This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jP3v7O1c7o8abJN5jlo0tiH23As.cer File: jP3v7O1c7o8abJN5jlo0tiH23As.cer (raw, json) Hash identifier: Z6SAErqinsV414UM2iWHhfFr8vn0TVKQ9omK1lXTe1g= Subject key identifier: 8C:FD:EF:EC:ED:5C:EE:8F:1A:6C:93:79:8E:5A:34:B6:21:F6:DC:0B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DC8A1F78B51925A01840F5CC7142393 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/jP3v7O1c7o8abJN5jlo0tiH23As.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:17:39 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 204003 IP: 2001:67c:20ec::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 03 Feb 2026 06:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:c8:a1:f7:8b:51:92:5a:01:84:0f:5c:c7:14:23:93 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:17:39 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8cfdefeced5cee8f1a6c93798e5a34b621f6dc0b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:37:5f:0f:56:d7:31:e4:ce:f7:ac:6a:d9:28: 1a:e8:5d:fe:22:8f:7b:45:69:4e:3f:50:9a:e9:89: 57:69:a9:29:e6:df:8d:a9:98:29:69:95:eb:f1:f7: 59:19:fc:48:31:b6:f0:77:43:43:bc:6e:cb:0d:e1: ab:49:7e:83:cd:9b:97:06:66:34:9b:cc:78:8f:d4: 3c:94:e1:47:a1:b6:7a:8b:7a:56:fc:03:72:d5:da: 5d:d8:ad:5d:08:6f:4d:14:f4:a3:5c:53:18:08:a1: 6d:27:83:d8:83:1b:6f:99:e4:d1:a7:0a:ae:97:64: 5f:0a:37:00:42:2b:a5:d9:78:35:36:83:5e:c7:d1: c5:32:15:d8:3f:42:d0:95:b2:17:85:12:7c:ff:22: 39:60:13:25:97:5a:26:50:44:c6:40:6c:44:ba:ea: e2:4d:6e:bd:dd:19:01:33:40:4f:da:46:42:d0:75: 60:75:91:4b:d6:bb:26:27:04:9b:4d:ef:9b:36:13: a1:e6:54:a9:7e:03:10:f1:4a:8d:c8:c1:7a:e0:4c: 23:d4:2d:3c:f3:5e:06:35:ab:18:f0:f6:ae:22:ff: 58:ea:e6:31:ed:1e:c5:1f:5a:e8:4c:52:7d:5f:ff: 4b:75:e0:eb:a6:57:85:8b:a3:47:fd:81:95:1e:6a: 97:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8C:FD:EF:EC:ED:5C:EE:8F:1A:6C:93:79:8E:5A:34:B6:21:F6:DC:0B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/5a/9fb7ab-f3cb-47fc-9a14-06cdeb38f7b6/1/jP3v7O1c7o8abJN5jlo0tiH23As.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:20ec::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 204003 Signature Algorithm: sha256WithRSAEncryption 5b:91:b1:10:2c:65:8b:54:80:e1:c0:96:d0:eb:99:5d:cc:c7: 5e:dd:0d:91:f6:d6:0a:38:b4:00:73:00:39:37:3f:79:53:f9: a1:f5:69:3b:1c:d9:80:99:01:93:1f:09:e3:b1:2d:77:83:3c: 88:00:8c:6a:7b:6e:0d:0e:0a:9b:1c:9d:64:5b:a0:5f:b2:0a: d9:0d:29:1a:85:9f:3a:e9:b2:26:c5:6c:8e:44:95:43:ca:7e: ed:3c:38:b5:95:94:36:58:a3:e9:92:35:e3:d8:2c:4a:d1:52: 77:f9:9c:29:d3:05:32:65:9a:0c:30:fe:98:96:ba:22:14:f2: 99:29:35:54:1e:bf:71:0b:ab:5d:b5:51:8d:72:b8:b6:b7:aa: 67:50:2b:17:b3:d4:3e:e0:3b:6b:c0:54:4b:f6:6c:f0:de:69: 38:c8:b9:cf:f4:31:df:57:9f:65:d9:18:6d:d1:14:4a:43:66: ae:ea:b6:e3:1e:41:d3:86:fb:c3:94:de:f1:ed:02:2b:9a:07: a0:8e:7c:10:74:8c:26:7b:b7:13:0f:49:4a:0e:9c:17:43:26: 95:bb:bf:e3:ce:a2:40:4b:86:ba:f1:a1:6d:a2:66:d3:9f:bd: 3b:29:a0:85:0c:87:10:44:22:15:ae:15:4b:f6:00:d1:e0:af: 8a:01:5d:3c -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt9yKH3i1GSWgGED1zHFCOTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxNzM5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4Y2ZkZWZlY2VkNWNlZThmMWE2YzkzNzk4ZTVhMzRiNjIxZjZkYzBiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmzdfD1bXMeTO96xq2Sga6F3+Io97 RWlOP1Ca6YlXaakp5t+NqZgpaZXr8fdZGfxIMbbwd0NDvG7LDeGrSX6DzZuXBmY0 m8x4j9Q8lOFHobZ6i3pW/ANy1dpd2K1dCG9NFPSjXFMYCKFtJ4PYgxtvmeTRpwqu l2RfCjcAQiul2Xg1NoNex9HFMhXYP0LQlbIXhRJ8/yI5YBMll1omUETGQGxEuuri TW693RkBM0BP2kZC0HVgdZFL1rsmJwSbTe+bNhOh5lSpfgMQ8UqNyMF64Ewj1C08 814GNasY8PauIv9Y6uYx7R7FH1roTFJ9X/9LdeDrpleFi6NH/YGVHmqXNwIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFIz97+ztXO6PGmyTeY5aNLYh9twLMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzVhLzlmYjdh Yi1mM2NiLTQ3ZmMtOWExNC0wNmNkZWIzOGY3YjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNWEvOWZiN2Fi LWYzY2ItNDdmYy05YTE0LTA2Y2RlYjM4ZjdiNi8xL2pQM3Y3TzFjN284YWJKTjVq bG8wdGlIMjNBcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCDsMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMc4zANBgkqhkiG9w0BAQsFAAOCAQEAW5GxECxli1SA4cCW0OuZXczHXt0N kfbWCji0AHMAOTc/eVP5ofVpOxzZgJkBkx8J47Etd4M8iACMantuDQ4KmxydZFug X7IK2Q0pGoWfOumyJsVsjkSVQ8p+7Tw4tZWUNlij6ZI149gsStFSd/mcKdMFMmWa DDD+mJa6IhTymSk1VB6/cQurXbVRjXK4treqZ1ArF7PUPuA7a8BUS/Zs8N5pOMi5 z/Qx31efZdkYbdEUSkNmruq24x5B04b7w5Te8e0CK5oHoI58EHSMJnu3Ew9JSg6c F0Mmlbu/486iQEuGuvGhbaJm05+9OymghQyHEEQiFa4VS/YA0eCvigFdPA== -----END CERTIFICATE-----Generated at Mon Feb 2 12:45:36 2026 by rpki-client