This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dNAyUoux0Vl2bNed5HhtzZYqH7s.cer File: dNAyUoux0Vl2bNed5HhtzZYqH7s.cer (raw, json) Hash identifier: g+U0EMtL4Ckvj1OvDb4EVxfpr+YxCAlyc3cISj3r0AI= Subject key identifier: 74:D0:32:52:8B:B1:D1:59:76:6C:D7:9D:E4:78:6D:CD:96:2A:1F:BB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79EBB9D2EA313AC068F24F2C2AB1A35E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c7/29a422-a791-4dcf-90fb-2c9127ab48c3/1/dNAyUoux0Vl2bNed5HhtzZYqH7s.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c7/29a422-a791-4dcf-90fb-2c9127ab48c3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:17:30 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.146.92.0/22 IP: 2a07:4f40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 28 Jan 2026 09:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:b9:d2:ea:31:3a:c0:68:f2:4f:2c:2a:b1:a3:5e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:17:30 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74d032528bb1d159766cd79de4786dcd962a1fbb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f6:30:99:a1:5c:29:c7:3d:5c:7f:8d:4c:aa:c8: 27:aa:08:65:a8:33:e7:66:85:4f:d2:bb:37:63:2a: b2:10:35:0a:34:44:20:65:4a:0a:04:7b:bf:ab:9a: 50:31:8b:6c:24:c4:9b:ff:19:5d:03:c7:7d:70:f8: df:4b:0b:63:79:1a:ec:3e:dc:a6:7c:a7:87:33:3c: b8:e7:d3:59:a2:c0:5b:e4:be:3a:e5:9d:ae:77:71: 7e:72:b3:14:70:f6:ce:b4:2d:71:b7:52:35:cc:69: 48:3b:2b:c0:bb:ec:0c:be:02:c9:24:8c:29:04:69: c9:50:2b:ef:95:a4:c3:b7:c2:73:f3:e8:81:a9:80: 0b:17:ff:97:b5:24:2f:59:ec:e9:c5:bf:34:70:f9: 32:bf:a2:dc:35:03:64:cd:97:d7:de:09:25:62:e8: af:80:63:a7:97:4b:79:0e:66:15:22:f6:a3:dd:7d: ef:3f:6c:6c:84:b4:dd:83:0c:ec:ce:47:5d:3a:76: 5e:69:08:ab:cd:cc:0c:aa:af:e2:80:94:57:d2:dc: 28:6f:76:8c:80:bf:d8:28:ac:b8:bc:b1:39:2b:84: b2:00:c1:bb:02:2a:b1:40:23:4a:4d:a7:a6:d1:b9: ea:9f:1d:ca:ab:66:2a:9d:22:2c:6a:e6:33:c4:e4: 79:ff Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:D0:32:52:8B:B1:D1:59:76:6C:D7:9D:E4:78:6D:CD:96:2A:1F:BB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/29a422-a791-4dcf-90fb-2c9127ab48c3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/29a422-a791-4dcf-90fb-2c9127ab48c3/1/dNAyUoux0Vl2bNed5HhtzZYqH7s.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.146.92.0/22 IPv6: 2a07:4f40::/29 Signature Algorithm: sha256WithRSAEncryption 89:c7:d0:82:73:da:2a:35:b4:af:e3:f9:d6:a6:fb:1b:77:31: f9:8d:a8:c7:bd:b9:9d:22:88:14:2d:e4:27:32:c2:91:b2:3c: 9a:0d:4f:03:7a:4e:dc:39:b5:b4:7c:41:d5:db:d5:c8:6e:6b: 53:15:74:af:fa:8b:ad:86:f6:55:82:3e:e3:e8:9a:2b:fb:4b: 0c:78:93:c6:ac:c5:ed:6f:18:b6:b3:6b:f4:ca:cc:ca:78:bd: 8b:b9:de:17:6e:22:e1:87:d7:10:dd:bd:2b:92:b9:a5:3a:7f: 4a:56:07:73:58:ca:dc:84:60:1b:f1:25:d9:ff:f3:b2:fb:68: c6:e2:0b:c8:62:93:f0:10:92:90:df:2d:04:cc:12:0a:b5:21: 39:58:1a:b9:83:fd:8b:39:ee:60:b6:cb:23:94:a1:9e:d1:ce: 26:5f:67:03:d7:d8:8e:54:f9:9e:6f:d7:8d:ef:3e:b4:4b:5b: 73:19:9d:7d:6a:a1:70:4c:b2:0b:1e:45:44:73:ac:cd:ec:84: 97:43:91:3d:0e:21:31:2f:90:89:1b:07:47:a0:d2:39:24:a9: 8c:09:2d:34:8d:fe:07:4a:6c:0d:61:88:fa:89:52:34:a6:9f: 6a:f9:07:25:17:74:2c:44:47:d7:77:88:43:09:ce:7b:6e:e5: d3:04:47:29 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt567nS6jE6wGjyTywqsaNeMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxNzMwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NGQwMzI1MjhiYjFkMTU5NzY2Y2Q3OWRlNDc4NmRjZDk2MmExZmJiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9jCZoVwpxz1cf41MqsgnqghlqDPn ZoVP0rs3YyqyEDUKNEQgZUoKBHu/q5pQMYtsJMSb/xldA8d9cPjfSwtjeRrsPtym fKeHMzy459NZosBb5L465Z2ud3F+crMUcPbOtC1xt1I1zGlIOyvAu+wMvgLJJIwp BGnJUCvvlaTDt8Jz8+iBqYALF/+XtSQvWezpxb80cPkyv6LcNQNkzZfX3gklYuiv gGOnl0t5DmYVIvaj3X3vP2xshLTdgwzszkddOnZeaQirzcwMqq/igJRX0twob3aM gL/YKKy4vLE5K4SyAMG7AiqxQCNKTaem0bnqnx3Kq2YqnSIsauYzxOR5/wIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFHTQMlKLsdFZdmzXneR4bc2WKh+7MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M3LzI5YTQy Mi1hNzkxLTRkY2YtOTBmYi0yYzkxMjdhYjQ4YzMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcvMjlhNDIy LWE3OTEtNGRjZi05MGZiLTJjOTEyN2FiNDhjMy8xL2ROQXlVb3V4MFZsMmJOZWQ1 SGh0elpZcUg3cy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuZJcMA0EAgACMAcDBQMqB09AMA0GCSqGSIb3 DQEBCwUAA4IBAQCJx9CCc9oqNbSv4/nWpvsbdzH5jajHvbmdIogULeQnMsKRsjya DU8Dek7cObW0fEHV29XIbmtTFXSv+outhvZVgj7j6Jor+0sMeJPGrMXtbxi2s2v0 yszKeL2Lud4XbiLhh9cQ3b0rkrmlOn9KVgdzWMrchGAb8SXZ//Oy+2jG4gvIYpPw EJKQ3y0EzBIKtSE5WBq5g/2LOe5gtssjlKGe0c4mX2cD19iOVPmeb9eN7z60S1tz GZ19aqFwTLILHkVEc6zN7ISXQ5E9DiExL5CJGwdHoNI5JKmMCS00jf4HSmwNYYj6 iVI0pp9q+QclF3QsREfXd4hDCc57buXTBEcp -----END CERTIFICATE-----Generated at Tue Jan 27 16:25:16 2026 by rpki-client