This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tDNC8X1UqKPaDOTTGLO0w_oFk-Q.cer File: tDNC8X1UqKPaDOTTGLO0w_oFk-Q.cer (raw, json) Hash identifier: 1ChxRiol7fxE3tAEiOQ6U5M/eKli9aDWKfX8uhokebM= Subject key identifier: B4:33:42:F1:7D:54:A8:A3:DA:0C:E4:D3:18:B3:B4:C3:FA:05:93:E4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC7B0D63B7DAE5553CE87F2A7C749B9 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8a/15a2c0-5c08-48bd-a8c3-3674a9010efd/1/tDNC8X1UqKPaDOTTGLO0w_oFk-Q.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8a/15a2c0-5c08-48bd-a8c3-3674a9010efd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:17:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 59827 IP: 185.70.72.0/22 IP: 2a05:2880::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:b0:d6:3b:7d:ae:55:53:ce:87:f2:a7:c7:49:b9 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b43342f17d54a8a3da0ce4d318b3b4c3fa0593e4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:16:61:97:1e:d5:c2:f3:e1:fd:e2:d8:d2:c9: d4:30:c9:74:60:2c:cc:4f:5c:8a:66:48:e9:76:5c: 56:5d:3f:29:06:52:e1:91:26:91:b6:0a:fb:13:44: 37:44:ee:b4:bd:c7:7e:3c:0b:34:07:98:8c:da:6f: 83:5a:db:fd:27:8f:26:cd:a4:9d:c0:36:52:d7:3b: f9:40:71:68:bc:60:c8:c5:42:9e:86:0c:61:d2:53: 72:74:a3:bd:b3:26:08:1e:62:bd:1e:ab:a8:62:8c: 17:80:7a:b9:d6:36:c1:b7:22:c1:61:29:e2:05:4f: 04:22:4c:b0:84:f0:84:b6:9d:85:0f:07:3a:20:4e: 3d:b1:2b:b7:06:e4:71:e2:ad:05:86:48:4f:79:22: 24:c6:de:2f:6a:16:c0:7a:b1:81:a0:a2:e5:64:fa: 84:2d:1b:87:03:a4:c3:75:55:28:31:92:a5:4f:73: f9:74:76:7e:73:c5:10:d1:a8:35:fa:ef:8b:e5:1c: 10:2d:04:e2:d1:e7:c6:5c:65:e1:cc:30:ee:21:a1: 87:2a:fa:2b:c7:f0:1a:d5:93:0a:95:aa:e1:29:74: fe:e5:0c:26:ec:37:4e:4e:8a:e5:1c:2e:4e:6a:6a: fe:e4:19:4f:75:42:00:2c:d1:f1:7f:16:4d:06:9b: 4f:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:33:42:F1:7D:54:A8:A3:DA:0C:E4:D3:18:B3:B4:C3:FA:05:93:E4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/15a2c0-5c08-48bd-a8c3-3674a9010efd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/15a2c0-5c08-48bd-a8c3-3674a9010efd/1/tDNC8X1UqKPaDOTTGLO0w_oFk-Q.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.70.72.0/22 IPv6: 2a05:2880::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 59827 Signature Algorithm: sha256WithRSAEncryption 77:c0:35:47:1d:e1:be:51:f8:68:f9:11:40:59:32:cb:db:ff: 30:63:52:20:27:d8:fa:8e:9b:ce:d6:db:e8:10:8f:4a:78:e5: 09:24:c2:58:2b:08:ce:d4:84:ac:b8:c2:f6:9f:95:d8:c3:c1: 1a:74:65:14:fc:d7:b9:4a:df:c4:e5:50:54:9e:0f:70:69:a1: 3d:33:d7:c9:d6:d0:48:28:07:e6:ea:fa:f4:c0:63:c8:90:10: 4d:27:e1:31:6b:59:79:42:ee:4a:17:39:e8:6c:44:f2:06:12: 63:c4:94:23:53:28:e6:bd:a0:77:1a:9e:2b:65:ef:42:72:b7: 84:2f:78:03:d4:60:3f:b6:bb:3c:eb:4a:c9:f8:0c:b7:be:65: 7b:92:5e:f0:05:29:90:3a:a0:f2:98:7d:cc:0b:99:e3:f8:fd: 6c:86:e2:b1:bf:21:b0:7d:a7:af:5f:95:25:be:0e:c8:6f:f3: 4f:bf:13:4a:2a:34:a9:4e:0c:43:aa:7b:95:e3:c2:26:6b:22: e4:b5:5f:1b:1a:48:06:49:bc:34:5a:8c:bb:34:1e:bb:50:ac: 95:d3:5e:0d:01:83:9d:6f:34:27:e5:62:a1:de:31:a6:8c:c1: 90:53:98:5d:49:5e:dd:30:bb:6a:b6:bf:12:e0:d8:2b:a5:bf: ab:6c:28:ab -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt6x7DWO32uVVPOh/Knx0m5MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDMzNDJmMTdkNTRhOGEzZGEwY2U0ZDMxOGIzYjRjM2ZhMDU5M2U0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqhZhlx7VwvPh/eLY0snUMMl0YCzM T1yKZkjpdlxWXT8pBlLhkSaRtgr7E0Q3RO60vcd+PAs0B5iM2m+DWtv9J48mzaSd wDZS1zv5QHFovGDIxUKehgxh0lNydKO9syYIHmK9HquoYowXgHq51jbBtyLBYSni BU8EIkywhPCEtp2FDwc6IE49sSu3BuRx4q0FhkhPeSIkxt4vahbAerGBoKLlZPqE LRuHA6TDdVUoMZKlT3P5dHZ+c8UQ0ag1+u+L5RwQLQTi0efGXGXhzDDuIaGHKvor x/Aa1ZMKlarhKXT+5Qwm7DdOTorlHC5Oamr+5BlPdUIALNHxfxZNBptPyQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFLQzQvF9VKij2gzk0xiztMP6BZPkMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhhLzE1YTJj MC01YzA4LTQ4YmQtYThjMy0zNjc0YTkwMTBlZmQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGEvMTVhMmMw LTVjMDgtNDhiZC1hOGMzLTM2NzRhOTAxMGVmZC8xL3RETkM4WDFVcUtQYURPVFRH TE8wd19vRmstUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuUZIMA0EAgACMAcDBQMqBSiAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDpszANBgkqhkiG9w0BAQsFAAOCAQEAd8A1Rx3hvlH4 aPkRQFkyy9v/MGNSICfY+o6bztbb6BCPSnjlCSTCWCsIztSErLjC9p+V2MPBGnRl FPzXuUrfxOVQVJ4PcGmhPTPXydbQSCgH5ur69MBjyJAQTSfhMWtZeULuShc56GxE 8gYSY8SUI1Mo5r2gdxqeK2XvQnK3hC94A9RgP7a7POtKyfgMt75le5Je8AUpkDqg 8ph9zAuZ4/j9bIbisb8hsH2nr1+VJb4OyG/zT78TSio0qU4MQ6p7lePCJmsi5LVf GxpIBkm8NFqMuzQeu1CsldNeDQGDnW80J+Viod4xpozBkFOYXUle3TC7ara/EuDY K6W/q2woqw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:51:45 2026 by rpki-client