This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/jm11tOSYb6zLYUszTkXV4Dk1Kpw.cer File: jm11tOSYb6zLYUszTkXV4Dk1Kpw.cer (raw, json) Hash identifier: bqRf7tqyChRIo2xBqJtPbKmezlY6flH397MPvjRC+tw= Subject key identifier: 8E:6D:75:B4:E4:98:6F:AC:CB:61:4B:33:4E:45:D5:E0:39:35:2A:9C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA4CC874398DFEEA97A9A5DC0944F5B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f9/aca994-f3c0-45a4-a642-6d7602d24c83/1/jm11tOSYb6zLYUszTkXV4Dk1Kpw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f9/aca994-f3c0-45a4-a642-6d7602d24c83/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:16 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 20691 IP: 91.209.188.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a4:cc:87:43:98:df:ee:a9:7a:9a:5d:c0:94:4f:5b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8e6d75b4e4986faccb614b334e45d5e039352a9c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d1:e6:c7:29:07:1b:fa:8e:c1:6a:81:67:53:1a: bd:8c:78:f4:a5:d2:6a:f8:63:a6:d1:de:54:af:d3: 36:16:d7:df:1a:97:44:45:88:a6:26:c6:76:2a:d5: 25:a9:e7:5b:9d:52:fa:6a:82:72:b4:65:36:76:1a: f9:c1:a1:2b:b6:bf:a8:f2:fb:b2:f0:65:ec:bd:5b: cf:f7:eb:ec:30:6a:71:29:12:70:e3:62:bb:18:fb: d9:18:60:ec:1f:c2:87:c8:da:56:81:da:bb:48:b0: dd:b2:16:77:27:e0:20:e8:85:4e:88:89:3e:0a:f0: 43:53:b4:81:d1:ab:87:f6:c9:8c:1a:c5:33:ee:32: d6:72:a1:b4:54:28:dc:48:b6:3e:ef:9a:21:5d:7d: b9:3b:89:2e:2f:36:44:16:11:f9:b7:f1:cb:03:28: 21:eb:e1:db:d2:a2:4b:e3:92:40:e3:55:5e:e4:52: d3:ee:3d:ee:71:76:9e:30:dc:fc:68:3c:fc:4b:8c: 1c:79:39:46:db:d5:25:1d:33:a4:95:cc:c6:69:10: e4:e3:59:86:47:40:55:7a:d9:61:34:94:02:03:46: d9:02:50:6f:75:eb:4c:68:a6:5f:fe:35:2b:c6:81: 72:38:87:6e:6e:12:b0:32:91:a1:4d:a0:59:29:d5: 29:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8E:6D:75:B4:E4:98:6F:AC:CB:61:4B:33:4E:45:D5:E0:39:35:2A:9C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/aca994-f3c0-45a4-a642-6d7602d24c83/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f9/aca994-f3c0-45a4-a642-6d7602d24c83/1/jm11tOSYb6zLYUszTkXV4Dk1Kpw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.209.188.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 20691 Signature Algorithm: sha256WithRSAEncryption 07:a7:8c:f5:dc:3b:c8:06:12:2f:27:b7:08:1e:56:0b:7c:5f: 8a:55:15:50:d4:c8:81:6b:e5:4b:66:e1:c5:a9:75:8f:a6:72: c2:d2:d3:af:e0:f0:2b:96:50:14:89:a4:bc:7e:04:b5:d2:b8: 40:48:d6:d8:10:05:db:64:37:71:c6:cf:14:0d:2e:36:54:5f: 13:3a:d0:d1:91:01:38:10:aa:56:a7:ba:aa:5d:c0:b2:45:47: d9:cd:d9:23:54:6b:59:e5:f2:e0:75:1b:85:0f:38:99:80:86: 2d:51:c1:6e:8f:16:64:49:c8:79:36:78:79:d2:9b:d1:8b:ba: 52:cf:91:5f:19:6c:8f:11:11:74:56:e7:1a:df:15:cb:21:0c: 2a:c7:07:e7:f2:17:60:38:10:5d:f1:60:11:52:7b:37:a1:e3: ad:0f:ee:99:6e:4c:51:49:23:ee:7b:e6:84:13:29:cc:5e:dd: 07:5c:2b:32:68:9a:8b:38:d2:85:0c:0a:79:38:e7:3a:5f:ac: 43:c5:2e:90:19:34:62:29:e0:b0:d6:cb:95:e8:16:00:b1:c2: e9:0b:e8:bf:00:c2:f8:4c:45:53:69:69:20:97:07:25:2e:56: 71:57:8a:5f:1e:d1:c7:67:f6:56:a7:e2:18:88:ca:c8:d0:8f: cf:17:20:10 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt7pMyHQ5jf7ql6ml3AlE9bMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4ZTZkNzViNGU0OTg2ZmFjY2I2MTRiMzM0ZTQ1ZDVlMDM5MzUyYTljMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ebHKQcb+o7BaoFnUxq9jHj0pdJq +GOm0d5Ur9M2FtffGpdERYimJsZ2KtUlqedbnVL6aoJytGU2dhr5waErtr+o8vuy 8GXsvVvP9+vsMGpxKRJw42K7GPvZGGDsH8KHyNpWgdq7SLDdshZ3J+Ag6IVOiIk+ CvBDU7SB0auH9smMGsUz7jLWcqG0VCjcSLY+75ohXX25O4kuLzZEFhH5t/HLAygh 6+Hb0qJL45JA41Ve5FLT7j3ucXaeMNz8aDz8S4wceTlG29UlHTOklczGaRDk41mG R0BVetlhNJQCA0bZAlBvdetMaKZf/jUrxoFyOIdubhKwMpGhTaBZKdUpyQIDAQAB o4ICnzCCApswHQYDVR0OBBYEFI5tdbTkmG+sy2FLM05F1eA5NSqcMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y5L2FjYTk5 NC1mM2MwLTQ1YTQtYTY0Mi02ZDc2MDJkMjRjODMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjkvYWNhOTk0 LWYzYzAtNDVhNC1hNjQyLTZkNzYwMmQyNGM4My8xL2ptMTF0T1NZYjZ6TFlVc3pU a1hWNERrMUtwdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9G8MBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AlDTMA0GCSqGSIb3DQEBCwUAA4IBAQAHp4z13DvIBhIvJ7cIHlYLfF+KVRVQ1MiB a+VLZuHFqXWPpnLC0tOv4PArllAUiaS8fgS10rhASNbYEAXbZDdxxs8UDS42VF8T OtDRkQE4EKpWp7qqXcCyRUfZzdkjVGtZ5fLgdRuFDziZgIYtUcFujxZkSch5Nnh5 0pvRi7pSz5FfGWyPERF0Vuca3xXLIQwqxwfn8hdgOBBd8WARUns3oeOtD+6ZbkxR SSPue+aEEynMXt0HXCsyaJqLONKFDAp5OOc6X6xDxS6QGTRiKeCw1suV6BYAscLp C+i/AML4TEVTaWkglwclLlZxV4pfHtHHZ/ZWp+IYiMrI0I/PFyAQ -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:42 2026 by rpki-client