This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bS9Y5jbYux3RA5bIJE3BGSFeeRQ.cer File: bS9Y5jbYux3RA5bIJE3BGSFeeRQ.cer (raw, json) Hash identifier: +Dmnfyy6OXvWA8SanYk4pvRTXcO+G66sgJKUBeVVCUc= Subject key identifier: 6D:2F:58:E6:36:D8:BB:1D:D1:03:96:C8:24:4D:C1:19:21:5E:79:14 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5B8D1E8EDD64FA732A1FBE79394670 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a5/c978db-6569-4544-8197-ce6b7c9d559b/1/bS9Y5jbYux3RA5bIJE3BGSFeeRQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a5/c978db-6569-4544-8197-ce6b7c9d559b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:18:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.109.93.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:8d:1e:8e:dd:64:fa:73:2a:1f:be:79:39:46:70 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:18:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6d2f58e636d8bb1dd10396c8244dc119215e7914 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:ec:4a:bc:e3:d1:a9:f3:73:45:e8:7b:a4:2d: 37:85:35:ae:10:8e:3f:6b:52:b9:3a:ae:88:73:8f: b5:6e:ad:a8:a0:f8:d1:46:97:cd:66:c8:4b:b6:98: cb:cb:c2:9c:aa:64:6a:a5:9f:0b:01:7f:d8:25:da: 60:eb:97:e1:fd:77:b2:fa:68:2b:7c:b3:79:c2:85: 4e:40:f1:03:c1:56:bd:dc:72:b0:a7:96:b9:38:19: 89:8c:59:75:7b:57:4a:e1:db:32:43:26:69:62:7f: 4a:de:44:ea:66:07:be:44:b0:65:d6:36:1b:80:47: 2a:59:ad:88:f3:fd:8f:07:7e:7e:b9:4a:38:94:77: 64:5f:8d:4e:bc:60:0d:db:f3:b1:87:87:24:5b:de: ac:54:3d:cb:0d:95:2a:98:54:25:eb:6a:9c:ef:ff: eb:c2:89:b7:90:01:b8:29:55:ab:a2:c6:d4:c5:f2: b7:53:ab:0d:bf:e7:56:37:3a:b8:60:ae:cd:2a:bd: 8a:a1:69:83:53:09:1e:2f:07:e8:64:da:66:34:9e: 6d:5e:50:c5:44:ce:9f:cc:d1:dd:13:49:b2:6c:63: 2c:b4:d6:fd:a4:78:a4:64:c0:3e:1d:87:0e:5b:e0: 1f:50:11:60:63:3b:49:4b:b5:cc:e4:15:85:c1:23: 88:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:2F:58:E6:36:D8:BB:1D:D1:03:96:C8:24:4D:C1:19:21:5E:79:14 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c978db-6569-4544-8197-ce6b7c9d559b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a5/c978db-6569-4544-8197-ce6b7c9d559b/1/bS9Y5jbYux3RA5bIJE3BGSFeeRQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.109.93.0/24 Signature Algorithm: sha256WithRSAEncryption 58:44:ca:f1:6b:64:4c:f6:09:2a:fe:4f:d6:a1:70:79:1c:38: 18:d5:4a:04:ce:58:50:af:bf:f8:06:13:5c:1f:24:31:e3:d3: 29:b6:fd:bc:ce:f8:b5:f0:13:df:60:9a:bb:88:25:20:c4:1e: 14:27:73:60:22:41:30:94:30:e7:a0:ca:39:10:38:1b:20:17: a6:67:a7:00:6f:95:c9:f1:14:f9:56:75:da:50:b5:7b:92:1c: 62:bc:27:5a:20:c5:67:5e:15:ee:1e:0f:1e:c5:51:09:70:77: 74:38:f9:ed:7e:3a:01:d0:1c:24:e8:60:3b:26:25:47:0e:fc: 46:d0:4d:c9:b5:b9:aa:74:ca:35:47:bb:94:aa:27:b1:29:1f: b9:b0:04:7a:b1:7d:04:4a:b3:88:d1:f5:03:0f:da:18:b1:0f: f2:1a:42:d7:7d:78:5d:d0:89:bf:c9:64:5b:b3:97:23:89:f5: 31:b2:bc:91:e9:5e:09:47:90:08:8f:5a:36:ae:e6:fc:2d:67: ce:09:f7:3e:cc:b1:21:c5:95:3e:e6:cd:3b:ba:8f:b4:7a:60: 6d:45:93:e0:95:e1:cc:1d:13:93:b2:c4:1e:40:6c:f1:72:44: 5d:d2:7c:de:76:8b:63:db:2b:35:5a:b9:31:62:9c:18:31:b8: c1:02:d6:e0 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt9W40ejt1k+nMqH755OUZwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxODMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZDJmNThlNjM2ZDhiYjFkZDEwMzk2YzgyNDRkYzExOTIxNWU3OTE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkOxKvOPRqfNzReh7pC03hTWuEI4/ a1K5Oq6Ic4+1bq2ooPjRRpfNZshLtpjLy8KcqmRqpZ8LAX/YJdpg65fh/Xey+mgr fLN5woVOQPEDwVa93HKwp5a5OBmJjFl1e1dK4dsyQyZpYn9K3kTqZge+RLBl1jYb gEcqWa2I8/2PB35+uUo4lHdkX41OvGAN2/Oxh4ckW96sVD3LDZUqmFQl62qc7//r wom3kAG4KVWrosbUxfK3U6sNv+dWNzq4YK7NKr2KoWmDUwkeLwfoZNpmNJ5tXlDF RM6fzNHdE0mybGMstNb9pHikZMA+HYcOW+AfUBFgYztJS7XM5BWFwSOIIQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFG0vWOY22Lsd0QOWyCRNwRkhXnkUMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E1L2M5Nzhk Yi02NTY5LTQ1NDQtODE5Ny1jZTZiN2M5ZDU1OWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTUvYzk3OGRi LTY1NjktNDU0NC04MTk3LWNlNmI3YzlkNTU5Yi8xL2JTOVk1amJZdXgzUkE1YklK RTNCR1NGZWVSUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwW1dMA0GCSqGSIb3DQEBCwUAA4IBAQBYRMrx a2RM9gkq/k/WoXB5HDgY1UoEzlhQr7/4BhNcHyQx49Mptv28zvi18BPfYJq7iCUg xB4UJ3NgIkEwlDDnoMo5EDgbIBemZ6cAb5XJ8RT5VnXaULV7khxivCdaIMVnXhXu Hg8exVEJcHd0OPntfjoB0Bwk6GA7JiVHDvxG0E3JtbmqdMo1R7uUqiexKR+5sAR6 sX0ESrOI0fUDD9oYsQ/yGkLXfXhd0Im/yWRbs5cjifUxsryR6V4JR5AIj1o2rub8 LWfOCfc+zLEhxZU+5s07uo+0emBtRZPgleHMHROTssQeQGzxckRd0nzedotj2ys1 WrkxYpwYMbjBAtbg -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:49 2026 by rpki-client