This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/sffQCUrcmNmwMnIOgePbWqdYHHQ.cer File: sffQCUrcmNmwMnIOgePbWqdYHHQ.cer (raw, json) Hash identifier: iiaNPIbFBZ42FakRN/Pmjy6pj2LEAozQ2BHNGbWySew= Subject key identifier: B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79113EA9ED0B1C0BE97AE86C22DF73F7 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205313 IP: 185.222.72.0/22 IP: 2a0c:e00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3e:a9:ed:0b:1c:0b:e9:7a:e8:6c:22:df:73:f7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b1f7d0094adc98d9b032720e81e3db5aa7581c74 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cd:f0:27:1d:c9:3d:d0:a9:c7:00:b6:2f:18:a6: 0b:3f:17:0d:2c:d3:57:76:c5:4c:c6:1e:cb:45:31: 70:54:74:55:ae:ba:84:80:3e:67:ff:c9:c9:ff:6d: 76:68:79:bd:3c:7e:d9:d4:07:19:63:4b:f8:3d:4b: da:f7:3b:8a:7d:a3:67:3b:30:7c:d6:7b:78:03:8e: d4:d0:44:a3:6d:20:c1:8b:4d:8c:d2:3d:33:0b:9a: 35:04:b2:a1:0a:b7:7c:b9:eb:eb:bb:33:5a:16:fe: ff:09:4a:5b:e2:8f:6a:6c:24:b0:4e:07:96:3d:5e: f3:47:61:dd:d9:27:db:9f:3d:f3:95:90:ad:7e:54: f4:50:8c:19:b5:ef:c0:9d:b6:73:35:f5:d8:96:9f: fd:45:69:63:86:07:89:b8:02:ef:61:53:86:09:49: 87:3e:78:1a:56:20:3a:cd:b5:56:15:d6:27:59:33: f1:53:40:b8:49:c0:53:6d:5b:24:c7:df:50:a3:9a: 63:fb:bd:38:ad:dd:15:74:85:99:3e:5f:7d:38:67: 24:88:0c:59:25:51:36:86:24:d9:d6:bc:ef:74:1f: e0:ff:95:c1:7a:6a:00:b3:82:2a:12:4e:2c:80:9e: 9b:a7:ae:a6:d9:69:3b:7d:ee:5d:db:2d:28:01:e6: c3:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B1:F7:D0:09:4A:DC:98:D9:B0:32:72:0E:81:E3:DB:5A:A7:58:1C:74 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/b8/e8dd6b-4627-4a3c-ba73-a54b869dcd27/1/sffQCUrcmNmwMnIOgePbWqdYHHQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.222.72.0/22 IPv6: 2a0c:e00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205313 Signature Algorithm: sha256WithRSAEncryption 3e:39:d0:97:b9:fc:17:d0:1d:21:c5:63:fd:e5:85:20:30:d0: 6b:dc:07:21:43:86:46:50:1f:82:4e:12:aa:16:a5:0c:b6:5c: 51:89:9f:0a:3e:4d:5e:ac:b8:57:c5:88:ef:f5:e7:11:bf:bb: 1a:72:13:97:4e:0e:3d:30:08:e7:69:ec:6a:47:71:1b:aa:ee: 10:e4:c9:6c:72:8b:96:e4:e0:e9:93:10:03:91:5f:31:ec:d1: 22:cf:b9:c0:25:f9:49:20:34:5a:1f:09:67:33:04:1a:13:4b: 6b:5e:f8:1e:e7:5d:2d:a0:78:1b:de:c7:bb:c9:55:3b:d5:e7: ea:4b:44:d7:e2:12:b3:c5:1d:35:fa:e7:18:d3:7b:db:b7:78: 55:bb:9e:e6:cf:86:23:64:d8:c3:7e:b0:a9:22:9b:67:6e:9a: 31:83:4c:a9:fd:37:33:47:7b:f9:be:92:2c:dd:28:46:b7:cc: aa:4a:b2:1c:08:da:bb:9a:13:71:74:9d:50:b0:84:4b:f5:9e: 55:33:6e:c1:5f:fc:b3:27:22:6c:54:92:38:34:9c:e7:b7:cd: 2d:85:f7:25:27:7a:6b:04:82:26:6c:d4:12:6d:6b:31:ed:3f: f5:a1:d2:90:a8:dc:75:3d:c5:4f:c5:a7:2c:e7:86:64:79:c4: 70:73:5c:fe -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5ET6p7QscC+l66Gwi33P3MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMWY3ZDAwOTRhZGM5OGQ5YjAzMjcyMGU4MWUzZGI1YWE3NTgxYzc0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzfAnHck90KnHALYvGKYLPxcNLNNX dsVMxh7LRTFwVHRVrrqEgD5n/8nJ/212aHm9PH7Z1AcZY0v4PUva9zuKfaNnOzB8 1nt4A47U0ESjbSDBi02M0j0zC5o1BLKhCrd8uevruzNaFv7/CUpb4o9qbCSwTgeW PV7zR2Hd2Sfbnz3zlZCtflT0UIwZte/AnbZzNfXYlp/9RWljhgeJuALvYVOGCUmH PngaViA6zbVWFdYnWTPxU0C4ScBTbVskx99Qo5pj+704rd0VdIWZPl99OGckiAxZ JVE2hiTZ1rzvdB/g/5XBemoAs4IqEk4sgJ6bp66m2Wk7fe5d2y0oAebDkwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFLH30AlK3JjZsDJyDoHj21qnWBx0MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2I4L2U4ZGQ2 Yi00NjI3LTRhM2MtYmE3My1hNTRiODY5ZGNkMjcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYjgvZThkZDZi LTQ2MjctNGEzYy1iYTczLWE1NGI4NjlkY2QyNy8xL3NmZlFDVXJjbU5td01uSU9n ZVBiV3FkWUhIUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCud5IMA0EAgACMAcDBQMqDA4AMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMiATANBgkqhkiG9w0BAQsFAAOCAQEAPjnQl7n8F9Ad IcVj/eWFIDDQa9wHIUOGRlAfgk4SqhalDLZcUYmfCj5NXqy4V8WI7/XnEb+7GnIT l04OPTAI52nsakdxG6ruEOTJbHKLluTg6ZMQA5FfMezRIs+5wCX5SSA0Wh8JZzME GhNLa174HuddLaB4G97Hu8lVO9Xn6ktE1+ISs8UdNfrnGNN727d4Vbue5s+GI2TY w36wqSKbZ26aMYNMqf03M0d7+b6SLN0oRrfMqkqyHAjau5oTcXSdULCES/WeVTNu wV/8sycibFSSODSc57fNLYX3JSd6awSCJmzUEm1rMe0/9aHSkKjcdT3FT8WnLOeG ZHnEcHNc/g== -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:18 2026 by rpki-client