This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/i29IgAONVauY18tm38-ol7e6Eeg.cer File: i29IgAONVauY18tm38-ol7e6Eeg.cer (raw, json) Hash identifier: dvXq0UMKOScg1ycvf+XGuulq68AfQ726DGc8b+Hj52s= Subject key identifier: 8B:6F:48:80:03:8D:55:AB:98:D7:CB:66:DF:CF:A8:97:B7:BA:11:E8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC7C5F770C4FA42AAD05EA4BAC6A755 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f4/d0c38d-9f02-418b-96b2-fb3111dbd1ca/1/i29IgAONVauY18tm38-ol7e6Eeg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f4/d0c38d-9f02-418b-96b2-fb3111dbd1ca/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:17:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203045 IP: 2001:678:140::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:c5:f7:70:c4:fa:42:aa:d0:5e:a4:ba:c6:a7:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b6f4880038d55ab98d7cb66dfcfa897b7ba11e8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:e0:09:9a:b3:dc:96:f6:3c:45:96:00:38:85: 55:47:c8:d0:1f:8b:8e:bb:76:5e:85:57:c8:5d:06: 97:44:fb:c1:51:c7:97:f7:40:d5:f0:9f:fe:e9:9c: ef:54:04:30:d7:41:4a:8c:2e:b9:f6:3f:b4:ee:9c: 1b:d7:b3:7e:c7:9a:ab:fa:f4:45:37:4d:e6:20:87: 03:c9:e8:67:0b:7c:0b:38:f9:9a:0b:5c:67:73:45: 10:68:14:61:c5:48:96:5c:86:b7:08:c2:ec:16:6a: cc:ee:fb:a6:46:b4:1a:a8:20:97:b2:69:be:f4:cb: 31:ae:3b:dd:45:25:bf:cc:c0:89:1b:97:99:b1:14: ef:55:ce:18:75:ad:59:55:2b:91:89:76:87:31:2c: 0b:5e:a7:67:5c:71:00:eb:18:25:b2:51:e0:2a:95: 4c:2c:9e:3f:3f:83:8a:44:b6:4b:4a:33:06:4f:c6: 00:8f:2d:a6:7d:e3:83:a7:80:1c:2c:34:56:51:ac: 01:df:67:ac:4a:5f:5f:a5:75:96:14:69:14:92:40: 9d:32:0d:09:e1:f8:7d:a4:85:8f:6b:62:31:dc:4c: 12:01:ff:f6:3c:11:fa:78:0c:7d:a3:85:ec:d1:64: 8f:69:8e:ca:2e:b5:34:c4:d6:8c:19:8c:b4:28:55: 2c:63 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:6F:48:80:03:8D:55:AB:98:D7:CB:66:DF:CF:A8:97:B7:BA:11:E8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d0c38d-9f02-418b-96b2-fb3111dbd1ca/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/d0c38d-9f02-418b-96b2-fb3111dbd1ca/1/i29IgAONVauY18tm38-ol7e6Eeg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:140::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203045 Signature Algorithm: sha256WithRSAEncryption 12:d7:df:6b:40:0b:ca:0e:f1:1b:a9:9e:b4:f0:32:70:70:f6: 68:0d:13:9f:78:0c:e6:9c:4d:d8:34:c6:2b:e9:d8:c3:05:c3: 02:55:77:76:43:54:e0:d0:57:29:d0:1e:77:85:0b:c7:a0:23: 8c:08:b1:ba:9e:9d:28:e0:fa:56:a0:e2:5f:e0:81:58:10:75: 70:29:b0:ea:a9:5e:b1:5d:6d:e7:78:09:05:68:c0:98:6e:75: 8c:61:62:d5:9e:15:36:2b:dc:d4:c0:24:f0:df:b4:31:b0:24: 82:42:f3:04:bb:20:8a:53:7b:e6:4b:a4:da:31:6f:3a:8a:fd: c8:91:aa:09:d6:e4:c6:0d:54:54:d5:63:5c:4d:37:ae:70:bb: 25:37:f7:b4:90:6a:07:20:5e:9e:6b:74:fd:b5:32:44:7f:25: 09:05:86:97:53:6a:53:28:f5:2c:ee:8e:6f:05:0a:ea:d3:ea: c2:e1:f2:63:df:69:0b:c1:15:ac:91:dc:5e:ea:42:ed:49:69: 07:6a:a9:f7:fe:56:77:c6:4c:67:c0:9d:6d:0f:2c:82:2b:7a: a9:cd:59:a9:dd:e5:b4:a3:87:d3:e7:f4:7b:73:06:49:98:54: 15:89:c4:de:ca:19:4a:0c:3a:a3:96:cc:e9:3a:10:45:a9:b6: 21:08:e2:24 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt6x8X3cMT6QqrQXqS6xqdVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjZmNDg4MDAzOGQ1NWFiOThkN2NiNjZkZmNmYTg5N2I3YmExMWU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4OAJmrPclvY8RZYAOIVVR8jQH4uO u3ZehVfIXQaXRPvBUceX90DV8J/+6ZzvVAQw10FKjC659j+07pwb17N+x5qr+vRF N03mIIcDyehnC3wLOPmaC1xnc0UQaBRhxUiWXIa3CMLsFmrM7vumRrQaqCCXsmm+ 9MsxrjvdRSW/zMCJG5eZsRTvVc4Yda1ZVSuRiXaHMSwLXqdnXHEA6xglslHgKpVM LJ4/P4OKRLZLSjMGT8YAjy2mfeODp4AcLDRWUawB32esSl9fpXWWFGkUkkCdMg0J 4fh9pIWPa2Ix3EwSAf/2PBH6eAx9o4Xs0WSPaY7KLrU0xNaMGYy0KFUsYwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFItvSIADjVWrmNfLZt/PqJe3uhHoMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y0L2QwYzM4 ZC05ZjAyLTQxOGItOTZiMi1mYjMxMTFkYmQxY2EvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjQvZDBjMzhk LTlmMDItNDE4Yi05NmIyLWZiMzExMWRiZDFjYS8xL2kyOUlnQU9OVmF1WTE4dG0z OC1vbDdlNkVlZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAFAMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMZJTANBgkqhkiG9w0BAQsFAAOCAQEAEtffa0ALyg7xG6metPAycHD2aA0T n3gM5pxN2DTGK+nYwwXDAlV3dkNU4NBXKdAed4ULx6AjjAixup6dKOD6VqDiX+CB WBB1cCmw6qlesV1t53gJBWjAmG51jGFi1Z4VNivc1MAk8N+0MbAkgkLzBLsgilN7 5kuk2jFvOor9yJGqCdbkxg1UVNVjXE03rnC7JTf3tJBqByBenmt0/bUyRH8lCQWG l1NqUyj1LO6ObwUK6tPqwuHyY99pC8EVrJHcXupC7UlpB2qp9/5Wd8ZMZ8CdbQ8s git6qc1Zqd3ltKOH0+f0e3MGSZhUFYnE3soZSgw6o5bM6ToQRam2IQjiJA== -----END CERTIFICATE-----Generated at Mon Feb 9 22:40:45 2026 by rpki-client