This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/fdw2QUyZG_qNkvYCflMINwsitqY.cer File: fdw2QUyZG_qNkvYCflMINwsitqY.cer (raw, json) Hash identifier: /XpK5ufehza5V4a18lp4GUzy/QVVXGTvjTD2Fjn9qgQ= Subject key identifier: 7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C120D5128035553FC7208A2B18FD606 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:18:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203825 IP: 185.122.188.0/22 IP: 193.110.166.0/23 IP: 193.110.196.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:0d:51:28:03:55:53:fc:72:08:a2:b1:8f:d6:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:18:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=7ddc36414c991bfa8d92f6027e5308370b22b6a6 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:ea:00:9f:0a:de:f0:c6:47:c5:9d:bc:20:42: 78:ec:49:37:48:42:90:a0:b6:68:cf:3c:bb:00:5f: eb:37:9a:b7:ea:67:20:d7:6f:c6:a6:60:d2:14:06: 55:ce:ae:6b:f6:7d:70:4c:b2:2d:75:a2:88:80:5c: f6:a3:f3:b7:ad:5e:c6:30:8a:d9:07:17:4f:5d:96: ed:01:e7:0d:ab:3a:8e:fc:35:6c:b9:88:96:aa:a7: e2:ab:77:22:ab:54:47:e3:70:94:b3:1d:9a:2e:f6: da:41:28:42:c3:99:11:9c:b7:14:73:99:26:a1:1f: 1c:61:6b:28:db:cf:3b:af:2b:ba:4e:b1:6e:17:7a: b1:e3:75:6b:cc:64:34:95:af:7b:47:11:2f:e4:88: 6f:44:ee:f2:c3:5a:af:8f:13:5e:4f:b5:73:75:8e: 03:56:5f:28:89:f9:f6:c9:e4:9f:87:ed:31:83:8b: 9b:db:35:04:9a:a1:93:1a:3b:cb:43:7b:42:22:3d: 9e:f8:f2:86:3c:6c:79:9f:e2:5e:6d:75:83:d3:fd: 36:54:c4:65:21:65:cc:00:b4:15:69:3e:c8:85:60: 95:2a:64:fb:16:0c:3f:3d:6a:a3:5e:44:95:85:07: f8:8d:e5:07:27:cf:1d:71:2c:cb:e7:e0:03:d0:ea: 5b:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 7D:DC:36:41:4C:99:1B:FA:8D:92:F6:02:7E:53:08:37:0B:22:B6:A6 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/aacdcc-aa17-42f8-9ade-7c379a551c12/1/fdw2QUyZG_qNkvYCflMINwsitqY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.122.188.0/22 193.110.166.0/23 193.110.196.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203825 Signature Algorithm: sha256WithRSAEncryption 34:41:d6:56:8f:4b:7b:2a:94:90:01:69:4f:94:42:7d:4d:74: 55:bf:57:16:df:bf:9b:ae:42:86:37:43:29:62:4b:99:e8:5d: bd:94:b3:58:3d:16:a7:70:11:76:ad:96:99:62:e9:bb:99:55: fa:42:c9:d8:01:2e:30:91:7b:84:4f:16:48:7a:9b:7c:e5:a0: 9f:a3:69:72:a0:f5:8b:6f:68:01:3f:ab:50:b5:08:a3:fb:86: 54:9c:d4:5c:1d:f1:56:29:90:95:4f:db:0c:4f:5f:55:a4:dc: 69:8c:c6:51:53:a0:ec:07:8f:a0:bd:1c:03:f2:86:ce:20:24: 57:e8:b7:fb:93:7f:69:a2:13:b6:b8:75:ca:96:84:11:ab:47: ec:78:ce:7f:d0:15:e7:c2:34:ce:8e:8e:11:a0:1d:2d:68:bc: 90:db:23:60:d5:a2:8f:98:ac:d9:7b:dc:b9:62:7f:ac:93:0c: 61:57:91:b4:32:cb:32:7c:36:8a:a3:ef:76:73:8e:f3:d9:7c: 60:72:70:12:aa:13:92:5f:aa:a2:2c:8d:a1:d4:06:d7:9e:b8: dd:f2:1a:2e:66:7e:88:81:59:14:09:a2:59:9f:40:33:09:7c: 7f:27:a3:6a:1d:71:a0:48:46:65:7d:13:b9:26:a8:38:8e:03: 7b:db:e8:cf -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgISAZt8Eg1RKANVU/xyCKKxj9YGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxODM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3ZGRjMzY0MTRjOTkxYmZhOGQ5MmY2MDI3ZTUzMDgzNzBiMjJiNmE2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3OoAnwre8MZHxZ28IEJ47Ek3SEKQ oLZozzy7AF/rN5q36mcg12/GpmDSFAZVzq5r9n1wTLItdaKIgFz2o/O3rV7GMIrZ BxdPXZbtAecNqzqO/DVsuYiWqqfiq3ciq1RH43CUsx2aLvbaQShCw5kRnLcUc5km oR8cYWso2887ryu6TrFuF3qx43VrzGQ0la97RxEv5IhvRO7yw1qvjxNeT7VzdY4D Vl8oifn2yeSfh+0xg4ub2zUEmqGTGjvLQ3tCIj2e+PKGPGx5n+JebXWD0/02VMRl IWXMALQVaT7IhWCVKmT7Fgw/PWqjXkSVhQf4jeUHJ88dcSzL5+AD0OpbRwIDAQAB o4ICrDCCAqgwHQYDVR0OBBYEFH3cNkFMmRv6jZL2An5TCDcLIramMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk3L2FhY2Rj Yy1hYTE3LTQyZjgtOWFkZS03YzM3OWE1NTFjMTIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcvYWFjZGNj LWFhMTctNDJmOC05YWRlLTdjMzc5YTU1MWMxMi8xL2ZkdzJRVXlaR19xTmt2WUNm bE1JTndzaXRxWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAATASAwQCuXq8AwQBwW6mAwQCwW7EMBoGCCsGAQUFBwEI AQH/BAswCaAHMAUCAwMcMTANBgkqhkiG9w0BAQsFAAOCAQEANEHWVo9LeyqUkAFp T5RCfU10Vb9XFt+/m65ChjdDKWJLmehdvZSzWD0Wp3ARdq2WmWLpu5lV+kLJ2AEu MJF7hE8WSHqbfOWgn6NpcqD1i29oAT+rULUIo/uGVJzUXB3xVimQlU/bDE9fVaTc aYzGUVOg7AePoL0cA/KGziAkV+i3+5N/aaITtrh1ypaEEatH7HjOf9AV58I0zo6O EaAdLWi8kNsjYNWij5is2XvcuWJ/rJMMYVeRtDLLMnw2iqPvdnOO89l8YHJwEqoT kl+qoiyNodQG15643fIaLmZ+iIFZFAmiWZ9AMwl8fyejah1xoEhGZX0TuSaoOI4D e9vozw== -----END CERTIFICATE-----Generated at Mon Feb 2 08:12:40 2026 by rpki-client