This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/g47DlCgT0_NTbBJ-GoIb--9tsqQ.cer File: g47DlCgT0_NTbBJ-GoIb--9tsqQ.cer (raw, json) Hash identifier: HKu8hf36vzBfqNUImSKnAPH4J9m+SpuLj5bG1clF14Q= Subject key identifier: 83:8E:C3:94:28:13:D3:F3:53:6C:12:7E:1A:82:1B:FB:EF:6D:B2:A4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA3CB38C08DD31F510BD8403FA33179 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/g47DlCgT0_NTbBJ-GoIb--9tsqQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:18:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211416 IP: 193.56.134.0/24 IP: 2a10:e840::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a3:cb:38:c0:8d:d3:1f:51:0b:d8:40:3f:a3:31:79 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:18:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=838ec3942813d3f3536c127e1a821bfbef6db2a4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:1a:a9:e3:3f:18:04:a7:96:90:05:28:f4:37: 28:0c:74:f4:78:63:b3:10:ed:2b:f5:55:b2:eb:d1: 1b:03:aa:27:77:d8:a1:aa:1c:62:4e:ab:96:6c:95: cd:c0:20:38:3c:fc:68:32:51:6b:ea:ce:eb:62:1c: 61:d1:f1:5c:67:6c:e6:d5:f8:a8:5f:47:47:0a:18: 87:0f:a4:5e:8f:45:32:0e:46:62:47:2c:af:f4:46: 0f:06:c2:3e:ec:22:41:20:02:33:ac:61:78:ee:ae: 98:24:cb:d4:b3:51:b3:08:93:cd:cb:b1:ed:c8:0d: 8e:3d:c5:cd:c5:e6:cb:a3:f5:4d:5a:aa:39:02:fd: 43:18:28:da:b4:84:b1:96:88:b2:1c:3f:d9:1d:d3: c3:b4:f3:53:23:92:0b:6f:07:30:e2:42:20:a2:f1: 89:a7:fb:5b:a1:5d:ac:05:67:7e:bb:aa:86:b4:db: 33:fc:4d:68:3f:e1:91:66:db:fd:29:90:0a:03:86: ea:0d:57:92:ea:f2:41:ec:57:14:a4:90:87:ae:75: 74:35:40:ad:14:c5:29:c0:61:d4:9a:58:31:a8:f1: 1f:bf:5d:2b:a8:3b:6f:08:3f:8b:3c:17:bc:20:cd: bf:ba:e6:ea:cb:4c:74:d5:d1:6b:ce:da:be:b0:30: c0:39 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 83:8E:C3:94:28:13:D3:F3:53:6C:12:7E:1A:82:1B:FB:EF:6D:B2:A4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5d/0c4b16-6b94-4080-9165-b853567da0ea/1/g47DlCgT0_NTbBJ-GoIb--9tsqQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.56.134.0/24 IPv6: 2a10:e840::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211416 Signature Algorithm: sha256WithRSAEncryption 78:85:8f:32:32:d2:9d:03:12:af:a7:c2:70:1e:b1:93:43:8d: bb:a8:98:ff:d1:58:65:27:f3:c9:4d:a2:81:26:72:c3:a3:bf: 32:d5:07:e0:35:22:84:6d:2e:1e:4e:c2:83:e5:4f:d6:92:12: 6d:bc:72:4e:a1:5a:26:9c:4a:6b:a8:f2:74:68:5c:d0:2f:f4: c7:d8:24:e9:4e:48:22:90:02:d6:f5:43:35:99:0b:be:be:0f: 35:bb:b3:61:89:10:fb:30:1b:76:56:fe:04:9d:03:42:23:c4: 61:82:f2:21:4c:01:e8:4a:0f:19:ef:2d:64:65:63:4b:1f:c6: cd:9d:89:2b:7f:39:e0:95:1b:db:e3:61:72:b5:b3:72:3a:60: f7:95:08:8f:51:8e:ef:c2:2a:91:6a:c4:26:9c:4e:60:f9:89: cc:29:38:57:bc:91:85:0d:43:36:14:1a:94:e7:1f:97:73:53: 83:63:5a:d6:bf:86:c9:b1:bd:95:8c:f6:27:c5:53:32:61:0a: 52:64:4b:68:51:e5:dd:d9:09:cd:d8:b1:38:23:0a:b3:7c:5f: dd:50:46:4a:ea:1c:4f:88:79:d1:87:6c:b5:c5:4e:4a:83:54: 25:26:02:06:fb:45:2f:af:af:3b:b9:62:29:9f:91:f9:d4:08: d8:ca:64:62 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt7o8s4wI3TH1EL2EA/ozF5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxODEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MzhlYzM5NDI4MTNkM2YzNTM2YzEyN2UxYTgyMWJmYmVmNmRiMmE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBqp4z8YBKeWkAUo9DcoDHT0eGOz EO0r9VWy69EbA6ond9ihqhxiTquWbJXNwCA4PPxoMlFr6s7rYhxh0fFcZ2zm1fio X0dHChiHD6Rej0UyDkZiRyyv9EYPBsI+7CJBIAIzrGF47q6YJMvUs1GzCJPNy7Ht yA2OPcXNxebLo/VNWqo5Av1DGCjatISxloiyHD/ZHdPDtPNTI5ILbwcw4kIgovGJ p/tboV2sBWd+u6qGtNsz/E1oP+GRZtv9KZAKA4bqDVeS6vJB7FcUpJCHrnV0NUCt FMUpwGHUmlgxqPEfv10rqDtvCD+LPBe8IM2/uubqy0x01dFrztq+sDDAOQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFIOOw5QoE9PzU2wSfhqCG/vvbbKkMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVkLzBjNGIx Ni02Yjk0LTQwODAtOTE2NS1iODUzNTY3ZGEwZWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWQvMGM0YjE2 LTZiOTQtNDA4MC05MTY1LWI4NTM1NjdkYTBlYS8xL2c0N0RsQ2dUMF9OVGJCSi1H b0liLS05dHNxUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAwTiGMA0EAgACMAcDBQAqEOhAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwM52DANBgkqhkiG9w0BAQsFAAOCAQEAeIWPMjLSnQMS r6fCcB6xk0ONu6iY/9FYZSfzyU2igSZyw6O/MtUH4DUihG0uHk7Cg+VP1pISbbxy TqFaJpxKa6jydGhc0C/0x9gk6U5IIpAC1vVDNZkLvr4PNbuzYYkQ+zAbdlb+BJ0D QiPEYYLyIUwB6EoPGe8tZGVjSx/GzZ2JK3854JUb2+NhcrWzcjpg95UIj1GO78Iq kWrEJpxOYPmJzCk4V7yRhQ1DNhQalOcfl3NTg2Na1r+GybG9lYz2J8VTMmEKUmRL aFHl3dkJzdixOCMKs3xf3VBGSuocT4h50YdstcVOSoNUJSYCBvtFL6+vO7liKZ+R +dQI2MpkYg== -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:02 2026 by rpki-client