This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/bdLO01LwH3613HYZ7XFMa2pceR4.cer File: bdLO01LwH3613HYZ7XFMa2pceR4.cer (raw, json) Hash identifier: t+6jRP1pr9TvAmG9RP0+GkZ/PynsJFWhDRPfcAjNoNA= Subject key identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB9384935877A54CE4ADB92DE8B045 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:28 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215561 IP: 2001:678:1f0::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:93:84:93:58:77:a5:4c:e4:ad:b9:2d:e8:b0:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6dd2ced352f01f7eb5dc7619ed714c6b6a5c791e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:10:6b:7b:d1:dc:3c:20:d0:11:3e:f3:f4:60: 97:c0:b8:34:27:e2:b4:e2:20:ab:ca:bc:14:12:79: 99:19:70:de:0a:bb:95:9b:73:d2:cd:6c:87:68:c6: f0:13:ed:e1:14:f1:2d:1f:54:ee:16:24:05:69:25: be:f1:71:4b:ac:31:e4:5d:de:fe:c3:07:51:bf:4f: 9d:65:cc:2d:10:e8:28:85:5d:4f:c9:d4:23:37:30: d8:3c:51:00:b1:4a:17:b7:35:e3:f6:f0:39:0e:ed: 19:f0:f9:29:66:c3:dd:86:77:f3:72:18:75:03:62: 98:3c:7b:52:92:82:54:76:e8:a8:fa:12:16:0c:29: cf:8c:7b:94:77:e6:81:8f:0b:8b:18:59:57:2b:38: 4d:e8:d9:0a:80:5d:86:1d:20:c7:53:eb:51:de:b3: 0d:f7:11:68:47:ed:ef:2e:d0:90:f8:da:6d:56:50: 01:da:66:02:13:43:f2:da:38:c4:d3:1a:93:ff:50: b7:a6:39:c1:f7:f1:ff:24:69:2d:a3:69:e4:d7:ec: b4:bd:90:b1:e5:e9:f2:8a:b5:78:ec:f6:56:a9:15: 52:80:54:d0:44:0c:86:df:53:d7:8d:44:5b:aa:eb: cc:e3:19:61:f8:74:3a:ec:7f:b6:b2:c3:64:8b:9e: 9d:75 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6D:D2:CE:D3:52:F0:1F:7E:B5:DC:76:19:ED:71:4C:6B:6A:5C:79:1E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/245e1a-0612-4596-a95a-9df72530b669/1/bdLO01LwH3613HYZ7XFMa2pceR4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:1f0::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215561 Signature Algorithm: sha256WithRSAEncryption 09:ba:e8:2b:89:32:76:b4:db:f0:50:ae:c6:d5:f8:78:75:db: 25:c6:a0:a4:7a:50:aa:24:d8:2a:69:0a:02:81:96:f1:40:cc: e8:b3:55:dd:22:54:5a:ac:e1:19:58:de:8d:94:eb:8c:a0:b3: b1:df:72:35:37:53:98:ca:98:97:7a:9d:1b:96:dd:41:89:90: 13:5d:9c:98:a8:77:26:c9:c4:36:33:ac:8f:af:a5:c9:1d:d0: cf:e6:1f:60:e7:de:d3:cd:ed:88:25:dc:c9:a3:18:5c:88:bb: 8c:a1:4b:f8:4d:88:b1:0a:eb:4f:8a:a5:bf:a3:f5:3f:7c:2c: d6:f0:35:7e:20:c6:52:92:b3:57:30:ec:a6:be:5e:57:ca:b3: 3f:2d:d0:9f:6e:dd:74:41:72:08:a9:38:cd:52:ee:2e:a5:0c: 73:17:f8:86:65:a2:fa:d0:e0:24:c0:1e:5d:81:6f:57:1f:b4: f9:92:b5:00:ca:34:74:62:ed:95:9a:94:15:d9:27:c5:1f:e5: 76:78:8a:04:69:d5:b0:08:e9:5f:5c:67:ca:18:ab:f7:fe:f5: ea:f5:b7:25:a9:7f:e2:50:6b:21:d7:93:7b:68:e0:45:ab:c6: 79:c3:06:95:fb:32:77:c6:b4:15:71:47:52:f8:5b:3b:5e:21: a2:3a:02:98 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt265OEk1h3pUzkrbkt6LBFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZGQyY2VkMzUyZjAxZjdlYjVkYzc2MTllZDcxNGM2YjZhNWM3OTFlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxBre9HcPCDQET7z9GCXwLg0J+K0 4iCryrwUEnmZGXDeCruVm3PSzWyHaMbwE+3hFPEtH1TuFiQFaSW+8XFLrDHkXd7+ wwdRv0+dZcwtEOgohV1PydQjNzDYPFEAsUoXtzXj9vA5Du0Z8PkpZsPdhnfzchh1 A2KYPHtSkoJUduio+hIWDCnPjHuUd+aBjwuLGFlXKzhN6NkKgF2GHSDHU+tR3rMN 9xFoR+3vLtCQ+NptVlAB2mYCE0Py2jjE0xqT/1C3pjnB9/H/JGkto2nk1+y0vZCx 5enyirV47PZWqRVSgFTQRAyG31PXjURbquvM4xlh+HQ67H+2ssNki56ddQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFG3SztNS8B9+tdx2Ge1xTGtqXHkeMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA2LzI0NWUx YS0wNjEyLTQ1OTYtYTk1YS05ZGY3MjUzMGI2NjkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDYvMjQ1ZTFh LTA2MTItNDU5Ni1hOTVhLTlkZjcyNTMwYjY2OS8xL2JkTE8wMUx3SDM2MTNIWVo3 WEZNYTJwY2VSNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAHwMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwNKCTANBgkqhkiG9w0BAQsFAAOCAQEACbroK4kydrTb8FCuxtX4eHXbJcag pHpQqiTYKmkKAoGW8UDM6LNV3SJUWqzhGVjejZTrjKCzsd9yNTdTmMqYl3qdG5bd QYmQE12cmKh3JsnENjOsj6+lyR3Qz+YfYOfe083tiCXcyaMYXIi7jKFL+E2IsQrr T4qlv6P1P3ws1vA1fiDGUpKzVzDspr5eV8qzPy3Qn27ddEFyCKk4zVLuLqUMcxf4 hmWi+tDgJMAeXYFvVx+0+ZK1AMo0dGLtlZqUFdknxR/ldniKBGnVsAjpX1xnyhir 9/716vW3Jal/4lBrIdeTe2jgRavGecMGlfsyd8a0FXFHUvhbO14hojoCmA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:00 2026 by rpki-client