This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/t3gT9sVnClhoatw9SVV0QpXdFBk.cer File: t3gT9sVnClhoatw9SVV0QpXdFBk.cer (raw, json) Hash identifier: ElJjjYsb+hHJnzqoAMX8aSvtbzeGVqNx1vV9TNSYdRc= Subject key identifier: B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA63B81446F7A9B567C18E5FE46088A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:19:42 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 199806 IP: 193.84.252.0/24 IP: 2001:67c:1828::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a6:3b:81:44:6f:7a:9b:56:7c:18:e5:fe:46:08:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:19:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b77813f6c5670a58686adc3d4955744295dd1419 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b0:ae:ba:4b:d3:ac:38:73:00:3f:53:7a:e6:3a: ef:94:03:a0:a2:4b:57:a7:48:f7:e0:c1:f9:9c:82: eb:4d:b5:a3:75:45:d3:17:65:a8:47:e0:d2:0d:96: 58:94:a9:9c:cd:9f:f6:42:32:75:4f:e9:39:a7:ce: 1e:38:af:9d:f8:41:e5:38:eb:99:3b:61:9f:d9:1f: fc:76:ff:c2:fa:40:cb:1d:e3:b8:5e:a7:09:ae:d8: ac:10:fa:62:d8:df:af:79:18:68:8f:35:4d:30:3a: 28:18:8d:6b:e4:c7:5d:da:39:4a:4d:b8:aa:16:d5: e8:30:6c:e5:22:92:6a:67:e6:02:d7:23:41:62:32: 0b:54:28:36:6c:30:27:d2:1b:a0:df:f1:83:d6:04: df:9e:9c:86:36:24:8b:31:d7:76:04:26:61:8c:30: 26:a0:3f:b4:c9:27:72:88:f4:d9:a8:0d:94:7a:1b: c8:36:49:6d:00:22:75:32:62:db:06:34:74:9f:6e: 76:5b:a2:12:c1:03:c6:18:01:d4:5b:29:6c:6c:0e: 81:92:ce:d1:a9:ce:cf:93:9e:75:73:06:f9:b2:d0: bf:63:23:85:85:16:39:2a:ef:9e:a2:aa:bf:46:1d: 24:38:4d:b3:40:4b:6d:8c:10:55:cf:e9:11:48:81: 28:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B7:78:13:F6:C5:67:0A:58:68:6A:DC:3D:49:55:74:42:95:DD:14:19 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/1f57d5-99c2-4ca9-9350-17735e2c255f/1/t3gT9sVnClhoatw9SVV0QpXdFBk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.84.252.0/24 IPv6: 2001:67c:1828::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 199806 Signature Algorithm: sha256WithRSAEncryption 45:db:a3:47:0a:93:f3:7a:cc:45:ae:3f:dd:42:69:4b:7b:c9: d3:09:de:73:0f:2e:82:57:e8:1e:10:56:e6:7e:11:1a:7e:db: cd:d4:48:59:32:a9:08:87:88:c8:74:59:39:85:e1:ce:8d:d3: 5d:d6:60:c4:cd:f6:b1:59:96:98:be:f7:88:7e:be:bb:20:95: aa:4a:5f:e2:cd:d9:fa:7b:de:57:b3:45:91:96:eb:fe:c2:50: 36:45:11:76:89:5a:e4:75:93:50:fc:3e:e2:ac:9e:8a:32:ad: 2d:e0:bb:7c:72:23:23:83:4f:4c:f5:30:e7:47:95:4e:a2:d3: 09:9b:da:03:64:31:94:df:5b:0f:d3:9b:a1:3c:6b:7c:58:a4: 04:bb:1e:7d:77:ea:31:d1:c3:46:4e:73:8c:34:02:fe:28:56: db:01:50:20:96:a1:e8:8d:26:3e:92:b9:b0:c8:93:f5:31:40: 21:63:9d:35:24:3d:ec:0e:50:b8:5c:40:fd:69:c5:d4:97:05: 87:5f:e9:84:c0:fa:f0:95:a2:6f:d1:92:a9:55:e6:96:39:70: f6:b8:47:5a:ac:3b:4c:62:99:6b:e9:96:2a:e3:97:25:b5:65: b4:47:82:52:6c:51:bc:02:82:19:21:2c:72:bf:ec:58:b2:b3: e7:ef:be:9f -----BEGIN CERTIFICATE----- MIIFpTCCBI2gAwIBAgISAZt+pjuBRG96m1Z8GOX+RgiKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIxOTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNzc4MTNmNmM1NjcwYTU4Njg2YWRjM2Q0OTU1NzQ0Mjk1ZGQxNDE5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsK66S9OsOHMAP1N65jrvlAOgoktX p0j34MH5nILrTbWjdUXTF2WoR+DSDZZYlKmczZ/2QjJ1T+k5p84eOK+d+EHlOOuZ O2Gf2R/8dv/C+kDLHeO4XqcJrtisEPpi2N+veRhojzVNMDooGI1r5Mdd2jlKTbiq FtXoMGzlIpJqZ+YC1yNBYjILVCg2bDAn0hug3/GD1gTfnpyGNiSLMdd2BCZhjDAm oD+0ySdyiPTZqA2UehvINkltACJ1MmLbBjR0n252W6ISwQPGGAHUWylsbA6Bks7R qc7Pk551cwb5stC/YyOFhRY5Ku+eoqq/Rh0kOE2zQEttjBBVz+kRSIEoJwIDAQAB o4ICsTCCAq0wHQYDVR0OBBYEFLd4E/bFZwpYaGrcPUlVdEKV3RQZMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM0LzFmNTdk NS05OWMyLTRjYTktOTM1MC0xNzczNWUyYzI1NWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQvMWY1N2Q1 LTk5YzItNGNhOS05MzUwLTE3NzM1ZTJjMjU1Zi8xL3QzZ1Q5c1ZuQ2xob2F0dzlT VlYwUXBYZEZCay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDAGCCsGAQUF BwEHAQH/BCEwHzAMBAIAATAGAwQAwVT8MA8EAgACMAkDBwAgAQZ8GCgwGgYIKwYB BQUHAQgBAf8ECzAJoAcwBQIDAwx+MA0GCSqGSIb3DQEBCwUAA4IBAQBF26NHCpPz esxFrj/dQmlLe8nTCd5zDy6CV+geEFbmfhEaftvN1EhZMqkIh4jIdFk5heHOjdNd 1mDEzfaxWZaYvveIfr67IJWqSl/izdn6e95Xs0WRluv+wlA2RRF2iVrkdZNQ/D7i rJ6KMq0t4Lt8ciMjg09M9TDnR5VOotMJm9oDZDGU31sP05uhPGt8WKQEux59d+ox 0cNGTnOMNAL+KFbbAVAglqHojSY+krmwyJP1MUAhY501JD3sDlC4XED9acXUlwWH X+mEwPrwlaJv0ZKpVeaWOXD2uEdarDtMYplr6ZYq45cltWW0R4JSbFG8AoIZISxy v+xYsrPn776f -----END CERTIFICATE-----Generated at Mon Feb 9 15:14:35 2026 by rpki-client