This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/kVijd10MXrOPIPDvmjYRBhpRlbM.cer File: kVijd10MXrOPIPDvmjYRBhpRlbM.cer (raw, json) Hash identifier: KGx6aptzjJiC5Dy0zQbkQ+6FRVM5mIqjkaU6Vp4nLfw= Subject key identifier: 91:58:A3:77:5D:0C:5E:B3:8F:20:F0:EF:9A:36:11:06:1A:51:95:B3 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C7514F5F5F0A363E11FF4ACFD26C38 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/kVijd10MXrOPIPDvmjYRBhpRlbM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 21188 IP: 193.17.128.0 -- 193.17.169.255 IP: 193.30.24.0/22 IP: 193.32.106.0 -- 193.32.109.255 IP: 193.176.56.0 -- 193.176.60.255 IP: 194.60.96.0/20 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:51:4f:5f:5f:0a:36:3e:11:ff:4a:cf:d2:6c:38 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9158a3775d0c5eb38f20f0ef9a3611061a5195b3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:43:e7:8e:37:d2:19:eb:37:cc:f2:75:b7:73: df:4c:f1:8c:de:bd:48:01:60:03:06:bb:11:67:87: d8:0e:f7:fd:7a:f0:fe:f5:77:5a:1e:98:60:a4:26: ed:7c:ba:b0:90:24:74:a5:cb:80:72:88:f1:02:6d: c7:c8:3e:c1:1e:da:52:02:c8:d9:df:8c:de:9f:23: d2:44:ab:ae:7a:d2:bc:03:7a:df:38:89:04:fb:27: b3:b1:f9:18:14:34:03:86:44:a4:71:a9:1f:21:81: 66:b3:b2:26:41:e7:af:2b:b3:20:ff:6f:d3:12:26: 30:66:7a:51:6f:9b:fd:83:de:83:84:f2:4e:d9:13: 26:7e:f8:f2:ec:87:fc:7e:90:79:9b:0a:02:54:35: d5:98:bf:74:5e:25:84:27:4f:5e:81:5e:a1:24:8d: 42:77:57:48:6d:37:9a:ce:36:dc:e6:35:9e:83:18: e4:82:da:22:2f:17:79:79:de:79:84:cd:bc:1d:bb: 25:a8:30:0e:fa:e7:ce:3d:2a:9c:74:47:b1:ce:c9: 62:c3:c9:8e:c1:4a:39:70:3e:d2:0b:65:a0:a7:6a: c3:14:83:81:42:64:31:38:ae:35:35:96:c0:45:ff: 83:1b:9e:98:05:9e:7f:c3:53:e7:83:8b:27:06:75: ae:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 91:58:A3:77:5D:0C:5E:B3:8F:20:F0:EF:9A:36:11:06:1A:51:95:B3 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/d8/5c765c-83f3-45d1-8930-8d04f8779423/1/kVijd10MXrOPIPDvmjYRBhpRlbM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.128.0-193.17.169.255 193.30.24.0/22 193.32.106.0-193.32.109.255 193.176.56.0-193.176.60.255 194.60.96.0/20 sbgp-autonomousSysNum: critical Autonomous System Numbers: 21188 Signature Algorithm: sha256WithRSAEncryption 5f:04:78:21:48:e3:f2:45:31:ee:c0:7f:7d:4d:40:d8:2a:ff: 6e:c5:00:ab:28:c0:91:92:ee:30:e1:02:fe:14:53:bd:b1:4e: f8:1e:57:19:14:5e:4b:d9:74:cb:99:71:a5:3e:5a:b0:32:9e: 71:a4:29:81:be:bd:34:e9:1d:fc:3b:a8:a0:23:d8:36:35:76: 24:db:3c:74:10:f1:c5:09:93:63:91:42:37:45:3d:ca:40:95: 5a:ce:19:13:b5:fa:e9:08:08:d7:6f:84:a2:73:12:93:66:53: 53:4c:ae:82:84:54:8d:1a:4e:5c:90:a6:7e:0f:86:e2:43:e0: 23:60:d4:49:b4:cd:3c:ba:76:3e:49:e5:2b:7f:6a:2c:86:a9: d9:fa:bd:10:80:35:4c:20:7a:dd:86:61:f4:8e:9f:f3:cb:7f: 5e:ab:e4:88:e9:15:16:07:a6:8d:48:31:0c:11:81:ce:19:ff: 56:8b:1e:8b:92:2e:a6:ac:b5:86:b4:9d:6b:a1:81:fd:ae:ba: 5e:1b:09:1c:ef:47:c0:88:bf:ec:ce:71:8a:de:37:eb:2d:2b: 72:93:57:d0:c9:aa:85:cf:56:3d:3b:8d:b2:65:b3:13:a8:d6: 68:39:fc:5c:02:40:03:d4:33:8e:51:db:5a:03:81:17:05:b9: 9f:be:c3:4e -----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgISAZt3x1FPX18KNj4R/0rP0mw4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5MTU4YTM3NzVkMGM1ZWIzOGYyMGYwZWY5YTM2MTEwNjFhNTE5NWIzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqEPnjjfSGes3zPJ1t3PfTPGM3r1I AWADBrsRZ4fYDvf9evD+9XdaHphgpCbtfLqwkCR0pcuAcojxAm3HyD7BHtpSAsjZ 34zenyPSRKuuetK8A3rfOIkE+yezsfkYFDQDhkSkcakfIYFms7ImQeevK7Mg/2/T EiYwZnpRb5v9g96DhPJO2RMmfvjy7If8fpB5mwoCVDXVmL90XiWEJ09egV6hJI1C d1dIbTeazjbc5jWegxjkgtoiLxd5ed55hM28HbslqDAO+ufOPSqcdEexzsliw8mO wUo5cD7SC2Wgp2rDFIOBQmQxOK41NZbARf+DG56YBZ5/w1Png4snBnWu/QIDAQAB o4ICzzCCAsswHQYDVR0OBBYEFJFYo3ddDF6zjyDw75o2EQYaUZWzMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Q4LzVjNzY1 Yy04M2YzLTQ1ZDEtODkzMC04ZDA0Zjg3Nzk0MjMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZDgvNWM3NjVj LTgzZjMtNDVkMS04OTMwLThkMDRmODc3OTQyMy8xL2tWaWpkMTBNWHJPUElQRHZt allSQmhwUmxiTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CME8GCCsGAQUF BwEHAQH/BEAwPjA8BAIAATA2MAwDBAfBEYADBAHBEagDBALBHhgwDAMEAcEgagME AcEgbDAMAwQDwbA4AwQAwbA8AwQEwjxgMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQC AlLEMA0GCSqGSIb3DQEBCwUAA4IBAQBfBHghSOPyRTHuwH99TUDYKv9uxQCrKMCR ku4w4QL+FFO9sU74HlcZFF5L2XTLmXGlPlqwMp5xpCmBvr006R38O6igI9g2NXYk 2zx0EPHFCZNjkUI3RT3KQJVazhkTtfrpCAjXb4SicxKTZlNTTK6ChFSNGk5ckKZ+ D4biQ+AjYNRJtM08unY+SeUrf2oshqnZ+r0QgDVMIHrdhmH0jp/zy39eq+SI6RUW B6aNSDEMEYHOGf9Wix6Lki6mrLWGtJ1roYH9rrpeGwkc70fAiL/sznGK3jfrLSty k1fQyaqFz1Y9O42yZbMTqNZoOfxcAkAD1DOOUdtaA4EXBbmfvsNO -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:03 2026 by rpki-client