:C2:FB:3E:22:8D:95 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/11/23244d-4886-470b-b1fc-290aa4318caa/1/_1VJGZMcZ70mUPxODHPC-z4ijZU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.117.96.0/21 IPv6: 2001:67c:2988::/47 2a03:8c40::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 58151 Signature Algorithm: sha256WithRSAEncryption 13:9d:d0:54:15:e6:c8:1d:95:58:28:f9:f6:66:5e:be:87:d1: d6:59:20:06:62:7e:e6:47:0f:df:26:2a:32:83:10:11:d3:1b: 4b:6b:ab:7f:38:73:db:96:fb:ee:f3:1f:bf:6a:ee:d1:9d:66: be:cb:16:69:02:e1:8c:76:ef:ad:d5:7a:f7:78:9c:25:3e:c7: a4:ee:3a:d5:a3:0b:5f:27:45:ab:c3:2d:be:53:f3:36:da:bf: 96:1e:6d:af:27:23:08:32:e4:1b:a6:23:2d:f8:38:57:e6:11: c6:aa:ca:54:98:6f:3e:4c:23:99:b0:f0:63:2f:72:83:8a:7c: 83:6a:10:75:a5:92:59:60:f9:cf:b8:c2:42:32:48:1e:d3:54: 5e:e0:76:d3:f4:aa:79:28:12:52:8d:4c:c0:46:4c:3b:7e:37: 79:ea:7c:c3:77:c3:d4:0b:8f:48:f6:54:d9:b7:26:5b:26:2f: aa:cf:eb:53:de:33:c3:cd:97:a4:c6:52:a6:27:24:2f:ec:56: 4e:7b:df:ba:9e:e9:fc:da:4e:6e:a1:81:fb:75:96:c8:8c:c2: 37:2e:c5:42:30:1c:da:d6:b6:d1:d0:8a:b1:08:04:99:19:88: 9c:9b:1a:e5:60:ec:b2:47:dd:2a:52:11:13:4d:75:51:1e:63: 6e:61:97:4d -----BEGIN CERTIFICATE----- MIIFrDCCBJSgAwIBAgISAZt9WpO0Zvm6kGiS88Lmdm8zMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZjU1NDkxOTkzMWM2N2JkMjY1MGZjNGUwYzczYzJmYjNlMjI4ZDk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz0V9APdxQld8x2g2ykw2S27Kndsy q6MBG+9FPKAH3xrNLLmExhvvfximTd1/46ElgQjpm39BOL8yrrc4iRi7jRX4RNUo bJb9HTT8wXYAOwf0IkpIE5lpCnJc6P1/s1L99hkZ74hLO2DF6HvjpctWbzhH8r1M QKsZ4kIkEB2JV9A05/y+hEx5Ao4dSKNcYNMfgkL7ZeyHXeTplYVbjtYoMKknfzzu LKuudR34z8QVm2U1lDNgFJcqh+j0TxPt1ijLR0wxrZIdiTukxz3plvNplq3qlp3Z ioux0JZtPxtmwPTHU2rwxycKLo19dgg9+2aLU8EMZ29ye3SfXWvM5ggZVwIDAQAB o4ICuDCCArQwHQYDVR0OBBYEFP9VSRmTHGe9JlD8Tgxzwvs+Io2VMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzExLzIzMjQ0 ZC00ODg2LTQ3MGItYjFmYy0yOTBhYTQzMThjYWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTEvMjMyNDRk LTQ4ODYtNDcwYi1iMWZjLTI5MGFhNDMxOGNhYS8xL18xVkpHWk1jWjcwbVVQeE9E SFBDLXo0aWpaVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUF BwEHAQH/BCgwJjAMBAIAATAGAwQDsHVgMBYEAgACMBADBwEgAQZ8KYgDBQAqA4xA MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDjJzANBgkqhkiG9w0BAQsFAAOCAQEA E53QVBXmyB2VWCj59mZevofR1lkgBmJ+5kcP3yYqMoMQEdMbS2urfzhz25b77vMf v2ru0Z1mvssWaQLhjHbvrdV693icJT7HpO461aMLXydFq8MtvlPzNtq/lh5trycj CDLkG6YjLfg4V+YRxqrKVJhvPkwjmbDwYy9yg4p8g2oQdaWSWWD5z7jCQjJIHtNU XuB20/SqeSgSUo1MwEZMO343eep8w3fD1AuPSPZU2bcmWyYvqs/rU94zw82XpMZS pickL+xWTnvfup7p/NpObqGB+3WWyIzCNy7FQjAc2ta20dCKsQgEmRmInJsa5WDs skfdKlIRE011UR5jbmGXTQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:03 2026 by rpki-client