This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rnIxk3EEsmkAemyoPH_ZKes59Hc.cer File: rnIxk3EEsmkAemyoPH_ZKes59Hc.cer (raw, json) Hash identifier: gZeZTy8NndITZ3LnmzzFuqDNaHHDZdeNopd+ZdwVUVw= Subject key identifier: AE:72:31:93:71:04:B2:69:00:7A:6C:A8:3C:7F:D9:29:EB:39:F4:77 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E38704C03AB63E99CCDD645873DB3BB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/39/aeb1cc-2c4b-46ed-bc23-f35f0c6c46a9/1/rnIxk3EEsmkAemyoPH_ZKes59Hc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/39/aeb1cc-2c4b-46ed-bc23-f35f0c6c46a9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:19:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 193.202.19.0/24 IP: 2001:67c:1068::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:38:70:4c:03:ab:63:e9:9c:cd:d6:45:87:3d:b3:bb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae7231937104b269007a6ca83c7fd929eb39f477 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e4:84:2e:42:f1:40:cb:ad:ad:bf:83:86:47:6f: 16:29:68:0d:d4:2d:43:a5:29:c9:6e:d3:9d:6e:61: 20:47:23:f8:df:65:c6:55:e7:b3:57:8b:db:2f:e6: 0e:12:bf:cf:04:46:ff:84:14:25:b5:e0:af:1b:ea: 9b:09:d4:1e:fb:95:38:5c:e8:f1:ac:bd:c6:01:71: 53:99:1a:d7:e2:b8:16:21:94:60:c1:bf:53:27:70: 31:6a:7f:d6:d6:5c:31:52:d8:15:18:f2:a1:4d:78: 1c:cd:a3:2e:db:61:4f:73:10:f7:c6:1e:17:e3:bd: 6a:7c:40:9d:95:fd:a5:31:5f:6e:fc:1b:19:14:f7: 15:70:86:38:12:d7:bd:37:ed:d1:36:55:b7:a3:4f: b4:29:76:9e:0e:62:d5:0e:bb:a4:1c:90:75:7c:ef: 5c:fc:51:08:6f:e6:ff:f6:fd:09:73:c3:91:41:20: 6e:ea:4b:d8:7c:b3:e8:04:aa:b5:48:52:2a:45:08: 11:d0:83:75:09:dc:81:3d:c7:12:e5:5e:8f:d7:25: d4:23:a5:49:47:4b:ec:bc:33:2d:0d:df:20:dc:dd: a1:b5:e9:2f:0f:ed:5b:c8:6b:6a:82:8a:c4:a1:01: 80:54:4c:c5:26:bd:31:5b:5b:de:d2:36:99:8a:46: 0f:0d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:72:31:93:71:04:B2:69:00:7A:6C:A8:3C:7F:D9:29:EB:39:F4:77 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/aeb1cc-2c4b-46ed-bc23-f35f0c6c46a9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/39/aeb1cc-2c4b-46ed-bc23-f35f0c6c46a9/1/rnIxk3EEsmkAemyoPH_ZKes59Hc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.202.19.0/24 IPv6: 2001:67c:1068::/48 Signature Algorithm: sha256WithRSAEncryption 04:4b:fb:36:e3:3d:80:b1:0e:20:8c:c7:e8:90:52:3f:dd:7d: 7a:aa:12:18:b5:08:55:dd:b2:21:05:93:cb:aa:07:48:83:bd: 7a:b6:f0:9f:56:57:c2:70:a9:9c:a5:c3:60:aa:c9:97:33:86: 66:09:dd:c9:c8:b9:a1:b4:3d:13:56:8e:3a:ae:43:a1:59:ba: 06:1a:15:ff:3e:69:36:c1:fc:ae:a7:99:f7:09:54:86:c4:68: 6d:28:7c:ed:5e:04:91:1e:6b:ad:0d:f5:1e:dd:f4:c3:7b:94: 71:c2:41:cb:72:19:69:43:47:19:f2:48:90:c5:7d:0e:05:4b: f9:b3:41:0e:80:e7:10:53:72:10:20:22:94:a4:d7:63:d3:41: ad:db:67:3b:2a:88:ea:0f:89:a4:33:d0:9e:49:2c:61:74:e7: 51:2b:af:a6:81:cb:8d:e5:2c:38:34:d6:95:41:d5:9b:02:64: d0:34:ec:2a:fa:26:1f:20:01:5b:f9:89:2c:ac:9d:60:02:5a: 14:a3:35:71:1f:fd:89:8b:91:1b:2a:49:fb:25:11:d3:68:bd: 1c:a2:8b:a9:49:dc:52:c9:10:f3:1f:10:4f:40:91:e3:69:2d: dd:27:0a:b2:bf:ef:5c:df:75:31:fc:da:55:cd:6b:e5:c2:c3: a5:1f:0b:75 -----BEGIN CERTIFICATE----- MIIFiTCCBHGgAwIBAgISAZt+OHBMA6tj6ZzN1kWHPbO7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTcyMzE5MzcxMDRiMjY5MDA3YTZjYTgzYzdmZDkyOWViMzlmNDc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5IQuQvFAy62tv4OGR28WKWgN1C1D pSnJbtOdbmEgRyP432XGVeezV4vbL+YOEr/PBEb/hBQlteCvG+qbCdQe+5U4XOjx rL3GAXFTmRrX4rgWIZRgwb9TJ3Axan/W1lwxUtgVGPKhTXgczaMu22FPcxD3xh4X 471qfECdlf2lMV9u/BsZFPcVcIY4Ete9N+3RNlW3o0+0KXaeDmLVDrukHJB1fO9c /FEIb+b/9v0Jc8ORQSBu6kvYfLPoBKq1SFIqRQgR0IN1CdyBPccS5V6P1yXUI6VJ R0vsvDMtDd8g3N2htekvD+1byGtqgorEoQGAVEzFJr0xW1ve0jaZikYPDQIDAQAB o4IClTCCApEwHQYDVR0OBBYEFK5yMZNxBLJpAHpsqDx/2SnrOfR3MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM5L2FlYjFj Yy0yYzRiLTQ2ZWQtYmMyMy1mMzVmMGM2YzQ2YTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzkvYWViMWNj LTJjNGItNDZlZC1iYzIzLWYzNWYwYzZjNDZhOS8xL3JuSXhrM0VFc21rQWVteW9Q SF9aS2VzNTlIYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAwcoTMA8EAgACMAkDBwAgAQZ8EGgwDQYJKoZI hvcNAQELBQADggEBAARL+zbjPYCxDiCMx+iQUj/dfXqqEhi1CFXdsiEFk8uqB0iD vXq28J9WV8JwqZylw2CqyZczhmYJ3cnIuaG0PRNWjjquQ6FZugYaFf8+aTbB/K6n mfcJVIbEaG0ofO1eBJEea60N9R7d9MN7lHHCQctyGWlDRxnySJDFfQ4FS/mzQQ6A 5xBTchAgIpSk12PTQa3bZzsqiOoPiaQz0J5JLGF051Err6aBy43lLDg01pVB1ZsC ZNA07Cr6Jh8gAVv5iSysnWACWhSjNXEf/YmLkRsqSfslEdNovRyii6lJ3FLJEPMf EE9AkeNpLd0nCrK/71zfdTH82lXNa+XCw6UfC3U= -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:45 2026 by rpki-client