This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/da9OLDR4Dz2fUegKU7rDvm8yWUM.cer File: da9OLDR4Dz2fUegKU7rDvm8yWUM.cer (raw, json) Hash identifier: jCsQNyx/66VINxytG7z6MgoAKhCuIagbb3o4IDnzQUs= Subject key identifier: 75:AF:4E:2C:34:78:0F:3D:9F:51:E8:0A:53:BA:C3:BE:6F:32:59:43 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C11BF477FB3DB7E8AA18B7B3FB1E727 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/da9OLDR4Dz2fUegKU7rDvm8yWUM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:18:16 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210553 IP: 178.57.64.0/24 IP: 178.57.69.0 -- 178.57.70.255 IP: 193.3.185.0/24 IP: 2a11:f8c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:11:bf:47:7f:b3:db:7e:8a:a1:8b:7b:3f:b1:e7:27 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75af4e2c34780f3d9f51e80a53bac3be6f325943 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:60:00:c6:2c:08:f2:1d:b1:63:c3:fc:b9:66: ef:f2:19:16:60:81:e6:d6:2f:bd:c3:5b:95:57:76: 6a:e2:b8:6d:67:be:0c:4a:95:40:95:23:b8:6f:0d: 8d:e5:d2:34:0a:66:36:a6:b4:63:2f:e9:37:3e:19: 0b:d5:ec:c5:c2:07:75:af:75:e0:63:6c:14:d9:07: 34:5f:67:9e:4f:88:09:68:eb:18:8d:05:be:2a:23: 76:96:a0:1e:64:06:fb:aa:4c:90:93:a8:7e:e8:ad: d1:8a:4d:3f:ca:07:55:96:a2:13:f4:84:0a:5f:5f: 67:92:6e:9f:a8:bf:ba:84:ac:68:99:89:16:dc:70: 31:67:40:ba:70:04:97:21:9f:e9:9c:a5:25:a1:aa: e3:f2:91:04:df:60:0f:3a:72:cd:32:44:47:3b:ff: 67:41:b7:dc:13:ea:e2:cd:eb:4d:bd:48:c0:b1:66: f5:12:2e:c3:5e:17:73:c4:d0:f8:45:9b:60:de:de: d2:f0:b7:a7:33:7d:27:b9:7f:25:ec:41:da:29:c6: 51:b8:b1:01:40:5b:37:61:6f:2a:7d:35:82:41:2d: 94:20:52:8d:d9:15:b8:16:72:fc:6b:7b:5e:27:d8: a6:22:ad:8f:9a:7d:50:54:ca:e0:1d:69:60:ba:50: a3:ed Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:AF:4E:2C:34:78:0F:3D:9F:51:E8:0A:53:BA:C3:BE:6F:32:59:43 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f8/09239a-4f88-409b-a781-75330d4ce86e/1/da9OLDR4Dz2fUegKU7rDvm8yWUM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 178.57.64.0/24 178.57.69.0-178.57.70.255 193.3.185.0/24 IPv6: 2a11:f8c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210553 Signature Algorithm: sha256WithRSAEncryption 31:aa:9d:d7:e5:37:93:7d:39:b4:ac:22:43:c2:dd:49:e4:c0: 38:8f:a4:e7:4a:8a:94:21:31:9e:6d:66:54:a1:da:4e:8b:c2: c2:6d:9a:17:ff:25:99:eb:ab:d0:df:5a:36:38:4b:3e:7a:af: 42:45:f0:c7:12:07:9f:ca:b3:a0:40:eb:85:a1:bb:21:5a:e0: d9:73:14:a0:15:e9:56:2c:ec:2d:8d:5a:f6:1b:e7:5c:61:27: 8c:7b:60:cd:40:28:83:ee:28:8d:a6:5c:2d:6b:dc:57:3c:2d: a4:81:ae:b9:db:76:62:a2:45:f9:33:dc:93:94:a1:18:0b:57: a7:b3:bf:a6:5e:08:76:00:5a:a2:34:42:d3:2b:89:a9:9e:f5: db:c1:fd:79:f0:34:2a:33:93:b8:39:61:19:db:27:b5:58:0f: e2:32:ea:c3:6f:ba:47:31:c1:7e:88:6e:0f:22:66:cd:18:2c: 5a:a6:0f:d8:eb:a9:86:19:c9:b2:ce:17:69:b2:3d:8b:86:09: 9f:97:85:ed:09:b6:78:57:78:cf:b3:5e:57:b8:6f:3d:45:04: 39:5c:92:82:e7:66:d6:41:54:45:92:41:4d:f2:47:3e:d2:44: 3c:6e:df:de:cb:60:5e:3e:87:37:4b:dd:69:65:9e:e2:6a:7f: dc:3d:9b:46 -----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgISAZt8Eb9Hf7Pbfoqhi3s/secnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWFmNGUyYzM0NzgwZjNkOWY1MWU4MGE1M2JhYzNiZTZmMzI1OTQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0WAAxiwI8h2xY8P8uWbv8hkWYIHm 1i+9w1uVV3Zq4rhtZ74MSpVAlSO4bw2N5dI0CmY2prRjL+k3PhkL1ezFwgd1r3Xg Y2wU2Qc0X2eeT4gJaOsYjQW+KiN2lqAeZAb7qkyQk6h+6K3Rik0/ygdVlqIT9IQK X19nkm6fqL+6hKxomYkW3HAxZ0C6cASXIZ/pnKUloarj8pEE32APOnLNMkRHO/9n QbfcE+rizetNvUjAsWb1Ei7DXhdzxND4RZtg3t7S8LenM30nuX8l7EHaKcZRuLEB QFs3YW8qfTWCQS2UIFKN2RW4FnL8a3teJ9imIq2Pmn1QVMrgHWlgulCj7QIDAQAB o4ICwzCCAr8wHQYDVR0OBBYEFHWvTiw0eA89n1HoClO6w75vMllDMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y4LzA5MjM5 YS00Zjg4LTQwOWItYTc4MS03NTMzMGQ0Y2U4NmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjgvMDkyMzlh LTRmODgtNDA5Yi1hNzgxLTc1MzMwZDRjZTg2ZS8xL2RhOU9MRFI0RHoyZlVlZ0tV N3JEdm04eVdVTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEIGCCsGAQUF BwEHAQH/BDMwMTAgBAIAATAaAwQAsjlAMAwDBACyOUUDBACyOUYDBADBA7kwDQQC AAIwBwMFAyoR+MAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAzZ5MA0GCSqGSIb3 DQEBCwUAA4IBAQAxqp3X5TeTfTm0rCJDwt1J5MA4j6TnSoqUITGebWZUodpOi8LC bZoX/yWZ66vQ31o2OEs+eq9CRfDHEgefyrOgQOuFobshWuDZcxSgFelWLOwtjVr2 G+dcYSeMe2DNQCiD7iiNplwta9xXPC2kga6523ZiokX5M9yTlKEYC1ens7+mXgh2 AFqiNELTK4mpnvXbwf158DQqM5O4OWEZ2ye1WA/iMurDb7pHMcF+iG4PImbNGCxa pg/Y66mGGcmyzhdpsj2Lhgmfl4XtCbZ4V3jPs15XuG89RQQ5XJKC52bWQVRFkkFN 8kc+0kQ8bt/ey2BePoc3S91pZZ7ian/cPZtG -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:07 2026 by rpki-client