This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iPDB0Q5OWnHjzVxda-6_d4oG4wQ.cer File: iPDB0Q5OWnHjzVxda-6_d4oG4wQ.cer (raw, json) Hash identifier: WofWwe+8ete2PpIGhezzbA5pq6Tm5xB/sWx+kkSKj28= Subject key identifier: 88:F0:C1:D1:0E:4E:5A:71:E3:CD:5C:5D:6B:EE:BF:77:8A:06:E3:04 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B35B24EADCD505291A9AAD18F6137EA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/iPDB0Q5OWnHjzVxda-6_d4oG4wQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:17:55 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 77.83.216.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:b2:4e:ad:cd:50:52:91:a9:aa:d1:8f:61:37:ea Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=88f0c1d10e4e5a71e3cd5c5d6beebf778a06e304 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:1c:ec:82:01:77:59:29:9a:05:47:91:f5:ad: aa:d8:81:a2:e2:da:0a:b3:3d:b5:39:6b:11:fd:c3: c1:38:44:38:2e:2f:cb:34:b1:03:2f:31:b4:25:7c: 27:6b:0c:ff:fa:c2:ea:57:81:70:b5:cb:49:1a:8b: b8:9b:89:8e:63:83:d4:25:aa:4d:40:54:b8:c6:93: f9:17:38:0f:2f:37:05:4e:b8:de:dc:0b:3a:a2:5c: 9e:c2:d6:38:b2:2c:3a:8d:77:1f:ed:68:76:da:9d: 03:db:7b:30:2f:7f:20:f0:74:ab:d7:d7:54:d9:c7: 43:22:4c:d3:40:23:64:5d:77:d6:29:40:82:89:b3: 23:ff:53:4c:8c:64:e3:e5:66:6f:70:f6:23:01:6d: 21:eb:1b:bf:a0:8e:15:9b:1e:e8:e9:dd:39:20:79: 0f:d5:8e:5e:4c:de:5d:56:dc:b1:0f:ec:7c:e9:3d: 58:61:20:1c:86:72:07:6b:bb:fe:f0:61:ce:31:e3: 87:1d:aa:71:00:fa:fc:d7:11:94:5a:33:6e:0c:85: 8d:e4:e1:2b:53:22:a0:02:f1:58:24:34:f7:ad:d7: 53:9b:1d:67:08:45:61:3d:ce:c9:4c:62:56:9b:dd: cc:76:b8:cd:3e:86:c9:cc:36:09:95:08:de:ce:1e: fd:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 88:F0:C1:D1:0E:4E:5A:71:E3:CD:5C:5D:6B:EE:BF:77:8A:06:E3:04 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/94/42664a-0f47-49a6-b737-b28df8559529/1/iPDB0Q5OWnHjzVxda-6_d4oG4wQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 77.83.216.0/22 Signature Algorithm: sha256WithRSAEncryption 6c:5e:50:38:b4:84:7a:c5:0a:d6:1e:a2:ea:18:ba:cf:70:02: 7b:04:32:42:76:7b:40:c0:83:b6:a0:1b:9e:d6:6b:8b:d8:10: a8:3a:eb:bc:5a:50:a5:3d:9d:80:a0:bb:c8:bf:a1:97:29:be: e7:16:d1:b2:49:c9:62:15:ee:49:c7:a0:05:81:d8:f1:11:e5: 8b:e6:c3:5a:12:ae:ac:0e:23:96:5c:52:f7:8c:86:ec:a5:7d: ae:7c:df:a9:37:87:08:0d:a5:9f:cf:d2:ca:0d:7d:b0:1c:3c: 98:98:87:31:57:41:72:d2:9f:df:54:72:4c:4e:37:a9:40:f5: 16:94:2f:f8:6a:50:d2:6f:5e:7a:36:25:e9:85:c9:55:f2:81: f0:00:29:93:79:18:e9:3a:94:dc:03:56:c6:ba:ff:74:c3:6a: 89:01:45:1b:a9:49:47:1a:e2:27:a8:d8:0f:38:d7:47:4d:35: 98:12:6b:8a:54:f9:23:a3:de:a3:85:86:46:d8:5a:1e:1e:5c: c4:54:ab:8c:2e:ba:ad:ea:b1:7c:14:0f:6d:82:10:13:84:06: 4d:44:a7:6a:cf:63:83:c6:c0:8b:f5:80:97:18:11:7c:55:6b: c1:ca:a6:b0:48:d6:f4:11:83:d1:2e:19:91:f9:88:56:46:e0: 5e:e3:26:bf -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt7NbJOrc1QUpGpqtGPYTfqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OGYwYzFkMTBlNGU1YTcxZTNjZDVjNWQ2YmVlYmY3NzhhMDZlMzA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsBzsggF3WSmaBUeR9a2q2IGi4toK sz21OWsR/cPBOEQ4Li/LNLEDLzG0JXwnawz/+sLqV4FwtctJGou4m4mOY4PUJapN QFS4xpP5FzgPLzcFTrje3As6olyewtY4siw6jXcf7Wh22p0D23swL38g8HSr19dU 2cdDIkzTQCNkXXfWKUCCibMj/1NMjGTj5WZvcPYjAW0h6xu/oI4Vmx7o6d05IHkP 1Y5eTN5dVtyxD+x86T1YYSAchnIHa7v+8GHOMeOHHapxAPr81xGUWjNuDIWN5OEr UyKgAvFYJDT3rddTmx1nCEVhPc7JTGJWm93MdrjNPobJzDYJlQjezh79HwIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFIjwwdEOTlpx481cXWvuv3eKBuMEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk0LzQyNjY0 YS0wZjQ3LTQ5YTYtYjczNy1iMjhkZjg1NTk1MjkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTQvNDI2NjRh LTBmNDctNDlhNi1iNzM3LWIyOGRmODU1OTUyOS8xL2lQREIwUTVPV25IanpWeGRh LTZfZDRvRzR3US5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCTVPYMA0GCSqGSIb3DQEBCwUAA4IBAQBsXlA4 tIR6xQrWHqLqGLrPcAJ7BDJCdntAwIO2oBue1muL2BCoOuu8WlClPZ2AoLvIv6GX Kb7nFtGyScliFe5Jx6AFgdjxEeWL5sNaEq6sDiOWXFL3jIbspX2ufN+pN4cIDaWf z9LKDX2wHDyYmIcxV0Fy0p/fVHJMTjepQPUWlC/4alDSb156NiXphclV8oHwACmT eRjpOpTcA1bGuv90w2qJAUUbqUlHGuInqNgPONdHTTWYEmuKVPkjo96jhYZG2Foe HlzEVKuMLrqt6rF8FA9tghAThAZNRKdqz2ODxsCL9YCXGBF8VWvByqawSNb0EYPR LhmR+YhWRuBe4ya/ -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:43 2026 by rpki-client