This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_i4izBWFntSgeEv9CFhLPI-yn5o.cer File: _i4izBWFntSgeEv9CFhLPI-yn5o.cer (raw, json) Hash identifier: J6NVzhawIb2ctRcNIWpEx+AtcTqt/PwDvy9vlhQESvk= Subject key identifier: FE:2E:22:CC:15:85:9E:D4:A0:78:4B:FD:08:58:4B:3C:8F:B2:9F:9A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCAD7522E419252837A6D51C6A899A5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/_i4izBWFntSgeEv9CFhLPI-yn5o.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:20:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 1547 IP: 31.31.0.0/19 IP: 37.26.128.0/20 IP: 62.221.64.0/18 IP: 77.235.96.0/19 IP: 80.94.240.0/20 IP: 95.153.64.0/18 IP: 185.10.20.0/22 IP: 217.19.208.0/20 IP: 2a03:f680::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:d7:52:2e:41:92:52:83:7a:6d:51:c6:a8:99:a5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:20:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fe2e22cc15859ed4a0784bfd08584b3c8fb29f9a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:96:46:56:a0:87:c5:a6:85:ed:15:59:ec:ae: f6:54:6e:c7:06:4a:de:15:db:a6:9b:af:c0:99:02: d2:4f:b0:83:1c:72:0c:bd:69:78:89:0e:d9:ab:9a: eb:11:a8:ca:71:6f:d3:01:31:6d:ff:ee:ca:ad:44: 63:33:65:07:c5:a6:39:9a:37:9f:07:ae:4a:72:77: d1:02:c9:ac:82:58:b0:ad:64:8f:9d:46:d4:19:08: 44:33:2d:ad:30:83:ef:81:32:73:ef:e5:74:07:5c: 54:9a:d6:99:72:02:ab:72:75:54:77:a3:92:33:d3: 78:10:53:69:20:e8:9f:c3:2f:8b:50:b4:33:37:3d: d7:fd:62:6f:d8:0a:08:d1:9a:1e:99:c7:19:39:e2: 51:2c:86:70:36:81:14:75:ea:14:49:55:b7:e3:07: f5:7c:e5:d2:ba:ae:bd:fe:c9:fd:8d:66:50:29:57: 94:2c:f2:d4:0e:fc:db:9d:b5:db:f2:1b:ad:7f:9d: 41:62:1f:70:ad:d7:14:60:bc:07:55:77:45:34:f3: 0e:17:c8:19:da:d0:6a:8a:22:18:34:9c:6a:c2:e6: fe:dc:e3:8c:8e:a5:be:d9:c1:2b:52:e8:fa:f9:aa: 02:bb:c5:e9:a9:56:eb:14:11:91:cc:05:38:8a:97: c7:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:2E:22:CC:15:85:9E:D4:A0:78:4B:FD:08:58:4B:3C:8F:B2:9F:9A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/78/cf9c10-c85c-4bbf-a25d-8060c503d86e/1/_i4izBWFntSgeEv9CFhLPI-yn5o.