This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/pkDHUev7SAfYRiLoBss9C53YEGk.cer File: pkDHUev7SAfYRiLoBss9C53YEGk.cer (raw, json) Hash identifier: DWfphvnpU61sFwrT15wNUbS5idFiFuxxkKr2e24dDiM= Subject key identifier: A6:40:C7:51:EB:FB:48:07:D8:46:22:E8:06:CB:3D:0B:9D:D8:10:69 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79108F5CF2193543C9351CE88AA97C82 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/pkDHUev7SAfYRiLoBss9C53YEGk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:07 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 21436 AS: 212801 IP: 193.108.164.0/23 IP: 2001:67c:58c::/48 IP: 2001:67c:17b0::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:8f:5c:f2:19:35:43:c9:35:1c:e8:8a:a9:7c:82 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=a640c751ebfb4807d84622e806cb3d0b9dd81069 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bd:b0:5d:36:97:a3:d8:59:67:4f:15:f8:ba:c7: 0c:ef:e7:6b:88:48:81:6c:19:2d:2e:82:1d:40:30: 39:69:78:f5:c5:89:ef:8a:c0:02:01:46:31:f7:cb: ac:18:97:ac:b4:38:26:2f:b0:b5:83:9b:a8:f2:da: 78:ba:68:2f:66:f4:fc:7c:01:5e:40:a9:e5:7d:35: a3:fa:69:08:54:2d:90:d4:a9:e9:f5:29:bf:fa:c8: 99:05:92:27:57:aa:0a:bc:a8:af:21:d6:f5:af:a5: 6a:be:fe:81:bb:de:63:2d:d3:e0:55:f9:59:f2:f8: 97:e8:d8:9b:1e:e0:dd:5a:e5:5d:a4:d1:78:38:a2: b8:42:b6:67:44:62:a7:d9:56:0b:65:29:99:02:49: 28:14:70:eb:99:b8:e0:20:a5:ba:4a:e4:68:33:00: b4:25:cd:b2:ad:9a:54:92:9e:2b:f9:11:02:03:83: 5e:eb:da:cd:90:c2:34:42:b3:97:36:53:63:e3:92: c6:f9:20:2e:e5:f9:c3:c9:bc:16:d6:d3:b3:8c:6e: b1:6a:75:0f:11:f2:16:a3:00:67:ae:d2:f9:74:ea: 77:0b:ac:01:f7:8f:5a:f9:af:7e:8a:80:c7:1a:2b: 11:d8:5f:31:d9:57:55:da:6b:6b:ca:89:92:f0:ac: bf:17 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A6:40:C7:51:EB:FB:48:07:D8:46:22:E8:06:CB:3D:0B:9D:D8:10:69 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/8a5a2e-4d33-4a2c-adf3-026b8cf691ba/1/pkDHUev7SAfYRiLoBss9C53YEGk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.108.164.0/23 IPv6: 2001:67c:58c::/48 2001:67c:17b0::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 21436 212801 Signature Algorithm: sha256WithRSAEncryption 76:02:75:85:37:5e:d6:5b:98:10:d4:65:8c:ec:d4:8b:05:5d: ca:5b:c3:f1:e7:73:95:8b:63:9d:3f:a5:31:86:45:55:7b:98: 0b:2b:66:15:47:0c:71:1f:61:0d:97:7c:43:ee:72:56:2c:26: 6f:18:94:e8:a9:e9:8a:da:7a:36:63:dc:8e:10:ce:a6:9c:5b: 7e:e4:d3:3d:ea:62:1c:45:b6:14:d9:d7:4c:04:44:28:ff:e0: 1e:3d:d4:1d:e6:81:b3:88:02:41:9d:43:91:e3:66:ee:68:37: 87:65:63:84:80:fc:fe:99:58:d3:38:30:d1:53:51:5b:f2:41: 36:c2:cd:f9:00:04:aa:7c:8c:83:a1:f9:20:5a:35:92:1e:e9: e9:1c:7f:09:8d:ae:41:0e:71:e7:34:6d:41:8a:a1:a6:50:fa: f4:54:62:3e:92:49:fc:a2:1a:b5:36:a5:22:bb:94:a1:7e:a0: 93:16:8a:90:33:08:fe:85:96:81:79:45:67:2c:f6:8e:ff:58: 5f:78:1a:db:ca:a3:69:63:3b:a1:4c:67:29:2e:07:c5:d1:77: 46:65:4b:82:70:96:3d:36:d1:53:f1:cf:17:3b:3b:6f:69:27: fb:83:99:d3:82:2f:e2:08:b5:df:11:b4:e0:1f:62:52:40:f3: 6b:97:1b:a3 -----BEGIN CERTIFICATE----- MIIFsjCCBJqgAwIBAgISAZt5EI9c8hk1Q8k1HOiKqXyCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhNjQwYzc1MWViZmI0ODA3ZDg0NjIyZTgwNmNiM2QwYjlkZDgxMDY5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvbBdNpej2FlnTxX4uscM7+driEiB bBktLoIdQDA5aXj1xYnvisACAUYx98usGJestDgmL7C1g5uo8tp4umgvZvT8fAFe QKnlfTWj+mkIVC2Q1Knp9Sm/+siZBZInV6oKvKivIdb1r6Vqvv6Bu95jLdPgVflZ 8viX6NibHuDdWuVdpNF4OKK4QrZnRGKn2VYLZSmZAkkoFHDrmbjgIKW6SuRoMwC0 Jc2yrZpUkp4r+RECA4Ne69rNkMI0QrOXNlNj45LG+SAu5fnDybwW1tOzjG6xanUP EfIWowBnrtL5dOp3C6wB949a+a9+ioDHGisR2F8x2VdV2mtryomS8Ky/FwIDAQAB o4ICvjCCArowHQYDVR0OBBYEFKZAx1Hr+0gH2EYi6AbLPQud2BBpMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRkLzhhNWEy ZS00ZDMzLTRhMmMtYWRmMy0wMjZiOGNmNjkxYmEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQvOGE1YTJl LTRkMzMtNGEyYy1hZGYzLTAyNmI4Y2Y2OTFiYS8xL3BrREhVZXY3U0FmWVJpTG9C c3M5QzUzWUVHay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDkGCCsGAQUF BwEHAQH/BCowKDAMBAIAATAGAwQBwWykMBgEAgACMBIDBwAgAQZ8BYwDBwAgAQZ8 F7AwHgYIKwYBBQUHAQgBAf8EDzANoAswCQICU7wCAwM/QTANBgkqhkiG9w0BAQsF AAOCAQEAdgJ1hTde1luYENRljOzUiwVdylvD8edzlYtjnT+lMYZFVXuYCytmFUcM cR9hDZd8Q+5yViwmbxiU6Knpitp6NmPcjhDOppxbfuTTPepiHEW2FNnXTAREKP/g Hj3UHeaBs4gCQZ1DkeNm7mg3h2VjhID8/plY0zgw0VNRW/JBNsLN+QAEqnyMg6H5 IFo1kh7p6Rx/CY2uQQ5x5zRtQYqhplD69FRiPpJJ/KIatTalIruUoX6gkxaKkDMI /oWWgXlFZyz2jv9YX3ga28qjaWM7oUxnKS4HxdF3RmVLgnCWPTbRU/HPFzs7b2kn +4OZ04Iv4gi13xG04B9iUkDza5cbow== -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:32 2026 by rpki-client