This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dxToFxWNwwfu1NTG7fUaieVwPs8.cer File: dxToFxWNwwfu1NTG7fUaieVwPs8.cer (raw, json) Hash identifier: eW0eSIG5yUhv8CAwprfV7288u2hQrCwZXBhdNDmA1Lw= Subject key identifier: 77:14:E8:17:15:8D:C3:07:EE:D4:D4:C6:ED:F5:1A:89:E5:70:3E:CF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B364F783494AD6DC079302C5C0119BE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6d59-27cf-419f-ad1d-6210641e52d6/1/dxToFxWNwwfu1NTG7fUaieVwPs8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6d59-27cf-419f-ad1d-6210641e52d6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:18:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 210524 IP: 212.52.21.0/24 IP: 2a12:6a00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:4f:78:34:94:ad:6d:c0:79:30:2c:5c:01:19:be Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7714e817158dc307eed4d4c6edf51a89e5703ecf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:96:3b:07:ef:03:04:9a:ae:7d:6c:64:f6:e3:32: 94:22:1c:13:5f:67:18:12:b6:14:42:92:99:45:74: af:eb:ec:5f:dc:83:f4:ce:0d:5e:fc:95:a4:b6:cb: c6:b6:83:cd:b3:ac:60:4c:f0:72:9b:ed:2b:8d:64: e3:1f:18:74:c1:91:3a:6d:fd:d8:8f:eb:9b:45:db: 2d:66:c8:9d:00:0d:10:4e:0b:83:f2:98:f4:f1:26: 06:65:c3:b3:e8:0a:c0:13:32:4c:ce:23:76:41:2a: 7e:11:f1:5b:f1:f3:a6:13:47:ce:ce:9c:68:b6:2f: b7:ea:81:76:d9:a5:ea:9f:3f:03:95:f7:79:d3:79: e7:21:41:0a:fa:b6:4e:ff:e0:15:33:fb:33:4d:4f: 29:4b:47:39:21:e6:b3:67:70:ba:70:2f:51:81:01: 64:f2:5b:d5:a9:9c:48:b7:37:d5:49:8a:17:0b:b0: 2e:51:ff:63:02:ea:d4:69:f2:3f:fd:9c:02:cd:34: d8:b0:1f:ee:2f:a4:26:f7:e2:5f:a7:e8:02:2a:15: cb:8b:10:27:ea:a3:2e:62:fd:7a:ac:ff:d3:68:e7: 80:70:ac:5d:72:fe:0c:81:b8:20:91:04:5b:ff:96: 5d:cf:b2:cd:16:18:81:0d:57:22:21:ee:54:19:f8: 69:67 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 77:14:E8:17:15:8D:C3:07:EE:D4:D4:C6:ED:F5:1A:89:E5:70:3E:CF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6d59-27cf-419f-ad1d-6210641e52d6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d6/1e6d59-27cf-419f-ad1d-6210641e52d6/1/dxToFxWNwwfu1NTG7fUaieVwPs8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.52.21.0/24 IPv6: 2a12:6a00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 210524 Signature Algorithm: sha256WithRSAEncryption a8:e6:43:08:17:a5:8e:f8:b7:be:d4:18:e0:3e:ce:04:78:14: c6:bf:54:e1:30:c5:88:fa:4b:fc:41:c4:84:98:46:8f:f5:9f: 00:dc:7d:96:71:6c:7e:c8:50:b1:82:0c:05:d7:82:45:8a:59: 1f:47:de:e9:4f:db:30:4a:54:10:27:13:6e:b1:42:eb:24:9c: 42:a8:ff:74:aa:ec:d7:fe:37:f0:44:7a:c2:b1:bd:a9:e0:0a: cb:8a:58:27:d8:1f:2c:9f:06:79:23:d5:06:b3:3f:17:a9:2e: 52:94:71:df:ba:80:82:19:36:6b:86:96:53:7c:f7:e6:65:e9: fc:11:a5:c6:84:36:5c:ef:68:4d:fe:14:07:ef:06:25:f3:70: 73:3d:6d:9e:ae:9d:f3:c4:14:0f:18:af:19:0d:44:5f:8b:a5: cd:d7:1f:e8:6c:f2:c4:1a:d8:f3:ea:f2:34:c2:18:c6:a1:9e: 11:84:d1:d2:2c:45:93:a0:9f:af:92:ee:ce:71:a7:da:66:6c: 98:39:6e:12:00:0a:40:58:b6:bf:e3:84:7b:b1:68:50:d7:83: 10:ff:3d:d9:d2:f6:5e:87:75:5f:f6:32:0f:72:69:e4:08:12: 81:ff:5a:f4:5f:1d:d0:0b:4d:cc:14:92:eb:6e:51:a7:28:0e: 7e:44:cb:2d -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt7Nk94NJStbcB5MCxcARm+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NzE0ZTgxNzE1OGRjMzA3ZWVkNGQ0YzZlZGY1MWE4OWU1NzAzZWNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAljsH7wMEmq59bGT24zKUIhwTX2cY ErYUQpKZRXSv6+xf3IP0zg1e/JWktsvGtoPNs6xgTPBym+0rjWTjHxh0wZE6bf3Y j+ubRdstZsidAA0QTguD8pj08SYGZcOz6ArAEzJMziN2QSp+EfFb8fOmE0fOzpxo ti+36oF22aXqnz8Dlfd503nnIUEK+rZO/+AVM/szTU8pS0c5IeazZ3C6cC9RgQFk 8lvVqZxItzfVSYoXC7AuUf9jAurUafI//ZwCzTTYsB/uL6Qm9+Jfp+gCKhXLixAn 6qMuYv16rP/TaOeAcKxdcv4MgbggkQRb/5Zdz7LNFhiBDVciIe5UGfhpZwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFHcU6BcVjcMH7tTUxu31GonlcD7PMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q2LzFlNmQ1 OS0yN2NmLTQxOWYtYWQxZC02MjEwNjQxZTUyZDYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDYvMWU2ZDU5 LTI3Y2YtNDE5Zi1hZDFkLTYyMTA2NDFlNTJkNi8xL2R4VG9GeFdOd3dmdTFOVEc3 ZlVhaWVWd1BzOC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQA1DQVMA0EAgACMAcDBQMqEmoAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM2XDANBgkqhkiG9w0BAQsFAAOCAQEAqOZDCBeljvi3 vtQY4D7OBHgUxr9U4TDFiPpL/EHEhJhGj/WfANx9lnFsfshQsYIMBdeCRYpZH0fe 6U/bMEpUECcTbrFC6yScQqj/dKrs1/438ER6wrG9qeAKy4pYJ9gfLJ8GeSPVBrM/ F6kuUpRx37qAghk2a4aWU3z35mXp/BGlxoQ2XO9oTf4UB+8GJfNwcz1tnq6d88QU DxivGQ1EX4ulzdcf6GzyxBrY8+ryNMIYxqGeEYTR0ixFk6Cfr5LuznGn2mZsmDlu EgAKQFi2v+OEe7FoUNeDEP892dL2Xod1X/YyD3Jp5AgSgf9a9F8d0AtNzBSS625R pygOfkTLLQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:55 2026 by rpki-client