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 31.31.0.0/19 37.26.128.0/20 62.221.64.0/18 77.235.96.0/19 80.94.240.0/20 95.153.64.0/18 185.10.20.0/22 217.19.208.0/20 IPv6: 2a03:f680::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 1547 Signature Algorithm: sha256WithRSAEncryption 0c:ee:85:7f:73:02:5d:2d:c2:4b:ec:6a:f0:50:9a:a9:fc:d9: e0:e2:cc:a5:51:57:5a:31:8c:c6:1e:39:35:09:68:7b:c2:2a: dc:9f:e7:1f:d3:4a:c1:2a:8e:05:15:a2:cf:f5:6e:3e:91:a6: 5f:3c:25:b2:73:e6:29:46:89:da:ba:06:83:5d:f7:ae:bd:76: a9:54:dc:2f:ce:05:17:3e:e0:67:43:10:ed:21:ad:cd:a6:51: dc:c6:c6:3a:c4:05:6e:3a:c0:97:cb:c1:8a:d1:ad:ad:f0:dc: 66:25:44:d7:d4:c8:18:55:c9:ee:45:73:f2:58:59:b2:53:a3: 36:d6:ce:b1:52:bb:b9:c6:5b:2a:06:5f:c6:05:9b:31:f2:23: 03:93:e5:70:c8:4a:9b:40:07:ca:41:9f:01:44:7a:46:41:1c: 1e:b1:41:ff:e2:2a:69:64:22:19:4c:cc:a1:97:75:04:ec:a4: d9:b6:e5:59:a3:38:11:36:ac:99:b8:f5:2d:be:91:6d:02:c8: a4:bc:2d:94:6e:77:e8:c3:07:9d:9c:45:30:34:08:6a:92:4f: a5:db:2d:34:28:04:93:14:58:a4:2f:44:80:23:ed:94:76:d4: e1:97:8d:34:07:51:89:97:6b:d9:a4:28:e3:e7:5d:59:59:9a: 6c:e8:85:d1 -----BEGIN CERTIFICATE----- MIIFzDCCBLSgAwIBAgISAZt9ytdSLkGSUoN6bVHGqJmlMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgyMDA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZTJlMjJjYzE1ODU5ZWQ0YTA3ODRiZmQwODU4NGIzYzhmYjI5ZjlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr5ZGVqCHxaaF7RVZ7K72VG7HBkre Fdumm6/AmQLST7CDHHIMvWl4iQ7Zq5rrEajKcW/TATFt/+7KrURjM2UHxaY5mjef B65KcnfRAsmsgliwrWSPnUbUGQhEMy2tMIPvgTJz7+V0B1xUmtaZcgKrcnVUd6OS M9N4EFNpIOifwy+LULQzNz3X/WJv2AoI0ZoemccZOeJRLIZwNoEUdeoUSVW34wf1 fOXSuq69/sn9jWZQKVeULPLUDvzbnbXb8hutf51BYh9wrdcUYLwHVXdFNPMOF8gZ 2tBqiiIYNJxqwub+3OOMjqW+2cErUuj6+aoCu8XpqVbrFBGRzAU4ipfH2wIDAQAB o4IC2DCCAtQwHQYDVR0OBBYEFP4uIswVhZ7UoHhL/QhYSzyPsp+aMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc4L2NmOWMx MC1jODVjLTRiYmYtYTI1ZC04MDYwYzUwM2Q4NmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzgvY2Y5YzEw LWM4NWMtNGJiZi1hMjVkLTgwNjBjNTAzZDg2ZS8xL19pNGl6QldGbnRTZ2VFdjlD RmhMUEkteW41by5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFgGCCsGAQUF BwEHAQH/BEkwRzA2BAIAATAwAwQFHx8AAwQEJRqAAwQGPt1AAwQFTetgAwQEUF7w AwQGX5lAAwQCuQoUAwQE2RPQMA0EAgACMAcDBQAqA/aAMBkGCCsGAQUFBwEIAQH/ BAowCKAGMAQCAgYLMA0GCSqGSIb3DQEBCwUAA4IBAQAM7oV/cwJdLcJL7GrwUJqp /Nng4sylUVdaMYzGHjk1CWh7wircn+cf00rBKo4FFaLP9W4+kaZfPCWyc+YpRona ugaDXfeuvXapVNwvzgUXPuBnQxDtIa3NplHcxsY6xAVuOsCXy8GK0a2t8NxmJUTX 1MgYVcnuRXPyWFmyU6M21s6xUru5xlsqBl/GBZsx8iMDk+VwyEqbQAfKQZ8BRHpG QRwesUH/4ippZCIZTMyhl3UE7KTZtuVZozgRNqyZuPUtvpFtAsikvC2Ubnfowwed nEUwNAhqkk+l2y00KASTFFikL0SAI+2UdtThl400B1GJl2vZpCjj511ZWZps6IXR -----END CERTIFICATE-----Generated at Mon Feb 9 15:02:54 2026 by rpki-client