This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rHvpLb_jhWFWQG-nJeFd9ZiOXBA.cer File: rHvpLb_jhWFWQG-nJeFd9ZiOXBA.cer (raw, json) Hash identifier: KSJ6o2MBVZuGs1Kvd7aqV2FCZ34SRjlDxeMRhRgG0VA= Subject key identifier: AC:7B:E9:2D:BF:E3:85:61:56:40:6F:A7:25:E1:5D:F5:98:8E:5C:10 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CEE1E9B8233B3AB1324FB2140462090 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1a/0fae2f-2691-4c7e-a018-99d7252f5be0/1/rHvpLb_jhWFWQG-nJeFd9ZiOXBA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1a/0fae2f-2691-4c7e-a018-99d7252f5be0/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 60999 IP: 185.90.168.0/22 IP: 2a03:8760::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ee:1e:9b:82:33:b3:ab:13:24:fb:21:40:46:20:90 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ac7be92dbfe3856156406fa725e15df5988e5c10 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a8:83:cf:0d:0e:90:d6:7a:8a:0a:1c:71:a4:7e: bb:7c:e5:7b:c3:de:cc:66:a9:03:e4:63:f7:ac:d9: 81:64:aa:e7:b5:63:f0:ed:1a:31:8e:28:82:c4:72: 68:95:99:dc:69:3d:03:e6:88:2e:b7:54:35:35:42: 2a:ba:8c:c5:6f:a5:8e:32:90:5a:18:2a:87:7c:8c: b2:6f:ad:c8:f4:9c:94:d7:02:04:d6:66:73:64:29: 10:04:ec:80:4a:8a:8c:51:e2:e9:92:a1:1c:df:63: a7:76:e3:42:8a:a7:05:12:3e:13:f0:94:2b:c1:dd: 61:e6:07:33:db:5f:4d:30:c8:3b:5e:f3:36:d7:38: e4:10:fe:76:58:31:ef:d3:5d:ce:b5:e0:e7:04:a4: dd:c3:d0:a8:c8:62:70:98:d4:7c:4d:bf:da:c3:59: f6:ab:ae:c1:6d:06:89:1b:fc:d2:3e:a7:cf:cd:fd: 22:14:f4:d7:3a:0a:98:fc:57:65:30:a5:51:4f:62: 0e:ea:96:d6:ff:9d:ef:5f:f9:19:5c:27:2d:76:50: bd:d5:02:f3:35:4d:92:4e:8d:74:2c:b2:1d:71:e8: 1f:99:a9:5e:b3:42:88:b4:2c:78:b3:fa:f9:8b:37: 51:b1:f8:f0:bb:86:07:00:c3:74:be:7a:63:e5:2f: ca:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AC:7B:E9:2D:BF:E3:85:61:56:40:6F:A7:25:E1:5D:F5:98:8E:5C:10 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0fae2f-2691-4c7e-a018-99d7252f5be0/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1a/0fae2f-2691-4c7e-a018-99d7252f5be0/1/rHvpLb_jhWFWQG-nJeFd9ZiOXBA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.90.168.0/22 IPv6: 2a03:8760::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 60999 Signature Algorithm: sha256WithRSAEncryption b0:28:cc:68:a4:f8:e9:19:f1:7c:f9:ad:90:1b:9c:af:7c:78: 72:e1:2f:f7:d4:1e:ba:4a:05:b9:0d:dd:71:02:06:11:8d:87: 22:84:07:89:4f:44:72:b2:e7:fe:7f:06:7c:3c:7d:ea:1a:6a: cd:37:d0:c0:74:57:99:87:92:cd:a4:be:b1:98:76:84:73:8e: 0f:4e:2f:6e:c1:1c:0a:7e:a1:71:97:de:17:a8:ba:08:a6:2a: 91:c5:06:25:f5:3c:ff:9f:0d:08:fd:29:0c:a8:09:04:1e:9d: a4:f0:e2:94:d8:22:a3:bf:70:cd:5c:66:ed:4a:7c:09:ad:22: d9:7e:ae:b5:3e:58:e3:68:25:5c:fe:38:09:ef:c2:db:6b:44: ff:8f:aa:55:7e:b9:4f:cd:c5:db:70:0a:9c:36:47:ab:ba:ce: 52:8e:61:65:90:e6:6a:cd:08:1e:14:fa:28:5a:e9:85:ab:00: 58:be:d3:2d:6c:3e:25:f5:e9:f4:86:d7:51:66:46:5d:ad:ce: 04:b4:29:a2:89:5f:36:26:1b:cd:f1:9a:5f:49:7f:9c:d7:78: ad:3b:04:b9:c3:0f:4f:ca:2b:68:5c:2d:34:43:73:e7:70:76: 72:09:22:21:46:48:6d:14:22:ae:32:ad:70:40:ed:4b:27:d0: dd:d7:82:1c -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt87h6bgjOzqxMk+yFARiCQMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYzdiZTkyZGJmZTM4NTYxNTY0MDZmYTcyNWUxNWRmNTk4OGU1YzEwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqIPPDQ6Q1nqKChxxpH67fOV7w97M ZqkD5GP3rNmBZKrntWPw7RoxjiiCxHJolZncaT0D5ogut1Q1NUIquozFb6WOMpBa GCqHfIyyb63I9JyU1wIE1mZzZCkQBOyASoqMUeLpkqEc32OnduNCiqcFEj4T8JQr wd1h5gcz219NMMg7XvM21zjkEP52WDHv013OteDnBKTdw9CoyGJwmNR8Tb/aw1n2 q67BbQaJG/zSPqfPzf0iFPTXOgqY/FdlMKVRT2IO6pbW/53vX/kZXCctdlC91QLz NU2STo10LLIdcegfmales0KItCx4s/r5izdRsfjwu4YHAMN0vnpj5S/KxwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFKx76S2/44VhVkBvpyXhXfWYjlwQMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFhLzBmYWUy Zi0yNjkxLTRjN2UtYTAxOC05OWQ3MjUyZjViZTAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWEvMGZhZTJm LTI2OTEtNGM3ZS1hMDE4LTk5ZDcyNTJmNWJlMC8xL3JIdnBMYl9qaFdGV1FHLW5K ZUZkOVppT1hCQS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuVqoMA0EAgACMAcDBQAqA4dgMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDuRzANBgkqhkiG9w0BAQsFAAOCAQEAsCjMaKT46Rnx fPmtkBucr3x4cuEv99QeukoFuQ3dcQIGEY2HIoQHiU9EcrLn/n8GfDx96hpqzTfQ wHRXmYeSzaS+sZh2hHOOD04vbsEcCn6hcZfeF6i6CKYqkcUGJfU8/58NCP0pDKgJ BB6dpPDilNgio79wzVxm7Up8Ca0i2X6utT5Y42glXP44Ce/C22tE/4+qVX65T83F 23AKnDZHq7rOUo5hZZDmas0IHhT6KFrphasAWL7TLWw+JfXp9IbXUWZGXa3OBLQp oolfNiYbzfGaX0l/nNd4rTsEucMPT8oraFwtNENz53B2cgkiIUZIbRQirjKtcEDt SyfQ3deCHA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:41 2026 by rpki-client