This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/i-IU2zN9cmofrF_7Lp2hBfLkICU.cer File: i-IU2zN9cmofrF_7Lp2hBfLkICU.cer (raw, json) Hash identifier: sI7oV60DeBuan4eWS2vk7OeXwkz6XBHvZtrIXQfMnoc= Subject key identifier: 8B:E2:14:DB:33:7D:72:6A:1F:AC:5F:FB:2E:9D:A1:05:F2:E4:20:25 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B798F3B97896917F6CD51BC388E3EF8B3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rsync.paas.rpki.ripe.net/repository/1451df30-3dfe-4502-a1cf-13435839da0a/0/8BE214DB337D726A1FAC5FFB2E9DA105F2E42025.mft caRepository: rsync://rsync.paas.rpki.ripe.net/repository/1451df30-3dfe-4502-a1cf-13435839da0a/0/ Notify URL: https://rrdp.paas.rpki.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:36:28 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 34628 AS: 34652 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:8f:3b:97:89:69:17:f6:cd:51:bc:38:8e:3e:f8:b3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:36:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8be214db337d726a1fac5ffb2e9da105f2e42025 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:8a:ce:47:e9:76:8e:66:5a:8a:e1:7a:99:02:8c: ab:8f:bc:4d:e0:10:d7:11:de:b5:c0:57:48:32:05: de:dc:fc:20:2a:ab:2b:09:ca:ef:a5:5b:05:44:b3: 2d:50:c8:cf:96:65:4b:df:75:e6:81:cb:f9:3e:4d: ef:60:0f:64:54:df:67:03:13:e0:20:f3:ff:7f:02: 48:b8:3c:e6:d8:ab:9d:ef:4e:fa:0c:71:d5:97:c2: 00:91:34:89:33:d0:e8:6b:86:e4:db:d6:2c:15:ea: af:0e:fa:e6:6a:e1:23:14:1b:89:9b:22:48:0e:17: d9:ad:6c:e0:6e:7f:23:5e:77:d0:c8:eb:08:89:25: 01:65:90:ab:2e:01:86:97:95:b8:cb:38:b2:1a:02: 04:a1:e0:bc:27:76:4e:ee:58:e1:cf:3a:31:95:05: 09:0b:38:df:28:9b:82:69:cf:d0:59:4e:38:3a:bf: 64:fe:80:fd:ce:d5:36:ee:d7:9d:2d:8c:6a:e9:6b: a2:40:4a:b8:14:9a:05:84:59:f6:d6:60:2f:25:7e: 0a:01:8c:0e:53:cd:b4:71:be:5b:ba:25:76:4e:75: e3:f0:e3:53:2f:4b:1c:3b:ff:01:8f:ff:52:9d:10: 1a:82:94:a3:95:a0:8b:64:f2:80:c1:61:9b:dc:25: 8c:b5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:E2:14:DB:33:7D:72:6A:1F:AC:5F:FB:2E:9D:A1:05:F2:E4:20:25 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rsync.paas.rpki.ripe.net/repository/1451df30-3dfe-4502-a1cf-13435839da0a/0/ RPKI Manifest - URI:rsync://rsync.paas.rpki.ripe.net/repository/1451df30-3dfe-4502-a1cf-13435839da0a/0/8BE214DB337D726A1FAC5FFB2E9DA105F2E42025.mft RPKI Notify - URI:https://rrdp.paas.rpki.