This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/glNFBYRfoKk_goWm2ovObR1yAN0.cer File: glNFBYRfoKk_goWm2ovObR1yAN0.cer (raw, json) Hash identifier: ZIpCwt6neI/5Xn2FXkNi07FiJz9bfEu4lmS+M2xfcdA= Subject key identifier: 82:53:45:05:84:5F:A0:A9:3F:82:85:A6:DA:8B:CE:6D:1D:72:00:DD Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15652DD8B0A299313467FBA47F2CBC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ee/6df248-ec5b-47d7-bdd0-47cc7d1abc6b/1/glNFBYRfoKk_goWm2ovObR1yAN0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ee/6df248-ec5b-47d7-bdd0-47cc7d1abc6b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:07 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 195.234.180.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Thu 22 Jan 2026 09:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:65:2d:d8:b0:a2:99:31:34:67:fb:a4:7f:2c:bc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82534505845fa0a93f8285a6da8bce6d1d7200dd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:91:a1:d4:28:28:73:86:4a:22:3a:e7:23:69: 2f:9b:93:fe:b3:c1:96:c6:82:bd:5a:66:99:43:e5: 35:2e:a6:dd:a6:d3:af:cb:d8:b4:81:a2:e8:ff:84: ec:1e:73:b8:72:4c:17:5f:c7:fd:67:b0:9a:a2:f7: bc:ed:7d:9f:3f:c3:7e:78:42:44:86:ff:51:d5:5c: cd:1c:4a:25:3f:28:f0:62:35:ec:7b:c1:ba:f0:b2: 8c:83:d2:be:8a:f9:91:9b:b4:d6:fe:22:d0:e1:1c: c3:ef:f4:02:c0:7f:83:6b:d8:e0:c8:4a:71:ee:dd: 3d:46:d6:90:81:90:77:a6:96:4c:43:02:49:04:fc: d2:9c:e8:e3:52:7f:f9:ff:e8:89:50:4a:bf:ec:b4: 22:85:23:fb:43:40:79:7a:78:9a:1f:87:e9:07:7e: 14:a3:4a:94:83:0e:38:75:55:e4:82:95:1f:6c:87: 35:85:ec:0f:34:15:51:e0:c2:27:23:ec:88:b6:4d: 54:ef:5c:bd:9c:fc:5c:79:d6:ee:eb:66:77:26:5e: 18:4b:aa:e9:13:e8:0e:9f:e2:cb:28:0f:b0:cc:32: d4:bf:2a:4b:5d:b4:67:97:40:37:18:f1:12:cc:2e: e8:8f:1c:76:d0:42:24:00:14:62:62:26:d4:ce:aa: ba:6b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:53:45:05:84:5F:A0:A9:3F:82:85:A6:DA:8B:CE:6D:1D:72:00:DD X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6df248-ec5b-47d7-bdd0-47cc7d1abc6b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ee/6df248-ec5b-47d7-bdd0-47cc7d1abc6b/1/glNFBYRfoKk_goWm2ovObR1yAN0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.234.180.0/24 Signature Algorithm: sha256WithRSAEncryption 59:8b:13:0a:d2:85:0f:81:bc:55:5e:45:b6:e8:bc:34:04:3b: c7:5c:1c:42:a9:75:f0:22:5f:cb:b3:91:0d:7b:23:82:c7:71: 37:66:fa:9a:fc:85:e0:8d:ce:48:2b:9b:c2:7e:cf:09:3f:f8: 16:92:1e:d5:1c:dd:a4:eb:a6:2f:b8:1b:dc:8d:ca:24:70:41: e8:13:15:9e:2c:35:87:d7:34:d0:1e:5b:9c:fa:ab:d4:b6:7e: b3:b8:73:ec:44:e9:fc:b5:d5:94:b3:94:9b:ba:d4:36:f7:8f: b5:bd:21:52:6a:94:38:ca:0d:2d:63:35:f7:37:10:08:06:23: 38:2b:c0:b5:7e:29:c3:e9:6c:31:da:bd:c8:4d:07:3c:94:b3: 3c:e3:8f:41:cb:78:98:1a:b0:44:3b:0a:e1:aa:66:96:bd:e0: 7b:38:43:ba:8b:52:9e:47:23:d4:39:39:fa:1c:26:6f:17:92: 2b:fb:d3:87:c2:83:cd:4b:50:30:3c:71:ba:d0:1e:25:44:cb: 1e:c8:d7:03:fa:2e:8f:6f:07:67:11:47:aa:95:91:9e:36:2d: 49:18:71:c1:29:ea:bf:30:9b:9e:ea:72:a3:fc:55:54:08:8d: bd:80:7e:ff:16:e8:5b:ad:7c:36:4e:f1:40:0f:be:e4:05:d1: 5d:f5:4a:b2 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt/FWUt2LCimTE0Z/ukfyy8MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MjUzNDUwNTg0NWZhMGE5M2Y4Mjg1YTZkYThiY2U2ZDFkNzIwMGRkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzZGh1Cgoc4ZKIjrnI2kvm5P+s8GW xoK9WmaZQ+U1LqbdptOvy9i0gaLo/4TsHnO4ckwXX8f9Z7Caove87X2fP8N+eEJE hv9R1VzNHEolPyjwYjXse8G68LKMg9K+ivmRm7TW/iLQ4RzD7/QCwH+Da9jgyEpx 7t09RtaQgZB3ppZMQwJJBPzSnOjjUn/5/+iJUEq/7LQihSP7Q0B5eniaH4fpB34U o0qUgw44dVXkgpUfbIc1hewPNBVR4MInI+yItk1U71y9nPxcedbu62Z3Jl4YS6rp E+gOn+LLKA+wzDLUvypLXbRnl0A3GPESzC7ojxx20EIkABRiYibUzqq6awIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFIJTRQWEX6CpP4KFptqLzm0dcgDdMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VlLzZkZjI0 OC1lYzViLTQ3ZDctYmRkMC00N2NjN2QxYWJjNmIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWUvNmRmMjQ4 LWVjNWItNDdkNy1iZGQwLTQ3Y2M3ZDFhYmM2Yi8xL2dsTkZCWVJmb0trX2dvV20y b3ZPYlIxeUFOMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAw+q0MA0GCSqGSIb3DQEBCwUAA4IBAQBZixMK 0oUPgbxVXkW26Lw0BDvHXBxCqXXwIl/Ls5ENeyOCx3E3Zvqa/IXgjc5IK5vCfs8J P/gWkh7VHN2k66YvuBvcjcokcEHoExWeLDWH1zTQHluc+qvUtn6zuHPsROn8tdWU s5SbutQ294+1vSFSapQ4yg0tYzX3NxAIBiM4K8C1finD6Wwx2r3ITQc8lLM8449B y3iYGrBEOwrhqmaWveB7OEO6i1KeRyPUOTn6HCZvF5Ir+9OHwoPNS1AwPHG60B4l RMseyNcD+i6PbwdnEUeqlZGeNi1JGHHBKeq/MJue6nKj/FVUCI29gH7/FuhbrXw2 TvFAD77kBdFd9Uqy -----END CERTIFICATE-----Generated at Wed Jan 21 13:35:36 2026 by rpki-client