This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/curcen7OR31fTXdyQ7YPK7u3VgM.cer File: curcen7OR31fTXdyQ7YPK7u3VgM.cer (raw, json) Hash identifier: z5GQwoeYkJBvAJWRcBatS/4Avq7S4vCIxC0sFEFDG80= Subject key identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F156C39B8380A8CD0A1ED85DDAB746F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 34968 IP: 46.38.192.0/19 IP: 89.207.24.0/21 IP: 95.155.184.0/21 IP: 193.238.240.0/22 IP: 2a01:710::/32 IP: 2a0f:4880::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:6c:39:b8:38:0a:8c:d0:a1:ed:85:dd:ab:74:6f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72eadc7a7ece477d5f4d777243b60f2bbbb75603 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8f:39:92:af:b4:b7:1a:11:c7:3a:49:ad:7b:fa: 62:d7:a3:f1:71:3a:3b:3b:49:9e:dc:1a:8c:78:c3: 50:e6:e5:fd:15:1e:4a:10:0a:b1:9a:00:a7:5a:cd: 6d:69:6f:23:cd:db:6d:4f:1f:1f:2e:9b:6a:f3:b8: 82:d3:05:f1:6f:6c:a0:76:d2:a1:b3:98:52:e6:ec: 70:fb:ef:be:38:a5:20:fb:a5:76:40:d9:a1:59:73: 74:98:11:88:65:c8:c4:a2:48:9d:05:75:bd:a9:aa: 78:52:9d:85:d3:18:3e:d6:20:8b:88:28:f3:cb:d2: 11:e4:f6:68:38:db:00:58:5a:ee:98:01:43:71:8b: 4c:e7:53:f8:5c:b2:fa:af:8d:3e:76:8d:63:ea:cf: 2a:c4:22:b9:f3:c4:bc:ca:4a:fa:75:c7:d8:c0:0e: 92:fb:a6:d5:6f:4f:4e:80:04:5a:11:6f:44:74:0c: 82:95:9a:d9:35:dc:32:86:ef:7e:94:ee:43:e6:33: 8f:ab:b2:f0:cb:79:64:9b:1a:94:53:04:c4:93:5b: c5:77:de:bc:c6:0d:d4:f8:70:14:1b:2d:6d:be:4c: e5:89:d8:b2:4c:35:be:90:43:4a:42:a8:ee:ff:4d: b0:77:d5:ee:e4:13:69:f8:c9:1c:99:6a:6c:62:a8: 74:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:EA:DC:7A:7E:CE:47:7D:5F:4D:77:72:43:B6:0F:2B:BB:B7:56:03 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e5/c09c64-0baf-4b07-8d29-473851709c58/1/curcen7OR31fTXdyQ7YPK7u3VgM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.38.192.0/19 89.207.24.0/21 95.155.184.0/21 193.238.240.0/22 IPv6: 2a01:710::/32 2a0f:4880::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 34968 Signature Algorithm: sha256WithRSAEncryption a1:d9:f3:32:25:b4:44:7c:c2:20:7e:a5:68:6c:cd:d3:f7:33: 1d:36:cd:5b:35:93:eb:66:c0:8d:7a:89:f1:03:9f:5b:13:0b: 50:44:7e:75:47:84:5f:51:5c:f3:db:b9:de:2d:4a:34:bf:2c: ec:e2:43:10:25:6c:ad:35:9c:8e:33:3a:e3:52:0c:60:5a:74: 04:2e:1c:09:35:6f:54:cd:70:81:4a:4f:a4:c7:2a:e1:f8:3e: ea:33:f1:f3:6e:20:aa:a6:eb:6d:99:7c:b4:3e:a2:ab:06:50: 4d:5c:bd:90:60:db:85:64:f3:07:19:0c:73:41:d1:f4:a6:78: be:23:64:70:90:45:72:16:d0:23:a7:87:5d:16:09:e2:35:05: c1:b9:73:47:1f:25:36:8c:ef:1a:8a:35:e4:43:40:30:31:dc: 8f:bd:dc:ec:9b:e9:26:17:aa:f1:46:a3:43:1f:4a:b2:40:ff: 79:37:15:3e:20:4f:80:41:ba:9a:9d:50:02:75:78:ba:4c:11: 23:df:9c:6b:07:38:cc:ef:2e:99:cd:30:a7:9d:5c:0c:9b:5f: 73:fa:3f:7c:73:8e:70:f6:8a:b5:55:02:b3:87:4d:a3:ee:d0: cb:e0:c0:f6:16:77:e1:67:88:11:7b:e0:f3:5e:ea:d0:3c:55: 1c:67:e2:c3 -----BEGIN CERTIFICATE----- MIIFvDCCBKSgAwIBAgISAZt/FWw5uDgKjNCh7YXdq3RvMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MmVhZGM3YTdlY2U0NzdkNWY0ZDc3NzI0M2I2MGYyYmJiYjc1NjAzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjzmSr7S3GhHHOkmte/pi16PxcTo7 O0me3BqMeMNQ5uX9FR5KEAqxmgCnWs1taW8jzdttTx8fLptq87iC0wXxb2ygdtKh s5hS5uxw++++OKUg+6V2QNmhWXN0mBGIZcjEokidBXW9qap4Up2F0xg+1iCLiCjz y9IR5PZoONsAWFrumAFDcYtM51P4XLL6r40+do1j6s8qxCK588S8ykr6dcfYwA6S +6bVb09OgARaEW9EdAyClZrZNdwyhu9+lO5D5jOPq7Lwy3lkmxqUUwTEk1vFd968 xg3U+HAUGy1tvkzlidiyTDW+kENKQqju/02wd9Xu5BNp+MkcmWpsYqh0HwIDAQAB o4ICyDCCAsQwHQYDVR0OBBYEFHLq3Hp+zkd9X013ckO2Dyu7t1YDMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U1L2MwOWM2 NC0wYmFmLTRiMDctOGQyOS00NzM4NTE3MDljNTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTUvYzA5YzY0 LTBiYWYtNGIwNy04ZDI5LTQ3Mzg1MTcwOWM1OC8xL2N1cmNlbjdPUjMxZlRYZHlR N1lQSzd1M1ZnTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEcGCCsGAQUF BwEHAQH/BDgwNjAeBAIAATAYAwQFLibAAwQDWc8YAwQDX5u4AwQCwe7wMBQEAgAC MA4DBQAqAQcQAwUDKg9IgDAaBggrBgEFBQcBCAEB/wQLMAmgBzAFAgMAiJgwDQYJ KoZIhvcNAQELBQADggEBAKHZ8zIltER8wiB+pWhszdP3Mx02zVs1k+tmwI16ifED n1sTC1BEfnVHhF9RXPPbud4tSjS/LOziQxAlbK01nI4zOuNSDGBadAQuHAk1b1TN cIFKT6THKuH4Puoz8fNuIKqm622ZfLQ+oqsGUE1cvZBg24Vk8wcZDHNB0fSmeL4j ZHCQRXIW0COnh10WCeI1BcG5c0cfJTaM7xqKNeRDQDAx3I+93Oyb6SYXqvFGo0Mf SrJA/3k3FT4gT4BBupqdUAJ1eLpMESPfnGsHOMzvLpnNMKedXAybX3P6P3xzjnD2 irVVArOHTaPu0MvgwPYWd+FniBF74PNe6tA8VRxn4sM= -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:14 2026 by rpki-client