This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.cer File: ruL45TYnrcJ2eAY7k9PZ_W7OkAI.cer (raw, json) Hash identifier: c8mq8cyikPPktvsjEyEM7m1EfkRdo6UhXN14Iamrd6A= Subject key identifier: AE:E2:F8:E5:36:27:AD:C2:76:78:06:3B:93:D3:D9:FD:6E:CE:90:02 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7CED535DD145662167B35BDDE6917774 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 04:18:06 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 209370 IP: 176.222.26.0/23 IP: 176.222.29.0 -- 176.222.31.255 IP: 185.31.236.0/22 IP: 2a00:be60::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:ed:53:5d:d1:45:66:21:67:b3:5b:dd:e6:91:77:74 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 04:18:06 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=aee2f8e53627adc27678063b93d3d9fd6ece9002 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:e6:06:59:08:a2:5d:4f:36:8b:25:65:29:d0: 8a:21:25:59:d6:92:f5:06:fb:14:dc:ac:1c:86:00: fa:dd:12:aa:4a:57:f2:df:1b:af:a0:50:f5:20:1f: 36:a8:6e:e1:75:f5:24:68:3b:64:be:1e:ca:be:22: 12:2a:b3:c6:ba:a9:4c:bc:24:45:3d:6b:60:03:75: b6:71:5c:84:04:38:a4:95:6c:23:a1:30:af:7d:28: cb:8c:1e:3c:f9:05:82:2a:f2:9a:da:8f:1e:74:d7: e0:10:a9:4f:8f:91:33:eb:92:a6:d7:1e:68:7d:9d: 7f:5a:6d:6f:97:5d:c6:55:ec:94:46:db:04:ae:64: c6:a8:31:4f:b0:3c:4a:ab:51:bc:55:f8:2f:a8:82: 74:d6:2b:6b:40:b2:97:5d:e6:01:07:81:31:e7:6d: eb:e3:d0:cb:fd:b8:46:19:54:cb:c6:13:dd:4b:a3: a8:56:af:61:38:0e:0c:e1:a6:df:03:91:3e:e2:43: ee:fc:56:39:f1:56:0c:b8:2c:37:a0:0d:94:b7:e4: 7b:bd:40:b9:dc:7f:8c:31:d1:80:91:f0:54:6c:b9: a3:11:f7:6b:96:9a:1b:7f:69:7c:35:88:64:08:9c: 14:a4:79:4a:63:11:4c:09:4f:17:61:38:2e:8b:ea: a7:eb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:E2:F8:E5:36:27:AD:C2:76:78:06:3B:93:D3:D9:FD:6E:CE:90:02 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fc/193ed2-b774-42f0-aa3f-a465641a48fa/1/ruL45TYnrcJ2eAY7k9PZ_W7OkAI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 176.222.26.0/23 176.222.29.0-176.222.31.255 185.31.236.0/22 IPv6: 2a00:be60::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 209370 Signature Algorithm: sha256WithRSAEncryption 8e:5e:b0:c6:99:2d:27:b6:8d:09:3a:67:9f:fa:cc:8a:c5:81: 21:e8:41:eb:2b:e1:74:9a:f7:3a:cc:09:cc:9c:16:b5:eb:7b: 96:b9:44:ac:07:ac:dc:ec:7a:5c:7a:20:0f:af:eb:c6:c2:6d: 23:7f:69:5f:aa:0a:c7:ef:96:b5:4f:51:db:fb:a8:c2:f5:9a: 99:ed:e3:71:41:b3:25:b9:87:71:a5:ad:17:4e:3f:01:9f:3d: 85:4a:8c:9f:56:d2:e4:f3:1e:11:b6:9d:63:e2:54:61:0e:95: 1e:7c:34:c0:45:1a:3e:c6:83:46:6f:ef:aa:09:36:a4:af:b6: 79:66:ab:13:1e:a7:85:11:76:de:e7:ee:83:ae:3b:86:2f:31: 76:bf:3c:3e:20:de:e8:9c:f3:f8:72:2f:3b:94:26:05:35:f4: 79:17:9d:08:b2:12:01:14:3b:01:3c:7d:f1:98:e2:b3:0f:68: 1d:a5:05:64:39:74:c0:fb:c0:6e:44:b6:82:3f:02:ba:4a:c2: ca:62:77:ba:b0:36:f2:ef:d8:db:9b:8d:57:75:d4:d6:42:c6: f1:8e:0a:a5:93:dc:4a:fa:bb:10:91:d5:98:fd:ce:aa:13:37: 43:57:d1:ce:f5:25:c4:df:7a:cd:03:a0:cc:84:20:c0:f6:c1: 17:2b:58:8d -----BEGIN CERTIFICATE----- MIIFtzCCBJ+gAwIBAgISAZt87VNd0UVmIWezW93mkXd0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDQxODA2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZWUyZjhlNTM2MjdhZGMyNzY3ODA2M2I5M2QzZDlmZDZlY2U5MDAyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnuYGWQiiXU82iyVlKdCKISVZ1pL1 BvsU3KwchgD63RKqSlfy3xuvoFD1IB82qG7hdfUkaDtkvh7KviISKrPGuqlMvCRF PWtgA3W2cVyEBDiklWwjoTCvfSjLjB48+QWCKvKa2o8edNfgEKlPj5Ez65Km1x5o fZ1/Wm1vl13GVeyURtsErmTGqDFPsDxKq1G8VfgvqIJ01itrQLKXXeYBB4Ex523r 49DL/bhGGVTLxhPdS6OoVq9hOA4M4abfA5E+4kPu/FY58VYMuCw3oA2Ut+R7vUC5 3H+MMdGAkfBUbLmjEfdrlpobf2l8NYhkCJwUpHlKYxFMCU8XYTgui+qn6wIDAQAB o4ICwzCCAr8wHQYDVR0OBBYEFK7i+OU2J63CdngGO5PT2f1uzpACMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZjLzE5M2Vk Mi1iNzc0LTQyZjAtYWEzZi1hNDY1NjQxYTQ4ZmEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmMvMTkzZWQy LWI3NzQtNDJmMC1hYTNmLWE0NjU2NDFhNDhmYS8xL3J1TDQ1VFlucmNKMmVBWTdr OVBaX1c3T2tBSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEIGCCsGAQUF BwEHAQH/BDMwMTAgBAIAATAaAwQBsN4aMAwDBACw3h0DBAWw3gADBAK5H+wwDQQC AAIwBwMFAyoAvmAwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQIDAzHaMA0GCSqGSIb3 DQEBCwUAA4IBAQCOXrDGmS0nto0JOmef+syKxYEh6EHrK+F0mvc6zAnMnBa163uW uUSsB6zc7HpceiAPr+vGwm0jf2lfqgrH75a1T1Hb+6jC9ZqZ7eNxQbMluYdxpa0X Tj8Bnz2FSoyfVtLk8x4Rtp1j4lRhDpUefDTARRo+xoNGb++qCTakr7Z5ZqsTHqeF EXbe5+6DrjuGLzF2vzw+IN7onPP4ci87lCYFNfR5F50IshIBFDsBPH3xmOKzD2gd pQVkOXTA+8BuRLaCPwK6SsLKYne6sDby79jbm41XddTWQsbxjgqlk9xK+rsQkdWY /c6qEzdDV9HO9SXE33rNA6DMhCDA9sEXK1iN -----END CERTIFICATE-----Generated at Mon Feb 9 18:23:59 2026 by rpki-client