This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/spK68_TAei7dR9iMKxW2Wir33q0.cer File: spK68_TAei7dR9iMKxW2Wir33q0.cer (raw, json) Hash identifier: 1UwLOR3XveBVY7C//HHCbFM+tY4QZJGODjNbXcEmL4E= Subject key identifier: B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15AEB432117B1BDD330ADE97DEF58C Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 44884 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:ae:b4:32:11:7b:1b:dd:33:0a:de:97:de:f5:8c Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b292baf3f4c07a2edd47d88c2b15b65a2af7dead Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:d3:36:04:89:fa:0c:69:17:7b:e1:e0:e7:c1: df:0f:64:57:c3:99:67:c1:12:2c:49:22:ae:17:d1: 8a:dd:9e:c5:b5:eb:4c:2a:8e:b8:bd:c0:ad:6e:84: 4b:b6:1f:ed:bb:1e:2e:83:ab:17:96:26:04:ae:d8: cb:dd:60:14:84:6f:5d:4e:b5:34:cf:cd:48:eb:ef: 7a:6a:02:74:d7:dd:24:87:69:8d:22:bc:b8:2e:9a: ce:7f:25:3b:0a:f5:f3:06:4c:18:07:38:83:77:97: 0d:19:2a:24:7b:15:5d:a6:cc:ba:4c:50:3e:3e:4f: b8:28:0b:c5:e1:ea:15:f6:8f:a7:f9:3a:ed:ed:c1: 20:9e:1e:d3:66:51:02:2b:68:d7:14:88:ad:b5:31: e0:f8:5c:b0:7d:28:87:3c:97:df:ee:bb:b5:88:b8: 7b:e3:f0:40:f4:67:42:cd:18:1d:c6:9a:10:df:fe: 78:9c:07:7a:bc:8f:d5:35:ab:04:57:ea:22:3e:bb: 9a:03:63:ce:ce:c1:e3:8e:f5:77:56:5c:68:da:5f: 8b:3c:5f:1e:cc:b9:2a:83:ee:8d:42:52:bd:55:c1: 7a:80:ec:a3:44:06:67:ae:f9:db:7e:0d:df:18:a2: e8:ee:65:70:ff:bb:64:b1:21:06:60:fb:d5:cb:36: a1:47 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:92:BA:F3:F4:C0:7A:2E:DD:47:D8:8C:2B:15:B6:5A:2A:F7:DE:AD X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/24/c1f83a-dfc7-494d-9a4b-2a72c2858bac/1/spK68_TAei7dR9iMKxW2Wir33q0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 44884 Signature Algorithm: sha256WithRSAEncryption 44:69:d4:a2:6f:70:ea:40:06:c0:d9:1b:26:a6:19:44:49:3e: c7:00:8a:61:a1:77:75:b1:07:9c:1c:53:f4:31:66:33:59:3a: a0:51:d8:9b:22:34:d4:56:8a:fa:65:7f:9f:60:87:e3:36:1f: 3e:48:b6:e9:cd:b4:18:32:45:c2:30:76:96:cc:3a:ba:96:fa: 50:2f:00:c7:78:c4:89:6e:d1:3f:54:6a:d3:a5:b5:1c:18:74: 4a:10:b3:03:4d:37:64:1d:ec:ea:3e:79:04:03:b8:8a:6d:73: 35:a7:9a:9d:b1:08:e7:9a:54:2a:b8:a9:65:72:73:d5:bb:7f: c5:c2:79:48:a8:a6:63:1d:a6:9a:68:38:2b:12:4a:bb:9e:ca: b2:5b:5b:fa:4f:81:01:17:c4:b6:2b:99:46:c8:f4:d4:c9:02: 16:2c:33:e8:43:4b:1b:4e:c5:fd:4f:96:fc:5d:aa:da:de:3d: aa:19:bc:cc:b0:4d:97:3b:bc:da:fa:c4:01:c9:01:3c:7e:5e: 9c:97:07:fa:4d:05:28:27:11:1d:02:82:dd:5b:17:58:0d:e8: 33:3e:51:e1:47:66:5b:de:92:cb:ff:d6:6b:96:c3:6d:9a:c4: 7c:23:14:24:24:28:8d:a0:32:cd:7b:65:4a:63:b8:8d:34:35: b8:68:b3:44 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt/Fa60MhF7G90zCt6X3vWMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjkyYmFmM2Y0YzA3YTJlZGQ0N2Q4OGMyYjE1YjY1YTJhZjdkZWFkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAytM2BIn6DGkXe+Hg58HfD2RXw5ln wRIsSSKuF9GK3Z7FtetMKo64vcCtboRLth/tux4ug6sXliYErtjL3WAUhG9dTrU0 z81I6+96agJ0190kh2mNIry4LprOfyU7CvXzBkwYBziDd5cNGSokexVdpsy6TFA+ Pk+4KAvF4eoV9o+n+Trt7cEgnh7TZlECK2jXFIittTHg+FywfSiHPJff7ru1iLh7 4/BA9GdCzRgdxpoQ3/54nAd6vI/VNasEV+oiPruaA2POzsHjjvV3Vlxo2l+LPF8e zLkqg+6NQlK9VcF6gOyjRAZnrvnbfg3fGKLo7mVw/7tksSEGYPvVyzahRwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFLKSuvP0wHou3UfYjCsVtloq996tMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI0L2MxZjgz YS1kZmM3LTQ5NGQtOWE0Yi0yYTcyYzI4NThiYWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjQvYzFmODNh LWRmYzctNDk0ZC05YTRiLTJhNzJjMjg1OGJhYy8xL3NwSzY4X1RBZWk3ZFI5aU1L eFcyV2lyMzNxMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCvVDANBgkqhkiG9w0BAQsFAAOCAQEARGnUom9w6kAG wNkbJqYZREk+xwCKYaF3dbEHnBxT9DFmM1k6oFHYmyI01FaK+mV/n2CH4zYfPki2 6c20GDJFwjB2lsw6upb6UC8Ax3jEiW7RP1Rq06W1HBh0ShCzA003ZB3s6j55BAO4 im1zNaeanbEI55pUKripZXJz1bt/xcJ5SKimYx2mmmg4KxJKu57Ksltb+k+BARfE tiuZRsj01MkCFiwz6ENLG07F/U+W/F2q2t49qhm8zLBNlzu82vrEAckBPH5enJcH +k0FKCcRHQKC3VsXWA3oMz5R4UdmW96Sy//Wa5bDbZrEfCMUJCQojaAyzXtlSmO4 jTQ1uGizRA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:27 2026 by rpki-client