This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/cuv4F-GpLzzX9J32oxwmX_5HgAg.cer File: cuv4F-GpLzzX9J32oxwmX_5HgAg.cer (raw, json) Hash identifier: hGIznXyQsrEJS38NEUnYU2OTo13fly6dojOOsNDbMD0= Subject key identifier: 72:EB:F8:17:E1:A9:2F:3C:D7:F4:9D:F6:A3:1C:26:5F:FE:47:80:08 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7758C58FDFBA8AFD7258189457F8FE1E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/94/434efd-ee54-4bcd-8141-c9f7c0e7acc6/1/cuv4F-GpLzzX9J32oxwmX_5HgAg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/94/434efd-ee54-4bcd-8141-c9f7c0e7acc6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:17:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 47941 AS: 201286 IP: 91.209.10.0/24 IP: 185.79.160.0/22 IP: 2a05:7640::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Fri 09 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:c5:8f:df:ba:8a:fd:72:58:18:94:57:f8:fe:1e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=72ebf817e1a92f3cd7f49df6a31c265ffe478008 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b9:10:39:2d:28:55:5e:ab:ed:8b:a0:bf:95:59: e9:fb:1c:d1:e9:73:7e:ed:a4:7f:78:9d:29:56:37: 78:bd:5f:b9:bd:a1:1f:4f:69:ac:ed:00:2d:1a:61: 43:a4:d2:12:81:7a:62:b3:73:0b:20:f5:9c:18:89: d9:39:93:83:78:2d:3f:e3:22:1a:70:72:be:07:c3: cd:ef:da:dc:72:c5:5f:fa:04:64:b8:10:57:4b:74: 38:bf:7e:ce:d9:f6:15:3b:71:e1:6a:c5:d0:d2:a4: b8:00:00:36:75:98:39:9c:b7:40:ac:03:e5:99:e5: bd:14:64:e3:78:f7:99:56:e3:f9:29:3f:62:f6:35: e4:b5:c9:65:ec:f4:fa:f1:40:b8:99:13:61:5d:f9: 2f:cb:64:0a:f9:54:06:5e:4e:c0:65:23:0b:cc:23: f3:98:2e:2e:26:7d:bc:8d:c2:58:14:a2:bd:79:b6: e4:24:b7:9f:d5:e9:56:55:94:2e:f0:9f:d9:b6:5e: 49:33:b3:6e:4d:0c:be:06:70:3f:e4:92:94:e2:88: 10:13:f8:17:5e:73:9b:e0:74:4c:54:59:13:94:81: 92:ba:91:56:d3:7c:40:fd:d3:b6:34:8e:48:85:3f: 04:0e:b2:a5:97:73:8e:3d:90:ff:a4:48:1d:6f:26: 50:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 72:EB:F8:17:E1:A9:2F:3C:D7:F4:9D:F6:A3:1C:26:5F:FE:47:80:08 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/434efd-ee54-4bcd-8141-c9f7c0e7acc6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/434efd-ee54-4bcd-8141-c9f7c0e7acc6/1/cuv4F-GpLzzX9J32oxwmX_5HgAg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.10.0/24 185.79.160.0/22 IPv6: 2a05:7640::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 