This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/otdUZcLL7I5qW-bRpIFLaCguV98.cer File: otdUZcLL7I5qW-bRpIFLaCguV98.cer (raw, json) Hash identifier: h0z7rf7G+G6hZqiLddYOpQAkKiiOOrBnPHau2OMaF5E= Subject key identifier: A2:D7:54:65:C2:CB:EC:8E:6A:5B:E6:D1:A4:81:4B:68:28:2E:57:DF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A59D620140B9A60C4EFD7AA181EF148 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/98/6a721d-4ddd-48fc-9dcf-b57c7827f1d8/1/otdUZcLL7I5qW-bRpIFLaCguV98.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/98/6a721d-4ddd-48fc-9dcf-b57c7827f1d8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:17:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215506 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:59:d6:20:14:0b:9a:60:c4:ef:d7:aa:18:1e:f1:48 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:17:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a2d75465c2cbec8e6a5be6d1a4814b68282e57df Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:30:c8:9c:e2:36:67:00:53:cf:4e:59:18:c1: 02:1e:e7:5d:dc:98:f7:99:d2:fe:77:60:cf:b4:e2: 92:06:84:67:f6:0a:39:4d:3c:f2:ad:7b:6e:9b:43: 64:d8:08:5b:d2:bd:77:3a:8e:07:a9:16:c6:5b:54: 7a:82:78:60:e1:40:86:27:f9:55:2e:fb:9b:15:99: 7f:66:73:e5:ae:0f:69:fe:d9:09:63:63:e0:3b:e5: b6:b3:61:51:7c:01:5d:c3:4b:24:49:32:66:e6:44: 18:28:8f:05:78:f5:5e:9c:40:0c:2b:4e:dc:79:17: aa:d1:ea:33:63:db:70:76:f9:a8:21:8c:db:03:64: 0f:97:dc:f3:ea:0a:1e:66:8f:e6:2f:c7:eb:3a:8d: cb:4f:7e:93:a6:7c:fd:25:41:6b:11:95:33:42:86: 87:e7:c2:29:b2:df:76:2b:65:d5:78:fa:be:b0:41: e5:f9:c1:e6:6e:94:f1:98:5d:68:24:d3:50:f5:19: 67:19:1f:4f:b5:ab:bd:5c:2d:9a:33:37:8b:41:0f: f1:c1:eb:35:8d:42:e0:e8:3f:ef:ad:8f:8c:47:7d: cb:d1:c3:46:fe:cf:eb:36:d9:b2:ac:a1:68:32:ff: 0f:1d:d5:cc:7c:b3:18:b0:27:44:03:95:b8:2b:c8: 2e:81 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A2:D7:54:65:C2:CB:EC:8E:6A:5B:E6:D1:A4:81:4B:68:28:2E:57:DF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6a721d-4ddd-48fc-9dcf-b57c7827f1d8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/98/6a721d-4ddd-48fc-9dcf-b57c7827f1d8/1/otdUZcLL7I5qW-bRpIFLaCguV98.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 215506 Signature Algorithm: sha256WithRSAEncryption a1:b3:0f:83:17:52:a6:e0:80:62:b0:d3:b9:01:c3:e2:c8:a0: 2c:43:77:db:ed:4e:cd:62:1b:b4:f7:18:3b:35:d6:53:83:dd: 85:d6:86:81:05:68:31:79:5f:a7:f9:13:57:03:d2:11:fd:02: 3f:be:0d:6f:c2:19:8a:c6:86:43:59:61:13:e1:24:3f:ed:9d: 65:10:c2:28:76:6a:0b:41:8b:77:b9:f8:d1:7b:6e:26:be:2d: 96:e0:8e:17:79:79:70:56:d5:0a:48:d7:a3:45:7c:17:50:29: 95:c7:90:8b:55:df:9f:30:c7:5c:b6:76:56:fb:33:8a:b3:b1: 6d:f1:6c:84:5e:09:9b:22:0a:3d:1e:a0:90:b3:87:88:16:20: 89:6e:ff:95:04:f6:8a:4a:a9:27:f3:74:25:fd:b4:ed:6c:d1: 99:a1:bb:a9:ae:bb:0c:cd:09:18:d9:49:87:ae:f5:6f:8a:04: 1c:f7:06:7a:2f:6d:81:31:9e:a1:c9:39:04:18:25:1d:ce:3e: 4e:f3:c3:cc:68:3a:ad:f4:a1:a7:d7:e7:03:84:80:9f:7f:42: 21:e6:11:ab:d0:e2:15:57:36:83:1c:be:50:02:81:9f:cb:ec: 14:60:0e:ff:11:be:d5:ba:18:45:3a:c4:76:1f:14:67:33:c2: 01:f8:b4:e3 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt6WdYgFAuaYMTv16oYHvFIMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxNzQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhMmQ3NTQ2NWMyY2JlYzhlNmE1YmU2ZDFhNDgxNGI2ODI4MmU1N2RmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0jDInOI2ZwBTz05ZGMECHudd3Jj3 mdL+d2DPtOKSBoRn9go5TTzyrXtum0Nk2Ahb0r13Oo4HqRbGW1R6gnhg4UCGJ/lV LvubFZl/ZnPlrg9p/tkJY2PgO+W2s2FRfAFdw0skSTJm5kQYKI8FePVenEAMK07c eReq0eozY9twdvmoIYzbA2QPl9zz6goeZo/mL8frOo3LT36Tpnz9JUFrEZUzQoaH 58Ipst92K2XVePq+sEHl+cHmbpTxmF1oJNNQ9RlnGR9Ptau9XC2aMzeLQQ/xwes1 jULg6D/vrY+MR33L0cNG/s/rNtmyrKFoMv8PHdXMfLMYsCdEA5W4K8gugQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFKLXVGXCy+yOalvm0aSBS2goLlffMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk4LzZhNzIx ZC00ZGRkLTQ4ZmMtOWRjZi1iNTdjNzgyN2YxZDgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTgvNmE3MjFk LTRkZGQtNDhmYy05ZGNmLWI1N2M3ODI3ZjFkOC8xL290ZFVaY0xMN0k1cVctYlJw SUZMYUNndVY5OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNJ0jANBgkqhkiG9w0BAQsFAAOCAQEAobMPgxdSpuCA YrDTuQHD4sigLEN32+1OzWIbtPcYOzXWU4PdhdaGgQVoMXlfp/kTVwPSEf0CP74N b8IZisaGQ1lhE+EkP+2dZRDCKHZqC0GLd7n40XtuJr4tluCOF3l5cFbVCkjXo0V8 F1AplceQi1XfnzDHXLZ2VvszirOxbfFshF4JmyIKPR6gkLOHiBYgiW7/lQT2ikqp J/N0Jf207WzRmaG7qa67DM0JGNlJh671b4oEHPcGei9tgTGeock5BBglHc4+TvPD zGg6rfShp9fnA4SAn39CIeYRq9DiFVc2gxy+UAKBn8vsFGAO/xG+1boYRTrEdh8U ZzPCAfi04w== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:42 2026 by rpki-client