This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dFkBtALUgvPW3Sko6oztLuts5BI.cer File: dFkBtALUgvPW3Sko6oztLuts5BI.cer (raw, json) Hash identifier: FIJhZ+d0UoeCvurqemLsKSilwH27fTvMQQrXrs9LUws= Subject key identifier: 74:59:01:B4:02:D4:82:F3:D6:DD:29:28:EA:8C:ED:2E:EB:6C:E4:12 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA4D03E2798C9FEAD53B67736BD5EB2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/dFkBtALUgvPW3Sko6oztLuts5BI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:17 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 34249 AS: 41706 IP: 91.142.135.0/24 IP: 193.30.236.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:d0:3e:27:98:c9:fe:ad:53:b6:77:36:bd:5e:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:17 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=745901b402d482f3d6dd2928ea8ced2eeb6ce412 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:0c:51:35:2e:b4:f5:21:3f:6a:87:54:46:69: d6:80:c8:4e:19:f4:d0:98:32:5f:a3:25:98:c6:3b: 1a:54:c7:68:c5:32:d3:06:11:be:b1:09:82:d3:ee: 56:45:ba:4f:75:9f:35:1e:e1:db:37:c4:e5:0b:d8: 02:5a:02:b2:00:5b:86:bd:59:81:7f:f8:f6:ca:1a: 30:a3:80:75:cb:63:04:76:a9:26:e4:91:92:ef:bc: 37:ce:5d:13:f6:4d:cf:eb:30:b6:b0:c3:d6:ec:35: 1e:5d:5a:0f:38:dd:b1:5a:c7:68:d5:9a:44:af:75: 52:95:8c:50:d4:0f:f0:a4:99:b5:cf:77:87:40:83: d5:10:04:0d:3e:56:72:01:c6:30:9d:7b:97:dc:bb: 2b:37:ea:bb:42:8a:e8:42:4a:d7:90:25:9e:8b:a2: 79:7e:27:c0:1e:a3:2e:ca:37:ef:b5:6f:79:22:fc: 98:a3:52:13:41:d9:b4:5d:03:6f:de:b4:52:df:40: 17:1f:3f:21:60:f8:c4:77:0e:ad:0f:ef:0c:26:b6: be:db:cf:a6:a4:d5:23:1e:1c:52:4c:ed:35:db:84: c2:b3:43:09:a6:42:ee:84:6e:1f:53:28:5e:e2:01: db:0a:98:31:81:fe:a7:9f:d1:2c:a9:67:97:60:15: 1c:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:59:01:B4:02:D4:82:F3:D6:DD:29:28:EA:8C:ED:2E:EB:6C:E4:12 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a2/8fd6df-3012-4e46-bbd8-d7c36e15cf0e/1/dFkBtALUgvPW3Sko6oztLuts5BI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.142.135.0/24 193.30.236.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 34249 41706 Signature Algorithm: sha256WithRSAEncryption 6c:52:32:8b:68:c9:92:fa:f6:47:40:2a:2b:de:e4:3a:a2:f6: ab:aa:81:51:66:45:2c:16:a9:d2:92:23:b0:48:6f:bb:1b:37: a4:44:a4:c7:74:5c:54:6c:82:53:bb:c0:b0:a9:07:7a:bf:88: f9:c5:97:3e:4e:2c:ca:e4:8c:bd:4b:d5:26:f0:61:20:25:fe: cf:29:41:17:bc:05:8a:ae:f1:e0:b3:08:c2:fb:e9:d2:ab:11: 14:1d:f7:d1:4b:96:36:38:2e:85:d9:0b:77:55:72:24:49:9c: 14:dc:ed:9a:55:f2:54:97:f1:e1:a6:09:99:7f:04:d8:dd:f4: 65:86:a5:2c:c2:30:06:e7:4e:a7:ba:96:81:25:4d:c8:57:cf: 3d:1f:82:93:32:17:b6:4a:dc:9b:d8:63:6b:f1:4a:95:6e:35: 38:ed:81:9f:58:13:83:5a:a3:69:3b:c2:14:b3:d1:39:ed:ca: d7:95:0d:64:51:3c:d2:1b:1a:8e:b0:38:29:75:4a:1b:5c:5c: 04:26:c2:2e:70:08:33:7c:16:fc:35:c3:24:fc:45:7e:20:11: ee:39:ab:bc:40:96:5c:d3:eb:93:ae:46:61:8c:79:10:57:26: de:1f:ec:bf:4b:2c:3b:74:9d:c8:bc:c2:75:0c:6d:7b:71:8c: 38:e6:c1:59 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgISAZt7pNA+J5jJ/q1Ttnc2vV6yMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTE3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDU5MDFiNDAyZDQ4MmYzZDZkZDI5MjhlYThjZWQyZWViNmNlNDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsAxRNS609SE/aodURmnWgMhOGfTQ mDJfoyWYxjsaVMdoxTLTBhG+sQmC0+5WRbpPdZ81HuHbN8TlC9gCWgKyAFuGvVmB f/j2yhowo4B1y2MEdqkm5JGS77w3zl0T9k3P6zC2sMPW7DUeXVoPON2xWsdo1ZpE r3VSlYxQ1A/wpJm1z3eHQIPVEAQNPlZyAcYwnXuX3LsrN+q7QoroQkrXkCWei6J5 fifAHqMuyjfvtW95IvyYo1ITQdm0XQNv3rRS30AXHz8hYPjEdw6tD+8MJra+28+m pNUjHhxSTO0124TCs0MJpkLuhG4fUyhe4gHbCpgxgf6nn9EsqWeXYBUcPwIDAQAB o4ICqzCCAqcwHQYDVR0OBBYEFHRZAbQC1ILz1t0pKOqM7S7rbOQSMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2EyLzhmZDZk Zi0zMDEyLTRlNDYtYmJkOC1kN2MzNmUxNWNmMGUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTIvOGZkNmRm LTMwMTItNGU0Ni1iYmQ4LWQ3YzM2ZTE1Y2YwZS8xL2RGa0J0QUxVZ3ZQVzNTa282 b3p0THV0czVCSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAW46HAwQCwR7sMB8GCCsGAQUFBwEIAQH/BBAw DqAMMAoCAwCFyQIDAKLqMA0GCSqGSIb3DQEBCwUAA4IBAQBsUjKLaMmS+vZHQCor 3uQ6ovarqoFRZkUsFqnSkiOwSG+7GzekRKTHdFxUbIJTu8CwqQd6v4j5xZc+TizK 5Iy9S9Um8GEgJf7PKUEXvAWKrvHgswjC++nSqxEUHffRS5Y2OC6F2Qt3VXIkSZwU 3O2aVfJUl/HhpgmZfwTY3fRlhqUswjAG506nupaBJU3IV889H4KTMhe2Styb2GNr 8UqVbjU47YGfWBODWqNpO8IUs9E57crXlQ1kUTzSGxqOsDgpdUobXFwEJsIucAgz fBb8NcMk/EV+IBHuOau8QJZc0+uTrkZhjHkQVybeH+y/Syw7dJ3IvMJ1DG17cYw4 5sFZ -----END CERTIFICATE-----Generated at Mon Feb 9 19:48:06 2026 by rpki-client