This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iBmVbdzq4CLP4SPaNzxrERZANo0.cer File: iBmVbdzq4CLP4SPaNzxrERZANo0.cer (raw, json) Hash identifier: lr8BesrRs5kN0BpPmG3lagMp0qtcrHGzQibT134pmzY= Subject key identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC898B5FCEEAF3E7A5641D776B8382B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 2600 IP: 212.109.224.0/19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:98:b5:fc:ee:af:3e:7a:56:41:d7:76:b8:38:2b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8819956ddceae022cfe123da373c6b111640368d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:de:4a:62:8a:bf:b9:3e:57:58:ae:42:c2:65:50: 81:88:41:88:0f:5c:9c:dc:e5:ba:28:73:cd:19:4d: be:ff:41:cc:a3:16:46:03:99:7a:be:87:5f:49:bf: 39:ec:7a:5b:a4:77:99:5f:a8:47:34:e3:1a:4f:cc: 20:03:97:03:9e:bc:1f:1b:49:95:80:0e:a0:12:7e: 88:68:be:9e:89:cb:41:d4:b9:7f:26:42:ef:4c:dc: 5b:2d:5b:7b:dd:89:38:d8:d5:5b:93:73:f6:4d:67: 57:56:85:a5:f0:b9:aa:c6:17:07:d2:73:5f:3f:8b: 1c:54:58:31:d7:ce:8a:42:4f:73:0e:0b:d8:c9:70: ba:0b:08:fe:ed:49:03:b3:a6:2e:c0:30:95:d0:0b: 56:9b:97:0c:7b:55:a3:48:9b:8d:51:2b:fb:17:bf: a6:52:d0:46:d7:d2:b1:6b:58:67:4e:d7:11:05:9c: b3:21:8e:42:c9:9c:60:7d:23:53:c7:10:a1:36:d0: d6:e7:76:4b:2e:1c:1b:a3:8e:07:b3:6f:b9:fe:7d: 2b:55:f8:5c:3f:75:ca:46:7e:4f:21:a4:eb:f2:ad: 94:83:8a:fa:5c:ce:f7:94:1e:85:12:fb:41:27:f5: 21:cb:51:56:2a:ee:98:37:6c:f1:9e:f2:88:4c:66: 01:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:19:95:6D:DC:EA:E0:22:CF:E1:23:DA:37:3C:6B:11:16:40:36:8D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/988768-f17b-4f59-be09-2deb14c290ed/1/iBmVbdzq4CLP4SPaNzxrERZANo0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 212.109.224.0/19 sbgp-autonomousSysNum: critical Autonomous System Numbers: 2600 Signature Algorithm: sha256WithRSAEncryption 94:06:05:de:3d:c3:d3:77:b2:a2:d4:3f:20:91:ad:0d:08:0f: 43:f1:90:8e:7e:24:d8:3e:8a:b9:e7:10:9b:74:d1:87:80:e1: 64:23:40:8b:41:ed:48:15:80:ba:04:64:ac:21:33:49:b0:b0: ed:25:45:fa:ca:89:28:ef:9d:59:e0:39:32:5d:45:7f:cc:02: 89:58:9b:eb:1a:0e:46:48:88:ba:68:af:67:2a:fd:eb:64:56: e2:d5:53:e2:c5:4f:27:f1:d9:ea:39:f3:93:5d:2a:de:17:99: 33:55:46:7a:d3:5a:4c:28:11:7c:8e:09:8c:38:b3:32:bb:b9: 9d:0f:b3:22:e1:34:7d:e9:70:29:83:63:31:4c:9a:63:40:92: a8:06:79:64:1c:2d:9b:eb:86:2d:5d:f2:07:2e:48:1e:0a:1d: 73:c8:a7:ed:30:d7:73:75:1d:7e:1c:14:cd:6d:9a:fd:89:d3: 60:45:0b:41:3e:a4:21:ae:78:b0:e3:b5:be:7e:2e:c4:8e:0f: 44:64:11:1d:2c:07:27:65:c1:67:55:b0:1c:a2:20:1d:ee:03: 35:81:a1:b0:68:d9:f7:db:3a:f2:36:0d:3b:25:f0:b1:a3:fe: 6f:4a:5e:83:fd:6c:54:45:7f:0d:c9:c6:29:07:bd:b6:be:22: b9:e6:4e:93 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt6yJi1/O6vPnpWQdd2uDgrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ODE5OTU2ZGRjZWFlMDIyY2ZlMTIzZGEzNzNjNmIxMTE2NDAzNjhkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3kpiir+5PldYrkLCZVCBiEGID1yc 3OW6KHPNGU2+/0HMoxZGA5l6vodfSb857HpbpHeZX6hHNOMaT8wgA5cDnrwfG0mV gA6gEn6IaL6eictB1Ll/JkLvTNxbLVt73Yk42NVbk3P2TWdXVoWl8LmqxhcH0nNf P4scVFgx186KQk9zDgvYyXC6Cwj+7UkDs6YuwDCV0AtWm5cMe1WjSJuNUSv7F7+m UtBG19Kxa1hnTtcRBZyzIY5CyZxgfSNTxxChNtDW53ZLLhwbo44Hs2+5/n0rVfhc P3XKRn5PIaTr8q2Ug4r6XM73lB6FEvtBJ/Uhy1FWKu6YN2zxnvKITGYB/QIDAQAB o4ICnzCCApswHQYDVR0OBBYEFIgZlW3c6uAiz+Ej2jc8axEWQDaNMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM3Lzk4ODc2 OC1mMTdiLTRmNTktYmUwOS0yZGViMTRjMjkwZWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzcvOTg4NzY4 LWYxN2ItNGY1OS1iZTA5LTJkZWIxNGMyOTBlZC8xL2lCbVZiZHpxNENMUDRTUGFO enhyRVJaQU5vMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQF1G3gMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AgooMA0GCSqGSIb3DQEBCwUAA4IBAQCUBgXePcPTd7Ki1D8gka0NCA9D8ZCOfiTY Poq55xCbdNGHgOFkI0CLQe1IFYC6BGSsITNJsLDtJUX6yoko751Z4DkyXUV/zAKJ WJvrGg5GSIi6aK9nKv3rZFbi1VPixU8n8dnqOfOTXSreF5kzVUZ601pMKBF8jgmM OLMyu7mdD7Mi4TR96XApg2MxTJpjQJKoBnlkHC2b64YtXfIHLkgeCh1zyKftMNdz dR1+HBTNbZr9idNgRQtBPqQhrniw47W+fi7Ejg9EZBEdLAcnZcFnVbAcoiAd7gM1 gaGwaNn32zryNg07JfCxo/5vSl6D/WxURX8NycYpB722viK55k6T -----END CERTIFICATE-----Generated at Mon Feb 9 18:28:26 2026 by rpki-client