This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/db3TijiDJA5GxLGsi7-DF96P-IU.cer File: db3TijiDJA5GxLGsi7-DF96P-IU.cer (raw, json) Hash identifier: azoI1jKyNYB1dvoY+pBOZWwMRaUP0ztRlsvG6/g8NP8= Subject key identifier: 75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834E4DF1209811C685EF7B9938AFC79 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:11 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.132.116.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:e4:df:12:09:81:1c:68:5e:f7:b9:93:8a:fc:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=75bdd38a3883240e46c4b1ac8bbf8317de8ff885 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:ea:21:97:07:e6:d6:74:58:7c:a1:49:a3:1b: 88:3b:6d:96:40:72:62:34:28:e1:75:fa:a5:7d:09: 32:f9:e9:68:00:07:c7:7b:77:62:06:69:7f:52:1a: 71:4b:7e:f4:c7:4b:1e:b1:55:3a:00:c9:c4:bd:19: dc:30:f0:4c:af:3b:f8:c4:6e:c6:a8:10:8c:09:c3: 31:08:69:06:0b:35:43:eb:2c:b0:8e:a1:5f:f6:2c: 96:5c:49:fb:f9:4f:b3:17:21:cf:3e:a1:34:c8:62: 15:0a:58:22:cc:a4:6e:b5:b8:7f:5b:7f:9f:07:4a: df:36:68:e9:e1:14:bc:d5:2e:51:e8:09:be:05:48: d7:ca:2f:a8:b4:6c:47:88:8f:03:2c:d9:76:b0:ae: 31:a8:d9:30:d1:81:98:91:10:66:97:ae:dd:bb:75: fa:c0:52:b7:ff:ed:9d:38:8b:e3:bd:42:29:4e:6c: 8a:ec:e2:84:d7:43:4a:92:f5:57:d2:7e:f8:67:47: b7:3c:a3:85:5f:03:ff:43:f1:84:47:44:45:4b:0e: 71:81:0c:92:09:22:f9:a1:2c:4d:86:10:d2:3d:9f: 37:77:80:ee:d2:05:b6:b4:73:74:92:5e:df:a6:69: 2c:e4:63:b7:d2:ca:fa:b8:c2:15:61:a8:8c:7b:ee: a1:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 75:BD:D3:8A:38:83:24:0E:46:C4:B1:AC:8B:BF:83:17:DE:8F:F8:85 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b3/c3a4f7-2d0a-4924-8cdb-8da60535e6a0/1/db3TijiDJA5GxLGsi7-DF96P-IU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.132.116.0/22 Signature Algorithm: sha256WithRSAEncryption 47:eb:24:45:5a:4e:20:05:d6:40:66:52:58:62:8e:b8:a6:fb: e3:58:15:7e:60:05:e1:58:13:4d:5c:14:77:d8:d5:60:2e:55: 7e:37:b2:27:6b:06:ea:cb:bc:70:e3:77:a7:1b:99:c7:f2:87: e2:60:f9:01:92:29:3a:15:96:54:37:03:bc:90:b6:30:91:61: 54:5c:61:8f:5c:a0:ed:7c:4a:02:b2:4d:19:3c:9f:3a:14:5c: b6:8c:0d:db:01:81:0f:f1:10:8c:bc:e0:3a:0d:07:19:ef:9a: 68:d1:8f:31:b4:47:60:a8:a2:97:40:5f:44:4c:7f:78:21:1c: 43:a1:c0:d7:c4:46:1a:a6:58:33:3c:6a:92:34:d9:94:8a:c5: cb:93:90:c3:e1:3a:ac:c2:8d:3f:7f:e5:44:a3:46:db:74:61: a4:65:72:75:5a:69:4a:78:75:2e:c3:16:e4:f1:24:57:56:b9: 77:b5:6c:1d:c7:da:23:ea:dd:40:9c:e1:15:91:4c:c9:74:cf: 1b:1e:57:3e:80:1b:ff:36:88:1e:ac:2b:25:71:eb:ea:f8:53: e8:6c:d2:eb:17:18:df:a2:ae:15:7d:d3:1b:f8:fe:2e:bf:9a: 22:fa:69:1f:56:53:7d:bc:75:c5:e9:47:c4:8a:d1:e7:8f:b2: 13:8d:72:7f -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt4NOTfEgmBHGhe97mTivx5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NWJkZDM4YTM4ODMyNDBlNDZjNGIxYWM4YmJmODMxN2RlOGZmODg1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0eohlwfm1nRYfKFJoxuIO22WQHJi NCjhdfqlfQky+eloAAfHe3diBml/UhpxS370x0sesVU6AMnEvRncMPBMrzv4xG7G qBCMCcMxCGkGCzVD6yywjqFf9iyWXEn7+U+zFyHPPqE0yGIVClgizKRutbh/W3+f B0rfNmjp4RS81S5R6Am+BUjXyi+otGxHiI8DLNl2sK4xqNkw0YGYkRBml67du3X6 wFK3/+2dOIvjvUIpTmyK7OKE10NKkvVX0n74Z0e3PKOFXwP/Q/GER0RFSw5xgQyS CSL5oSxNhhDSPZ83d4Du0gW2tHN0kl7fpmks5GO30sr6uMIVYaiMe+6hsQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFHW904o4gyQORsSxrIu/gxfej/iFMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2IzL2MzYTRm Ny0yZDBhLTQ5MjQtOGNkYi04ZGE2MDUzNWU2YTAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjMvYzNhNGY3 LTJkMGEtNDkyNC04Y2RiLThkYTYwNTM1ZTZhMC8xL2RiM1RpamlESkE1R3hMR3Np Ny1ERjk2UC1JVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCwYR0MA0GCSqGSIb3DQEBCwUAA4IBAQBH6yRF Wk4gBdZAZlJYYo64pvvjWBV+YAXhWBNNXBR32NVgLlV+N7Inawbqy7xw43enG5nH 8ofiYPkBkik6FZZUNwO8kLYwkWFUXGGPXKDtfEoCsk0ZPJ86FFy2jA3bAYEP8RCM vOA6DQcZ75po0Y8xtEdgqKKXQF9ETH94IRxDocDXxEYaplgzPGqSNNmUisXLk5DD 4Tqswo0/f+VEo0bbdGGkZXJ1WmlKeHUuwxbk8SRXVrl3tWwdx9oj6t1AnOEVkUzJ dM8bHlc+gBv/NogerCslcevq+FPobNLrFxjfoq4VfdMb+P4uv5oi+mkfVlN9vHXF 6UfEitHnj7ITjXJ/ -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:50 2026 by rpki-client