This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_c9yu2yGh1CGKJ3SUY-wP4gi7p0.cer File: _c9yu2yGh1CGKJ3SUY-wP4gi7p0.cer (raw, json) Hash identifier: 9QgP7jAC5n0ZbOWbyBi05cxxJowFOeMUij4Y3NonPck= Subject key identifier: FD:CF:72:BB:6C:86:87:50:86:28:9D:D2:51:8F:B0:3F:88:22:EE:9D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797E9FDCFC86233D68EB5C48799BB115 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/69/5e8f06-0ac1-4e1b-b07f-7e033b9de23e/1/_c9yu2yGh1CGKJ3SUY-wP4gi7p0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/69/5e8f06-0ac1-4e1b-b07f-7e033b9de23e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:20 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 34212 IP: 194.145.229.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:9f:dc:fc:86:23:3d:68:eb:5c:48:79:9b:b1:15 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fdcf72bb6c86875086289dd2518fb03f8822ee9d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:85:37:70:22:36:7d:ac:cb:cb:f6:fe:ab:b8: 3d:e0:81:b1:2a:de:94:44:a4:73:a4:c8:1e:90:46: 4b:a3:36:98:13:13:ec:b6:ce:af:66:7c:53:e8:50: d9:78:f8:16:c2:b6:69:a5:0a:dd:15:42:c9:c8:ea: ed:e8:71:ef:17:a1:e1:16:c7:f0:77:2d:06:fb:55: f2:33:1d:bd:02:fe:14:b7:c9:49:01:aa:72:3b:d5: 37:1a:78:b1:b3:88:9f:59:24:c5:1d:d9:74:47:e3: d0:07:68:29:9d:53:4b:0f:4b:93:13:f5:27:d1:0f: b7:d6:65:9d:c6:f1:a3:b4:26:a6:24:43:b4:46:f9: 9e:46:3a:ee:82:9b:a9:f7:7b:ae:f7:40:78:3b:0f: 23:8c:f5:48:5e:1e:46:52:2e:2b:9d:c5:62:77:b0: c8:eb:25:3f:f1:68:ac:a6:4b:f9:18:e5:c4:07:43: 2b:64:9d:02:01:7b:f8:12:98:91:df:16:3d:5c:42: 5d:73:17:63:bb:57:5b:f7:43:48:08:1c:32:02:a5: f7:9c:6e:01:91:5e:cd:e3:b7:6d:e6:2d:62:66:60: 19:10:dc:46:6c:d6:d5:8f:17:79:41:de:a2:94:ac: 84:b9:70:54:49:5c:70:ce:ca:5d:af:14:60:6f:e2: f7:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FD:CF:72:BB:6C:86:87:50:86:28:9D:D2:51:8F:B0:3F:88:22:EE:9D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5e8f06-0ac1-4e1b-b07f-7e033b9de23e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/69/5e8f06-0ac1-4e1b-b07f-7e033b9de23e/1/_c9yu2yGh1CGKJ3SUY-wP4gi7p0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.145.229.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 34212 Signature Algorithm: sha256WithRSAEncryption 95:f4:96:62:c0:f4:e2:00:77:d7:72:7e:f8:61:a4:88:a5:75: 06:3b:27:1b:05:04:15:09:d3:43:53:93:59:a3:f3:58:40:7e: 8a:73:80:ec:cd:e8:0a:d9:7d:1f:78:78:dc:ed:a7:a8:0d:ef: dc:75:66:75:1d:f2:23:89:bf:68:50:9b:07:5f:99:65:12:09: 19:d2:25:d9:22:c8:a2:7a:02:9a:31:b3:be:8a:f6:5f:0a:75: 01:83:cc:1e:49:c1:2c:50:1d:36:1d:49:d7:e7:3c:08:c4:64: 8b:5d:36:7f:ee:5a:b1:f0:4d:6c:af:dc:f5:ba:0f:ff:5a:4d: fc:f5:bb:87:aa:67:7e:a6:96:e3:d5:d5:22:fd:c8:d7:36:1c: 42:b2:cc:43:3b:54:ea:f1:54:84:d8:fb:00:e9:cb:aa:ea:b8: 7d:c8:45:b1:2e:3e:cc:c7:a9:4b:5e:c2:ab:7f:4b:9e:60:2d: a0:0f:3e:50:91:3a:15:e1:25:68:98:f5:c2:1b:e6:12:3b:0a: ee:28:18:7a:47:4d:52:0a:98:48:90:8d:d4:f6:5c:99:60:12: b9:ec:a6:94:f2:6f:04:be:29:f8:64:af:50:fb:eb:79:88:32: d6:1a:31:a9:d5:8e:dd:f9:f7:49:3c:50:8c:89:1e:6f:a2:cb: bd:d5:53:e1 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt5fp/c/IYjPWjrXEh5m7EVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZGNmNzJiYjZjODY4NzUwODYyODlkZDI1MThmYjAzZjg4MjJlZTlkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtoU3cCI2fazLy/b+q7g94IGxKt6U RKRzpMgekEZLozaYExPsts6vZnxT6FDZePgWwrZppQrdFULJyOrt6HHvF6HhFsfw dy0G+1XyMx29Av4Ut8lJAapyO9U3Gnixs4ifWSTFHdl0R+PQB2gpnVNLD0uTE/Un 0Q+31mWdxvGjtCamJEO0RvmeRjrugpup93uu90B4Ow8jjPVIXh5GUi4rncVid7DI 6yU/8Wispkv5GOXEB0MrZJ0CAXv4EpiR3xY9XEJdcxdju1db90NICBwyAqX3nG4B kV7N47dt5i1iZmAZENxGbNbVjxd5Qd6ilKyEuXBUSVxwzspdrxRgb+L3LQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFP3PcrtshodQhiid0lGPsD+IIu6dMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY5LzVlOGYw Ni0wYWMxLTRlMWItYjA3Zi03ZTAzM2I5ZGUyM2UvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjkvNWU4ZjA2 LTBhYzEtNGUxYi1iMDdmLTdlMDMzYjlkZTIzZS8xL19jOXl1MnlHaDFDR0tKM1NV WS13UDRnaTdwMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwpHlMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCFpDANBgkqhkiG9w0BAQsFAAOCAQEAlfSWYsD04gB313J++GGkiKV1BjsnGwUE FQnTQ1OTWaPzWEB+inOA7M3oCtl9H3h43O2nqA3v3HVmdR3yI4m/aFCbB1+ZZRIJ GdIl2SLIonoCmjGzvor2Xwp1AYPMHknBLFAdNh1J1+c8CMRki102f+5asfBNbK/c 9boP/1pN/PW7h6pnfqaW49XVIv3I1zYcQrLMQztU6vFUhNj7AOnLquq4fchFsS4+ zMepS17Cq39LnmAtoA8+UJE6FeElaJj1whvmEjsK7igYekdNUgqYSJCN1PZcmWAS ueymlPJvBL4p+GSvUPvreYgy1hoxqdWO3fn3STxQjIkeb6LLvdVT4Q== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:48 2026 by rpki-client