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 34628 34652 Signature Algorithm: sha256WithRSAEncryption 9e:19:cf:38:7a:06:ef:dc:80:cc:9f:85:8c:44:8b:a4:7d:50: dc:cb:20:7a:da:c3:5c:e2:db:a9:f1:7d:b9:cb:85:50:4b:d9: 40:03:b7:69:0b:51:69:0f:99:18:24:f5:f5:fd:a4:46:b4:66: 83:d6:98:1c:83:6c:0e:46:a6:53:4a:39:aa:0b:db:fd:10:94: 98:78:83:e7:5a:67:c2:ab:b5:ce:38:45:67:10:e8:15:7f:de: 20:66:05:3e:2f:74:0e:b5:6e:38:e5:a6:1e:82:35:2e:0b:f3: 6c:98:aa:82:0a:69:8d:8c:4a:eb:d6:e3:ca:6f:04:76:cc:2d: 02:56:de:6b:18:70:a0:7a:a4:60:65:cc:65:a2:3f:ba:ef:79: 75:7c:f0:e1:a7:49:4e:aa:bb:d4:27:8b:e2:e5:3c:64:6b:55: 25:a9:5b:6b:63:4c:45:6d:7f:60:fe:fa:c8:44:ad:1c:8e:41: ba:ef:1f:be:27:dd:77:2b:6b:c8:32:2f:d1:96:eb:6a:3e:8f: 91:55:22:f5:6f:fb:5d:0a:88:62:ca:fd:a1:5a:67:73:e5:92: 22:47:e1:46:6e:42:3b:69:29:b3:4d:26:ab:0b:1e:ba:3e:64: 89:b2:13:08:3f:57:26:84:c2:ee:d0:f5:dd:5e:7f:af:f3:ea: 17:6d:02:69 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt5jzuXiWkX9s1RvDiOPvizMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIzNjI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YmUyMTRkYjMzN2Q3MjZhMWZhYzVmZmIyZTlkYTEwNWYyZTQyMDI1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAis5H6XaOZlqK4XqZAoyrj7xN4BDX Ed61wFdIMgXe3PwgKqsrCcrvpVsFRLMtUMjPlmVL33Xmgcv5Pk3vYA9kVN9nAxPg IPP/fwJIuDzm2Kud7076DHHVl8IAkTSJM9Doa4bk29YsFeqvDvrmauEjFBuJmyJI DhfZrWzgbn8jXnfQyOsIiSUBZZCrLgGGl5W4yziyGgIEoeC8J3ZO7ljhzzoxlQUJ CzjfKJuCac/QWU44Or9k/oD9ztU27tedLYxq6WuiQEq4FJoFhFn21mAvJX4KAYwO U820cb5buiV2TnXj8ONTL0scO/8Bj/9SnRAagpSjlaCLZPKAwWGb3CWMtQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFIviFNszfXJqH6xf+y6doQXy5CAlMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggE/BggrBgEFBQcBCwSCATEwggEtMF8GCCsGAQUFBzAFhlNy c3luYzovL3JzeW5jLnBhYXMucnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5LzE0NTFk ZjMwLTNkZmUtNDUwMi1hMWNmLTEzNDM1ODM5ZGEwYS8wLzCBiwYIKwYBBQUHMAqG f3JzeW5jOi8vcnN5bmMucGFhcy5ycGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvMTQ1 MWRmMzAtM2RmZS00NTAyLWExY2YtMTM0MzU4MzlkYTBhLzAvOEJFMjE0REIzMzdE NzI2QTFGQUM1RkZCMkU5REExMDVGMkU0MjAyNS5tZnQwPAYIKwYBBQUHMA2GMGh0 dHBzOi8vcnJkcC5wYWFzLnJwa2kucmlwZS5uZXQvbm90aWZpY2F0aW9uLnhtbDBZ BgNVHR8EUjBQME6gTKBKhkhyc3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9y eS9ERUZBVUxUL0twU28zVlZLNXdFSElKbkhDMlFIVlYzZDVtay5jcmwwGAYDVR0g AQH/BA4wDDAKBggrBgEFBQcOAjAfBggrBgEFBQcBCAEB/wQQMA6gDDAKAgMAh0QC AwCHXDANBgkqhkiG9w0BAQsFAAOCAQEAnhnPOHoG79yAzJ+FjESLpH1Q3MsgetrD XOLbqfF9ucuFUEvZQAO3aQtRaQ+ZGCT19f2kRrRmg9aYHINsDkamU0o5qgvb/RCU mHiD51pnwqu1zjhFZxDoFX/eIGYFPi90DrVuOOWmHoI1LgvzbJiqggppjYxK69bj ym8EdswtAlbeaxhwoHqkYGXMZaI/uu95dXzw4adJTqq71CeL4uU8ZGtVJalba2NM RW1/YP76yEStHI5Buu8fvifddytryDIv0Zbraj6PkVUi9W/7XQqIYsr9oVpnc+WS IkfhRm5CO2kps00mqwseuj5kibITCD9XJoTC7tD13V5/r/PqF20CaQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:04 2026 by rpki-client