47941 201286 Signature Algorithm: sha256WithRSAEncryption 86:6c:31:fa:f4:97:0c:ed:5f:f9:92:08:c0:57:7c:7c:32:ee: 21:ce:11:7e:58:fa:14:01:57:14:9a:9e:bf:21:e9:75:51:15: 87:fa:8b:79:fa:d4:c4:b5:1a:33:8b:53:0d:04:c6:0b:6e:a9: 17:95:89:67:ee:4c:47:1f:63:cb:89:75:53:b0:43:a9:50:40: 70:18:d9:ff:04:e0:a2:0a:ea:85:e1:15:c7:f0:0c:68:61:15: 8b:4c:d2:fa:cf:47:93:f3:1b:77:09:6a:e0:4e:ef:dd:bf:ec: a6:dc:7b:f4:c0:a8:0b:e7:23:74:17:ee:d3:6d:4f:3f:36:03: 6e:5d:e1:86:96:d9:7c:64:d0:64:b7:e3:3b:b9:71:92:ce:ea: 88:b6:57:11:a3:3b:7c:ef:50:ae:ad:4f:18:be:e7:80:b5:e9: 6c:95:ee:ef:72:f1:7d:06:04:3a:9d:19:f2:ae:87:a1:ed:cb: 7e:01:c7:0a:92:f6:95:fe:85:e5:90:ce:c2:4b:fa:3c:a2:d5: 52:cd:3f:69:4f:b6:c4:c4:ea:6f:2a:cd:60:eb:ad:90:2a:c2: 78:66:b6:c7:b6:f1:29:b5:5c:87:74:73:3e:e1:93:63:d5:64: 6b:1a:14:5f:19:80:1c:2a:d8:df:66:b3:f9:ac:cd:3d:1d:b5: 66:62:0e:22 -----BEGIN CERTIFICATE----- MIIFrjCCBJagAwIBAgISAZt3WMWP37qK/XJYGJRX+P4eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3MmViZjgxN2UxYTkyZjNjZDdmNDlkZjZhMzFjMjY1ZmZlNDc4MDA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuRA5LShVXqvti6C/lVnp+xzR6XN+ 7aR/eJ0pVjd4vV+5vaEfT2ms7QAtGmFDpNISgXpis3MLIPWcGInZOZODeC0/4yIa cHK+B8PN79rccsVf+gRkuBBXS3Q4v37O2fYVO3HhasXQ0qS4AAA2dZg5nLdArAPl meW9FGTjePeZVuP5KT9i9jXktcll7PT68UC4mRNhXfkvy2QK+VQGXk7AZSMLzCPz mC4uJn28jcJYFKK9ebbkJLef1elWVZQu8J/Ztl5JM7NuTQy+BnA/5JKU4ogQE/gX XnOb4HRMVFkTlIGSupFW03xA/dO2NI5IhT8EDrKll3OOPZD/pEgdbyZQQQIDAQAB o4ICujCCArYwHQYDVR0OBBYEFHLr+BfhqS881/Sd9qMcJl/+R4AIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk0LzQzNGVm ZC1lZTU0LTRiY2QtODE0MS1jOWY3YzBlN2FjYzYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQvNDM0ZWZk LWVlNTQtNGJjZC04MTQxLWM5ZjdjMGU3YWNjNi8xL2N1djRGLUdwTHp6WDlKMzJv eHdtWF81SGdBZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAW9EKAwQCuU+gMA0EAgACMAcDBQMqBXZAMB8G CCsGAQUFBwEIAQH/BBAwDqAMMAoCAwC7RQIDAxJGMA0GCSqGSIb3DQEBCwUAA4IB AQCGbDH69JcM7V/5kgjAV3x8Mu4hzhF+WPoUAVcUmp6/Iel1URWH+ot5+tTEtRoz i1MNBMYLbqkXlYln7kxHH2PLiXVTsEOpUEBwGNn/BOCiCuqF4RXH8AxoYRWLTNL6 z0eT8xt3CWrgTu/dv+ym3Hv0wKgL5yN0F+7TbU8/NgNuXeGGltl8ZNBkt+M7uXGS zuqItlcRozt871CurU8YvueAtelsle7vcvF9BgQ6nRnyroeh7ct+AccKkvaV/oXl kM7CS/o8otVSzT9pT7bExOpvKs1g662QKsJ4ZrbHtvEptVyHdHM+4ZNj1WRrGhRf GYAcKtjfZrP5rM09HbVmYg4i -----END CERTIFICATE-----Generated at Fri Jan 9 01:10:32 2026 by rpki-client