This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer File: jdCYF9_qTGbJQY-fOQbx0OB8ydQ.cer (raw, json) Hash identifier: tZDtPGSAWIqsH2xElLOsoS6Q2laxIiPE+b3FWoNaetA= Subject key identifier: 8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7FF2154A82368861FDAFEE2EA90817CC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 18:22:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 212464 IP: 2001:67c:2be0::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:f2:15:4a:82:36:88:61:fd:af:ee:2e:a9:08:17:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 18:22:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8dd09817dfea4c66c9418f9f3906f1d0e07cc9d4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:86:15:09:c1:54:ec:a3:68:30:43:5d:26:3c: ae:a5:86:2d:ce:e5:f0:7b:de:99:b0:50:c1:21:48: db:e9:54:c1:8a:11:36:87:b3:be:88:51:62:08:45: 57:e1:d3:8a:9d:8e:c5:44:e7:e0:d1:02:aa:2a:f6: ec:b3:ef:20:85:6c:29:55:80:7c:36:ad:10:44:85: 89:2f:dd:ba:b2:88:1a:1a:49:2a:e0:5f:de:c2:ac: 9d:3a:08:d3:3a:bc:95:ce:8e:10:53:8b:13:11:e4: 85:cf:8e:38:76:40:aa:f1:b5:95:39:93:c9:4d:31: 4f:39:8c:0e:64:4c:ac:34:c6:ac:98:28:df:9d:96: 52:b2:6c:c2:d2:d5:39:0a:07:36:03:6d:36:12:3d: bc:20:8f:a5:be:8f:d0:ee:7b:9d:2e:41:f4:69:94: 1a:4e:2b:4b:63:d6:9b:ca:b2:b6:fb:a7:3c:4a:cd: f9:60:a2:4f:a4:37:c6:ec:57:16:71:16:f5:e0:39: e6:91:53:a4:ca:2f:6f:89:f9:fe:7f:2d:58:57:ce: ad:c8:68:24:6b:b4:9b:09:d6:92:c1:9a:63:ad:7b: 33:a8:04:c3:d2:7f:f0:f0:7f:03:ae:35:82:c4:4e: 38:d3:f3:7d:31:78:92:d6:58:1d:bc:3c:aa:3c:47: 54:99 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8D:D0:98:17:DF:EA:4C:66:C9:41:8F:9F:39:06:F1:D0:E0:7C:C9:D4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c7/9337ec-b4de-449a-b607-ea9cb527ae71/1/jdCYF9_qTGbJQY-fOQbx0OB8ydQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:2be0::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 212464 Signature Algorithm: sha256WithRSAEncryption 7c:33:8c:24:b1:d1:65:28:38:1c:4c:64:fd:e5:28:46:7b:91: a5:84:13:f7:9d:e7:62:a5:30:34:03:7e:77:c6:ac:7e:0e:0d: cf:f8:27:f2:af:ff:53:c1:66:8a:eb:2a:ed:36:5a:da:3f:f9: 6f:2d:7d:a7:1d:b6:d0:3e:8c:f7:bb:a0:d5:38:7f:c3:9c:ba: f2:7d:91:d2:80:7a:39:0e:1d:70:bb:39:b4:ea:e3:9c:0e:a1: 35:c0:a2:48:7e:59:e1:f3:fd:21:a0:22:02:c8:a8:72:f1:99: 4e:48:9b:c8:00:92:d1:75:af:6b:44:f3:e5:a5:73:29:f1:e3: 90:6a:79:71:5c:a8:59:34:35:d6:5a:d8:2f:d5:43:c7:9e:db: 66:09:47:48:45:c6:35:93:40:28:89:e0:eb:ad:e2:5e:15:cc: 1b:83:88:6f:de:15:b1:bc:4a:41:21:93:92:4c:c7:2c:79:f1: 1e:39:11:0f:7d:5f:b8:f9:da:49:a5:0e:bf:39:35:e7:c2:91: 11:31:7f:52:6e:20:95:72:b0:2b:92:77:f4:3a:11:50:98:17: 8d:6d:1b:3f:2b:8a:2c:05:63:97:9e:24:91:18:d0:38:f6:65: 94:20:6d:d1:ea:7e:3c:78:4e:44:dd:4b:e6:60:94:5e:f6:57: 4b:0d:28:91 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt/8hVKgjaIYf2v7i6pCBfMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTgyMjEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZGQwOTgxN2RmZWE0YzY2Yzk0MThmOWYzOTA2ZjFkMGUwN2NjOWQ0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7oYVCcFU7KNoMENdJjyupYYtzuXw e96ZsFDBIUjb6VTBihE2h7O+iFFiCEVX4dOKnY7FROfg0QKqKvbss+8ghWwpVYB8 Nq0QRIWJL926sogaGkkq4F/ewqydOgjTOryVzo4QU4sTEeSFz444dkCq8bWVOZPJ TTFPOYwOZEysNMasmCjfnZZSsmzC0tU5Cgc2A202Ej28II+lvo/Q7nudLkH0aZQa TitLY9abyrK2+6c8Ss35YKJPpDfG7FcWcRb14DnmkVOkyi9vifn+fy1YV86tyGgk a7SbCdaSwZpjrXszqATD0n/w8H8DrjWCxE440/N9MXiS1lgdvDyqPEdUmQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFI3QmBff6kxmyUGPnzkG8dDgfMnUMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M3LzkzMzdl Yy1iNGRlLTQ0OWEtYjYwNy1lYTljYjUyN2FlNzEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzcvOTMzN2Vj LWI0ZGUtNDQ5YS1iNjA3LWVhOWNiNTI3YWU3MS8xL2pkQ1lGOV9xVEdiSlFZLWZP UWJ4ME9COHlkUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfCvgMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwM98DANBgkqhkiG9w0BAQsFAAOCAQEAfDOMJLHRZSg4HExk/eUoRnuRpYQT 953nYqUwNAN+d8asfg4Nz/gn8q//U8Fmiusq7TZa2j/5by19px220D6M97ug1Th/ w5y68n2R0oB6OQ4dcLs5tOrjnA6hNcCiSH5Z4fP9IaAiAsiocvGZTkibyACS0XWv a0Tz5aVzKfHjkGp5cVyoWTQ11lrYL9VDx57bZglHSEXGNZNAKIng663iXhXMG4OI b94VsbxKQSGTkkzHLHnxHjkRD31fuPnaSaUOvzk158KRETF/Um4glXKwK5J39DoR UJgXjW0bPyuKLAVjl54kkRjQOPZllCBt0ep+PHhORN1L5mCUXvZXSw0okQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:13:29 2026 by rpki-client