This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/p9368Tt9vgXaoytYeLi2gCQEWXE.cer File: p9368Tt9vgXaoytYeLi2gCQEWXE.cer (raw, json) Hash identifier: 2tYhA+Wm1vOnVAqtxz+UaUgmnBWzhuZ75HyScNTsSUQ= Subject key identifier: A7:DD:FA:F1:3B:7D:BE:05:DA:A3:2B:58:78:B8:B6:80:24:04:59:71 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C7FD01C97EB98605AA20D022CF467F8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/p9368Tt9vgXaoytYeLi2gCQEWXE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 02:18:29 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 202560 IP: 2001:67c:74::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:7f:d0:1c:97:eb:98:60:5a:a2:0d:02:2c:f4:67:f8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 02:18:29 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a7ddfaf13b7dbe05daa32b5878b8b68024045971 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:29:23:21:78:c6:a0:d7:6c:e6:32:10:7d:d0: 40:a6:eb:b2:7d:9a:ce:42:56:fd:04:81:13:61:58: dd:fd:59:d4:f2:22:d1:9a:77:3c:85:6a:07:c9:3b: c0:53:28:bf:93:ea:2d:bb:4f:92:19:11:78:c7:67: 18:b2:8e:1f:18:fb:f0:46:6a:ea:23:09:33:9b:3c: 6e:1b:1b:91:c7:4a:31:9b:79:f4:c3:9b:7b:30:fc: df:f5:75:5c:3e:27:09:7f:16:fd:2d:ef:1f:ea:c2: b8:7e:ad:f4:40:f5:e4:d9:b9:dd:6c:b0:2b:e1:2e: a0:24:af:fc:d1:39:13:9d:4a:0e:ab:bd:dd:ce:9d: 61:fe:75:75:ff:a7:19:7e:a0:8e:1f:5b:6c:1a:33: fe:93:e7:46:05:48:77:9a:54:31:1c:17:63:d4:3e: 4e:8b:f2:17:8e:05:f3:08:57:1d:ed:73:3b:b2:c7: 54:a7:c0:b2:4b:2c:5d:10:8c:73:e8:2e:13:75:ae: b4:6b:bb:99:8a:b7:b6:51:c0:03:47:bf:ec:9e:50: e2:47:35:68:16:a4:f3:ef:77:c0:cc:ac:ba:86:f2: aa:43:02:c6:55:b1:ce:ac:06:3c:1c:eb:75:d8:73: 6e:d4:99:83:e3:ea:af:5c:b7:26:ec:df:ab:8f:62: 23:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A7:DD:FA:F1:3B:7D:BE:05:DA:A3:2B:58:78:B8:B6:80:24:04:59:71 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8b/f2b083-b3b9-4aa6-a149-fbb553b84641/1/p9368Tt9vgXaoytYeLi2gCQEWXE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:74::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 202560 Signature Algorithm: sha256WithRSAEncryption 87:4d:09:bf:1e:ce:29:5b:09:70:94:c3:fe:b8:97:e3:bb:2d: 59:11:50:dc:4d:4e:31:72:92:b3:3d:1c:f8:d5:48:c9:f8:5c: d5:47:4b:40:ae:74:49:59:8a:fc:28:90:83:e9:ee:b1:64:76: 6f:05:4a:78:3c:fa:2d:48:a0:fd:93:e9:ab:93:d5:1f:14:c0: 2c:82:c4:ea:cc:36:14:16:ab:10:a7:01:fd:2c:a5:f0:d7:f1: a7:c3:51:4c:02:48:8b:c7:2e:0c:38:48:87:f1:73:3a:52:75: 6e:8e:0e:fc:58:a4:00:7f:87:a7:0b:a4:c2:3f:1a:33:d3:72: d5:d4:ad:d9:a9:ef:ce:ab:b3:68:59:50:b9:34:92:44:be:00: ac:67:f4:82:0b:26:31:cc:2c:a9:28:40:fd:00:40:d0:24:8e: 81:18:f1:fe:fb:58:1b:68:15:47:96:9f:5a:49:62:f9:81:e3: 20:15:b1:b2:de:94:2c:ac:4d:2e:5f:b2:96:84:dd:43:ea:8b: 66:9c:d4:4d:43:f8:ec:29:67:84:fe:63:bf:6f:d9:91:5a:70: 22:8f:28:48:99:3a:bc:18:2a:16:ec:4d:2e:c5:d9:ae:29:ec: ed:ad:9c:17:a6:a8:49:cd:28:5e:6b:b9:1b:9e:34:01:2c:71: ef:19:f0:4b -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt8f9Acl+uYYFqiDQIs9Gf4MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDIxODI5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhN2RkZmFmMTNiN2RiZTA1ZGFhMzJiNTg3OGI4YjY4MDI0MDQ1OTcxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ikjIXjGoNds5jIQfdBApuuyfZrO Qlb9BIETYVjd/VnU8iLRmnc8hWoHyTvAUyi/k+otu0+SGRF4x2cYso4fGPvwRmrq IwkzmzxuGxuRx0oxm3n0w5t7MPzf9XVcPicJfxb9Le8f6sK4fq30QPXk2bndbLAr 4S6gJK/80TkTnUoOq73dzp1h/nV1/6cZfqCOH1tsGjP+k+dGBUh3mlQxHBdj1D5O i/IXjgXzCFcd7XM7ssdUp8CySyxdEIxz6C4Tda60a7uZire2UcADR7/snlDiRzVo FqTz73fAzKy6hvKqQwLGVbHOrAY8HOt12HNu1JmD4+qvXLcm7N+rj2IjWQIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFKfd+vE7fb4F2qMrWHi4toAkBFlxMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhiL2YyYjA4 My1iM2I5LTRhYTYtYTE0OS1mYmI1NTNiODQ2NDEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGIvZjJiMDgz LWIzYjktNGFhNi1hMTQ5LWZiYjU1M2I4NDY0MS8xL3A5MzY4VHQ5dmdYYW95dFll TGkyZ0NRRVdYRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGfAB0MBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMXQDANBgkqhkiG9w0BAQsFAAOCAQEAh00Jvx7OKVsJcJTD/riX47stWRFQ 3E1OMXKSsz0c+NVIyfhc1UdLQK50SVmK/CiQg+nusWR2bwVKeDz6LUig/ZPpq5PV HxTALILE6sw2FBarEKcB/Syl8Nfxp8NRTAJIi8cuDDhIh/FzOlJ1bo4O/FikAH+H pwukwj8aM9Ny1dSt2anvzquzaFlQuTSSRL4ArGf0ggsmMcwsqShA/QBA0CSOgRjx /vtYG2gVR5afWkli+YHjIBWxst6ULKxNLl+yloTdQ+qLZpzUTUP47ClnhP5jv2/Z kVpwIo8oSJk6vBgqFuxNLsXZrins7a2cF6aoSc0oXmu5G540ASxx7xnwSw== -----END CERTIFICATE-----Generated at Mon Jan 26 09:44:37 2026 by rpki-client