This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/mD6ikZcZkNxIb5OBJ4P63Yet6GM.cer File: mD6ikZcZkNxIb5OBJ4P63Yet6GM.cer (raw, json) Hash identifier: Qf+roFnqf9fSykSRbjtNmf1PZy+8IYihP1GRLxuoDU8= Subject key identifier: 98:3E:A2:91:97:19:90:DC:48:6F:93:81:27:83:FA:DD:87:AD:E8:63 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A34D6AAC6A6B8F29F23A06721645F8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/66/42e99c-74a7-4155-b2b4-c6e9e0fd7080/1/mD6ikZcZkNxIb5OBJ4P63Yet6GM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/66/42e99c-74a7-4155-b2b4-c6e9e0fd7080/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 200202 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:4d:6a:ac:6a:6b:8f:29:f2:3a:06:72:16:45:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=983ea291971990dc486f93812783fadd87ade863 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:13:83:fc:14:77:c8:7e:2f:7f:a0:9a:04:92: 50:aa:93:ab:28:9a:0b:22:07:60:37:15:54:ae:20: d7:f1:d4:4b:d7:04:d8:09:78:d7:8d:94:ef:1b:89: d3:87:25:6f:de:6b:83:d1:6c:41:c7:b5:f2:2e:dd: 62:48:69:7c:a2:74:65:90:6f:90:7f:e7:ce:39:a6: ce:b9:3f:ae:b2:e1:82:e4:83:54:a8:c4:8b:5f:a8: e1:0c:b1:8b:d7:43:7f:08:af:dd:92:79:14:d1:13: c5:34:61:61:c8:34:b5:18:23:7e:9d:f8:41:4d:fe: d9:95:d6:b4:c9:c6:d4:3f:60:52:29:9d:73:9d:5d: 0e:f4:4b:4a:4d:c1:0b:23:f5:ac:4a:6e:fe:6f:3d: 65:30:85:2e:61:aa:af:89:6b:92:f4:20:03:dc:b0: b1:66:00:60:7b:3b:d5:db:07:66:9a:95:10:07:90: b8:20:f8:c5:26:67:d6:6e:8d:23:ee:9c:a8:b5:84: ff:20:2f:13:65:fd:1e:c3:36:1a:34:d0:bc:f2:56: 7e:67:ac:5c:dc:f3:84:32:78:f3:ee:d7:91:0d:2b: 8c:fa:5f:7d:8c:18:7f:24:8d:5f:1e:cc:2f:60:18: aa:d0:a6:25:55:c7:1c:d8:e3:0f:ea:d4:10:63:cc: df:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 98:3E:A2:91:97:19:90:DC:48:6F:93:81:27:83:FA:DD:87:AD:E8:63 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/42e99c-74a7-4155-b2b4-c6e9e0fd7080/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/42e99c-74a7-4155-b2b4-c6e9e0fd7080/1/mD6ikZcZkNxIb5OBJ4P63Yet6GM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 200202 Signature Algorithm: sha256WithRSAEncryption 8f:49:02:6a:01:4e:47:61:17:e0:7a:0c:49:b6:d7:5c:c8:ff: 3d:69:c7:9c:20:7e:bf:a8:7a:8b:c4:ec:fb:7d:bd:1d:a7:9e: fa:ab:8e:9e:80:72:a8:6c:6a:c0:e3:2e:45:e1:0e:98:ce:1e: c4:75:26:25:6f:9c:7b:be:24:98:df:d9:2c:d0:8b:61:63:da: d7:16:76:1a:1f:88:13:d8:22:6c:8f:2d:e9:ac:9a:73:03:fd: bd:36:a0:bd:f9:b8:8a:1e:ab:d1:42:a5:f5:a4:a1:25:71:24: 91:21:cf:ab:f3:89:51:cc:d7:e9:63:0b:3c:2d:f6:ea:c3:88: 30:4f:ca:98:39:40:d0:92:d6:db:f3:ce:d2:c8:90:1a:ce:30: 44:d3:87:2c:3e:43:2d:14:7f:38:78:49:3f:57:e8:d2:40:65: 40:95:28:d6:1c:56:56:ee:0a:18:51:59:3c:fd:7e:0d:9c:c9: ca:78:ff:4f:48:76:26:f0:23:c8:92:a4:c5:8e:6b:06:e1:13: 51:ee:6d:fd:a2:77:ba:9f:a2:08:24:5b:7a:3d:62:f6:2b:a8: 42:79:57:b0:37:04:9f:ce:3f:a0:64:f2:32:80:31:b8:9c:b8: ab:f4:06:64:84:25:c3:77:e1:85:c1:20:9c:0c:2a:72:7d:ad: 02:01:9c:b7 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt4o01qrGprjynyOgZyFkX4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ODNlYTI5MTk3MTk5MGRjNDg2ZjkzODEyNzgzZmFkZDg3YWRlODYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvxOD/BR3yH4vf6CaBJJQqpOrKJoL IgdgNxVUriDX8dRL1wTYCXjXjZTvG4nThyVv3muD0WxBx7XyLt1iSGl8onRlkG+Q f+fOOabOuT+usuGC5INUqMSLX6jhDLGL10N/CK/dknkU0RPFNGFhyDS1GCN+nfhB Tf7Zlda0ycbUP2BSKZ1znV0O9EtKTcELI/WsSm7+bz1lMIUuYaqviWuS9CAD3LCx ZgBgezvV2wdmmpUQB5C4IPjFJmfWbo0j7pyotYT/IC8TZf0ewzYaNNC88lZ+Z6xc 3POEMnjz7teRDSuM+l99jBh/JI1fHswvYBiq0KYlVccc2OMP6tQQY8zffQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFJg+opGXGZDcSG+TgSeD+t2HrehjMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY2LzQyZTk5 Yy03NGE3LTQxNTUtYjJiNC1jNmU5ZTBmZDcwODAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYvNDJlOTlj LTc0YTctNDE1NS1iMmI0LWM2ZTllMGZkNzA4MC8xL21ENmlrWmNaa054SWI1T0JK NFA2M1lldDZHTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMOCjANBgkqhkiG9w0BAQsFAAOCAQEAj0kCagFOR2EX 4HoMSbbXXMj/PWnHnCB+v6h6i8Ts+329Haee+quOnoByqGxqwOMuReEOmM4exHUm JW+ce74kmN/ZLNCLYWPa1xZ2Gh+IE9gibI8t6ayacwP9vTagvfm4ih6r0UKl9aSh JXEkkSHPq/OJUczX6WMLPC326sOIME/KmDlA0JLW2/PO0siQGs4wRNOHLD5DLRR/ OHhJP1fo0kBlQJUo1hxWVu4KGFFZPP1+DZzJynj/T0h2JvAjyJKkxY5rBuETUe5t /aJ3up+iCCRbej1i9iuoQnlXsDcEn84/oGTyMoAxuJy4q/QGZIQlw3fhhcEgnAwq cn2tAgGctw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:22 2026 by rpki-client