This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/_sY8Uk5V3zS_dYKCd1PnenaZx6I.cer File: _sY8Uk5V3zS_dYKCd1PnenaZx6I.cer (raw, json) Hash identifier: I5nJjSo7hQdKE1vuSMd411LTHt4+yl6w0SBgEJDVvlw= Subject key identifier: FE:C6:3C:52:4E:55:DF:34:BF:75:82:82:77:53:E7:7A:76:99:C7:A2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B775877FE5F43F5EABA0F88585439761A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/84/cca115-2b93-4afd-ad02-b31df7117715/1/_sY8Uk5V3zS_dYKCd1PnenaZx6I.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/84/cca115-2b93-4afd-ad02-b31df7117715/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:17:25 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 31396 IP: 193.30.42.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:77:fe:5f:43:f5:ea:ba:0f:88:58:54:39:76:1a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:17:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=fec63c524e55df34bf7582827753e77a7699c7a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:77:f5:05:fe:64:a2:f9:a1:f6:29:33:52:1e: 91:be:24:b1:34:7e:37:43:71:b9:ac:96:1d:14:6c: 64:08:ae:fb:87:3a:37:23:19:23:a5:df:51:33:18: 90:2d:87:22:a2:4c:f1:b3:70:30:e8:5d:a4:ba:ef: c5:72:79:a9:87:bf:b4:6d:e0:71:0f:45:95:3f:42: 21:2a:84:8c:79:05:8c:2d:1f:16:e2:92:2e:b5:2b: a4:b2:ed:4d:e1:ed:25:4a:c8:58:72:27:d6:b7:c2: 3a:79:8a:1c:96:b6:09:a3:0a:54:6b:0b:73:ad:7a: 55:22:93:90:17:d2:6a:ce:49:4c:8c:48:2a:1a:90: 53:ea:41:a9:32:89:ef:c7:42:40:67:78:f4:35:ef: b3:0f:a3:c3:5a:03:01:01:a0:30:35:2f:56:e2:01: db:fb:95:33:7a:f7:5e:a6:bd:f5:a6:08:69:2f:63: e2:a1:17:c5:ab:e1:61:b4:54:39:54:df:e5:b8:dd: d3:04:4f:a6:4d:66:14:15:ef:aa:22:a5:a0:f4:16: 95:1c:dc:cb:6b:9e:c5:25:2b:cb:45:58:2f:f7:42: 3c:59:be:0a:d0:36:1f:92:8a:c8:e3:57:6b:a1:36: b2:f1:ea:10:fd:52:ca:76:94:aa:27:6b:82:82:2f: 28:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: FE:C6:3C:52:4E:55:DF:34:BF:75:82:82:77:53:E7:7A:76:99:C7:A2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cca115-2b93-4afd-ad02-b31df7117715/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/cca115-2b93-4afd-ad02-b31df7117715/1/_sY8Uk5V3zS_dYKCd1PnenaZx6I.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.30.42.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 31396 Signature Algorithm: sha256WithRSAEncryption 3b:af:06:33:58:74:73:74:41:0f:f5:9f:4d:a4:98:28:2c:a6: 1f:ce:af:a0:48:ac:01:79:af:c4:0a:5d:2f:b6:67:a1:73:17: 95:7e:32:dd:c5:fe:67:e2:2c:8c:99:6b:cd:87:dd:fd:16:8d: 4d:45:68:b0:88:90:bc:83:0f:eb:1e:fa:c5:33:bc:26:d5:44: 85:b6:dd:48:58:ff:5c:ae:4b:2f:f8:2b:02:fd:d6:75:94:01: f0:a0:b6:4f:94:89:5e:22:bf:e4:67:1f:ff:ba:bc:3a:97:85: 33:e9:66:9b:cf:a8:6e:bf:17:76:5d:66:57:9a:5c:4d:16:16: 0f:a0:2a:d5:ed:a6:8f:4e:78:2a:8e:89:98:1d:95:1d:73:d9: 9d:26:ba:78:1c:43:65:b0:50:12:06:75:00:c6:f8:b6:90:61: 4f:59:9b:10:f1:d7:05:e3:0c:8b:8b:70:0d:88:1e:30:79:ae: ad:06:32:33:3f:44:d4:6e:0c:49:40:91:3b:d4:cf:67:a1:a2: b5:cf:d9:6c:1c:a8:61:53:6d:5d:e5:cb:97:ea:c0:0f:5f:3d: cd:0e:eb:f7:1b:1b:d3:05:25:03:f9:99:15:9d:e9:eb:f9:d4: 9e:db:7a:e5:72:2e:8c:22:4b:56:62:41:bc:eb:90:a5:1e:24: 9f:07:4c:80 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt3WHf+X0P16roPiFhUOXYaMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxNzI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhmZWM2M2M1MjRlNTVkZjM0YmY3NTgyODI3NzUzZTc3YTc2OTljN2EyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtHf1Bf5kovmh9ikzUh6RviSxNH43 Q3G5rJYdFGxkCK77hzo3Ixkjpd9RMxiQLYciokzxs3Aw6F2kuu/Fcnmph7+0beBx D0WVP0IhKoSMeQWMLR8W4pIutSuksu1N4e0lSshYcifWt8I6eYoclrYJowpUawtz rXpVIpOQF9JqzklMjEgqGpBT6kGpMonvx0JAZ3j0Ne+zD6PDWgMBAaAwNS9W4gHb +5Uzevdepr31pghpL2PioRfFq+FhtFQ5VN/luN3TBE+mTWYUFe+qIqWg9BaVHNzL a57FJSvLRVgv90I8Wb4K0DYfkorI41droTay8eoQ/VLKdpSqJ2uCgi8ogQIDAQAB o4ICnzCCApswHQYDVR0OBBYEFP7GPFJOVd80v3WCgndT53p2mceiMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg0L2NjYTEx NS0yYjkzLTRhZmQtYWQwMi1iMzFkZjcxMTc3MTUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODQvY2NhMTE1 LTJiOTMtNGFmZC1hZDAyLWIzMWRmNzExNzcxNS8xL19zWThVazVWM3pTX2RZS0Nk MVBuZW5hWng2SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwR4qMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AnqkMA0GCSqGSIb3DQEBCwUAA4IBAQA7rwYzWHRzdEEP9Z9NpJgoLKYfzq+gSKwB ea/ECl0vtmehcxeVfjLdxf5n4iyMmWvNh939Fo1NRWiwiJC8gw/rHvrFM7wm1USF tt1IWP9crksv+CsC/dZ1lAHwoLZPlIleIr/kZx//urw6l4Uz6Wabz6huvxd2XWZX mlxNFhYPoCrV7aaPTngqjomYHZUdc9mdJrp4HENlsFASBnUAxvi2kGFPWZsQ8dcF 4wyLi3ANiB4wea6tBjIzP0TUbgxJQJE71M9noaK1z9lsHKhhU21d5cuX6sAPXz3N Duv3GxvTBSUD+ZkVnenr+dSe23rlci6MIktWYkG865ClHiSfB0yA -----END CERTIFICATE-----Generated at Tue Jan 20 07:36:03 2026 by rpki-client