This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ckJsPRHJ8krMCh2EVMvJYEhlqAk.cer File: ckJsPRHJ8krMCh2EVMvJYEhlqAk.cer (raw, json) Hash identifier: 5of7Q9STYd0mMU/E4HEIdrL43KEHq7byR+LHuRLXbzA= Subject key identifier: 72:42:6C:3D:11:C9:F2:4A:CC:0A:1D:84:54:CB:C9:60:48:65:A8:09 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA4A7018239A68C746876B8D0A48AD9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/ckJsPRHJ8krMCh2EVMvJYEhlqAk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:17:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 200607 IP: 185.101.180.0/22 IP: 2a06:2040::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a4:a7:01:82:39:a6:8c:74:68:76:b8:d0:a4:8a:d9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72426c3d11c9f24acc0a1d8454cbc9604865a809 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:9d:fc:3e:ec:82:25:01:c9:a2:ab:bd:07:f6: d3:89:7f:36:b3:04:26:36:bd:5d:77:fc:10:18:af: 5f:10:2b:de:ce:9e:af:2c:fd:77:28:58:2a:c1:85: 44:61:5d:46:7a:d4:56:59:1c:55:61:1f:c4:f0:8f: 6f:e3:5a:76:35:62:62:82:d9:d3:d1:d3:48:e8:72: 8a:ee:95:1e:32:79:eb:3f:7a:27:d4:bf:f2:37:e5: 32:d4:5c:81:ea:c7:8e:2c:74:02:5b:32:e0:ca:cc: 84:68:2d:61:0c:f2:57:03:f7:cc:13:b4:7c:d6:8e: 35:f7:d9:51:b5:2a:24:4f:6b:06:86:34:39:d6:24: 4e:25:63:e7:7d:dd:ba:4d:12:50:82:f9:2e:e4:14: 7e:cb:e0:ab:b8:e6:d6:fe:fa:84:56:4f:bf:4c:9b: da:0a:32:d0:c8:fb:a8:7e:bb:82:7c:ce:a5:d8:b6: db:64:7f:21:19:98:ed:ef:b2:ca:5a:26:e7:25:5f: 9b:13:1c:ab:ec:a9:a2:ae:21:62:7e:90:a4:53:15: 90:f7:2a:e2:cd:9d:fe:91:a7:c7:fc:b8:97:93:cd: 54:5c:ec:4f:4d:c7:50:29:2c:2f:a1:95:3a:8b:5e: 73:b1:dd:43:7c:9e:31:dc:c8:6a:38:10:8d:7c:b8: 8b:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:42:6C:3D:11:C9:F2:4A:CC:0A:1D:84:54:CB:C9:60:48:65:A8:09 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/46/4c1b34-9c70-411f-b01f-be90b0fd1f78/1/ckJsPRHJ8krMCh2EVMvJYEhlqAk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.101.180.0/22 IPv6: 2a06:2040::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 200607 Signature Algorithm: sha256WithRSAEncryption 54:b7:36:33:62:2c:ea:e5:7d:ee:1b:82:38:bf:ea:ba:c4:0a: 34:f3:76:0f:dd:5a:dc:06:c5:e5:30:62:78:0a:c1:d2:08:c9: ca:d9:4f:5a:0f:a7:96:3d:3e:ec:83:d2:49:b5:19:28:3c:ba: 06:09:5c:2f:3d:ce:f7:4a:18:a4:9c:ab:9a:68:43:2a:68:89: 50:8d:a2:69:63:d9:33:82:1a:72:56:18:10:47:26:f6:6f:f5: 85:a3:02:e2:d2:80:46:e9:b7:10:20:8a:86:8e:83:49:23:ad: 6a:b3:0d:9e:de:b9:8b:e6:76:b2:44:00:df:65:f1:ea:3b:40: 47:57:f1:5f:b1:8e:5a:c2:b1:5e:81:92:55:5e:42:92:59:ee: a7:84:1c:c0:52:40:05:4c:8e:9b:ea:d4:d6:5c:e1:e3:1e:12: 16:ce:ca:a7:00:dd:6c:56:09:5f:23:87:35:c9:11:e1:0e:4a: 4a:6d:f1:de:c3:3c:e5:b3:24:0b:30:8c:ae:a2:41:95:9d:24: 83:f2:c6:87:fd:44:12:5a:02:74:52:37:ad:79:53:34:fd:16: 2f:1b:24:4f:72:9a:4a:33:bd:05:aa:78:ab:81:6a:f4:bf:cb: d6:7b:9d:fa:1f:59:8e:fa:66:95:2b:70:78:d4:4e:4e:1f:dc: 42:59:d3:e5 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt+pKcBgjmmjHRodrjQpIrZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MjQyNmMzZDExYzlmMjRhY2MwYTFkODQ1NGNiYzk2MDQ4NjVhODA5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvJ38PuyCJQHJoqu9B/bTiX82swQm Nr1dd/wQGK9fECvezp6vLP13KFgqwYVEYV1GetRWWRxVYR/E8I9v41p2NWJigtnT 0dNI6HKK7pUeMnnrP3on1L/yN+Uy1FyB6seOLHQCWzLgysyEaC1hDPJXA/fME7R8 1o4199lRtSokT2sGhjQ51iROJWPnfd26TRJQgvku5BR+y+CruObW/vqEVk+/TJva CjLQyPuofruCfM6l2LbbZH8hGZjt77LKWibnJV+bExyr7KmiriFifpCkUxWQ9yri zZ3+kafH/LiXk81UXOxPTcdQKSwvoZU6i15zsd1DfJ4x3MhqOBCNfLiL4QIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFHJCbD0RyfJKzAodhFTLyWBIZagJMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ2LzRjMWIz NC05YzcwLTQxMWYtYjAxZi1iZTkwYjBmZDFmNzgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDYvNGMxYjM0 LTljNzAtNDExZi1iMDFmLWJlOTBiMGZkMWY3OC8xL2NrSnNQUkhKOGtyTUNoMkVW TXZKWUVobHFBay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuWW0MA0EAgACMAcDBQMqBiBAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMPnzANBgkqhkiG9w0BAQsFAAOCAQEAVLc2M2Is6uV9 7huCOL/qusQKNPN2D91a3AbF5TBieArB0gjJytlPWg+nlj0+7IPSSbUZKDy6Bglc Lz3O90oYpJyrmmhDKmiJUI2iaWPZM4IaclYYEEcm9m/1haMC4tKARum3ECCKho6D SSOtarMNnt65i+Z2skQA32Xx6jtAR1fxX7GOWsKxXoGSVV5Cklnup4QcwFJABUyO m+rU1lzh4x4SFs7KpwDdbFYJXyOHNckR4Q5KSm3x3sM85bMkCzCMrqJBlZ0kg/LG h/1EEloCdFI3rXlTNP0WLxskT3KaSjO9Bap4q4Fq9L/L1nud+h9ZjvpmlStweNRO Th/cQlnT5Q== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:46 2026 by rpki-client