This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/r0j2f1P86YkdQVk6yEyuMEq_y88.cer File: r0j2f1P86YkdQVk6yEyuMEq_y88.cer (raw, json) Hash identifier: uqsXbKf71+6HSoiKVN/LEunVlXwrdOIVZNrWVAzOPuw= Subject key identifier: AF:48:F6:7F:53:FC:E9:89:1D:41:59:3A:C8:4C:AE:30:4A:BF:CB:CF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C123391A68C6DB415F329CB40A88BA8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/r0j2f1P86YkdQVk6yEyuMEq_y88.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:18:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208034 IP: 185.194.248.0/24 IP: 193.169.106.0/23 IP: 193.169.170.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:33:91:a6:8c:6d:b4:15:f3:29:cb:40:a8:8b:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=af48f67f53fce9891d41593ac84cae304abfcbcf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c3:63:96:58:e4:3d:44:09:c5:74:9b:f7:ed:de: ab:50:0f:cb:ca:22:8f:3a:93:45:f5:72:57:58:99: bc:d9:10:ba:f5:7b:0f:15:c8:60:d0:06:ba:fb:87: 80:a8:25:94:2d:18:2f:43:3f:f9:a4:ca:ab:86:f6: 5e:00:7e:2d:9d:4b:4d:6a:3c:4f:35:83:b6:d5:07: cb:86:af:78:dc:59:a6:79:32:41:32:08:74:4e:ba: 6a:47:b7:50:bb:8d:d8:3a:c4:30:3e:ed:03:0d:43: 59:83:92:80:0f:dc:bc:c3:3c:36:88:b5:73:b6:06: c5:49:d0:be:c0:02:33:0e:5a:12:7a:48:a4:db:14: 71:1d:9e:04:79:21:d2:e7:86:f9:bb:52:87:42:eb: ae:fe:fa:c1:92:79:02:90:55:05:2a:db:d2:0b:7d: d7:45:81:e5:b2:bd:ac:19:b5:55:21:10:47:9e:b1: d9:81:15:65:9e:50:9d:80:67:c2:e4:84:02:66:3a: 5c:c8:24:60:9a:75:c4:54:4f:b3:eb:9c:2e:e9:dc: cc:2c:b8:7b:81:62:2a:1c:be:ad:f1:0b:2f:d6:48: 48:a2:ce:73:07:3b:05:fb:59:ec:e2:f4:29:4b:ae: 40:b4:4a:32:72:b3:d8:39:f6:1e:bb:0e:4f:16:c4: 5a:5b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AF:48:F6:7F:53:FC:E9:89:1D:41:59:3A:C8:4C:AE:30:4A:BF:CB:CF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/6d/e1545b-fc52-44c0-8f57-2884dd8248d6/1/r0j2f1P86YkdQVk6yEyuMEq_y88.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.194.248.0/24 193.169.106.0/23 193.169.170.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208034 Signature Algorithm: sha256WithRSAEncryption 2a:ea:31:07:cb:b9:44:00:37:cd:d1:89:2e:fb:52:ba:89:f0: 38:5d:89:2f:6c:e7:a4:7f:95:c6:74:11:29:bc:d5:27:22:4b: 5e:e8:c0:f9:d2:4c:00:c4:25:81:1d:66:e4:24:08:14:6a:e9: f4:cb:b4:4f:3f:f2:54:24:08:ed:fa:16:5f:bc:83:d8:cc:40: 50:3e:31:96:9b:26:0e:f2:c9:a4:3c:43:5d:d4:e0:c1:a1:41: 73:1a:ec:fc:82:3e:0f:1a:7f:c1:01:2b:66:60:fe:8c:e4:ed: 81:da:9f:e1:16:55:5f:ad:8f:12:d7:59:c9:10:93:b7:28:f2: 24:c1:bb:8c:39:97:15:3c:b6:2b:70:d8:fb:42:44:da:a8:c1: d3:f1:91:e8:64:79:07:3b:ba:1b:4c:6d:99:d4:e5:9c:29:85: 33:f0:89:66:72:5e:36:2b:e1:ed:e9:83:5a:c5:df:88:f2:39: 39:54:ad:4d:df:14:2c:a1:0b:fc:3f:64:23:ac:4b:db:07:75: 21:21:61:81:86:70:7d:49:7a:6b:a0:46:8f:3e:9e:7f:60:b6: 00:5f:c6:88:7a:41:71:89:e8:81:d9:43:49:fd:58:32:d4:f9: c6:9d:7d:90:ac:9a:e0:40:3d:c2:c4:8f:56:b8:a3:bf:81:15: 5f:1d:30:43 -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgISAZt8EjORpoxttBXzKctAqIuoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZjQ4ZjY3ZjUzZmNlOTg5MWQ0MTU5M2FjODRjYWUzMDRhYmZjYmNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw2OWWOQ9RAnFdJv37d6rUA/LyiKP OpNF9XJXWJm82RC69XsPFchg0Aa6+4eAqCWULRgvQz/5pMqrhvZeAH4tnUtNajxP NYO21QfLhq943FmmeTJBMgh0TrpqR7dQu43YOsQwPu0DDUNZg5KAD9y8wzw2iLVz tgbFSdC+wAIzDloSekik2xRxHZ4EeSHS54b5u1KHQuuu/vrBknkCkFUFKtvSC33X RYHlsr2sGbVVIRBHnrHZgRVlnlCdgGfC5IQCZjpcyCRgmnXEVE+z65wu6dzMLLh7 gWIqHL6t8Qsv1khIos5zBzsF+1ns4vQpS65AtEoycrPYOfYeuw5PFsRaWwIDAQAB o4ICrDCCAqgwHQYDVR0OBBYEFK9I9n9T/OmJHUFZOshMrjBKv8vPMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzZkL2UxNTQ1 Yi1mYzUyLTQ0YzAtOGY1Ny0yODg0ZGQ4MjQ4ZDYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNmQvZTE1NDVi LWZjNTItNDRjMC04ZjU3LTI4ODRkZDgyNDhkNi8xL3IwajJmMVA4NllrZFFWazZ5 RXl1TUVxX3k4OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAATASAwQAucL4AwQBwalqAwQBwamqMBoGCCsGAQUFBwEI AQH/BAswCaAHMAUCAwMsojANBgkqhkiG9w0BAQsFAAOCAQEAKuoxB8u5RAA3zdGJ LvtSuonwOF2JL2znpH+VxnQRKbzVJyJLXujA+dJMAMQlgR1m5CQIFGrp9Mu0Tz/y VCQI7foWX7yD2MxAUD4xlpsmDvLJpDxDXdTgwaFBcxrs/II+Dxp/wQErZmD+jOTt gdqf4RZVX62PEtdZyRCTtyjyJMG7jDmXFTy2K3DY+0JE2qjB0/GR6GR5Bzu6G0xt mdTlnCmFM/CJZnJeNivh7emDWsXfiPI5OVStTd8ULKEL/D9kI6xL2wd1ISFhgYZw fUl6a6BGjz6ef2C2AF/GiHpBcYnogdlDSf1YMtT5xp19kKya4EA9wsSPVrijv4EV Xx0wQw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:56:10 2026 by rpki-client