This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cuv4F-GpLzzX9J32oxwmX_5HgAg.cer File: cuv4F-GpLzzX9J32oxwmX_5HgAg.cer (raw, json) Hash identifier: wmsyvYHvd+bvyoR8/m3Dhkkjixo9U5Cb5lVcVyZ72qY= Subject key identifier: 72:EB:F8:17:E1:A9:2F:3C:D7:F4:9D:F6:A3:1C:26:5F:FE:47:80:08 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019A78F1183019B610C95EF4DF335A3F7D54 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/94/434efd-ee54-4bcd-8141-c9f7c0e7acc6/1/cuv4F-GpLzzX9J32oxwmX_5HgAg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/94/434efd-ee54-4bcd-8141-c9f7c0e7acc6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Wed 12 Nov 2025 16:40:57 +0000 Certificate not after: Wed 01 Jul 2026 00:00:00 +0000 Subordinate resources: AS: 47941 AS: 201286 IP: 91.209.10.0/24 IP: 185.79.160.0/22 IP: 2a05:7640::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 23 Nov 2025 12:00:15 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:78:f1:18:30:19:b6:10:c9:5e:f4:df:33:5a:3f:7d:54 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Nov 12 16:40:57 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=72ebf817e1a92f3cd7f49df6a31c265ffe478008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:39:2d:28:55:5e:ab:ed:8b:a0:bf:95:59: e9:fb:1c:d1:e9:73:7e:ed:a4:7f:78:9d:29:56:37: 78:bd:5f:b9:bd:a1:1f:4f:69:ac:ed:00:2d:1a:61: 43:a4:d2:12:81:7a:62:b3:73:0b:20:f5:9c:18:89: d9:39:93:83:78:2d:3f:e3:22:1a:70:72:be:07:c3: cd:ef:da:dc:72:c5:5f:fa:04:64:b8:10:57:4b:74: 38:bf:7e:ce:d9:f6:15:3b:71:e1:6a:c5:d0:d2:a4: b8:00:00:36:75:98:39:9c:b7:40:ac:03:e5:99:e5: bd:14:64:e3:78:f7:99:56:e3:f9:29:3f:62:f6:35: e4:b5:c9:65:ec:f4:fa:f1:40:b8:99:13:61:5d:f9: 2f:cb:64:0a:f9:54:06:5e:4e:c0:65:23:0b:cc:23: f3:98:2e:2e:26:7d:bc:8d:c2:58:14:a2:bd:79:b6: e4:24:b7:9f:d5:e9:56:55:94:2e:f0:9f:d9:b6:5e: 49:33:b3:6e:4d:0c:be:06:70:3f:e4:92:94:e2:88: 10:13:f8:17:5e:73:9b:e0:74:4c:54:59:13:94:81: 92:ba:91:56:d3:7c:40:fd:d3:b6:34:8e:48:85:3f: 04:0e:b2:a5:97:73:8e:3d:90:ff:a4:48:1d:6f:26: 50:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:EB:F8:17:E1:A9:2F:3C:D7:F4:9D:F6:A3:1C:26:5F:FE:47:80:08 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/434efd-ee54-4bcd-8141-c9f7c0e7acc6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/434efd-ee54-4bcd-8141-c9f7c0e7acc6/1/cuv4F-GpLzzX9J32oxwmX_5HgAg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.10.0/24 185.79.160.0/22 IPv6: 2a05:7640::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 