This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_JgxNwQvyMSSFwfU622l9sSnmls.cer File: _JgxNwQvyMSSFwfU622l9sSnmls.cer (raw, json) Hash identifier: yBbEprX6JipUmTrPjHAOuMmRmjxQy3Gwbwh7i29FJBw= Subject key identifier: FC:98:31:37:04:2F:C8:C4:92:17:07:D4:EB:6D:A5:F6:C4:A7:9A:5B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B3681089300F0141B3066C1B65A31AE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4c/421c80-ed3a-47fd-8d2c-224f10a981fe/1/_JgxNwQvyMSSFwfU622l9sSnmls.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4c/421c80-ed3a-47fd-8d2c-224f10a981fe/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 8245 AS: 215815 IP: 185.126.20.0/22 IP: 195.26.192.0/19 IP: 212.236.0.0/16 IP: 2a02:2750::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 00:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:81:08:93:00:f0:14:1b:30:66:c1:b6:5a:31:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fc983137042fc8c4921707d4eb6da5f6c4a79a5b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:95:df:ef:d0:da:e7:93:70:3b:05:f9:ab:f1: 40:80:4b:63:d3:e3:11:bf:b6:26:41:7f:c0:6e:2c: ab:a8:76:b0:1e:d7:ba:85:a5:3c:45:da:d2:e9:04: de:d6:3b:ec:c5:66:42:e5:7d:4a:68:32:16:bd:57: ff:17:13:c4:95:39:e8:71:86:5d:6b:fa:b2:06:d6: 22:65:67:ef:e2:03:0a:b4:d2:92:7a:45:27:9a:1f: 5d:5a:f3:2b:c7:1c:97:af:ef:46:a9:8b:64:98:4a: 28:2d:44:52:c2:98:cb:e3:47:79:9f:5f:a0:02:8a: 5e:06:60:56:7d:cd:b4:c1:b4:27:7b:13:19:5b:2f: 0c:4f:ae:1d:6b:d0:92:60:b7:3b:a9:66:66:a8:ea: 90:f3:f7:d3:af:1e:85:ec:fa:86:c4:52:af:7c:dc: 08:5e:2f:f4:bc:09:24:f5:46:97:d1:f0:cb:8b:9d: e7:72:b7:ed:23:6b:d2:3d:3e:63:64:8c:65:ff:a1: d7:a1:60:40:06:8e:c8:15:bc:27:f3:94:72:fa:d4: d8:2b:f1:33:ba:b8:24:2e:e4:a2:c3:e6:6c:58:e0: 34:7a:e8:b4:b7:b2:5c:ec:1b:dd:03:ff:97:ef:ea: c6:29:30:8d:b7:c4:73:cd:3d:47:ae:ed:16:41:0b: 1e:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FC:98:31:37:04:2F:C8:C4:92:17:07:D4:EB:6D:A5:F6:C4:A7:9A:5B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/421c80-ed3a-47fd-8d2c-224f10a981fe/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4c/421c80-ed3a-47fd-8d2c-224f10a981fe/1/_JgxNwQvyMSSFwfU622l9sSnmls.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.126.20.0/22 195.26.192.0/19 212.236.0.0/16 IPv6: 2a02:2750::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 8245 215815 Signature Algorithm: sha256WithRSAEncryption 44:d0:78:34:02:e7:91:7f:b6:e2:06:46:53:e7:25:a9:05:25: 50:cf:21:67:d2:4f:fa:4a:68:0d:65:74:92:69:db:c1:43:98: 6b:6f:49:05:e0:97:e0:ed:c3:41:cf:bf:d4:12:14:89:7d:81: 2d:51:d5:3c:53:1e:f1:19:3d:1a:93:63:e9:bb:d7:6e:bb:92: 38:f5:00:97:d0:94:d7:a7:dc:22:e1:90:b9:62:a0:d2:c9:de: 11:f7:cc:05:bb:e2:96:e5:49:1c:7d:1b:c7:a4:7a:0d:e0:f0: 72:6c:2a:19:2e:aa:ca:04:03:e9:78:4e:5b:f9:b2:eb:02:31: 75:69:05:e8:60:70:6e:2d:4f:45:64:88:63:89:0d:33:b7:d0: f0:03:e5:4e:ad:76:a1:0a:c5:e6:da:fc:04:b3:56:26:c9:d5: 0f:63:af:fc:54:0e:20:66:26:6c:c0:1c:31:b4:d9:51:ad:9f: 64:67:70:cc:98:d2:37:24:e4:e4:45:6f:2c:cf:f9:34:22:be: b9:96:5d:07:db:c3:be:78:aa:23:21:2b:7b:23:72:49:f4:f0: d1:8e:dd:93:33:12:5a:67:d2:80:ea:52:59:45:77:d9:75:c3: b2:15:26:10:00:55:26:bc:ee:2f:6d:ef:78:3c:8f:34:82:23: ce:62:98:7c -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgISAZt7NoEIkwDwFBswZsG2WjGuMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmYzk4MzEzNzA0MmZjOGM0OTIxNzA3ZDRlYjZkYTVmNmM0YTc5YTViMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvpXf79Da55NwOwX5q/FAgEtj0+MR v7YmQX/AbiyrqHawHte6haU8RdrS6QTe1jvsxWZC5X1KaDIWvVf/FxPElTnocYZd a/qyBtYiZWfv4gMKtNKSekUnmh9dWvMrxxyXr+9GqYtkmEooLURSwpjL40d5n1+g AopeBmBWfc20wbQnexMZWy8MT64da9CSYLc7qWZmqOqQ8/fTrx6F7PqGxFKvfNwI Xi/0vAkk9UaX0fDLi53ncrftI2vSPT5jZIxl/6HXoWBABo7IFbwn85Ry+tTYK/Ez urgkLuSiw+ZsWOA0eui0t7Jc7BvdA/+X7+rGKTCNt8RzzT1Hru0WQQse/wIDAQAB o4ICvjCCArowHQYDVR0OBBYEFPyYMTcEL8jEkhcH1OttpfbEp5pbMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRjLzQyMWM4 MC1lZDNhLTQ3ZmQtOGQyYy0yMjRmMTBhOTgxZmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGMvNDIxYzgw LWVkM2EtNDdmZC04ZDJjLTIyNGYxMGE5ODFmZS8xL19KZ3hOd1F2eU1TU0Z3ZlU2 MjJsOXNTbm1scy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUF BwEHAQH/BCowKDAXBAIAATARAwQCuX4UAwQFwxrAAwMA1OwwDQQCAAIwBwMFACoC J1AwHgYIKwYBBQUHAQgBAf8EDzANoAswCQICIDUCAwNLBzANBgkqhkiG9w0BAQsF AAOCAQEARNB4NALnkX+24gZGU+clqQUlUM8hZ9JP+kpoDWV0kmnbwUOYa29JBeCX 4O3DQc+/1BIUiX2BLVHVPFMe8Rk9GpNj6bvXbruSOPUAl9CU16fcIuGQuWKg0sne EffMBbviluVJHH0bx6R6DeDwcmwqGS6qygQD6XhOW/my6wIxdWkF6GBwbi1PRWSI Y4kNM7fQ8APlTq12oQrF5tr8BLNWJsnVD2Ov/FQOIGYmbMAcMbTZUa2fZGdwzJjS NyTk5EVvLM/5NCK+uZZdB9vDvniqIyEreyNySfTw0Y7dkzMSWmfSgOpSWUV32XXD shUmEABVJrzuL23veDyPNIIjzmKYfA== -----END CERTIFICATE-----Generated at Tue Jan 27 07:45:54 2026 by rpki-client