This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nm8mIuZcLuhjUB13IUdaBe9TQ_s.cer File: nm8mIuZcLuhjUB13IUdaBe9TQ_s.cer (raw, json) Hash identifier: duAanJRhC3FASfDLI5HbVPvYgjEBxR8e6I7+lQWPtrM= Subject key identifier: 9E:6F:26:22:E6:5C:2E:E8:63:50:1D:77:21:47:5A:05:EF:53:43:FB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A307E320626C649040195CD40B0045 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c1/593dd5-b907-4de8-80cd-b1db70071dde/1/nm8mIuZcLuhjUB13IUdaBe9TQ_s.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c1/593dd5-b907-4de8-80cd-b1db70071dde/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:28 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 62031 IP: 185.50.48.0/22 IP: 193.242.138.0/23 IP: 2a04:bb40::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a3:07:e3:20:62:6c:64:90:40:19:5c:d4:0b:00:45 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:28 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9e6f2622e65c2ee863501d7721475a05ef5343fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:e9:ce:41:c0:a4:da:75:1d:e4:9c:f0:be:3b: 75:bc:d7:07:51:3a:dd:82:5e:9d:cb:a0:61:fd:92: f7:36:6f:f8:a8:7d:46:1d:ec:60:a8:40:0b:99:2c: 1a:1c:8f:24:c7:64:44:05:3f:92:a4:2a:8b:c1:62: 20:fb:5c:c3:69:6b:aa:9d:45:db:5a:75:ad:fd:9c: b1:fc:18:66:f8:e9:c3:ef:cd:a9:94:97:f5:ad:56: 55:b5:46:5e:91:2b:7e:8f:0b:bc:37:d7:74:0e:88: ed:42:a7:6b:dc:ac:bb:12:e4:8e:20:ef:a6:f1:26: 48:a8:48:b9:6b:5d:84:d6:33:e7:50:a5:bb:44:cc: 7b:74:ad:4e:77:32:dd:25:00:3b:85:8a:31:b0:33: 4c:5a:2b:94:b7:2d:20:85:81:6f:79:76:ff:84:3f: dc:ef:10:91:ea:4b:87:68:76:bb:71:94:93:b1:43: cb:e7:cd:0f:13:b8:27:a2:96:74:aa:d9:5d:62:6a: ee:ee:1e:31:87:7c:85:56:0e:ac:e0:d5:8a:36:89: e0:00:41:8e:8f:28:0b:d6:d3:b9:a6:14:d9:62:d4: 65:06:bc:f3:1d:00:65:ea:b0:48:c5:06:3e:99:e7: 63:16:94:26:f5:f9:2c:d3:30:5d:5b:99:84:a5:8e: 0b:d3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:6F:26:22:E6:5C:2E:E8:63:50:1D:77:21:47:5A:05:EF:53:43:FB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/593dd5-b907-4de8-80cd-b1db70071dde/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c1/593dd5-b907-4de8-80cd-b1db70071dde/1/nm8mIuZcLuhjUB13IUdaBe9TQ_s.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.50.48.0/22 193.242.138.0/23 IPv6: 2a04:bb40::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 62031 Signature Algorithm: sha256WithRSAEncryption 37:7d:35:6c:05:0d:2f:43:03:87:80:4d:6a:7f:37:1c:18:10: f8:ba:fc:69:d0:9b:af:65:8a:e0:d7:46:59:bb:53:4b:b6:3b: 4c:c3:c2:f3:5f:9d:03:2a:2c:46:37:68:59:80:8a:0a:e8:ae: cb:2a:84:6b:52:12:31:51:b4:1f:f7:61:e2:04:1e:2c:f1:4c: 93:2d:f2:29:9c:d2:1a:ea:8f:e6:3b:92:c3:1f:37:f4:d9:0f: a8:98:42:15:72:30:c3:f9:42:e9:74:51:5f:56:84:3d:0a:05: e8:7d:58:e5:49:77:19:a6:7e:35:50:2a:65:14:68:d2:d6:8b: d3:0b:32:d7:31:9d:26:4d:03:d7:93:9f:82:0e:ef:8a:b8:04: 39:c8:04:40:f7:6d:b0:30:8e:a5:e4:24:f8:24:1d:77:a3:75: f4:6d:37:78:29:be:34:ed:60:41:b8:e3:bc:47:6a:ca:6b:c6: 4d:10:ac:a4:5c:0f:2b:c2:76:23:7f:b4:3e:9a:4d:67:e8:25: 63:1f:23:b6:fb:af:47:57:25:41:ad:7b:16:04:1d:f6:bb:8b: 1d:22:d9:b6:69:e5:4e:02:50:58:5d:b4:03:7d:1f:5d:b1:1d: 81:3a:db:37:c7:4e:e5:8b:39:3a:be:54:f1:fb:0c:8c:5a:ae: ec:7f:b9:ef -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt4owfjIGJsZJBAGVzUCwBFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODI4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZTZmMjYyMmU2NWMyZWU4NjM1MDFkNzcyMTQ3NWEwNWVmNTM0M2ZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwenOQcCk2nUd5Jzwvjt1vNcHUTrd gl6dy6Bh/ZL3Nm/4qH1GHexgqEALmSwaHI8kx2REBT+SpCqLwWIg+1zDaWuqnUXb WnWt/Zyx/Bhm+OnD782plJf1rVZVtUZekSt+jwu8N9d0DojtQqdr3Ky7EuSOIO+m 8SZIqEi5a12E1jPnUKW7RMx7dK1OdzLdJQA7hYoxsDNMWiuUty0ghYFveXb/hD/c 7xCR6kuHaHa7cZSTsUPL580PE7gnopZ0qtldYmru7h4xh3yFVg6s4NWKNongAEGO jygL1tO5phTZYtRlBrzzHQBl6rBIxQY+medjFpQm9fks0zBdW5mEpY4L0wIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFJ5vJiLmXC7oY1AddyFHWgXvU0P7MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2MxLzU5M2Rk NS1iOTA3LTRkZTgtODBjZC1iMWRiNzAwNzFkZGUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzEvNTkzZGQ1 LWI5MDctNGRlOC04MGNkLWIxZGI3MDA3MWRkZS8xL25tOG1JdVpjTHVoalVCMTNJ VWRhQmU5VFFfcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQCuTIwAwQBwfKKMA0EAgACMAcDBQMqBLtAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwDyTzANBgkqhkiG9w0BAQsFAAOCAQEAN301 bAUNL0MDh4BNan83HBgQ+Lr8adCbr2WK4NdGWbtTS7Y7TMPC81+dAyosRjdoWYCK CuiuyyqEa1ISMVG0H/dh4gQeLPFMky3yKZzSGuqP5juSwx839NkPqJhCFXIww/lC 6XRRX1aEPQoF6H1Y5Ul3GaZ+NVAqZRRo0taL0wsy1zGdJk0D15Ofgg7virgEOcgE QPdtsDCOpeQk+CQdd6N19G03eCm+NO1gQbjjvEdqymvGTRCspFwPK8J2I3+0PppN Z+glYx8jtvuvR1clQa17FgQd9ruLHSLZtmnlTgJQWF20A30fXbEdgTrbN8dO5Ys5 Or5U8fsMjFqu7H+57w== -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:04 2026 by rpki-client