This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/o8VuwTDZivLQ0pRZ8g-nm9Y1kBU.cer File: o8VuwTDZivLQ0pRZ8g-nm9Y1kBU.cer (raw, json) Hash identifier: E66kZv/JM9yZDQiegISL/kUsLAQtQhDhfnv4zaMqrEM= Subject key identifier: A3:C5:6E:C1:30:D9:8A:F2:D0:D2:94:59:F2:0F:A7:9B:D6:35:90:15 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5B159952A6AB3616ACCB189250FDAE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/84/20d9cc-143f-4ee8-8c69-b3e9be742894/1/o8VuwTDZivLQ0pRZ8g-nm9Y1kBU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/84/20d9cc-143f-4ee8-8c69-b3e9be742894/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:19:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 216049 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:15:99:52:a6:ab:36:16:ac:cb:18:92:50:fd:ae Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:19:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a3c56ec130d98af2d0d29459f20fa79bd6359015 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:51:8e:00:64:12:60:02:a1:1d:a6:56:e4:98: 3e:db:4d:96:84:ff:c8:70:b1:25:1c:dd:1d:bf:6b: 94:82:cb:2d:05:6b:88:34:17:83:81:11:1d:45:11: f8:b3:d0:6b:ff:22:e9:0c:3c:06:95:36:fe:0b:0d: c7:b9:9e:5b:ea:84:99:e8:87:86:bc:41:f2:cb:4c: 75:ab:d5:a0:70:60:78:c4:0d:85:63:5d:c4:2c:56: b3:8a:86:36:4d:b4:7a:99:91:0c:21:f3:95:83:82: 53:8e:45:28:c7:72:65:1c:1b:cb:f2:f9:84:7d:2a: de:7d:5c:c4:b4:93:a6:ee:c6:fe:37:e0:14:7e:5e: 9d:38:a7:8c:e1:60:be:53:1f:f6:61:8d:17:7c:f9: dd:c4:61:19:f5:4a:43:65:39:a2:60:34:8b:48:6e: 69:a6:d6:17:a0:96:f9:ae:9a:cb:82:ee:35:9b:7d: 2d:92:d1:5c:fe:0b:8b:dc:59:14:80:98:44:d9:e3: 0a:43:b8:91:ab:9a:e2:d1:50:9d:86:be:2f:b8:af: ce:84:8f:7a:59:3f:99:c5:01:e7:73:75:8f:a3:32: 01:92:79:93:d9:04:13:22:cd:68:9e:b9:af:88:17: 43:4f:46:cc:3e:d0:db:ea:a4:b2:e8:d2:3a:57:af: 4d:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A3:C5:6E:C1:30:D9:8A:F2:D0:D2:94:59:F2:0F:A7:9B:D6:35:90:15 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/20d9cc-143f-4ee8-8c69-b3e9be742894/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/84/20d9cc-143f-4ee8-8c69-b3e9be742894/1/o8VuwTDZivLQ0pRZ8g-nm9Y1kBU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 216049 Signature Algorithm: sha256WithRSAEncryption 5e:0d:11:56:51:60:6b:ce:36:a9:18:fb:ee:f0:51:2a:05:5c: e5:fb:ae:07:a5:66:82:d2:7c:88:04:2f:a8:4b:3f:72:b1:53: 22:c0:11:be:ff:05:c2:5c:88:93:17:80:e2:3c:4c:5e:e4:da: e8:ca:30:be:4e:f0:d9:5d:f1:a7:9d:4b:f2:f8:22:6f:0d:ad: b1:28:b7:52:99:8c:b5:83:50:e5:b8:55:d7:f3:a4:e6:f7:0e: c8:62:d3:43:05:01:64:f3:42:ae:2e:90:c1:ac:cc:10:80:4c: 5d:72:f6:81:ff:14:73:00:84:f9:a0:40:a4:43:b9:97:92:3f: f7:98:5a:0f:3c:18:e2:63:7e:79:14:79:a5:05:f1:9b:61:e1: ea:d5:c0:4e:83:30:36:24:db:c6:08:83:99:74:32:a9:3b:cb: f8:b3:4f:2a:75:c6:05:1e:cd:7d:89:c2:26:a4:4a:2e:0d:01: c6:9b:4b:b8:0a:7e:72:b7:7f:28:7c:7d:01:fd:c5:b6:d0:b1: 47:4b:da:db:d5:fb:57:3e:58:e3:1d:ff:05:c9:06:7c:da:5f: 51:82:6b:e4:2a:36:3b:ef:f6:7c:68:10:8f:a1:a0:f5:73:90: 36:61:a2:28:b8:78:71:d6:df:9a:ba:8b:e7:5c:50:04:6e:b0: d0:7f:96:08 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt6WxWZUqarNhasyxiSUP2uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxOTA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhM2M1NmVjMTMwZDk4YWYyZDBkMjk0NTlmMjBmYTc5YmQ2MzU5MDE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv1GOAGQSYAKhHaZW5Jg+202WhP/I cLElHN0dv2uUgsstBWuINBeDgREdRRH4s9Br/yLpDDwGlTb+Cw3HuZ5b6oSZ6IeG vEHyy0x1q9WgcGB4xA2FY13ELFazioY2TbR6mZEMIfOVg4JTjkUox3JlHBvL8vmE fSrefVzEtJOm7sb+N+AUfl6dOKeM4WC+Ux/2YY0XfPndxGEZ9UpDZTmiYDSLSG5p ptYXoJb5rprLgu41m30tktFc/guL3FkUgJhE2eMKQ7iRq5ri0VCdhr4vuK/OhI96 WT+ZxQHnc3WPozIBknmT2QQTIs1onrmviBdDT0bMPtDb6qSy6NI6V69NTwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFKPFbsEw2Yry0NKUWfIPp5vWNZAVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg0LzIwZDlj Yy0xNDNmLTRlZTgtOGM2OS1iM2U5YmU3NDI4OTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODQvMjBkOWNj LTE0M2YtNGVlOC04YzY5LWIzZTliZTc0Mjg5NC8xL284VnV3VERaaXZMUTBwUlo4 Zy1ubTlZMWtCVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNL8TANBgkqhkiG9w0BAQsFAAOCAQEAXg0RVlFga842 qRj77vBRKgVc5fuuB6VmgtJ8iAQvqEs/crFTIsARvv8FwlyIkxeA4jxMXuTa6Mow vk7w2V3xp51L8vgibw2tsSi3UpmMtYNQ5bhV1/Ok5vcOyGLTQwUBZPNCri6QwazM EIBMXXL2gf8UcwCE+aBApEO5l5I/95haDzwY4mN+eRR5pQXxm2Hh6tXAToMwNiTb xgiDmXQyqTvL+LNPKnXGBR7NfYnCJqRKLg0BxptLuAp+crd/KHx9Af3FttCxR0va 29X7Vz5Y4x3/BckGfNpfUYJr5Co2O+/2fGgQj6Gg9XOQNmGiKLh4cdbfmrqL51xQ BG6w0H+WCA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:14:07 2026 by rpki-client