This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/guY1_s7xcQnhrHiy-3IkENhHepw.cer File: guY1_s7xcQnhrHiy-3IkENhHepw.cer (raw, json) Hash identifier: Fh9QBT6i25B3YkBX9FROqHX8ULGdUpGUtICIis6YJ0w= Subject key identifier: 82:E6:35:FE:CE:F1:71:09:E1:AC:78:B2:FB:72:24:10:D8:47:7A:9C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F12E99EE41305C79ADA9A2E4F98372C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/9f9858-6209-4cf5-b541-a26050ef047e/1/guY1_s7xcQnhrHiy-3IkENhHepw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/9f9858-6209-4cf5-b541-a26050ef047e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:18:24 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 201873 IP: 185.61.52.0/22 IP: 185.142.252.0/22 IP: 185.143.104.0/22 IP: 2a02:7820::/32 IP: 2a07:3200::/29 IP: 2a07:3440::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:12:e9:9e:e4:13:05:c7:9a:da:9a:2e:4f:98:37:2c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:18:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82e635fecef17109e1ac78b2fb722410d8477a9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:80:2b:f7:4b:1a:a5:64:c8:40:fb:cb:a5:ee: e2:cc:be:62:bb:11:b5:94:b2:ce:13:4a:d8:ed:f9: 7b:7c:a5:e5:0a:23:c5:02:26:b6:8d:fd:8c:7b:9e: 57:d2:64:f7:fd:c5:1e:21:00:ac:b3:fd:15:a2:0e: b8:43:4d:b5:d2:8b:4a:ac:e4:3d:d7:e6:c4:54:14: 54:f9:65:3b:d2:82:ee:af:c7:4a:ca:c5:9b:7b:5c: bb:05:7b:9f:76:a7:6d:af:98:ef:3f:ad:a8:67:d2: 24:db:23:6f:05:c0:a1:b4:e0:29:0b:49:76:0c:49: e5:d5:dd:0b:63:0f:da:29:c6:2c:19:e2:f8:f6:69: 65:d6:37:be:8c:19:b9:89:91:03:0d:c2:8e:03:da: e9:aa:82:f5:4e:7c:1a:9d:9f:ff:bf:4f:21:1b:44: fa:0a:80:78:67:dc:8c:ab:70:7c:ee:65:a0:bf:01: a3:54:41:9f:93:44:35:12:7b:f2:5f:10:d0:a8:ef: 47:34:bf:69:06:c1:03:c2:92:03:a7:01:42:6b:07: 12:9a:e9:12:5e:2d:e9:66:b6:b4:f9:f3:20:7c:e1: 90:29:e8:cd:81:2b:29:e6:b3:93:09:75:29:cd:a7: 01:c6:c0:77:62:30:ba:76:86:76:22:b3:c2:1c:66: 31:21 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E6:35:FE:CE:F1:71:09:E1:AC:78:B2:FB:72:24:10:D8:47:7A:9C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9f9858-6209-4cf5-b541-a26050ef047e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/9f9858-6209-4cf5-b541-a26050ef047e/1/guY1_s7xcQnhrHiy-3IkENhHepw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.61.52.0/22 185.142.252.0/22 185.143.104.0/22 IPv6: 2a02:7820::/32 2a07:3200::/29 2a07:3440::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 201873 Signature