This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/byDBquA8J08ClCjuoKRCQgjU8-0.cer File: byDBquA8J08ClCjuoKRCQgjU8-0.cer (raw, json) Hash identifier: 4XGYmWOL16hoPTK9RFGeXloJFHkSEDOskS0GylKki/g= Subject key identifier: 6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F13455DF484C6DCB1CE7C89D8588143 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:18:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.245.144.0/22 IP: 2a12:bcc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:45:5d:f4:84:c6:dc:b1:ce:7c:89:d8:58:81:43 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:18:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=6f20c1aae03c274f029428eea0a4424208d4f3ed Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:c4:9a:05:1f:51:7f:49:c6:e1:d9:81:47:2c: fc:66:c4:61:de:a3:f1:d2:9d:81:02:c6:4c:d6:cd: bb:f0:b6:2d:56:df:9a:d5:13:e4:89:9c:1a:29:b3: 8e:8c:eb:46:df:74:35:f2:5d:e5:a4:43:d7:2a:8d: e7:0d:10:ea:1e:ba:e7:85:0d:09:59:81:c8:12:6d: 3b:85:f2:ec:ed:4a:f5:2f:6c:f6:f4:9c:c7:2e:6e: 61:4b:ff:cc:2a:a8:fc:4d:02:7e:32:fe:e9:4f:6c: f8:0b:85:21:3d:e1:4b:b9:02:55:1e:fb:3e:03:5f: 2d:51:db:8d:02:5f:81:3e:44:8e:80:7e:f7:1b:66: 7b:e7:00:7b:c8:34:2c:97:e7:34:f7:fd:3c:74:5b: 41:ae:c5:6c:7e:fc:ba:cd:8c:d7:f2:bd:6f:cf:fa: 53:db:a8:94:5f:e7:9e:ec:ba:5a:26:f2:79:e3:fd: 1e:44:90:8a:cb:1a:c7:b2:f2:83:dd:c0:98:e2:00: 48:a3:1e:a6:36:df:8e:1f:08:df:20:40:bb:56:9a: 6b:11:d4:2b:9f:07:62:77:03:f2:b1:4d:7c:91:7c: d5:94:d5:d7:97:39:14:33:e1:ce:98:2b:8a:8d:0e: 99:29:cf:32:e2:2e:ba:67:ef:0c:b1:04:63:4f:fe: 85:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 6F:20:C1:AA:E0:3C:27:4F:02:94:28:EE:A0:A4:42:42:08:D4:F3:ED X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/35/7e4ba7-f592-4eec-bcae-095d0bd2555f/1/byDBquA8J08ClCjuoKRCQgjU8-0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.245.144.0/22 IPv6: 2a12:bcc0::/29 Signature Algorithm: sha256WithRSAEncryption 71:8d:a1:68:ec:3e:0e:ed:c9:ae:9c:28:8b:0c:fb:07:4f:06: a5:e3:71:cb:e1:13:2a:d2:d5:89:7a:6c:13:a9:7a:7e:c5:98: 7b:23:38:54:cd:c1:d8:e2:0b:9a:51:35:d3:15:0f:b8:2b:33: 03:59:4a:45:b1:a1:e7:28:bf:f8:8d:d6:d3:a4:87:f8:77:8b: 1a:01:51:ea:a8:9b:f0:71:4c:ba:76:d6:98:27:3a:e9:b0:34: fd:11:ec:fd:aa:dd:40:35:f2:68:a6:bd:6a:4b:c9:75:d7:b1: 80:66:92:40:34:18:8b:2e:99:48:15:b1:ad:3e:68:be:34:08: 25:db:01:d0:7c:8b:ad:d3:b4:de:7d:93:ec:df:3f:65:04:0d: 1c:41:fb:c8:a0:13:71:76:84:29:9e:75:67:cb:46:37:1f:fb: 5d:46:9c:c7:52:d5:0e:b7:c5:ae:6f:5b:4d:c2:1b:ab:0c:72: e9:aa:d2:3e:5d:53:bc:b9:13:31:12:fb:0b:ec:bd:51:14:16: 92:c5:96:04:7a:23:9a:4a:ec:0b:f3:35:91:1b:46:fd:0c:4f: 6e:1f:45:00:f6:77:d9:13:8c:0d:09:c7:32:5a:ca:63:e0:ba: 93:e1:5f:ee:01:a7:c4:e0:75:74:75:7f:77:67:21:e5:d4:39: 56:81:0a:44 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt/E0Vd9ITG3LHOfInYWIFDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQxODQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg2ZjIwYzFhYWUwM2MyNzRmMDI5NDI4ZWVhMGE0NDI0MjA4ZDRmM2VkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzMSaBR9Rf0nG4dmBRyz8ZsRh3qPx 0p2BAsZM1s278LYtVt+a1RPkiZwaKbOOjOtG33Q18l3lpEPXKo3nDRDqHrrnhQ0J WYHIEm07hfLs7Ur1L2z29JzHLm5hS//MKqj8TQJ+Mv7pT2z4C4UhPeFLuQJVHvs+ A18tUduNAl+BPkSOgH73G2Z75wB7yDQsl+c09/08dFtBrsVsfvy6zYzX8r1vz/pT 26iUX+ee7LpaJvJ54/0eRJCKyxrHsvKD3cCY4gBIox6mNt+OHwjfIEC7VpprEdQr nwdidwPysU18kXzVlNXXlzkUM+HOmCuKjQ6ZKc8y4i66Z+8MsQRjT/6FiQIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFG8gwargPCdPApQo7qCkQkII1PPtMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM1LzdlNGJh Ny1mNTkyLTRlZWMtYmNhZS0wOTVkMGJkMjU1NWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzUvN2U0YmE3 LWY1OTItNGVlYy1iY2FlLTA5NWQwYmQyNTU1Zi8xL2J5REJxdUE4SjA4Q2xDanVv S1JDUWdqVTgtMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCufWQMA0EAgACMAcDBQMqErzAMA0GCSqGSIb3 DQEBCwUAA4IBAQBxjaFo7D4O7cmunCiLDPsHTwal43HL4RMq0tWJemwTqXp+xZh7 IzhUzcHY4guaUTXTFQ+4KzMDWUpFsaHnKL/4jdbTpIf4d4saAVHqqJvwcUy6dtaY JzrpsDT9Eez9qt1ANfJopr1qS8l117GAZpJANBiLLplIFbGtPmi+NAgl2wHQfIut 07TefZPs3z9lBA0cQfvIoBNxdoQpnnVny0Y3H/tdRpzHUtUOt8Wub1tNwhurDHLp qtI+XVO8uRMxEvsL7L1RFBaSxZYEeiOaSuwL8zWRG0b9DE9uH0UA9nfZE4wNCccy Wspj4LqT4V/uAafE4HV0dX93ZyHl1DlWgQpE -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:52 2026 by rpki-client