This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ij8nyT77e7wLCv6OzCT3A50nUQg.cer File: ij8nyT77e7wLCv6OzCT3A50nUQg.cer (raw, json) Hash identifier: 76b68B3JM5JkPdOo89pRXwoy86frP4pCHTdJgBFnBBk= Subject key identifier: 8A:3F:27:C9:3E:FB:7B:BC:0B:0A:FE:8E:CC:24:F7:03:9D:27:51:08 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78350F53200DF98C3E783240C928B7EC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:21 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 2001:67c:f00::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:0f:53:20:0d:f9:8c:3e:78:32:40:c9:28:b7:ec Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8a3f27c93efb7bbc0b0afe8ecc24f7039d275108 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:05:cd:67:a3:0f:87:f1:25:72:f8:00:86:ed: 9f:dc:7d:21:7b:a2:65:6b:8b:0e:56:35:a9:d5:ca: 7c:2c:7f:cf:cf:4b:8c:c3:d5:18:95:d6:bc:6f:f3: 6a:b8:5f:e5:f5:88:57:1c:ae:50:c8:b4:19:19:98: fc:e0:80:99:e7:1c:16:02:1f:6b:47:20:9d:dc:f0: 07:d0:7f:21:30:f4:92:40:d0:2f:f1:f1:a1:2a:66: 15:86:be:64:f8:c4:16:98:ad:44:9f:45:45:96:1f: 8d:8d:e9:7b:af:ea:dd:da:5a:6b:16:45:ba:0a:e7: e2:f9:00:d1:f0:e3:08:7f:ae:f7:ae:0b:40:45:37: 18:ad:67:95:ba:fd:7f:a5:20:51:e9:b6:a0:4f:13: f9:74:e9:cd:9a:94:28:98:59:c0:a4:a2:2b:0e:ea: 94:06:49:c0:38:f9:1b:21:a7:88:cd:c4:f9:59:f1: f4:b4:59:94:46:4a:7e:b7:be:9d:d8:ff:a1:9c:7b: 24:a5:06:74:7d:15:5a:a4:70:1f:ee:9e:9b:77:f1: ee:bc:0f:2e:6c:9c:0a:c0:d5:c3:64:a7:4f:dc:62: 4f:53:b9:9b:c4:9f:cf:69:5c:57:03:75:11:c9:0a: a5:3e:db:91:81:76:bc:84:20:33:48:0b:10:97:22: 25:77 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8A:3F:27:C9:3E:FB:7B:BC:0B:0A:FE:8E:CC:24:F7:03:9D:27:51:08 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/44/2c9a24-8560-4307-acc7-ebf834fe9a15/1/ij8nyT77e7wLCv6OzCT3A50nUQg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:f00::/48 Signature Algorithm: sha256WithRSAEncryption ac:7b:7f:52:f8:9d:23:c5:6b:67:bc:dd:04:d6:10:73:db:7b: ec:a8:26:e6:29:02:61:b7:db:0c:d0:71:a9:4f:26:2a:5b:9f: 7f:a4:62:ce:3a:91:ae:f3:d5:41:9b:4a:be:92:83:cc:1b:14: 9c:79:77:f4:b8:8e:08:da:8d:06:20:25:15:e6:e9:3f:68:3c: 3f:75:8d:81:69:6e:56:ee:b0:08:57:69:a5:8a:9b:6e:e5:b8: ed:8a:00:4a:e9:c3:c1:73:44:4c:89:d8:fb:a5:22:1c:cb:37: c6:13:ed:dd:50:a4:b3:cf:78:3f:f0:bc:0c:a5:fb:0a:0f:d5: 43:41:2d:65:52:9f:a4:fe:24:b0:49:ed:da:3d:3c:d1:d0:95: 80:f3:a1:a2:67:ee:4f:68:23:31:39:ab:ec:29:2a:54:c8:53: 71:61:ab:21:4d:e8:e5:ec:fa:d7:a8:06:a9:3e:b3:55:90:52: ca:b4:a2:5f:63:69:83:86:d1:f1:8e:b0:36:82:1d:c6:5c:ea: 04:1e:87:66:fb:7d:65:27:fd:e5:68:b2:c6:5c:29:ec:26:1e: d0:80:5e:86:92:99:11:b1:dd:89:37:9f:52:8e:3b:80:8d:75: 58:ed:64:10:df:ae:18:d4:45:3e:27:22:52:ec:6b:a6:fd:bd: 63:c5:56:9c -----BEGIN CERTIFICATE----- MIIFezCCBGOgAwIBAgISAZt4NQ9TIA35jD54MkDJKLfsMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YTNmMjdjOTNlZmI3YmJjMGIwYWZlOGVjYzI0ZjcwMzlkMjc1MTA4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvgXNZ6MPh/ElcvgAhu2f3H0he6Jl a4sOVjWp1cp8LH/Pz0uMw9UYlda8b/NquF/l9YhXHK5QyLQZGZj84ICZ5xwWAh9r RyCd3PAH0H8hMPSSQNAv8fGhKmYVhr5k+MQWmK1En0VFlh+Njel7r+rd2lprFkW6 Cufi+QDR8OMIf673rgtARTcYrWeVuv1/pSBR6bagTxP5dOnNmpQomFnApKIrDuqU BknAOPkbIaeIzcT5WfH0tFmURkp+t76d2P+hnHskpQZ0fRVapHAf7p6bd/HuvA8u bJwKwNXDZKdP3GJPU7mbxJ/PaVxXA3URyQqlPtuRgXa8hCAzSAsQlyIldwIDAQAB o4IChzCCAoMwHQYDVR0OBBYEFIo/J8k++3u8Cwr+jswk9wOdJ1EIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ0LzJjOWEy NC04NTYwLTQzMDctYWNjNy1lYmY4MzRmZTlhMTUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDQvMmM5YTI0 LTg1NjAtNDMwNy1hY2M3LWViZjgzNGZlOWExNS8xL2lqOG55VDc3ZTd3TEN2Nk96 Q1QzQTUwblVRZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfA8AMA0GCSqGSIb3DQEBCwUAA4IBAQCs e39S+J0jxWtnvN0E1hBz23vsqCbmKQJht9sM0HGpTyYqW59/pGLOOpGu89VBm0q+ koPMGxSceXf0uI4I2o0GICUV5uk/aDw/dY2BaW5W7rAIV2mliptu5bjtigBK6cPB c0RMidj7pSIcyzfGE+3dUKSzz3g/8LwMpfsKD9VDQS1lUp+k/iSwSe3aPTzR0JWA 86GiZ+5PaCMxOavsKSpUyFNxYashTejl7PrXqAapPrNVkFLKtKJfY2mDhtHxjrA2 gh3GXOoEHodm+31lJ/3laLLGXCnsJh7QgF6GkpkRsd2JN59SjjuAjXVY7WQQ364Y 1EU+JyJS7Gum/b1jxVac -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:25 2026 by rpki-client