This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/c-9Luv3HPlPAmdTVLpye_6g3m08.cer File: c-9Luv3HPlPAmdTVLpye_6g3m08.cer (raw, json) Hash identifier: esOGCv/ea8DHDRfWTTgewKH5ogBi05YpziX0M2NfTTQ= Subject key identifier: 73:EF:4B:BA:FD:C7:3E:53:C0:99:D4:D5:2E:9C:9E:FF:A8:37:9B:4F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEDD50F961D16B67776E7B7CCF5AA0D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/eb/362a4d-9ae6-4012-b5b8-2cc753e53955/1/c-9Luv3HPlPAmdTVLpye_6g3m08.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/eb/362a4d-9ae6-4012-b5b8-2cc753e53955/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 45.67.68.0/22 IP: 2a09:71c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 19 Jan 2026 04:45:18 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:d5:0f:96:1d:16:b6:77:76:e7:b7:cc:f5:aa:0d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=73ef4bbafdc73e53c099d4d52e9c9effa8379b4f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ce:ea:39:92:53:77:35:85:ab:03:81:77:3e:c7: 80:5c:74:4c:eb:97:16:4c:cb:c0:03:ff:41:dd:31: 4e:49:82:4e:52:cd:9a:8c:5f:32:18:26:2d:5c:cd: e8:30:24:e4:0f:02:ec:cc:44:b8:33:ee:26:ac:c3: 58:34:40:af:9f:6d:aa:14:74:f4:e3:9a:d0:b5:d9: 24:cf:1c:02:5e:04:12:73:ae:fe:2a:c2:87:2d:c8: b7:ae:24:c5:3c:f3:29:a4:62:50:e8:9b:26:c4:fc: 64:9e:ec:46:4f:5c:35:d3:8a:f6:ec:a2:c4:21:eb: c0:67:a5:bf:d9:98:25:08:a1:3d:6c:c5:f9:e1:0d: 64:17:c9:ba:37:be:de:e0:a9:3f:66:df:c4:03:96: 69:b9:af:31:a9:8f:c4:d8:e7:a3:27:ec:fe:4d:6f: 7b:7c:0d:e8:cb:69:77:62:97:b6:2f:aa:a9:4c:c7: 46:a8:e0:55:f5:da:07:06:77:42:3c:95:d8:a8:91: ef:d6:24:95:85:ae:41:de:fd:97:df:f6:9b:f0:62: 5c:ba:d3:6e:51:b3:f1:dd:8d:22:00:fa:5c:56:2d: 3f:09:1d:01:2e:86:92:b4:82:e7:0e:ce:c4:a7:7c: 81:a6:a3:97:b8:d1:ca:95:c8:92:d9:db:eb:ba:52: 77:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 73:EF:4B:BA:FD:C7:3E:53:C0:99:D4:D5:2E:9C:9E:FF:A8:37:9B:4F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/362a4d-9ae6-4012-b5b8-2cc753e53955/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/eb/362a4d-9ae6-4012-b5b8-2cc753e53955/1/c-9Luv3HPlPAmdTVLpye_6g3m08.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.67.68.0/22 IPv6: 2a09:71c0::/29 Signature Algorithm: sha256WithRSAEncryption af:e0:9e:5d:ca:29:63:b1:c2:c5:e9:bb:e7:0f:4d:f0:79:6c: 6c:6b:72:15:9b:00:ec:7a:8b:8e:98:1f:15:dd:72:33:40:0c: 6f:31:1d:14:91:d8:dd:a7:60:8a:ff:a1:f9:52:3c:6c:4d:ff: 36:72:c6:ce:33:2b:2d:57:c4:20:44:e4:9d:bf:68:57:1e:50: 37:a1:d8:32:30:00:78:b2:f2:6e:fc:65:ab:34:c6:72:80:eb: f9:6a:f7:d9:9f:d1:13:d1:36:b2:df:f6:df:dc:04:66:88:2d: 28:46:6e:40:55:fd:0f:31:34:3a:62:48:21:b9:2f:bf:59:8e: 0a:28:33:ec:81:42:86:0b:9c:21:e1:96:c9:25:24:b1:57:32: 31:9a:f8:e3:52:20:79:18:0f:6e:04:8d:ae:18:21:ba:ba:4e: 57:c5:20:7c:d9:43:b7:e6:66:a2:c5:85:31:d3:86:5d:90:83: 63:85:6b:4a:26:13:e5:91:ec:dd:6f:f5:a3:a4:65:be:14:46: af:0d:e4:3a:6e:c9:72:46:90:1a:38:c3:97:90:87:15:a9:12: 08:0d:16:48:85:db:59:76:ee:b8:9a:1b:3a:1a:9d:5c:ad:ed: ff:81:89:8e:ac:02:f4:56:1f:7a:d6:ed:9c:33:5b:d1:78:3a: b3:15:53:b9 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt87dUPlh0Wtnd257fM9aoNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3M2VmNGJiYWZkYzczZTUzYzA5OWQ0ZDUyZTljOWVmZmE4Mzc5YjRmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzuo5klN3NYWrA4F3PseAXHRM65cW TMvAA/9B3TFOSYJOUs2ajF8yGCYtXM3oMCTkDwLszES4M+4mrMNYNECvn22qFHT0 45rQtdkkzxwCXgQSc67+KsKHLci3riTFPPMppGJQ6JsmxPxknuxGT1w104r27KLE IevAZ6W/2ZglCKE9bMX54Q1kF8m6N77e4Kk/Zt/EA5Zpua8xqY/E2OejJ+z+TW97 fA3oy2l3Ype2L6qpTMdGqOBV9doHBndCPJXYqJHv1iSVha5B3v2X3/ab8GJcutNu UbPx3Y0iAPpcVi0/CR0BLoaStILnDs7Ep3yBpqOXuNHKlciS2dvrulJ32wIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFHPvS7r9xz5TwJnU1S6cnv+oN5tPMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ViLzM2MmE0 ZC05YWU2LTQwMTItYjViOC0yY2M3NTNlNTM5NTUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWIvMzYyYTRk LTlhZTYtNDAxMi1iNWI4LTJjYzc1M2U1Mzk1NS8xL2MtOUx1djNIUGxQQW1kVFZM cHllXzZnM20wOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCLUNEMA0EAgACMAcDBQMqCXHAMA0GCSqGSIb3 DQEBCwUAA4IBAQCv4J5dyiljscLF6bvnD03weWxsa3IVmwDseouOmB8V3XIzQAxv MR0Ukdjdp2CK/6H5UjxsTf82csbOMystV8QgROSdv2hXHlA3odgyMAB4svJu/GWr NMZygOv5avfZn9ET0Tay3/bf3ARmiC0oRm5AVf0PMTQ6YkghuS+/WY4KKDPsgUKG C5wh4ZbJJSSxVzIxmvjjUiB5GA9uBI2uGCG6uk5XxSB82UO35maixYUx04ZdkINj hWtKJhPlkezdb/WjpGW+FEavDeQ6bslyRpAaOMOXkIcVqRIIDRZIhdtZdu64mhs6 Gp1cre3/gYmOrAL0Vh961u2cM1vReDqzFVO5 -----END CERTIFICATE-----Generated at Sun Jan 18 09:39:55 2026 by rpki-client