This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/j20qybaMMnEffof95SNFhPW89PI.cer File: j20qybaMMnEffof95SNFhPW89PI.cer (raw, json) Hash identifier: QHU0vBgfTxHdo5mc0o7CO9YE7MCP7mJQ25xeOKnLxJg= Subject key identifier: 8F:6D:2A:C9:B6:8C:32:71:1F:7E:87:FD:E5:23:45:84:F5:BC:F4:F2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA42A97E200BB8377A071B27E233D7F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ad/e78ee1-0a2a-46c9-9769-f94f084b1ee7/1/j20qybaMMnEffof95SNFhPW89PI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ad/e78ee1-0a2a-46c9-9769-f94f084b1ee7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:18:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198291 IP: 46.232.136.0/21 IP: 185.124.44.0/22 IP: 2a04:dc40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:2a:97:e2:00:bb:83:77:a0:71:b2:7e:23:3d:7f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:18:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8f6d2ac9b68c32711f7e87fde5234584f5bcf4f2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b4:da:7e:a6:59:07:fc:bf:9e:b2:30:04:01:90: 8a:76:7d:7e:12:8c:86:79:8c:5b:a7:55:79:86:08: bc:d4:d0:42:97:a8:87:b2:28:73:04:49:1b:0c:41: 10:eb:27:d1:5e:38:0b:44:8b:21:ed:04:55:b4:d4: b8:8a:82:5a:ba:3a:8d:73:9e:47:c9:6b:39:14:90: 60:c8:88:18:5c:2f:4c:2a:f1:65:b0:f0:5e:49:90: 58:30:01:f4:33:26:ac:90:8c:57:68:11:8a:03:f6: 79:b7:08:49:0e:12:35:86:97:07:96:48:50:6e:b4: 6b:ac:e2:7d:d0:49:63:45:f4:af:bb:44:cc:78:78: 2e:a5:33:be:91:0b:ef:f6:ce:21:d5:bd:bc:72:df: a9:1c:b9:dc:60:bb:4f:0c:65:1c:8d:55:7d:cb:f3: 5e:34:23:d0:7b:f5:d7:7f:6e:4f:ac:aa:0f:41:71: 29:a9:45:0d:2d:8b:58:cb:56:d4:9f:8a:b3:1a:73: 15:21:df:74:c9:71:19:6b:7d:c9:8e:82:80:b4:4d: 6b:8c:b3:ae:10:c4:ea:d1:56:32:22:f5:86:f2:bf: 2d:91:e0:86:47:2e:a9:f6:2e:f2:3a:d4:0f:39:c8: da:76:e1:58:7c:99:59:93:8e:5e:b9:23:20:6c:29: 20:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8F:6D:2A:C9:B6:8C:32:71:1F:7E:87:FD:E5:23:45:84:F5:BC:F4:F2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/e78ee1-0a2a-46c9-9769-f94f084b1ee7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ad/e78ee1-0a2a-46c9-9769-f94f084b1ee7/1/j20qybaMMnEffof95SNFhPW89PI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.232.136.0/21 185.124.44.0/22 IPv6: 2a04:dc40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198291 Signature Algorithm: sha256WithRSAEncryption ac:eb:33:33:6f:d0:dc:ad:e5:9c:57:ce:f7:be:e8:55:27:ff: 26:04:f3:32:44:4b:f6:21:c1:65:ee:74:1a:2f:bf:79:a4:14: 3e:cd:b2:02:4b:16:48:41:01:ad:0a:60:09:ae:9d:c0:85:9e: 66:8f:35:80:37:35:c5:b9:8f:32:ef:31:97:65:70:71:9a:da: c4:55:9b:93:27:75:4e:7f:49:f3:75:f1:33:2e:60:d2:5a:97: 7c:ef:c3:f9:7c:c9:ab:c4:1f:ec:85:c7:f3:8e:a4:82:82:d9: be:e0:88:90:b5:3d:d6:af:db:9a:de:e7:3b:9b:24:f6:cc:09: d7:31:ae:37:1d:34:15:4b:51:09:e5:eb:ec:54:8f:fb:ba:8b: df:31:c5:59:be:73:82:90:7e:99:27:e8:c1:c8:bc:8d:2d:4a: d3:be:83:63:a3:60:58:78:15:5d:98:2b:f9:58:35:a1:4d:e5: 9f:75:84:5a:f0:25:4b:19:6b:13:e1:72:d3:88:c4:d0:a1:25: b0:1e:34:ec:2c:19:28:ec:f1:64:fc:91:30:64:ed:f2:99:ac: 2c:5d:c3:b2:5e:b0:dd:ae:16:ea:90:5e:53:a6:f8:9b:76:01: 7d:dc:90:62:25:2a:4e:df:0a:cb:8e:45:a1:22:5f:a0:36:c8: dc:da:79:9f -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt7pCqX4gC7g3egcbJ+Iz1/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxODM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZjZkMmFjOWI2OGMzMjcxMWY3ZTg3ZmRlNTIzNDU4NGY1YmNmNGYyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtNp+plkH/L+esjAEAZCKdn1+EoyG eYxbp1V5hgi81NBCl6iHsihzBEkbDEEQ6yfRXjgLRIsh7QRVtNS4ioJaujqNc55H yWs5FJBgyIgYXC9MKvFlsPBeSZBYMAH0MyaskIxXaBGKA/Z5twhJDhI1hpcHlkhQ brRrrOJ90EljRfSvu0TMeHgupTO+kQvv9s4h1b28ct+pHLncYLtPDGUcjVV9y/Ne NCPQe/XXf25PrKoPQXEpqUUNLYtYy1bUn4qzGnMVId90yXEZa33JjoKAtE1rjLOu EMTq0VYyIvWG8r8tkeCGRy6p9i7yOtQPOcjaduFYfJlZk45euSMgbCkgewIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFI9tKsm2jDJxH36H/eUjRYT1vPTyMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FkL2U3OGVl MS0wYTJhLTQ2YzktOTc2OS1mOTRmMDg0YjFlZTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWQvZTc4ZWUx LTBhMmEtNDZjOS05NzY5LWY5NGYwODRiMWVlNy8xL2oyMHF5YmFNTW5FZmZvZjk1 U05GaFBXODlQSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDLuiIAwQCuXwsMA0EAgACMAcDBQMqBNxAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMGkzANBgkqhkiG9w0BAQsFAAOCAQEArOsz M2/Q3K3lnFfO977oVSf/JgTzMkRL9iHBZe50Gi+/eaQUPs2yAksWSEEBrQpgCa6d wIWeZo81gDc1xbmPMu8xl2VwcZraxFWbkyd1Tn9J83XxMy5g0lqXfO/D+XzJq8Qf 7IXH846kgoLZvuCIkLU91q/bmt7nO5sk9swJ1zGuNx00FUtRCeXr7FSP+7qL3zHF Wb5zgpB+mSfowci8jS1K076DY6NgWHgVXZgr+Vg1oU3ln3WEWvAlSxlrE+Fy04jE 0KElsB407CwZKOzxZPyRMGTt8pmsLF3Dsl6w3a4W6pBeU6b4m3YBfdyQYiUqTt8K y45FoSJfoDbI3Np5nw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:53 2026 by rpki-client