This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dDWQyYyt2-4a14ldOC1Q9f28SK0.cer File: dDWQyYyt2-4a14ldOC1Q9f28SK0.cer (raw, json) Hash identifier: sWCYyk03Y6AL7i4CfOgtdcVAsiiNbN9LrVo7TMh7qUg= Subject key identifier: 74:35:90:C9:8C:AD:DB:EE:1A:D7:89:5D:38:2D:50:F5:FD:BC:48:AD Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79EC22632231A444F014AB000EE0C102 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0d/9a99c5-0713-4b76-b8f2-01adc1015648/1/dDWQyYyt2-4a14ldOC1Q9f28SK0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0d/9a99c5-0713-4b76-b8f2-01adc1015648/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:17:57 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.218.116.0/22 IP: 2a0b:d5c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:22:63:22:31:a4:44:f0:14:ab:00:0e:e0:c1:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:17:57 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=743590c98caddbee1ad7895d382d50f5fdbc48ad Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:77:75:1d:eb:a8:f7:ab:ab:18:03:0c:0a:e9: 07:71:d1:6c:19:bb:c5:90:c8:34:ac:90:2e:d8:82: a3:03:99:c2:53:83:b8:b9:58:61:8c:5c:e6:f1:54: b9:c3:71:21:8f:2d:e1:ae:78:c1:90:c2:e9:d4:96: 71:de:02:38:f8:20:96:e0:a8:95:82:62:a3:dc:e1: fb:bf:4c:d5:68:25:39:6c:74:13:bd:1a:75:0e:41: d9:3d:15:cb:00:d6:8e:62:61:25:06:69:33:37:04: c4:68:6f:c1:f3:8f:0f:5a:65:7c:75:2b:22:f0:3c: be:0a:80:fa:db:13:54:23:ac:9a:67:1f:df:9f:f1: 7c:c4:ef:b6:dc:44:76:27:7e:cc:6a:4a:fd:e6:13: 35:e8:dd:14:c6:ec:d4:11:ec:97:37:09:6c:68:c2: 36:77:ff:cf:10:c4:33:2d:d7:da:08:04:45:97:72: 4d:c7:e6:1d:9a:0e:42:f7:11:fc:1d:72:61:9b:6a: f8:23:95:5d:22:2a:40:72:85:1e:a6:be:f6:c6:4c: 1d:f2:04:2d:4b:73:38:04:06:13:18:88:99:d1:22: cc:fc:19:81:66:bc:c1:7b:e7:97:35:fc:e3:9e:67: f1:41:15:e4:14:3a:c9:11:f0:07:10:8a:cf:40:46: 2b:f3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:35:90:C9:8C:AD:DB:EE:1A:D7:89:5D:38:2D:50:F5:FD:BC:48:AD X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9a99c5-0713-4b76-b8f2-01adc1015648/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0d/9a99c5-0713-4b76-b8f2-01adc1015648/1/dDWQyYyt2-4a14ldOC1Q9f28SK0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.218.116.0/22 IPv6: 2a0b:d5c0::/29 Signature Algorithm: sha256WithRSAEncryption 17:24:96:69:ad:01:ab:d0:0e:2b:f1:dc:5e:f2:5a:96:41:8c: 6a:9a:6b:03:00:f7:c3:28:10:92:cd:67:03:aa:ea:90:dd:d1: 18:41:0d:e2:96:1d:be:02:44:9e:2e:47:7b:14:87:bd:2e:71: 6f:61:5c:f3:2e:39:a3:bc:55:b0:f5:61:26:da:22:0d:94:7d: e7:23:75:58:00:76:1d:b5:fc:ee:42:e7:07:c9:ad:2c:d5:c7: 20:e9:10:55:5b:0c:95:bc:e4:07:96:be:76:ac:b2:ac:33:01: cf:d1:03:4d:64:1e:04:0b:cc:ef:ff:73:48:d9:21:b8:81:a8: 16:51:36:32:31:3f:20:76:c9:fe:31:b7:16:40:17:c6:2b:92: f7:af:13:ad:8c:55:2d:88:04:fe:1c:5e:cd:c8:fc:b8:4f:c0: 44:76:f5:5f:39:28:95:f2:ca:ef:b2:1f:fc:54:67:12:78:6d: 17:ae:c9:11:e8:e1:5e:76:b0:11:d0:83:37:56:d0:e2:07:1c: af:3a:aa:8f:5e:b1:8b:93:63:4d:d8:56:72:60:9a:5e:fd:e3: 79:26:26:0b:17:c3:82:36:c5:95:7e:8f:e1:f9:6e:5b:1e:51: 90:0e:65:aa:ed:f8:0e:6d:8a:1c:69:12:77:0b:8e:3d:fc:13: f8:53:ad:57 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt57CJjIjGkRPAUqwAO4MECMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxNzU3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDM1OTBjOThjYWRkYmVlMWFkNzg5NWQzODJkNTBmNWZkYmM0OGFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnd1Heuo96urGAMMCukHcdFsGbvF kMg0rJAu2IKjA5nCU4O4uVhhjFzm8VS5w3Ehjy3hrnjBkMLp1JZx3gI4+CCW4KiV gmKj3OH7v0zVaCU5bHQTvRp1DkHZPRXLANaOYmElBmkzNwTEaG/B848PWmV8dSsi 8Dy+CoD62xNUI6yaZx/fn/F8xO+23ER2J37Makr95hM16N0UxuzUEeyXNwlsaMI2 d//PEMQzLdfaCARFl3JNx+Ydmg5C9xH8HXJhm2r4I5VdIipAcoUepr72xkwd8gQt S3M4BAYTGIiZ0SLM/BmBZrzBe+eXNfzjnmfxQRXkFDrJEfAHEIrPQEYr8wIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFHQ1kMmMrdvuGteJXTgtUPX9vEitMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBkLzlhOTlj NS0wNzEzLTRiNzYtYjhmMi0wMWFkYzEwMTU2NDgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGQvOWE5OWM1 LTA3MTMtNGI3Ni1iOGYyLTAxYWRjMTAxNTY0OC8xL2REV1F5WXl0Mi00YTE0bGRP QzFROWYyOFNLMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCudp0MA0EAgACMAcDBQMqC9XAMA0GCSqGSIb3 DQEBCwUAA4IBAQAXJJZprQGr0A4r8dxe8lqWQYxqmmsDAPfDKBCSzWcDquqQ3dEY QQ3ilh2+AkSeLkd7FIe9LnFvYVzzLjmjvFWw9WEm2iINlH3nI3VYAHYdtfzuQucH ya0s1ccg6RBVWwyVvOQHlr52rLKsMwHP0QNNZB4EC8zv/3NI2SG4gagWUTYyMT8g dsn+MbcWQBfGK5L3rxOtjFUtiAT+HF7NyPy4T8BEdvVfOSiV8srvsh/8VGcSeG0X rskR6OFedrAR0IM3VtDiBxyvOqqPXrGLk2NN2FZyYJpe/eN5JiYLF8OCNsWVfo/h +W5bHlGQDmWq7fgObYocaRJ3C449/BP4U61X -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:39 2026 by rpki-client