Algorithm: sha256WithRSAEncryption 2f:e9:dd:a2:08:84:a6:d5:e8:36:72:99:d4:69:88:72:a9:ed: b8:a0:1b:b0:c8:69:3d:c9:33:e8:63:a1:a4:25:0e:77:4a:a1: 42:74:9a:12:1e:86:22:ea:68:09:96:cb:f8:b0:29:81:31:37: 46:f7:d9:ea:92:63:73:d2:f0:2b:c6:94:99:cd:41:93:dc:2f: dd:f6:0a:06:6c:6f:4d:a9:c0:5e:5d:3e:82:27:5d:fd:b7:a3: 99:e5:2f:10:c4:0a:f1:15:65:b8:c0:8c:15:27:00:a0:d8:cb: 2e:86:6d:e2:0c:77:03:c1:b1:b9:e3:58:a3:42:1a:b3:a3:d6: 74:37:11:7e:d2:b8:f3:49:32:0c:71:e5:5a:44:28:10:a8:f0: bd:cc:95:75:96:38:03:7e:cb:ea:e6:7f:96:5d:28:f8:7f:62: d5:8c:a3:2b:ea:42:b2:17:c4:f7:1c:92:23:3d:a2:bf:ed:c5: 94:58:02:2e:1e:00:a6:7e:1d:51:69:9c:67:3c:b8:a7:26:e9: e4:4a:69:61:9a:d4:11:92:a8:27:7c:66:8d:85:2e:d6:6c:ce: bb:2f:ec:bd:53:d4:28:e4:16:57:3b:0c:e4:64:1f:c0:f9:ae: c7:97:37:fb:bd:9b:14:e6:21:e6:c8:1e:30:ef:8d:35:ef:cb: bb:c4:f6:4c -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgISAZt/Eume5BMFx5rami5PmDcsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQxODI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmU2MzVmZWNlZjE3MTA5ZTFhYzc4YjJmYjcyMjQxMGQ4NDc3YTljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4Ar90sapWTIQPvLpe7izL5iuxG1 lLLOE0rY7fl7fKXlCiPFAia2jf2Me55X0mT3/cUeIQCss/0Vog64Q0210otKrOQ9 1+bEVBRU+WU70oLur8dKysWbe1y7BXufdqdtr5jvP62oZ9Ik2yNvBcChtOApC0l2 DEnl1d0LYw/aKcYsGeL49mll1je+jBm5iZEDDcKOA9rpqoL1TnwanZ//v08hG0T6 CoB4Z9yMq3B87mWgvwGjVEGfk0Q1EnvyXxDQqO9HNL9pBsEDwpIDpwFCawcSmukS Xi3pZra0+fMgfOGQKejNgSsp5rOTCXUpzacBxsB3YjC6doZ2IrPCHGYxIQIDAQAB o4ICyTCCAsUwHQYDVR0OBBYEFILmNf7O8XEJ4ax4svtyJBDYR3qcMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M5LzlmOTg1 OC02MjA5LTRjZjUtYjU0MS1hMjYwNTBlZjA0N2UvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzkvOWY5ODU4 LTYyMDktNGNmNS1iNTQxLWEyNjA1MGVmMDQ3ZS8xL2d1WTFfczd4Y1FuaHJIaXkt M0lrRU5oSGVwdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEgGCCsGAQUF BwEHAQH/BDkwNzAYBAIAATASAwQCuT00AwQCuY78AwQCuY9oMBsEAgACMBUDBQAq AnggAwUDKgcyAAMFAyoHNEAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAxSRMA0G CSqGSIb3DQEBCwUAA4IBAQAv6d2iCISm1eg2cpnUaYhyqe24oBuwyGk9yTPoY6Gk JQ53SqFCdJoSHoYi6mgJlsv4sCmBMTdG99nqkmNz0vArxpSZzUGT3C/d9goGbG9N qcBeXT6CJ139t6OZ5S8QxArxFWW4wIwVJwCg2Msuhm3iDHcDwbG541ijQhqzo9Z0 NxF+0rjzSTIMceVaRCgQqPC9zJV1ljgDfsvq5n+WXSj4f2LVjKMr6kKyF8T3HJIj PaK/7cWUWAIuHgCmfh1RaZxnPLinJunkSmlhmtQRkqgnfGaNhS7WbM67L+y9U9Qo 5BZXOwzkZB/A+a7Hlzf7vZsU5iHmyB4w740178u7xPZM -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:16 2026 by rpki-client