This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pDOBaM2dWvBgQBP8QnQSb8WB88s.cer File: pDOBaM2dWvBgQBP8QnQSb8WB88s.cer (raw, json) Hash identifier: f4XNyuylTNtDANmkpkYQILafHtBjYpzpA+WxpnDV20w= Subject key identifier: A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5B83168F85D25E0D4ECE820E12D980 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/pDOBaM2dWvBgQBP8QnQSb8WB88s.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:19:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 211833 IP: 185.44.82.0/23 IP: 194.76.231.0/24 IP: 2a12:f340::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:83:16:8f:85:d2:5e:0d:4e:ce:82:0e:12:d9:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:19:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a4338168cd9d5af0604013fc4274126fc581f3cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e7:b1:58:50:71:8a:38:0c:25:30:e0:f0:3a:27: 5c:80:30:35:4e:34:5c:a9:98:57:46:67:b9:16:05: 68:21:d5:4a:1c:93:06:a9:8b:ac:f5:f4:b1:a2:36: e2:6c:3d:84:f9:52:5e:97:b4:84:98:9e:f0:93:a9: bc:ab:8b:59:62:1c:28:31:c8:c3:f9:48:14:6d:ac: 41:28:63:e8:ab:5e:02:d4:e7:f5:28:ca:b3:48:ba: 98:79:f9:7a:d4:2e:f9:14:49:81:ab:2b:72:a3:fe: b0:d8:60:92:7a:ec:26:33:ae:db:a7:48:44:5c:32: c1:22:5f:96:72:3f:60:05:9b:0e:16:00:33:e5:1b: b2:de:13:3e:ba:5c:e3:54:4f:2e:ab:21:5e:1f:a1: 55:8c:95:51:d7:f1:d6:b3:d8:02:c9:56:05:56:45: 9d:3a:c3:95:f5:56:71:4f:fa:a1:04:ea:48:e5:b1: 69:97:72:1d:38:63:fa:d1:9c:3c:f6:9a:e1:1c:91: f9:ee:ea:cd:4b:9f:04:76:cb:ac:c0:ca:ca:8b:e7: be:2c:5b:c9:0f:4b:1f:95:0d:f9:d5:ad:04:97:98: f0:41:c2:72:c3:f6:5a:d1:ad:cb:a1:2d:74:93:3b: 3f:4d:1a:13:7a:d8:13:c2:23:95:41:13:78:4d:5c: 59:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A4:33:81:68:CD:9D:5A:F0:60:40:13:FC:42:74:12:6F:C5:81:F3:CB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/08/176f7d-6f0f-45e5-97f2-c9db981a2a2f/1/pDOBaM2dWvBgQBP8QnQSb8WB88s.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.44.82.0/23 194.76.231.0/24 IPv6: 2a12:f340::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 211833 Signature Algorithm: sha256WithRSAEncryption 94:8e:37:e1:2a:f8:eb:47:72:e2:52:f6:b0:77:b2:f1:94:9f: 4c:3d:1f:d3:c0:02:d7:f5:68:f1:54:ec:68:61:7d:e6:18:83: d0:e8:09:e7:73:87:40:c0:3f:ba:2d:96:89:17:2e:74:1d:a0: f9:0d:f3:1e:3e:75:ea:10:eb:e2:7a:04:93:61:da:53:39:e8: d8:83:9b:6f:28:77:6a:d1:a4:a6:f8:b6:b7:b2:19:6a:18:e4: eb:a4:a5:1c:8b:77:f5:af:76:af:55:4e:fb:66:30:bc:51:c0: f3:7f:52:f5:0e:cb:c9:2a:e0:ff:6c:63:b8:04:0b:1a:0a:24: a2:e1:30:79:af:d0:07:de:41:31:24:28:14:a2:ab:51:6c:09: 85:3f:6f:e2:14:be:77:ff:43:f6:4e:0f:72:be:bc:17:ef:7b: 8c:e3:c0:87:9f:b5:fe:ad:63:9d:4e:22:3e:ec:34:82:7c:8c: 3c:f7:bc:88:2f:5f:70:e4:b3:15:88:1a:91:a3:0e:97:1f:44: de:0e:e2:a8:85:d9:28:df:cc:f2:69:b1:9b:60:a0:7b:ac:f4: b8:99:84:10:ba:82:98:c9:a6:40:68:74:bb:31:43:5e:68:88: 44:19:ee:ac:b6:2e:43:db:b4:d0:2d:dc:37:78:9a:fd:7d:f6: c3:bd:d7:aa -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt6W4MWj4XSXg1OzoIOEtmAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxOTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNDMzODE2OGNkOWQ1YWYwNjA0MDEzZmM0Mjc0MTI2ZmM1ODFmM2NiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA57FYUHGKOAwlMODwOidcgDA1TjRc qZhXRme5FgVoIdVKHJMGqYus9fSxojbibD2E+VJel7SEmJ7wk6m8q4tZYhwoMcjD +UgUbaxBKGPoq14C1Of1KMqzSLqYefl61C75FEmBqytyo/6w2GCSeuwmM67bp0hE XDLBIl+Wcj9gBZsOFgAz5Ruy3hM+ulzjVE8uqyFeH6FVjJVR1/HWs9gCyVYFVkWd OsOV9VZxT/qhBOpI5bFpl3IdOGP60Zw89prhHJH57urNS58EdsuswMrKi+e+LFvJ D0sflQ351a0El5jwQcJyw/Za0a3LoS10kzs/TRoTetgTwiOVQRN4TVxZzwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFKQzgWjNnVrwYEAT/EJ0Em/FgfPLMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA4LzE3NmY3 ZC02ZjBmLTQ1ZTUtOTdmMi1jOWRiOTgxYTJhMmYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDgvMTc2Zjdk LTZmMGYtNDVlNS05N2YyLWM5ZGI5ODFhMmEyZi8xL3BET0JhTTJkV3ZCZ1FCUDhR blFTYjhXQjg4cy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQBuSxSAwQAwkznMA0EAgACMAcDBQMqEvNAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwM7eTANBgkqhkiG9w0BAQsFAAOCAQEAlI43 4Sr460dy4lL2sHey8ZSfTD0f08AC1/Vo8VTsaGF95hiD0OgJ53OHQMA/ui2WiRcu dB2g+Q3zHj516hDr4noEk2HaUzno2IObbyh3atGkpvi2t7IZahjk66SlHIt39a92 r1VO+2YwvFHA839S9Q7LySrg/2xjuAQLGgokouEwea/QB95BMSQoFKKrUWwJhT9v 4hS+d/9D9k4Pcr68F+97jOPAh5+1/q1jnU4iPuw0gnyMPPe8iC9fcOSzFYgakaMO lx9E3g7iqIXZKN/M8mmxm2Cge6z0uJmEELqCmMmmQGh0uzFDXmiIRBnurLYuQ9u0 0C3cN3ia/X32w73Xqg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:07:20 2026 by rpki-client