This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/d_u84sIID4H1oPmPJ5Ipgm3khQs.cer File: d_u84sIID4H1oPmPJ5Ipgm3khQs.cer (raw, json) Hash identifier: I2F7RIniQJ57e2TjZnDYVf33mpZI4OZiw9afRGdy8PE= Subject key identifier: 77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797EE1BBFF84F901EDC1B038D5377E01 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 42181 IP: 194.0.160.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:e1:bb:ff:84:f9:01:ed:c1:b0:38:d5:37:7e:01 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=77fbbce2c2080f81f5a0f98f279229826de4850b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:f2:49:79:6a:19:40:da:e7:82:af:35:9c:dc: 35:ea:27:66:ef:fa:fe:5d:2a:4f:75:04:33:9b:04: 00:76:3a:e3:51:35:ba:00:f9:1f:3e:c5:52:c3:d3: ee:0b:25:3b:6b:ee:08:70:91:ad:c3:ed:fa:d4:4e: 1b:e2:de:c6:3b:4f:3d:42:52:7b:a3:8d:49:b6:9c: d6:07:3c:57:e0:3b:c4:f1:55:e7:d5:45:63:b2:ba: 0d:0e:04:30:f7:05:54:e0:63:2a:36:22:50:36:93: 67:d0:ec:31:16:c5:cd:2a:2b:a4:6e:28:3f:96:83: ef:79:ef:0f:7f:b7:49:16:14:98:2e:c9:e6:f6:16: 3a:70:24:be:96:11:0c:44:5e:96:68:7f:73:a6:17: a2:b7:12:34:18:c5:53:1c:2c:b0:40:78:96:7e:f0: 61:a6:00:63:df:f9:d1:f1:e3:71:cf:91:20:ac:4f: b4:7e:a4:7c:b1:a6:be:d1:db:fa:82:d9:8a:f4:da: 85:9c:c7:79:e5:ad:8b:36:7f:4d:0a:29:84:15:6b: 15:4d:bb:14:17:23:4c:c3:b2:6e:8d:88:92:f2:32: 30:39:44:6b:fe:e7:e1:0a:10:3e:f4:89:d3:9e:7e: df:f2:c9:0a:c4:a5:32:3b:09:91:70:84:5d:8c:98: e0:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:FB:BC:E2:C2:08:0F:81:F5:A0:F9:8F:27:92:29:82:6D:E4:85:0B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/1ed739-2754-440f-9546-3aa27df47521/1/d_u84sIID4H1oPmPJ5Ipgm3khQs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.0.160.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 42181 Signature Algorithm: sha256WithRSAEncryption 82:90:d2:41:d8:a8:a5:ec:2a:23:5e:03:67:16:9d:46:5d:7d: c5:9e:a5:1e:cf:95:00:d0:b1:ba:fa:c4:26:41:f7:41:32:07: 43:06:47:31:eb:1f:39:0a:8d:ef:09:e8:e0:ea:ff:56:87:7a: 0e:ee:ea:11:a5:98:65:10:15:41:23:04:88:3e:7e:2f:ae:1f: 20:73:22:01:61:1f:1f:c2:31:dc:bb:b3:38:6e:b0:eb:54:79: ef:fe:55:d0:35:03:25:6e:15:7d:8d:62:30:46:4c:a1:ac:07: 1e:bf:93:27:67:6e:41:cd:83:05:3b:2b:2a:95:70:78:2d:ad: eb:85:42:26:ee:f0:f5:45:63:bc:bc:d7:0a:f4:82:70:b9:bf: c6:b3:69:95:08:cf:5a:9e:ab:11:70:26:cf:1b:61:c1:8a:d3: 5f:ac:ac:d0:5f:6f:ea:e1:0f:b5:7f:9a:8f:e7:30:d4:46:9e: 0f:c6:fd:63:31:10:8c:22:1a:8f:de:43:14:5d:77:23:db:80: f6:29:6c:4a:e0:ab:eb:97:9f:76:45:e9:19:11:c2:b6:2b:63: e1:72:cf:97:11:08:3c:86:e4:6e:6c:c5:c4:50:b9:38:45:4a: 4e:30:84:bb:f2:9e:5e:f2:b1:99:f2:f3:d9:e8:47:4f:b1:2d: 38:16:6c:fd -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt5fuG7/4T5Ae3BsDjVN34BMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3N2ZiYmNlMmMyMDgwZjgxZjVhMGY5OGYyNzkyMjk4MjZkZTQ4NTBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsvJJeWoZQNrngq81nNw16idm7/r+ XSpPdQQzmwQAdjrjUTW6APkfPsVSw9PuCyU7a+4IcJGtw+361E4b4t7GO089QlJ7 o41JtpzWBzxX4DvE8VXn1UVjsroNDgQw9wVU4GMqNiJQNpNn0OwxFsXNKiukbig/ loPvee8Pf7dJFhSYLsnm9hY6cCS+lhEMRF6WaH9zpheitxI0GMVTHCywQHiWfvBh pgBj3/nR8eNxz5EgrE+0fqR8saa+0dv6gtmK9NqFnMd55a2LNn9NCimEFWsVTbsU FyNMw7JujYiS8jIwOURr/ufhChA+9InTnn7f8skKxKUyOwmRcIRdjJjgXQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFHf7vOLCCA+B9aD5jyeSKYJt5IULMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y5LzFlZDcz OS0yNzU0LTQ0MGYtOTU0Ni0zYWEyN2RmNDc1MjEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjkvMWVkNzM5 LTI3NTQtNDQwZi05NTQ2LTNhYTI3ZGY0NzUyMS8xL2RfdTg0c0lJRDRIMW9QbVBK NUlwZ20za2hRcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwgCgMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCkxTANBgkqhkiG9w0BAQsFAAOCAQEAgpDSQdiopewqI14DZxadRl19xZ6lHs+V ANCxuvrEJkH3QTIHQwZHMesfOQqN7wno4Or/Vod6Du7qEaWYZRAVQSMEiD5+L64f IHMiAWEfH8Ix3LuzOG6w61R57/5V0DUDJW4VfY1iMEZMoawHHr+TJ2duQc2DBTsr KpVweC2t64VCJu7w9UVjvLzXCvSCcLm/xrNplQjPWp6rEXAmzxthwYrTX6ys0F9v 6uEPtX+aj+cw1EaeD8b9YzEQjCIaj95DFF13I9uA9ilsSuCr65efdkXpGRHCtitj 4XLPlxEIPIbkbmzFxFC5OEVKTjCEu/KeXvKxmfLz2ehHT7EtOBZs/Q== -----END CERTIFICATE-----Generated at Mon Feb 9 15:03:55 2026 by rpki-client