This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/guaSFNb9VedQULqBG_fBJDkQn-4.cer File: guaSFNb9VedQULqBG_fBJDkQn-4.cer (raw, json) Hash identifier: nW1s6Ro+eLl3dLdGC+OnzEUAhg6gJMtzQdGrrBx9Xsw= Subject key identifier: 82:E6:92:14:D6:FD:55:E7:50:50:BA:81:1B:F7:C1:24:39:10:9F:EE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5C7388FB80BA20FEE47C36968B591B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/02/173fc5-343b-4976-b2a1-96bc6baa563b/1/guaSFNb9VedQULqBG_fBJDkQn-4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/02/173fc5-343b-4976-b2a1-96bc6baa563b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:19:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 48754 IP: 91.212.23.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:73:88:fb:80:ba:20:fe:e4:7c:36:96:8b:59:1b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:19:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=82e69214d6fd55e75050ba811bf7c12439109fee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:af:65:2f:af:3b:23:a0:78:4b:ca:56:90:ab:11: 35:76:e5:e0:a7:a9:09:54:07:2f:ba:6e:2e:0a:3e: 7d:42:be:32:da:f5:f3:e5:98:72:51:08:a7:28:50: 4a:ac:e6:9d:8d:c7:f1:07:98:56:73:4f:47:4a:56: 4f:e5:6d:a0:17:87:38:5a:b5:59:11:ea:3b:2d:93: bd:3f:37:98:e9:2a:96:a6:68:e2:95:45:22:ac:37: 45:ae:1d:77:05:23:87:5f:8b:33:f4:7e:c8:72:fe: 08:0e:8d:c3:30:88:ad:83:3e:6d:d3:e7:24:47:a2: ae:f6:79:7e:c4:8e:ad:1c:ee:88:d1:d2:27:40:73: c6:cc:81:83:3b:11:ab:de:57:50:58:d1:df:c9:11: 02:26:d2:ca:92:a0:54:96:68:db:41:28:a4:ab:21: d5:01:ba:79:9b:a0:b3:a6:7c:74:72:1f:f8:c8:de: 01:cc:82:01:c3:fe:d3:94:ff:86:27:62:d2:35:87: 72:79:49:6a:f5:41:0e:3e:f6:8e:7b:e4:a2:be:a5: 38:88:3b:9b:f5:78:ed:4f:98:93:b7:a6:d0:aa:4a: 41:1a:9a:2d:ea:34:85:1d:49:c5:0a:87:a5:63:74: d9:f9:48:d1:ce:f8:4b:dc:8b:0f:e5:f1:6d:d4:6b: 80:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 82:E6:92:14:D6:FD:55:E7:50:50:BA:81:1B:F7:C1:24:39:10:9F:EE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/173fc5-343b-4976-b2a1-96bc6baa563b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/02/173fc5-343b-4976-b2a1-96bc6baa563b/1/guaSFNb9VedQULqBG_fBJDkQn-4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.212.23.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 48754 Signature Algorithm: sha256WithRSAEncryption 13:d6:3c:91:11:df:23:6a:e1:74:44:4b:b6:4c:91:bf:ac:83: 71:7e:1f:c2:78:8a:e5:e3:a1:10:cd:ae:4a:78:0a:ac:b7:33: 02:d3:d5:32:ef:4b:b0:ec:e3:08:c4:6f:b9:c1:0e:11:46:0a: 8b:0d:f5:49:2c:52:f9:af:23:11:5c:43:5b:8a:74:17:70:63: ab:b1:66:b4:32:b2:c5:f1:38:74:72:9a:83:72:38:a9:e9:e4: 72:bf:9b:0a:d8:91:36:f7:17:43:f7:41:f7:ee:65:1f:5a:fd: 5c:44:11:1a:be:f3:19:3c:b1:de:d1:d8:38:d6:d6:73:62:19: 0f:4c:12:c5:89:c5:fb:54:1d:38:ee:09:93:a0:59:44:33:90: 97:d4:83:b1:6d:fd:0c:10:94:3a:d6:a8:8a:72:9d:54:ad:d9: 15:e0:b8:43:48:8f:56:3e:92:15:dc:ea:62:ef:a9:5c:76:dc: c8:f5:2d:1d:c8:1d:e0:f8:84:3a:b0:79:a9:8f:31:66:98:8d: a4:76:f9:05:10:25:bb:fd:ee:35:2d:79:b0:94:f7:4c:bc:08: ac:d7:cc:b8:fd:c1:75:99:13:e0:06:66:e0:63:07:6c:fb:9b: c1:fa:8e:e8:a2:16:91:f2:d0:a2:b6:56:f5:d2:d4:32:6d:fa: 72:40:b2:b5 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9XHOI+4C6IP7kfDaWi1kbMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxOTI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4MmU2OTIxNGQ2ZmQ1NWU3NTA1MGJhODExYmY3YzEyNDM5MTA5ZmVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr2UvrzsjoHhLylaQqxE1duXgp6kJ VAcvum4uCj59Qr4y2vXz5ZhyUQinKFBKrOadjcfxB5hWc09HSlZP5W2gF4c4WrVZ Eeo7LZO9PzeY6SqWpmjilUUirDdFrh13BSOHX4sz9H7Icv4IDo3DMIitgz5t0+ck R6Ku9nl+xI6tHO6I0dInQHPGzIGDOxGr3ldQWNHfyRECJtLKkqBUlmjbQSikqyHV Abp5m6Czpnx0ch/4yN4BzIIBw/7TlP+GJ2LSNYdyeUlq9UEOPvaOe+SivqU4iDub 9XjtT5iTt6bQqkpBGpot6jSFHUnFCoelY3TZ+UjRzvhL3IsP5fFt1GuAsQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFILmkhTW/VXnUFC6gRv3wSQ5EJ/uMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAyLzE3M2Zj NS0zNDNiLTQ5NzYtYjJhMS05NmJjNmJhYTU2M2IvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDIvMTczZmM1 LTM0M2ItNDk3Ni1iMmExLTk2YmM2YmFhNTYzYi8xL2d1YVNGTmI5VmVkUVVMcUJH X2ZCSkRrUW4tNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9QXMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwC+cjANBgkqhkiG9w0BAQsFAAOCAQEAE9Y8kRHfI2rhdERLtkyRv6yDcX4fwniK 5eOhEM2uSngKrLczAtPVMu9LsOzjCMRvucEOEUYKiw31SSxS+a8jEVxDW4p0F3Bj q7FmtDKyxfE4dHKag3I4qenkcr+bCtiRNvcXQ/dB9+5lH1r9XEQRGr7zGTyx3tHY ONbWc2IZD0wSxYnF+1QdOO4Jk6BZRDOQl9SDsW39DBCUOtaoinKdVK3ZFeC4Q0iP Vj6SFdzqYu+pXHbcyPUtHcgd4PiEOrB5qY8xZpiNpHb5BRAlu/3uNS15sJT3TLwI rNfMuP3BdZkT4AZm4GMHbPubwfqO6KIWkfLQorZW9dLUMm36ckCytQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:44:02 2026 by rpki-client