This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/oHFXHI4QtBnXo7824Qhf_VzXipg.cer File: oHFXHI4QtBnXo7824Qhf_VzXipg.cer (raw, json) Hash identifier: vuJXHjaV4AEuWX3Up0uX0oyj+DuEF5RvHTpZLQBBoXY= Subject key identifier: A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5AAF53D6BEF98570E30A614BC52262 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:17:33 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 31564 IP: 193.17.73.0/24 IP: 195.178.112.0/23 IP: 2001:67c:8d0::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:af:53:d6:be:f9:85:70:e3:0a:61:4b:c5:22:62 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a071571c8e10b419d7a3bf36e1085ffd5cd78a98 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:80:de:af:35:6b:41:70:4b:04:6a:91:92:bc:c6: 4d:e2:f0:28:62:4d:21:8c:47:d1:ef:08:6b:25:0e: 99:12:f2:ea:dc:c4:f5:11:da:81:22:9a:bc:21:52: a8:43:3d:a4:0f:9b:08:ee:00:da:ba:aa:f1:40:08: 50:f1:98:ac:db:a7:24:d8:42:f0:a6:94:f0:62:74: fc:a4:5b:12:ff:fc:91:a2:30:93:bf:f1:c0:57:34: 8f:a7:7a:87:ef:28:11:e4:a3:3d:32:4a:8e:75:a4: 7d:8e:a3:41:1f:72:84:4f:4e:18:77:a2:19:f1:f9: cd:83:c4:bd:a2:a9:3e:bd:6a:3e:92:b5:f9:59:45: 33:71:05:18:b6:ee:aa:56:c3:05:04:12:ee:d0:cb: 4c:d0:2d:85:c9:b8:f2:97:07:18:d8:9e:27:44:9d: f9:c5:c1:22:2e:55:6a:e3:96:dc:5f:ec:31:77:31: de:22:85:cf:bd:f8:35:02:fc:31:33:2b:2b:f4:97: b1:ce:34:e6:fb:34:12:e2:1c:6f:fd:97:86:4b:67: b7:61:89:0d:4d:1e:9f:53:af:16:bd:2a:56:64:44: 4b:ba:ed:04:a8:79:ec:43:59:13:a4:d4:9b:cb:04: 50:64:95:e7:2e:2c:03:69:93:63:f8:33:ca:10:58: 15:7b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A0:71:57:1C:8E:10:B4:19:D7:A3:BF:36:E1:08:5F:FD:5C:D7:8A:98 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/37/c2829f-b3ed-44d3-a5cf-0c1f69b7aee7/1/oHFXHI4QtBnXo7824Qhf_VzXipg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.17.73.0/24 195.178.112.0/23 IPv6: 2001:67c:8d0::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 31564 Signature Algorithm: sha256WithRSAEncryption 5f:df:e9:97:04:b0:70:28:00:c1:3e:b8:3b:a2:f1:28:b6:5b: 5b:6c:e0:a7:f2:c6:a1:ef:59:89:36:02:90:42:ee:42:64:e8: 56:ec:08:25:4f:c4:07:22:d1:c3:f1:2f:aa:dc:6c:0c:8d:40: e4:73:7e:6c:64:c4:a8:76:e2:61:20:a6:d6:3d:92:d5:3d:34: bb:93:26:2b:0c:11:8a:c9:33:84:ee:1b:76:dc:5a:e4:46:8e: 8c:9a:34:ef:80:92:1b:21:18:54:c1:dc:fa:17:6e:08:ef:06: c8:38:8e:59:ce:f2:c3:6c:3a:bf:b4:7c:b2:3b:0f:80:bc:a1: 0c:40:07:b5:24:81:73:09:d3:ce:31:77:0f:74:7e:64:6d:56: 73:b8:d5:95:44:23:cc:97:59:f3:95:b5:8f:09:93:30:3a:cc: 74:08:92:c7:70:73:6a:46:0d:fc:e9:c5:77:5a:3a:1a:7d:6b: 17:6a:19:63:a9:91:f8:6c:c4:df:72:f3:2b:42:f7:ac:6f:e0: 36:17:6d:e9:1a:65:4c:3f:12:8e:8c:ea:84:b8:2a:0d:78:06: f2:98:96:e2:6e:d9:de:29:fe:ee:41:bc:b9:9b:93:6c:9c:ab: ca:d1:0d:cf:25:53:38:40:29:8d:0d:4a:90:7a:8a:70:b0:3d: 94:05:cd:eb -----BEGIN CERTIFICATE----- MIIFqjCCBJKgAwIBAgISAZt9Wq9T1r75hXDjCmFLxSJiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMDcxNTcxYzhlMTBiNDE5ZDdhM2JmMzZlMTA4NWZmZDVjZDc4YTk4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgN6vNWtBcEsEapGSvMZN4vAoYk0h jEfR7whrJQ6ZEvLq3MT1EdqBIpq8IVKoQz2kD5sI7gDauqrxQAhQ8Zis26ck2ELw ppTwYnT8pFsS//yRojCTv/HAVzSPp3qH7ygR5KM9MkqOdaR9jqNBH3KET04Yd6IZ 8fnNg8S9oqk+vWo+krX5WUUzcQUYtu6qVsMFBBLu0MtM0C2FybjylwcY2J4nRJ35 xcEiLlVq45bcX+wxdzHeIoXPvfg1AvwxMysr9JexzjTm+zQS4hxv/ZeGS2e3YYkN TR6fU68WvSpWZERLuu0EqHnsQ1kTpNSbywRQZJXnLiwDaZNj+DPKEFgVewIDAQAB o4ICtjCCArIwHQYDVR0OBBYEFKBxVxyOELQZ16O/NuEIX/1c14qYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM3L2MyODI5 Zi1iM2VkLTQ0ZDMtYTVjZi0wYzFmNjliN2FlZTcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzcvYzI4Mjlm LWIzZWQtNDRkMy1hNWNmLTBjMWY2OWI3YWVlNy8xL29IRlhISTRRdEJuWG83ODI0 UWhmX1Z6WGlwZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDYGCCsGAQUF BwEHAQH/BCcwJTASBAIAATAMAwQAwRFJAwQBw7JwMA8EAgACMAkDBwAgAQZ8CNAw GQYIKwYBBQUHAQgBAf8ECjAIoAYwBAICe0wwDQYJKoZIhvcNAQELBQADggEBAF/f 6ZcEsHAoAME+uDui8Si2W1ts4KfyxqHvWYk2ApBC7kJk6FbsCCVPxAci0cPxL6rc bAyNQORzfmxkxKh24mEgptY9ktU9NLuTJisMEYrJM4TuG3bcWuRGjoyaNO+Akhsh GFTB3PoXbgjvBsg4jlnO8sNsOr+0fLI7D4C8oQxAB7UkgXMJ084xdw90fmRtVnO4 1ZVEI8yXWfOVtY8JkzA6zHQIksdwc2pGDfzpxXdaOhp9axdqGWOpkfhsxN9y8ytC 96xv4DYXbekaZUw/Eo6M6oS4Kg14BvKYluJu2d4p/u5BvLmbk2ycq8rRDc8lUzhA KY0NSpB6inCwPZQFzes= -----END CERTIFICATE-----Generated at Mon Feb 9 15:14:24 2026 by rpki-client