This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/guS0v-5FTQqkcKXAqUEDSdSh13Q.cer File: guS0v-5FTQqkcKXAqUEDSdSh13Q.cer (raw, json) Hash identifier: ETNL5ALmQDQofEx/RHKQCAb5YlTMBguP3NvhhB4r6DA= Subject key identifier: 82:E4:B4:BF:EE:45:4D:0A:A4:70:A5:C0:A9:41:03:49:D4:A1:D7:74 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C681E6B021686641010907318C0F08 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/87/e0ccb4-0faf-4865-961f-37abe97960d5/1/guS0v-5FTQqkcKXAqUEDSdSh13Q.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/87/e0ccb4-0faf-4865-961f-37abe97960d5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:17:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.113.228.0/22 IP: 2a03:3080::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:81:e6:b0:21:68:66:41:01:09:07:31:8c:0f:08 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82e4b4bfee454d0aa470a5c0a9410349d4a1d774 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:7e:5b:cb:aa:ec:f2:07:20:5f:bf:b7:5c:1c: 09:4b:43:5a:06:49:87:6f:42:48:5c:15:c8:13:de: 09:01:7a:67:89:8f:6c:ee:aa:19:e8:10:a2:da:b3: c4:7f:bf:0d:59:53:f0:95:87:ef:28:f8:71:d7:99: 67:eb:63:62:70:73:4e:74:d8:2e:3e:e3:b5:87:06: 28:27:0c:05:2f:49:2b:2a:f3:bc:e5:b4:f4:56:aa: c4:6d:45:96:81:65:cd:be:e5:ca:d7:97:14:fe:22: ea:f9:6a:b0:17:2c:39:d4:cd:a1:07:ff:cf:b1:55: 69:96:2c:bb:3e:78:ba:04:be:98:9a:cf:a8:42:45: 3b:a9:b6:d5:d4:59:0d:c2:04:ae:01:da:99:0d:e9: 45:28:e3:ff:7c:2c:7e:3c:98:ca:a2:6a:9a:19:3a: ab:8d:02:c1:05:50:b1:90:30:32:a7:12:ac:90:10: 2a:bf:b5:80:96:70:17:81:59:ca:1a:e7:99:9d:27: 88:45:af:53:c6:5d:2f:c6:d4:17:cb:b8:96:8d:80: 6d:45:6b:9b:83:1a:bd:4c:3f:5d:fd:2c:6f:54:e7: d6:6f:0d:00:0f:51:30:4e:2f:85:72:9d:75:e2:8f: 03:5b:1d:82:2d:af:9b:e0:bc:80:d9:ec:89:db:5e: a4:0b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E4:B4:BF:EE:45:4D:0A:A4:70:A5:C0:A9:41:03:49:D4:A1:D7:74 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/e0ccb4-0faf-4865-961f-37abe97960d5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/87/e0ccb4-0faf-4865-961f-37abe97960d5/1/guS0v-5FTQqkcKXAqUEDSdSh13Q.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.113.228.0/22 IPv6: 2a03:3080::/32 Signature Algorithm: sha256WithRSAEncryption 31:9b:41:17:f1:51:95:70:6b:a9:2c:b8:0f:99:95:98:52:60: 97:3f:a0:94:7a:f9:1f:35:ed:df:cf:70:3f:69:18:99:f6:95: cc:1e:57:d6:60:58:48:25:f8:89:65:be:85:cb:55:75:0a:c8: 4b:20:79:e9:db:04:13:28:96:14:48:5a:78:b3:48:78:74:86: 68:cf:26:3d:1c:60:52:76:9e:af:70:6d:f9:72:35:22:03:cf: 88:25:f2:11:6a:c0:47:81:ce:f7:20:42:74:73:6f:04:4f:1b: f3:ae:65:52:d6:ef:96:b1:0c:86:f5:60:1e:2d:f8:98:21:0c: c6:58:6b:2a:7c:dd:4f:4f:6c:ae:17:a0:f3:cd:61:23:af:79: 2b:53:fd:30:91:d3:1c:7c:cc:bb:35:7c:11:eb:d9:7a:eb:b5: e8:6e:83:4d:f2:18:e8:66:3c:db:6d:95:40:72:fd:5c:91:68: 70:f9:84:30:ef:a7:48:49:de:8c:76:3d:fa:cf:5e:8a:d1:b2: 7d:f2:e4:5d:46:d0:c1:5d:19:32:5d:c0:61:42:72:cc:5b:79: 8a:6f:a4:f8:f2:3e:6b:1c:f1:a9:a4:8a:c6:ed:da:5e:0c:cf: cc:53:1b:74:eb:f8:71:3a:fc:aa:1b:00:39:e3:c4:76:c1:2a: a4:41:06:ee -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt3xoHmsCFoZkEBCQcxjA8IMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmU0YjRiZmVlNDU0ZDBhYTQ3MGE1YzBhOTQxMDM0OWQ0YTFkNzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnn5by6rs8gcgX7+3XBwJS0NaBkmH b0JIXBXIE94JAXpniY9s7qoZ6BCi2rPEf78NWVPwlYfvKPhx15ln62NicHNOdNgu PuO1hwYoJwwFL0krKvO85bT0VqrEbUWWgWXNvuXK15cU/iLq+WqwFyw51M2hB//P sVVpliy7Pni6BL6Yms+oQkU7qbbV1FkNwgSuAdqZDelFKOP/fCx+PJjKomqaGTqr jQLBBVCxkDAypxKskBAqv7WAlnAXgVnKGueZnSeIRa9Txl0vxtQXy7iWjYBtRWub gxq9TD9d/SxvVOfWbw0AD1EwTi+Fcp114o8DWx2CLa+b4LyA2eyJ216kCwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFILktL/uRU0KpHClwKlBA0nUodd0MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg3L2UwY2Ni NC0wZmFmLTQ4NjUtOTYxZi0zN2FiZTk3OTYwZDUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODcvZTBjY2I0 LTBmYWYtNDg2NS05NjFmLTM3YWJlOTc5NjBkNS8xL2d1UzB2LTVGVFFxa2NLWEFx VUVEU2RTaDEzUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuXHkMA0EAgACMAcDBQAqAzCAMA0GCSqGSIb3 DQEBCwUAA4IBAQAxm0EX8VGVcGupLLgPmZWYUmCXP6CUevkfNe3fz3A/aRiZ9pXM HlfWYFhIJfiJZb6Fy1V1CshLIHnp2wQTKJYUSFp4s0h4dIZozyY9HGBSdp6vcG35 cjUiA8+IJfIRasBHgc73IEJ0c28ETxvzrmVS1u+WsQyG9WAeLfiYIQzGWGsqfN1P T2yuF6DzzWEjr3krU/0wkdMcfMy7NXwR69l667XoboNN8hjoZjzbbZVAcv1ckWhw +YQw76dISd6Mdj36z16K0bJ98uRdRtDBXRkyXcBhQnLMW3mKb6T48j5rHPGppIrG 7dpeDM/MUxt06/hxOvyqGwA548R2wSqkQQbu -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:51 2026 by rpki-client