This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/aEdQ3w66d01LTWROyOM1CPj1OP4.cer File: aEdQ3w66d01LTWROyOM1CPj1OP4.cer (raw, json) Hash identifier: 3pDYDxgnfrwiyaKnYvxgjTQ999kbyV2osQhaRTtXxhI= Subject key identifier: 68:47:50:DF:0E:BA:77:4D:4B:4D:64:4E:C8:E3:35:08:F8:F5:38:FE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834E1089DF2FFD1B214BA075C5D7104 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/aEdQ3w66d01LTWROyOM1CPj1OP4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210268 IP: 185.229.164.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e1:08:9d:f2:ff:d1:b2:14:ba:07:5c:5d:71:04 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=684750df0eba774d4b4d644ec8e33508f8f538fe Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:c3:ca:b6:f0:b9:18:de:a9:21:b2:2a:a5:81: 20:1e:08:86:b2:e7:df:4c:37:03:3a:68:cb:a0:93: bf:5b:36:1a:bc:f3:79:3f:bc:8e:67:e9:fd:cf:e8: 6c:d9:1b:da:c1:98:fc:1c:bf:51:c5:68:28:74:34: 29:62:ff:33:75:c4:a1:b8:27:2a:fc:64:bb:a6:c6: cd:e2:5e:9e:59:97:04:a1:99:0a:8d:99:8a:7b:a5: 5c:3e:e4:c5:24:75:e3:b3:c7:b6:ad:f7:39:df:e6: 39:b1:c2:20:c1:96:b0:0f:13:62:af:b9:e8:38:64: 6d:6f:ea:7c:be:10:aa:ea:82:a8:e2:59:e5:1b:00: 47:95:9b:59:7a:d1:cd:6e:90:70:b3:8b:8c:86:ae: 4e:0d:3c:c1:c8:8c:0f:32:9e:2c:1f:7a:6b:3c:d1: 13:b6:90:3c:10:77:79:50:3d:a0:a7:9c:24:2c:90: 1d:d6:95:c2:29:a2:be:22:29:ee:cc:60:1a:70:6d: 0b:da:0f:d4:09:e9:e6:76:33:ad:9e:89:f5:86:d3: 17:86:6d:c7:df:37:90:f3:e6:20:21:22:0c:e1:b8: 73:15:99:73:ac:1d:34:94:e8:10:75:0c:6d:81:cb: a1:ac:a5:6b:02:e2:2d:b8:6d:e7:88:5a:3e:71:56: 49:d5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 68:47:50:DF:0E:BA:77:4D:4B:4D:64:4E:C8:E3:35:08:F8:F5:38:FE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bf/9901fe-52c1-4d5b-9e0f-d325f6863343/1/aEdQ3w66d01LTWROyOM1CPj1OP4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.229.164.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210268 Signature Algorithm: sha256WithRSAEncryption 2c:87:ba:2d:fa:16:1e:61:99:f0:c6:42:c2:10:4b:10:0f:e3: 5b:8d:3e:f0:9b:e0:b6:c4:fa:03:55:59:80:5b:43:99:08:3b: 60:a3:b0:58:46:73:65:0c:d3:94:d1:a2:5f:e5:e7:27:a2:6a: 4b:bd:a1:0d:e5:6d:80:6e:91:68:2d:51:8d:28:7e:c8:7a:4a: d8:43:c8:7e:e4:6b:b6:bb:a8:13:95:82:7c:9e:91:88:53:ee: d3:21:6c:64:21:f1:e1:08:fb:41:36:cc:92:28:b0:6f:72:d0: e2:71:b1:4f:66:83:90:0c:28:68:a7:82:15:2a:6d:88:26:da: 90:c2:5f:3f:bb:9c:84:68:77:65:0b:42:ce:9a:28:ce:12:a3: a4:36:db:9d:28:64:bb:12:62:57:81:9a:8f:da:61:1c:d5:25: 4a:67:95:a3:ac:52:d8:c2:02:07:3f:3d:78:52:79:eb:b6:68: 70:cc:32:39:6e:eb:fc:66:36:e7:9e:e3:ce:72:a9:4e:19:41: 5a:ee:01:10:a4:45:f2:18:47:39:7f:51:ac:ad:c0:d5:b7:72: 33:65:55:d9:22:3c:25:b6:60:82:6f:5a:6e:af:a9:10:a9:19: 61:73:d1:5a:06:40:8e:c8:a4:67:40:e1:d6:14:1d:ff:88:48: a3:16:05:c4 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4NOEInfL/0bIUugdcXXEEMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ODQ3NTBkZjBlYmE3NzRkNGI0ZDY0NGVjOGUzMzUwOGY4ZjUzOGZlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0MPKtvC5GN6pIbIqpYEgHgiGsuff TDcDOmjLoJO/WzYavPN5P7yOZ+n9z+hs2RvawZj8HL9RxWgodDQpYv8zdcShuCcq /GS7psbN4l6eWZcEoZkKjZmKe6VcPuTFJHXjs8e2rfc53+Y5scIgwZawDxNir7no OGRtb+p8vhCq6oKo4lnlGwBHlZtZetHNbpBws4uMhq5ODTzByIwPMp4sH3prPNET tpA8EHd5UD2gp5wkLJAd1pXCKaK+IinuzGAacG0L2g/UCenmdjOtnon1htMXhm3H 3zeQ8+YgISIM4bhzFZlzrB00lOgQdQxtgcuhrKVrAuItuG3niFo+cVZJ1QIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFGhHUN8OundNS01kTsjjNQj49Tj+MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JmLzk5MDFm ZS01MmMxLTRkNWItOWUwZi1kMzI1ZjY4NjMzNDMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmYvOTkwMWZl LTUyYzEtNGQ1Yi05ZTBmLWQzMjVmNjg2MzM0My8xL2FFZFEzdzY2ZDAxTFRXUk95 T00xQ1BqMU9QNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCueWkMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwM1XDANBgkqhkiG9w0BAQsFAAOCAQEALIe6LfoWHmGZ8MZCwhBLEA/jW40+8Jvg tsT6A1VZgFtDmQg7YKOwWEZzZQzTlNGiX+XnJ6JqS72hDeVtgG6RaC1RjSh+yHpK 2EPIfuRrtruoE5WCfJ6RiFPu0yFsZCHx4Qj7QTbMkiiwb3LQ4nGxT2aDkAwoaKeC FSptiCbakMJfP7uchGh3ZQtCzpoozhKjpDbbnShkuxJiV4Gaj9phHNUlSmeVo6xS 2MICBz89eFJ567ZocMwyOW7r/GY2557jznKpThlBWu4BEKRF8hhHOX9RrK3A1bdy M2VV2SI8JbZggm9abq+pEKkZYXPRWgZAjsikZ0Dh1hQd/4hIoxYFxA== -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:09 2026 by rpki-client