This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/nrKJ89nhO-Z6JEtyvSSUWywyCmM.cer File: nrKJ89nhO-Z6JEtyvSSUWywyCmM.cer (raw, json) Hash identifier: i4DAOJbAqgbfrZXfaaCAIolvHJaXZxm9UUqQGMpleRs= Subject key identifier: 9E:B2:89:F3:D9:E1:3B:E6:7A:24:4B:72:BD:24:94:5B:2C:32:0A:63 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCA06E7A5A21A7C76CD8BA14A3E0F24 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/nrKJ89nhO-Z6JEtyvSSUWywyCmM.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:10 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208359 IP: 188.119.108.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:06:e7:a5:a2:1a:7c:76:cd:8b:a1:4a:3e:0f:24 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:10 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9eb289f3d9e13be67a244b72bd24945b2c320a63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9b:6a:d1:2c:0e:43:ad:d2:b0:79:3b:fd:60:8f: 56:14:d6:c5:59:87:16:83:45:85:df:ba:61:0d:2a: 68:c8:5c:9d:23:d9:22:c8:1d:6b:8f:91:05:a5:58: de:53:c7:88:15:b0:15:24:d2:82:18:ae:66:ab:3a: 82:85:d8:5c:e9:58:20:8d:f5:bb:48:bf:aa:83:86: 43:52:d5:1f:68:a4:ce:b8:48:19:e8:10:b1:9f:b1: c3:68:82:6d:71:05:72:9c:b9:94:a6:05:64:3a:bb: e9:67:ae:a1:5b:7e:c5:fc:6d:d1:79:3e:59:61:6d: fc:23:a0:78:b2:35:b8:31:76:8f:38:4b:1a:b9:2f: 58:43:b4:62:18:0e:c9:54:3e:bc:88:09:df:62:d2: 48:e5:17:db:ca:3a:44:54:ef:1d:4c:3a:e1:88:82: c0:39:bb:85:b3:11:a2:ad:b9:c4:f2:c2:63:11:77: 6d:d4:3e:b9:1d:8a:ed:2e:a7:0c:cc:0f:7e:b9:7c: ab:5b:fb:d7:f9:d1:62:ea:46:06:39:36:ff:0b:fd: 48:cd:ff:5a:6d:74:78:c0:0e:ee:9f:2a:d4:16:7f: 49:d8:44:09:ef:ab:c1:96:67:6b:40:21:07:9f:3a: 45:a1:cf:2d:76:44:ce:e5:38:a5:a2:44:63:e8:48: b0:09 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9E:B2:89:F3:D9:E1:3B:E6:7A:24:4B:72:BD:24:94:5B:2C:32:0A:63 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/83/79a605-6072-4142-856e-d8e1835693cd/1/nrKJ89nhO-Z6JEtyvSSUWywyCmM.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 188.119.108.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208359 Signature Algorithm: sha256WithRSAEncryption 30:cf:46:c3:2d:87:91:4d:ca:49:6e:88:3f:84:28:25:82:ae: 5e:68:42:9a:7a:9c:c3:40:7e:69:e3:82:85:04:38:21:6c:05: 69:43:e2:bd:ba:ad:8b:52:6d:55:e3:c8:ce:05:19:d7:c5:7a: 85:0c:84:69:ab:4a:5b:79:d1:1a:54:e1:ee:8a:e5:c4:28:e1: b3:cd:dc:fc:9b:29:b2:3f:36:3b:b6:f1:7c:a5:19:ec:da:2c: 1a:9b:7c:b0:64:35:81:13:97:d9:b4:50:c3:16:c9:94:bb:30: 76:21:3a:89:8a:06:e8:52:06:a9:e7:37:2b:71:25:7b:96:6e: 96:a3:97:8c:11:3e:aa:ec:4e:56:a1:c6:53:0c:4c:c4:93:74: cb:98:11:70:a4:6c:6e:6d:52:68:fc:12:b7:0d:b6:68:17:f0: 9a:44:97:47:b2:05:94:3d:00:63:7d:e2:ea:c6:df:1f:ab:34: 1d:d0:ac:03:81:83:d6:1b:16:8a:4a:95:a3:a7:bc:f3:e8:18: 74:75:df:8a:f0:dc:00:95:e9:93:57:d8:00:4a:ae:13:fa:16: 77:7f:70:7c:f0:fd:cd:64:d1:c5:39:0b:82:61:32:56:c9:28: a8:53:db:6b:d5:fd:46:75:62:3e:94:90:b1:30:87:9a:16:61: 88:f3:f4:af -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9ygbnpaIafHbNi6FKPg8kMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTEwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5ZWIyODlmM2Q5ZTEzYmU2N2EyNDRiNzJiZDI0OTQ1YjJjMzIwYTYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm2rRLA5DrdKweTv9YI9WFNbFWYcW g0WF37phDSpoyFydI9kiyB1rj5EFpVjeU8eIFbAVJNKCGK5mqzqChdhc6VggjfW7 SL+qg4ZDUtUfaKTOuEgZ6BCxn7HDaIJtcQVynLmUpgVkOrvpZ66hW37F/G3ReT5Z YW38I6B4sjW4MXaPOEsauS9YQ7RiGA7JVD68iAnfYtJI5RfbyjpEVO8dTDrhiILA ObuFsxGirbnE8sJjEXdt1D65HYrtLqcMzA9+uXyrW/vX+dFi6kYGOTb/C/1Izf9a bXR4wA7unyrUFn9J2EQJ76vBlmdrQCEHnzpFoc8tdkTO5TilokRj6EiwCQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFJ6yifPZ4TvmeiRLcr0klFssMgpjMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgzLzc5YTYw NS02MDcyLTQxNDItODU2ZS1kOGUxODM1NjkzY2QvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODMvNzlhNjA1 LTYwNzItNDE0Mi04NTZlLWQ4ZTE4MzU2OTNjZC8xL25yS0o4OW5oTy1aNkpFdHl2 U1NVV3l3eUNtTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCvHdsMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMt5zANBgkqhkiG9w0BAQsFAAOCAQEAMM9Gwy2HkU3KSW6IP4QoJYKuXmhCmnqc w0B+aeOChQQ4IWwFaUPivbqti1JtVePIzgUZ18V6hQyEaatKW3nRGlTh7orlxCjh s83c/Jspsj82O7bxfKUZ7NosGpt8sGQ1gROX2bRQwxbJlLswdiE6iYoG6FIGqec3 K3Ele5ZulqOXjBE+quxOVqHGUwxMxJN0y5gRcKRsbm1SaPwStw22aBfwmkSXR7IF lD0AY33i6sbfH6s0HdCsA4GD1hsWikqVo6e88+gYdHXfivDcAJXpk1fYAEquE/oW d39wfPD9zWTRxTkLgmEyVskoqFPba9X9RnViPpSQsTCHmhZhiPP0rw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:29 2026 by rpki-client