This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pbIQYaPq10EOBFDbvyFw_gyTi7E.cer File: pbIQYaPq10EOBFDbvyFw_gyTi7E.cer (raw, json) Hash identifier: YInj7AxHTDq/u9yDBGN3bPthMbwJZpnxj6rKJJ25tzo= Subject key identifier: A5:B2:10:61:A3:EA:D7:41:0E:04:50:DB:BF:21:70:FE:0C:93:8B:B1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED3419A61CF7F1EC65453057B9F88B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/58/ffac4d-a272-4e6c-9431-a0883c0b095b/1/pbIQYaPq10EOBFDbvyFw_gyTi7E.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/58/ffac4d-a272-4e6c-9431-a0883c0b095b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:19:07 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 34946 IP: 80.244.192.0/20 IP: 92.42.72.0/21 IP: 185.16.92.0/22 IP: 2a00:f600::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:34:19:a6:1c:f7:f1:ec:65:45:30:57:b9:f8:8b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a5b21061a3ead7410e0450dbbf2170fe0c938bb1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b2:ad:ab:cc:09:0c:a6:e3:1d:9a:f6:47:8a:d3: 63:2c:86:2c:6c:6e:da:5a:6d:84:26:a4:d0:ec:3c: 83:8f:19:67:28:fe:88:02:33:dc:d1:ec:40:ea:5d: 2d:2b:db:df:bc:ef:25:d5:25:57:d0:40:a9:3b:cb: 6f:ba:00:84:4a:53:a6:4c:c3:b1:f5:40:cc:f9:b9: e7:d1:ec:08:8c:de:d4:de:f9:47:b7:47:da:55:fb: 63:44:54:21:55:7f:0e:9c:b8:1f:9c:74:f6:c1:64: f7:1e:54:4d:9d:a4:bd:cb:de:95:a0:1b:9f:4a:ce: 5e:85:8b:00:24:50:f0:d9:12:bb:b8:76:a9:36:65: e6:a5:08:30:59:7c:68:f1:f5:72:57:1c:df:78:8a: 95:90:1c:48:ed:65:2e:0f:95:9e:dc:fc:77:96:82: 2b:ec:e1:74:b0:fe:2f:3e:0e:b2:ed:e8:af:29:06: c7:34:17:9b:ff:8a:67:12:56:c3:4e:0f:58:d3:04: 71:de:9d:ed:4d:58:dd:bf:0c:16:22:1e:8a:9c:c4: 0c:f1:6f:3e:21:8a:1b:ca:7c:d5:80:92:c9:30:1e: de:ef:3f:dd:51:82:78:40:d8:15:fe:d3:08:14:38: d3:cb:8f:cf:a6:2b:a3:da:18:26:b7:22:95:08:b5: 34:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A5:B2:10:61:A3:EA:D7:41:0E:04:50:DB:BF:21:70:FE:0C:93:8B:B1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ffac4d-a272-4e6c-9431-a0883c0b095b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/58/ffac4d-a272-4e6c-9431-a0883c0b095b/1/pbIQYaPq10EOBFDbvyFw_gyTi7E.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.244.192.0/20 92.42.72.0/21 185.16.92.0/22 IPv6: 2a00:f600::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 34946 Signature Algorithm: sha256WithRSAEncryption 08:54:1d:c0:7a:a3:7e:73:7d:2d:00:10:ec:8e:09:84:0e:96: 0b:f5:e8:04:58:63:c2:36:0c:af:1a:7a:20:4f:ef:0c:2a:e1: 92:d5:ae:50:ff:46:c1:16:45:ac:ce:d6:b0:fd:73:25:79:3c: 62:fb:ae:49:36:48:da:26:80:f4:d0:f5:e0:bb:e1:f9:00:d3: 19:62:3d:31:df:71:f3:6c:73:88:7e:57:a4:fa:d6:bb:a5:30: b1:c7:47:ad:ce:20:f7:7a:1d:23:eb:d5:68:e3:99:93:59:b7: 3a:14:e4:0a:c3:bf:1a:97:90:f2:fb:7a:0e:50:1a:ae:2b:b6: 7a:71:91:6a:87:4e:df:86:5a:b9:14:44:a2:3b:7b:31:4d:43: db:d0:fe:65:8f:a1:e7:c7:82:99:53:56:8e:53:0a:f5:11:95: e9:57:e4:a6:db:d3:00:57:b7:14:fb:d5:00:5c:49:63:cf:f1: 15:9b:93:72:88:6e:57:a2:92:ef:fd:37:97:dd:f8:b6:ca:11: c1:6f:61:61:a0:c2:44:3b:38:ef:c1:00:29:ed:09:7f:c4:1f: 41:92:76:ce:b4:8d:c4:8c:e1:c3:3c:ed:92:d6:71:2d:48:f5: 8c:17:7f:8f:c9:b1:39:9d:e3:ce:91:6c:b1:87:e8:26:f6:3e: 8d:0e:f9:0b -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZt57TQZphz38exlRTBXufiLMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNWIyMTA2MWEzZWFkNzQxMGUwNDUwZGJiZjIxNzBmZTBjOTM4YmIxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsq2rzAkMpuMdmvZHitNjLIYsbG7a Wm2EJqTQ7DyDjxlnKP6IAjPc0exA6l0tK9vfvO8l1SVX0ECpO8tvugCESlOmTMOx 9UDM+bnn0ewIjN7U3vlHt0faVftjRFQhVX8OnLgfnHT2wWT3HlRNnaS9y96VoBuf Ss5ehYsAJFDw2RK7uHapNmXmpQgwWXxo8fVyVxzfeIqVkBxI7WUuD5We3Px3loIr 7OF0sP4vPg6y7eivKQbHNBeb/4pnElbDTg9Y0wRx3p3tTVjdvwwWIh6KnMQM8W8+ IYobynzVgJLJMB7e7z/dUYJ4QNgV/tMIFDjTy4/Ppiuj2hgmtyKVCLU0gwIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFKWyEGGj6tdBDgRQ278hcP4Mk4uxMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU4L2ZmYWM0 ZC1hMjcyLTRlNmMtOTQzMS1hMDg4M2MwYjA5NWIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTgvZmZhYzRk LWEyNzItNGU2Yy05NDMxLWEwODgzYzBiMDk1Yi8xL3BiSVFZYVBxMTBFT0JGRGJ2 eUZ3X2d5VGk3RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQEUPTAAwQDXCpIAwQCuRBcMA0EAgACMAcDBQAq APYAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwCIgjANBgkqhkiG9w0BAQsFAAOC AQEACFQdwHqjfnN9LQAQ7I4JhA6WC/XoBFhjwjYMrxp6IE/vDCrhktWuUP9GwRZF rM7WsP1zJXk8YvuuSTZI2iaA9ND14Lvh+QDTGWI9Md9x82xziH5XpPrWu6UwscdH rc4g93odI+vVaOOZk1m3OhTkCsO/GpeQ8vt6DlAariu2enGRaodO34ZauRREojt7 MU1D29D+ZY+h58eCmVNWjlMK9RGV6VfkptvTAFe3FPvVAFxJY8/xFZuTcohuV6KS 7/03l934tsoRwW9hYaDCRDs478EAKe0Jf8QfQZJ2zrSNxIzhwzztktZxLUj1jBd/ j8mxOZ3jzpFssYfoJvY+jQ75Cw== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:14 2026 by rpki-client