This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jNVvsdZ5Rzsa4cV7D8KjI8rxcJo.cer File: jNVvsdZ5Rzsa4cV7D8KjI8rxcJo.cer (raw, json) Hash identifier: vW0w/ry3V9iDftoZ48cQVR0R5NepVagKT/3JWP0I98w= Subject key identifier: 8C:D5:6F:B1:D6:79:47:3B:1A:E1:C5:7B:0F:C2:A3:23:CA:F1:70:9A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7758C2D88113D000D417F5F942EF409C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a1/a2209b-a918-4074-ba97-a792a88baf10/1/jNVvsdZ5Rzsa4cV7D8KjI8rxcJo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a1/a2209b-a918-4074-ba97-a792a88baf10/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 02:17:44 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206002 IP: 91.199.103.0/24 IP: 185.187.28.0/22 IP: 2a0b:9380::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:58:c2:d8:81:13:d0:00:d4:17:f5:f9:42:ef:40:9c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 02:17:44 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8cd56fb1d679473b1ae1c57b0fc2a323caf1709a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e0:8c:de:c7:e0:e0:25:b8:27:63:42:06:05:b4: 75:08:6f:05:39:2a:85:29:76:d8:eb:1a:23:60:b5: 48:b3:96:7e:26:f6:65:07:e8:cd:b4:41:95:4a:14: 06:19:89:9c:39:67:a8:9a:7e:d5:83:2d:cd:4b:1d: 99:20:47:29:96:5f:d0:e0:ae:cd:a6:b0:e2:94:bd: ce:12:b1:d8:9c:1b:dd:d3:ba:e7:46:f8:fd:4e:2a: 87:0f:69:e6:96:2d:9d:43:6c:2d:7d:32:5c:b0:1d: 48:66:8e:ee:8e:8b:b3:bf:f7:80:58:99:82:5e:34: 6d:53:7e:b2:8d:76:fc:8f:c6:b5:37:f5:1d:71:c7: e7:af:43:be:8f:91:d6:55:a6:ee:89:c5:70:79:94: 36:00:ef:58:8b:bc:ad:51:1f:61:81:e8:bb:89:8e: e0:3e:cf:56:dc:0e:21:8b:41:fc:34:4a:6d:e2:35: d0:e8:b2:08:9e:19:09:a7:e4:44:7d:88:29:8b:3d: 41:6f:d0:e5:66:d4:9b:c4:60:6d:fc:0d:b4:21:ba: 07:65:fe:55:a4:78:f5:aa:a9:02:81:3c:67:8a:97: d0:aa:25:9b:78:d1:63:94:67:1b:84:36:af:22:f9: 38:54:fb:db:7e:9f:d1:46:ed:b2:0f:bf:a9:f7:f6: 2b:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:D5:6F:B1:D6:79:47:3B:1A:E1:C5:7B:0F:C2:A3:23:CA:F1:70:9A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/a2209b-a918-4074-ba97-a792a88baf10/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a1/a2209b-a918-4074-ba97-a792a88baf10/1/jNVvsdZ5Rzsa4cV7D8KjI8rxcJo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.103.0/24 185.187.28.0/22 IPv6: 2a0b:9380::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206002 Signature Algorithm: sha256WithRSAEncryption 22:7a:6d:b2:1c:f3:53:a3:52:2f:35:83:17:94:e2:4a:08:a7: 1c:e0:1c:c9:7c:d1:26:97:cb:4f:5d:1f:2f:67:9c:61:6b:7e: b6:1f:71:c6:1f:89:da:1d:e6:51:54:7a:64:66:59:ea:ed:51: 5b:b1:5f:fb:f3:71:df:3f:03:3a:b0:ab:31:d4:96:cc:45:8e: 6f:55:6b:98:ae:2e:89:be:ba:4a:77:07:c8:2f:61:a1:40:08: 48:54:d4:35:8d:17:45:c7:02:56:53:9d:d0:88:c9:0e:6e:6e: 4c:1c:19:3a:80:97:fc:c9:a2:f1:f6:0f:b0:5b:ec:af:4a:5a: b4:ad:55:b7:5d:90:e0:6c:c7:06:7b:6d:a4:41:c0:8b:59:b3: d1:6d:e5:1b:d9:8a:30:30:29:e4:2a:e1:c0:83:e5:0e:79:29: 02:ed:b2:19:58:bd:4d:16:1d:d9:fe:54:dc:e9:ac:23:92:80: b2:ca:ca:62:ec:d5:74:0a:ac:6d:f7:1a:86:c4:42:7a:16:4e: 19:cb:35:82:46:69:5f:4c:d8:3f:b1:dd:d0:03:b9:fe:a5:72: 1d:4f:27:ed:93:12:df:9a:c4:26:d2:c3:a6:c5:a4:46:61:b3: 89:36:eb:68:ff:d2:5f:be:63:16:15:ba:ff:e3:c0:87:93:c2: c9:93:7d:06 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt3WMLYgRPQANQX9flC70CcMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDIxNzQ0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Y2Q1NmZiMWQ2Nzk0NzNiMWFlMWM1N2IwZmMyYTMyM2NhZjE3MDlhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4Izex+DgJbgnY0IGBbR1CG8FOSqF KXbY6xojYLVIs5Z+JvZlB+jNtEGVShQGGYmcOWeomn7Vgy3NSx2ZIEcpll/Q4K7N prDilL3OErHYnBvd07rnRvj9TiqHD2nmli2dQ2wtfTJcsB1IZo7ujouzv/eAWJmC XjRtU36yjXb8j8a1N/Udccfnr0O+j5HWVabuicVweZQ2AO9Yi7ytUR9hgei7iY7g Ps9W3A4hi0H8NEpt4jXQ6LIInhkJp+REfYgpiz1Bb9DlZtSbxGBt/A20IboHZf5V pHj1qqkCgTxnipfQqiWbeNFjlGcbhDavIvk4VPvbfp/RRu2yD7+p9/Yr6QIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFIzVb7HWeUc7GuHFew/CoyPK8XCaMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ExL2EyMjA5 Yi1hOTE4LTQwNzQtYmE5Ny1hNzkyYTg4YmFmMTAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTEvYTIyMDli LWE5MTgtNDA3NC1iYTk3LWE3OTJhODhiYWYxMC8xL2pOVnZzZFo1UnpzYTRjVjdE OEtqSThyeGNKby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAW8dnAwQCubscMA0EAgACMAcDBQAqC5OAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMksjANBgkqhkiG9w0BAQsFAAOCAQEAInpt shzzU6NSLzWDF5TiSginHOAcyXzRJpfLT10fL2ecYWt+th9xxh+J2h3mUVR6ZGZZ 6u1RW7Ff+/Nx3z8DOrCrMdSWzEWOb1VrmK4uib66SncHyC9hoUAISFTUNY0XRccC VlOd0IjJDm5uTBwZOoCX/Mmi8fYPsFvsr0patK1Vt12Q4GzHBnttpEHAi1mz0W3l G9mKMDAp5CrhwIPlDnkpAu2yGVi9TRYd2f5U3OmsI5KAssrKYuzVdAqsbfcahsRC ehZOGcs1gkZpX0zYP7Hd0AO5/qVyHU8n7ZMS35rEJtLDpsWkRmGziTbraP/SX75j FhW6/+PAh5PCyZN9Bg== -----END CERTIFICATE-----Generated at Mon Feb 2 12:45:37 2026 by rpki-client