This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nGIPMbSZfHNFvGa0a0PWhr8Akxo.cer File: nGIPMbSZfHNFvGa0a0PWhr8Akxo.cer (raw, json) Hash identifier: lSQto3xccp8jEE2R1eFYJ0DDoMrjqM1aMKKWt7nHzIc= Subject key identifier: 9C:62:0F:31:B4:99:7C:73:45:BC:66:B4:6B:43:D6:86:BF:00:93:1A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C8095CCCD60F8C1CB5943268A8E5FB5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/66/8928f1-8618-4c19-9f3d-4b8793db7460/1/nGIPMbSZfHNFvGa0a0PWhr8Akxo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/66/8928f1-8618-4c19-9f3d-4b8793db7460/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:19:20 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 20618 IP: 213.132.0.0/19 IP: 2a02:4bc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:80:95:cc:cd:60:f8:c1:cb:59:43:26:8a:8e:5f:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:19:20 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9c620f31b4997c7345bc66b46b43d686bf00931a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:d0:50:3d:af:95:ed:ad:2e:ef:09:08:70:61: 31:b4:d6:f7:4d:52:fb:be:56:72:9f:95:15:16:cc: 3f:a9:40:e3:63:5a:4e:64:e3:74:89:d3:6e:49:93: e9:70:c8:3f:59:48:76:a2:2f:3f:16:f6:62:bd:96: 36:35:dc:85:11:18:84:01:a2:1e:9f:a4:b7:e4:6b: 97:5f:28:0f:05:7c:c8:4b:6a:a9:b6:6f:01:fc:5b: e2:d6:7f:46:fe:38:25:0e:2b:7c:be:d5:ad:59:61: a9:bd:ec:28:f6:fd:14:4b:b0:5e:00:a0:73:d3:17: 1f:14:5f:fe:54:d7:63:cc:b4:8a:89:aa:1d:68:f8: 64:ee:27:26:45:9a:cf:c4:08:7d:22:fa:5c:30:1d: 28:42:b1:87:8a:85:0b:55:02:f8:2a:52:66:de:3d: ca:bb:6c:69:c0:58:59:06:10:44:bc:ad:02:19:ef: d4:6d:5b:5d:d8:df:37:2b:b7:53:f5:9f:a2:0d:b6: 97:20:34:40:b4:c9:a0:68:22:b2:34:72:f1:82:0d: 73:b9:99:6b:cd:b4:2c:9a:a1:c5:e1:84:60:42:6c: d6:75:e4:f1:bd:a3:a1:da:bf:c3:1a:c9:d2:63:66: 1f:a3:2c:f0:f5:d0:26:35:0b:ae:72:61:c3:66:c0: 05:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:62:0F:31:B4:99:7C:73:45:BC:66:B4:6B:43:D6:86:BF:00:93:1A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8928f1-8618-4c19-9f3d-4b8793db7460/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/66/8928f1-8618-4c19-9f3d-4b8793db7460/1/nGIPMbSZfHNFvGa0a0PWhr8Akxo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 213.132.0.0/19 IPv6: 2a02:4bc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 20618 Signature Algorithm: sha256WithRSAEncryption 20:54:78:42:cd:9c:db:2e:3d:0e:a0:cb:35:4f:c6:30:95:28: d8:00:0b:11:01:a9:c4:e6:d9:4a:ad:a8:8e:ee:e3:a5:1c:df: 87:15:6b:e1:5d:62:20:75:77:66:28:a9:06:53:ee:06:bd:8a: c3:07:eb:9b:c0:5e:30:32:5e:72:d6:ff:33:e4:ff:8e:fb:d5: f6:80:d0:ec:9a:31:f5:f6:3f:8d:af:2a:fe:74:9e:f0:0c:e6: f9:48:ca:f6:e0:76:9f:ad:44:65:10:7e:ec:d4:14:7a:b7:f6: 51:56:27:7b:ca:9b:ea:23:67:6b:f5:c2:1a:aa:eb:c2:83:e1: 89:26:ed:14:8b:a7:18:42:1c:64:50:75:ab:f8:5a:b7:a8:51: 69:b6:74:b8:34:43:c6:20:c3:d0:6a:69:f8:0b:ec:dd:a8:ab: 34:bd:c3:e2:57:4d:ac:3f:70:79:2c:b6:8e:8b:c4:6d:58:f1: a3:d2:b7:57:97:86:8c:a0:c5:a1:bb:b1:98:4a:f0:80:55:91: 04:81:a3:8e:c4:3a:11:77:30:46:7c:5a:40:54:0c:f4:23:c5: be:68:1c:ad:a7:e7:61:d8:d4:e5:b7:5c:76:d2:af:6b:ca:5f: bc:ef:93:7f:c4:e4:2e:2f:b2:5d:43:d2:79:49:68:2f:0c:54: 29:92:c2:41 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgISAZt8gJXMzWD4wctZQyaKjl+1MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxOTIwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5YzYyMGYzMWI0OTk3YzczNDViYzY2YjQ2YjQzZDY4NmJmMDA5MzFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwNBQPa+V7a0u7wkIcGExtNb3TVL7 vlZyn5UVFsw/qUDjY1pOZON0idNuSZPpcMg/WUh2oi8/FvZivZY2NdyFERiEAaIe n6S35GuXXygPBXzIS2qptm8B/Fvi1n9G/jglDit8vtWtWWGpvewo9v0US7BeAKBz 0xcfFF/+VNdjzLSKiaodaPhk7icmRZrPxAh9IvpcMB0oQrGHioULVQL4KlJm3j3K u2xpwFhZBhBEvK0CGe/UbVtd2N83K7dT9Z+iDbaXIDRAtMmgaCKyNHLxgg1zuZlr zbQsmqHF4YRgQmzWdeTxvaOh2r/DGsnSY2Yfoyzw9dAmNQuucmHDZsAFfQIDAQAB o4ICrjCCAqowHQYDVR0OBBYEFJxiDzG0mXxzRbxmtGtD1oa/AJMaMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY2Lzg5Mjhm MS04NjE4LTRjMTktOWYzZC00Yjg3OTNkYjc0NjAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjYvODkyOGYx LTg2MTgtNGMxOS05ZjNkLTRiODc5M2RiNzQ2MC8xL25HSVBNYlNaZkhORnZHYTBh MFBXaHI4QWt4by5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQF1YQAMA0EAgACMAcDBQMqAkvAMBkGCCsGAQUF BwEIAQH/BAowCKAGMAQCAlCKMA0GCSqGSIb3DQEBCwUAA4IBAQAgVHhCzZzbLj0O oMs1T8YwlSjYAAsRAanE5tlKraiO7uOlHN+HFWvhXWIgdXdmKKkGU+4GvYrDB+ub wF4wMl5y1v8z5P+O+9X2gNDsmjH19j+Nryr+dJ7wDOb5SMr24HafrURlEH7s1BR6 t/ZRVid7ypvqI2dr9cIaquvCg+GJJu0Ui6cYQhxkUHWr+Fq3qFFptnS4NEPGIMPQ amn4C+zdqKs0vcPiV02sP3B5LLaOi8RtWPGj0rdXl4aMoMWhu7GYSvCAVZEEgaOO xDoRdzBGfFpAVAz0I8W+aBytp+dh2NTlt1x20q9ryl+875N/xOQuL7JdQ9J5SWgv DFQpksJB -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:14 2026 by rpki-client