This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aCf2BHqADr5LDcYpnAhO8F4Kqt4.cer File: aCf2BHqADr5LDcYpnAhO8F4Kqt4.cer (raw, json) Hash identifier: KO7xqQ6+RsNGrSV6FpCuwpHt/WPtjLzVczMHcq9OkaE= Subject key identifier: 68:27:F6:04:7A:80:0E:BE:4B:0D:C6:29:9C:08:4E:F0:5E:0A:AA:DE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797F47DA8622745985B75A5F374D8431 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/9af6c38e-8050-483d-a2cb-a61c9e2aa468/0/6827F6047A800EBE4B0DC6299C084EF05E0AAADE.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/9af6c38e-8050-483d-a2cb-a61c9e2aa468/0/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:19:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 214522 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7f:47:da:86:22:74:59:85:b7:5a:5f:37:4d:84:31 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:19:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6827f6047a800ebe4b0dc6299c084ef05e0aaade Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:fe:4f:0c:c4:65:d8:43:a6:fa:21:de:d2:3f:ff: f1:e2:50:b5:fe:f1:3d:70:41:3a:1d:2c:ce:32:ca: 0b:19:f3:4a:30:28:d6:21:5e:5f:bb:76:0f:ce:bd: 1c:10:98:30:2f:b0:37:dd:d6:8f:53:2e:4a:c1:56: 7d:cc:69:9e:df:05:19:ae:bd:08:00:41:2f:60:c2: 8e:c6:87:d4:ea:fc:64:be:10:df:a5:d6:03:b1:c9: 98:03:5b:97:f7:6e:96:4b:e8:81:67:99:6b:70:e0: 3d:f0:81:96:99:f1:65:fa:9b:65:d8:fc:ec:82:4d: cf:7c:99:8d:04:9a:58:96:f8:c3:ce:cb:9a:32:c4: 71:24:86:99:e3:80:cc:8d:89:11:c0:d0:17:cb:e0: 66:39:03:6f:80:a3:c0:f1:73:26:cc:02:6b:a1:e9: 07:07:96:d1:e7:33:fc:f7:ce:de:28:18:65:1a:d6: 4b:7f:95:02:de:45:83:65:fd:2b:66:4a:6b:e3:11: e4:83:13:58:90:38:f8:63:2c:db:c8:f1:0d:e1:a4: 8a:8e:b4:56:e2:5c:c0:a4:33:ba:d6:58:27:b1:58: bb:c2:00:77:17:da:ab:8a:8b:78:34:ae:51:26:f8: e0:1a:3b:35:cd:8a:cb:e7:e7:c5:40:a8:6f:03:c3: ca:91 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:27:F6:04:7A:80:0E:BE:4B:0D:C6:29:9C:08:4E:F0:5E:0A:AA:DE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/9af6c38e-8050-483d-a2cb-a61c9e2aa468/0/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/9af6c38e-8050-483d-a2cb-a61c9e2aa468/0/6827F6047A800EBE4B0DC6299C084EF05E0AAADE.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 214522 Signature Algorithm: sha256WithRSAEncryption 6b:5d:7a:09:f4:dc:39:35:a5:ca:64:38:2e:8b:00:8a:ee:92: 40:c4:c7:01:c4:13:b1:b3:a8:2f:58:48:28:cd:9e:bc:5a:72: ae:cb:bf:aa:8a:62:17:42:10:db:f7:23:ce:f3:ca:0a:25:cf: 3d:3b:e3:2d:fb:28:f4:b8:87:45:57:c1:aa:1f:67:12:e4:77: 1e:86:4a:f0:a6:a9:aa:22:5b:51:3c:73:37:b4:6f:40:a9:99: 38:e2:05:36:ef:71:a9:8c:b2:96:3c:fa:0b:51:c0:f6:ab:b0: b5:50:29:4b:e3:b7:f6:a6:0b:1b:c9:91:7d:5d:ef:0b:8d:db: 6c:9d:01:14:22:82:85:fd:b5:03:ce:4c:68:67:74:56:8b:b8: eb:a7:12:78:91:29:5f:fd:88:05:24:a1:19:cd:1d:a1:86:45: fd:e4:79:fe:b0:93:d5:c2:c1:90:8a:c8:0a:1a:f4:e0:d5:f6: d0:b2:16:7f:04:d5:ea:da:89:e9:b4:d1:0f:d4:ce:0b:05:6b: 59:4a:67:e8:d4:3d:94:3e:60:7a:d3:4a:86:44:b3:07:7b:58: 10:b2:cc:6d:c1:73:57:30:78:f4:a8:60:fd:f1:cf:bd:7f:4a: 54:31:e8:78:d7:e5:a8:2e:73:27:60:df:7c:22:9d:3f:1f:56: 6e:ca:7c:60 -----BEGIN CERTIFICATE----- MIIFjzCCBHegAwIBAgISAZt5f0fahiJ0WYW3Wl83TYQxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxOTAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODI3ZjYwNDdhODAwZWJlNGIwZGM2Mjk5YzA4NGVmMDVlMGFhYWRlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/k8MxGXYQ6b6Id7SP//x4lC1/vE9 cEE6HSzOMsoLGfNKMCjWIV5fu3YPzr0cEJgwL7A33daPUy5KwVZ9zGme3wUZrr0I AEEvYMKOxofU6vxkvhDfpdYDscmYA1uX926WS+iBZ5lrcOA98IGWmfFl+ptl2Pzs gk3PfJmNBJpYlvjDzsuaMsRxJIaZ44DMjYkRwNAXy+BmOQNvgKPA8XMmzAJroekH B5bR5zP8987eKBhlGtZLf5UC3kWDZf0rZkpr4xHkgxNYkDj4YyzbyPEN4aSKjrRW 4lzApDO61lgnsVi7wgB3F9qriot4NK5RJvjgGjs1zYrL5+fFQKhvA8PKkQIDAQAB o4ICmzCCApcwHQYDVR0OBBYEFGgn9gR6gA6+Sw3GKZwITvBeCqreMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzlhZjZj MzhlLTgwNTAtNDgzZC1hMmNiLWE2MWM5ZTJhYTQ2OC8wLzCBiwYIKwYBBQUHMAqG f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvOWFm NmMzOGUtODA1MC00ODNkLWEyY2ItYTYxYzllMmFhNDY4LzAvNjgyN0Y2MDQ3QTgw MEVCRTRCMERDNjI5OUMwODRFRjA1RTBBQUFERS5tZnQwPAYIKwYBBQUHMA2GMGh0 dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgMDRfow DQYJKoZIhvcNAQELBQADggEBAGtdegn03Dk1pcpkOC6LAIrukkDExwHEE7GzqC9Y SCjNnrxacq7Lv6qKYhdCENv3I87zygolzz074y37KPS4h0VXwaofZxLkdx6GSvCm qaoiW1E8cze0b0CpmTjiBTbvcamMspY8+gtRwParsLVQKUvjt/amCxvJkX1d7wuN 22ydARQigoX9tQPOTGhndFaLuOunEniRKV/9iAUkoRnNHaGGRf3kef6wk9XCwZCK yAoa9ODV9tCyFn8E1eraiem00Q/UzgsFa1lKZ+jUPZQ+YHrTSoZEswd7WBCyzG3B c1cwePSoYP3xz71/SlQx6HjX5agucydg33winT8fVm7KfGA= -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:15 2026 by rpki-client