This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iSWuMjSiyXwn9171HT_zJr4GDiw.cer File: iSWuMjSiyXwn9171HT_zJr4GDiw.cer (raw, json) Hash identifier: kuqUgRBJNL9u/ciUDx3mA3KsPfpLHAGLKy0ZOGbUxpI= Subject key identifier: 89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7FDBECE1A99916B799E1E340F27516 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:32 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203378 IP: 185.117.128.0/22 IP: 2a06:8480::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:db:ec:e1:a9:99:16:b7:99:e1:e3:40:f2:75:16 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8925ae3234a2c97c27f75ef51d3ff326be060e2c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:68:04:5b:0b:99:80:98:45:96:d1:b7:dc:48: 3a:42:ae:54:c3:d0:ca:99:04:55:43:4b:e0:eb:29: 55:42:5c:3a:e4:eb:16:41:89:cf:3b:95:32:94:f0: ae:1a:e8:18:20:bf:46:d8:d6:03:cd:a6:22:fa:be: 3b:28:50:ca:fa:6b:d2:7f:1b:20:9b:39:9b:38:34: 05:b3:65:82:df:5a:b4:00:67:5b:84:43:cf:dd:80: 44:4f:78:52:e8:f5:15:f1:fc:c9:36:4b:8a:f6:6b: 83:ea:ee:66:02:39:25:a0:65:47:75:b4:36:88:2b: ba:a9:62:d6:1e:87:b1:6f:78:4e:ae:20:07:9d:78: 57:7f:ba:fc:3e:3c:3b:39:d2:4f:27:38:34:64:62: 31:26:85:a1:10:8f:29:2c:5f:d9:8b:61:b6:6c:85: 23:82:cd:b4:07:9e:9c:84:15:73:20:2e:be:2e:d9: 4a:f8:38:62:12:8d:43:90:da:bf:e0:96:50:a4:70: da:8c:4f:38:8a:8c:37:c3:cc:15:5e:09:38:56:aa: 57:3b:8c:d0:a7:66:8f:68:51:18:c5:14:26:22:fd: 47:65:99:a5:f1:12:1e:a2:50:4e:ab:3f:ac:5f:4e: a2:0e:ba:a0:7a:95:da:13:ec:fa:90:6d:a2:76:f1: 45:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 89:25:AE:32:34:A2:C9:7C:27:F7:5E:F5:1D:3F:F3:26:BE:06:0E:2C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/2b/fb6270-0353-46fc-b9f5-7e8e6e888dac/1/iSWuMjSiyXwn9171HT_zJr4GDiw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.117.128.0/22 IPv6: 2a06:8480::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203378 Signature Algorithm: sha256WithRSAEncryption 3e:19:d9:ba:97:11:6a:53:9c:11:42:a8:44:67:f6:1d:9c:37: 5e:3c:2f:8c:87:72:33:e2:db:8b:09:01:c9:91:c6:84:b0:4c: 96:37:97:ae:5a:35:8e:10:0b:c3:23:5f:14:7a:36:47:31:d7: 01:73:4d:d6:ec:c9:2f:4e:0a:77:c1:ca:e2:5c:24:b8:44:a9: fb:47:0c:0d:c4:5c:b3:7d:cf:19:56:42:62:86:31:31:b4:29: e5:ba:7d:57:c1:20:56:0d:17:fd:92:f3:24:ab:6e:a9:aa:92: 62:f8:42:b7:ec:ca:23:51:b4:ef:c7:1f:b9:4f:89:a4:08:b8: 95:f9:8e:af:98:ce:b6:8e:66:81:d5:2e:a6:7b:d4:21:b9:55: 26:e6:5e:25:f6:bc:98:0a:2d:c3:ef:5f:e8:e5:71:6c:80:3c: 04:fd:3f:97:d8:65:23:b4:0f:be:dd:43:8c:69:92:be:e1:0c: f0:c4:0d:af:69:50:d6:f1:24:a9:8d:e7:c0:a1:5a:e5:b7:bd: cc:69:e8:48:60:de:28:e8:6c:fe:2c:a5:c9:7e:91:06:e0:8a: a6:fe:0b:79:e8:b6:09:19:97:5a:13:d2:bf:b9:98:17:56:ae: 3b:a0:5a:d0:83:0a:aa:7b:41:de:d3:2c:ac:bd:40:bb:d9:ca: 40:ef:77:7a -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt8f9vs4amZFreZ4eNA8nUWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4OTI1YWUzMjM0YTJjOTdjMjdmNzVlZjUxZDNmZjMyNmJlMDYwZTJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtmgEWwuZgJhFltG33Eg6Qq5Uw9DK mQRVQ0vg6ylVQlw65OsWQYnPO5UylPCuGugYIL9G2NYDzaYi+r47KFDK+mvSfxsg mzmbODQFs2WC31q0AGdbhEPP3YBET3hS6PUV8fzJNkuK9muD6u5mAjkloGVHdbQ2 iCu6qWLWHoexb3hOriAHnXhXf7r8Pjw7OdJPJzg0ZGIxJoWhEI8pLF/Zi2G2bIUj gs20B56chBVzIC6+LtlK+DhiEo1DkNq/4JZQpHDajE84iow3w8wVXgk4VqpXO4zQ p2aPaFEYxRQmIv1HZZml8RIeolBOqz+sX06iDrqgepXaE+z6kG2idvFFswIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFIklrjI0osl8J/de9R0/8ya+Bg4sMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzJiL2ZiNjI3 MC0wMzUzLTQ2ZmMtYjlmNS03ZThlNmU4ODhkYWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMmIvZmI2Mjcw LTAzNTMtNDZmYy1iOWY1LTdlOGU2ZTg4OGRhYy8xL2lTV3VNalNpeVh3bjkxNzFI VF96SnI0R0Rpdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuXWAMA0EAgACMAcDBQMqBoSAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMacjANBgkqhkiG9w0BAQsFAAOCAQEAPhnZupcRalOc EUKoRGf2HZw3XjwvjIdyM+LbiwkByZHGhLBMljeXrlo1jhALwyNfFHo2RzHXAXNN 1uzJL04Kd8HK4lwkuESp+0cMDcRcs33PGVZCYoYxMbQp5bp9V8EgVg0X/ZLzJKtu qaqSYvhCt+zKI1G078cfuU+JpAi4lfmOr5jOto5mgdUupnvUIblVJuZeJfa8mAot w+9f6OVxbIA8BP0/l9hlI7QPvt1DjGmSvuEM8MQNr2lQ1vEkqY3nwKFa5be9zGno SGDeKOhs/iylyX6RBuCKpv4Leei2CRmXWhPSv7mYF1auO6Ba0IMKqntB3tMsrL1A u9nKQO93eg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:04 2026 by rpki-client