This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/buuvFSM9mOuO8GLCRfkXNi5jJlY.cer File: buuvFSM9mOuO8GLCRfkXNi5jJlY.cer (raw, json) Hash identifier: q9hq5EaAM8KIuRnUdxWUiQof/PsmiEOjgRNo9th75os= Subject key identifier: 6E:EB:AF:15:23:3D:98:EB:8E:F0:62:C2:45:F9:17:36:2E:63:26:56 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA472FBE047A14E6E7AD3C1A69A33AF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/buuvFSM9mOuO8GLCRfkXNi5jJlY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:18:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 50630 IP: 2.56.4.0/22 IP: 109.95.56.0/22 IP: 193.41.249.0/24 IP: 195.8.194.0/24 IP: 2a0d:4d40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:72:fb:e0:47:a1:4e:6e:7a:d3:c1:a6:9a:33:af Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:18:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6eebaf15233d98eb8ef062c245f917362e632656 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e5:56:0f:2c:dc:88:73:58:94:66:bf:46:c7:e7: 0f:5f:e0:85:0d:7c:39:59:2d:73:09:85:25:1e:a6: cf:a8:9b:6e:2a:79:58:00:d9:47:d7:68:34:7a:fe: cf:46:cb:a8:73:3d:96:4a:8f:df:19:3a:d6:fa:33: 0e:0d:33:a4:61:c8:bd:1b:23:9e:ee:0c:5f:55:b6: 89:24:d7:36:79:d3:98:1a:9a:fc:14:35:5f:2f:52: 7f:6b:fe:6f:de:2f:cb:f2:69:01:93:7a:f6:27:7c: 5c:f8:1e:f2:9f:93:f7:28:45:f1:77:cf:1d:fb:15: ba:22:8b:1a:29:a9:d3:8b:1f:56:88:f2:05:cd:03: d7:48:31:05:13:c0:de:d9:d1:21:e4:8d:db:59:37: 59:13:62:de:fe:9d:be:0a:6d:99:b8:33:62:ad:91: 84:14:ef:a4:89:36:f6:69:05:e1:39:33:10:cd:08: ad:54:6b:a1:a4:73:5b:ac:4e:05:e9:9c:e1:8a:35: eb:51:3a:63:09:e6:b2:88:0d:16:c0:58:f1:e0:5c: 3b:2d:81:2e:f6:e7:ad:38:fb:90:e4:e9:3d:69:3f: a9:2a:49:f1:f7:b5:3b:2e:9f:32:68:c6:02:65:70: 75:87:fa:c9:1d:c0:41:fe:0b:24:12:c2:ac:9d:bf: f8:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6E:EB:AF:15:23:3D:98:EB:8E:F0:62:C2:45:F9:17:36:2E:63:26:56 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/65/2713ed-cb32-407e-8628-0e467e51ba06/1/buuvFSM9mOuO8GLCRfkXNi5jJlY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.4.0/22 109.95.56.0/22 193.41.249.0/24 195.8.194.0/24 IPv6: 2a0d:4d40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 50630 Signature Algorithm: sha256WithRSAEncryption a3:8b:13:6f:a5:b8:a4:dc:22:9e:47:bf:4c:66:af:39:60:b9: 55:d3:00:b8:01:d4:9e:bb:5e:85:57:eb:69:0d:27:17:fb:4d: ce:90:ec:15:39:db:5a:34:b9:4b:e8:2f:57:83:d0:0c:a4:f5: 1e:69:93:4f:60:06:e6:28:15:3f:72:7d:08:d9:5c:3b:03:de: 3a:69:40:79:24:08:d1:11:77:e4:bc:14:11:e7:45:1d:81:c5: e1:9c:f5:7d:aa:c6:78:52:f5:b1:ea:c1:fc:06:c2:b4:ca:95: 25:35:00:24:7b:f9:b2:57:52:0d:ea:45:a2:72:de:c5:15:70: 10:7f:01:86:94:60:eb:98:2d:dd:7e:5a:69:38:9b:63:3f:e4: dd:35:de:d0:ff:c1:3f:06:3c:4e:d1:85:36:5f:dd:4f:0e:62: a0:96:74:d7:d3:e0:16:8d:35:ff:77:af:f0:ab:c6:e8:8c:14: e0:65:37:c2:8c:0c:61:4a:ef:c1:b7:34:43:f2:d9:51:f2:ea: 1f:2d:02:04:52:1a:d8:88:c9:c9:a7:9d:1b:10:6d:75:c3:60: 93:88:2c:68:4e:ed:2c:62:33:7b:ff:7e:a0:17:20:c7:c0:e1: 96:c4:02:02:93:f2:72:9a:05:80:c7:cf:59:0e:5a:e2:73:d9: d4:f3:d7:09 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgISAZt7pHL74EehTm5608GmmjOvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxODUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZWViYWYxNTIzM2Q5OGViOGVmMDYyYzI0NWY5MTczNjJlNjMyNjU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5VYPLNyIc1iUZr9Gx+cPX+CFDXw5 WS1zCYUlHqbPqJtuKnlYANlH12g0ev7PRsuocz2WSo/fGTrW+jMODTOkYci9GyOe 7gxfVbaJJNc2edOYGpr8FDVfL1J/a/5v3i/L8mkBk3r2J3xc+B7yn5P3KEXxd88d +xW6IosaKanTix9WiPIFzQPXSDEFE8De2dEh5I3bWTdZE2Le/p2+Cm2ZuDNirZGE FO+kiTb2aQXhOTMQzQitVGuhpHNbrE4F6ZzhijXrUTpjCeayiA0WwFjx4Fw7LYEu 9uetOPuQ5Ok9aT+pKknx97U7Lp8yaMYCZXB1h/rJHcBB/gskEsKsnb/4MwIDAQAB o4ICwTCCAr0wHQYDVR0OBBYEFG7rrxUjPZjrjvBiwkX5FzYuYyZWMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY1LzI3MTNl ZC1jYjMyLTQwN2UtODYyOC0wZTQ2N2U1MWJhMDYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjUvMjcxM2Vk LWNiMzItNDA3ZS04NjI4LTBlNDY3ZTUxYmEwNi8xL2J1dXZGU005bU91TzhHTENS ZmtYTmk1akpsWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQCAjgEAwQCbV84AwQAwSn5AwQAwwjCMA0EAgAC MAcDBQMqDU1AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDFxjANBgkqhkiG9w0B AQsFAAOCAQEAo4sTb6W4pNwinke/TGavOWC5VdMAuAHUnrtehVfraQ0nF/tNzpDs FTnbWjS5S+gvV4PQDKT1HmmTT2AG5igVP3J9CNlcOwPeOmlAeSQI0RF35LwUEedF HYHF4Zz1farGeFL1serB/AbCtMqVJTUAJHv5sldSDepFonLexRVwEH8BhpRg65gt 3X5aaTibYz/k3TXe0P/BPwY8TtGFNl/dTw5ioJZ019PgFo01/3ev8KvG6IwU4GU3 wowMYUrvwbc0Q/LZUfLqHy0CBFIa2IjJyaedGxBtdcNgk4gsaE7tLGIze/9+oBcg x8DhlsQCApPycpoFgMfPWQ5a4nPZ1PPXCQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:46:48 2026 by rpki-client