47941 201286 Signature Algorithm: sha256WithRSAEncryption a7:a9:a4:9d:e9:67:2b:98:cc:a2:78:c6:8c:4c:b4:27:d2:4a: 20:cc:98:6f:05:4f:5c:0d:34:19:86:92:3f:c0:9f:80:cd:90: cb:56:2b:b4:45:4a:5c:db:11:4a:48:a3:7e:11:4e:cd:76:21: 5c:2a:9c:10:57:8b:d6:7a:4f:33:3f:06:2d:2a:5d:21:69:87: e4:dc:9f:c5:00:e7:e9:1e:7a:33:02:83:36:18:61:06:cd:41: cc:04:cf:1a:55:8a:c3:02:bb:a9:cd:c4:91:9e:1f:56:4b:5f: 7a:2f:7a:48:4d:c5:aa:91:f3:2f:3e:49:b6:57:fa:02:e0:4e: d6:07:03:61:c6:e9:ce:e2:7b:da:c4:b9:ce:bd:f8:df:41:da: 3a:f8:a4:af:00:42:3b:bd:26:1f:7d:de:66:c0:f9:31:dc:87: 87:2c:05:7f:39:f8:f8:14:ed:4d:b3:fd:1c:ac:42:11:69:55: a6:3f:c0:d3:26:f5:3c:6c:06:9f:36:73:1d:97:52:5b:9a:b3: 86:b8:c5:68:3a:87:74:4b:f3:6d:7b:ac:4d:5d:9a:cc:8c:4c: 04:3b:59:cd:ba:d4:46:fa:7d:67:cd:60:38:0c:43:68:37:c6: 42:31:e7:71:14:43:4d:2a:67:c8:21:9a:4a:af:92:66:ce:b6: 7d:00:d7:5f -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZp48RgwGbYQyV703zNaP31UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjUxMTEyMTY0MDU3WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MmViZjgxN2UxYTkyZjNjZDdmNDlkZjZhMzFjMjY1ZmZlNDc4MDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRA5LShVXqvti6C/lVnp+xzR6XN+ 7aR/eJ0pVjd4vV+5vaEfT2ms7QAtGmFDpNISgXpis3MLIPWcGInZOZODeC0/4yIa cHK+B8PN79rccsVf+gRkuBBXS3Q4v37O2fYVO3HhasXQ0qS4AAA2dZg5nLdArAPl meW9FGTjePeZVuP5KT9i9jXktcll7PT68UC4mRNhXfkvy2QK+VQGXk7AZSMLzCPz mC4uJn28jcJYFKK9ebbkJLef1elWVZQu8J/Ztl5JM7NuTQy+BnA/5JKU4ogQE/gX XnOb4HRMVFkTlIGSupFW03xA/dO2NI5IhT8EDrKll3OOPZD/pEgdbyZQQQIDAQAB o4ICujCCArYwHQYDVR0OBBYEFHLr+BfhqS881/Sd9qMcJl/+R4AIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk0LzQzNGVm ZC1lZTU0LTRiY2QtODE0MS1jOWY3YzBlN2FjYzYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQvNDM0ZWZk LWVlNTQtNGJjZC04MTQxLWM5ZjdjMGU3YWNjNi8xL2N1djRGLUdwTHp6WDlKMzJv eHdtWF81SGdBZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAW9EKAwQCuU+gMA0EAgACMAcDBQMqBXZAMB8G CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwC7RQIDAxJGMA0GCSqGSIb3DQEBCwUAA4IB AQCnqaSd6WcrmMyieMaMTLQn0kogzJhvBU9cDTQZhpI/wJ+AzZDLViu0RUpc2xFK SKN+EU7NdiFcKpwQV4vWek8zPwYtKl0haYfk3J/FAOfpHnozAoM2GGEGzUHMBM8a VYrDArupzcSRnh9WS196L3pITcWqkfMvPkm2V/oC4E7WBwNhxunO4nvaxLnOvfjf Qdo6+KSvAEI7vSYffd5mwPkx3IeHLAV/Ofj4FO1Ns/0crEIRaVWmP8DTJvU8bAaf NnMdl1JbmrOGuMVoOod0S/Nte6xNXZrMjEwEO1nNutRG+n1nzWA4DENoN8ZCMedx FENNKmfIIZpKr5JmzrZ9ANdf -----END CERTIFICATE-----Generated at Sat Nov 22 21:41:20 2025 by rpki-client