This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tL3eeEFbacMSd8Cqx_ymYH1jXYg.cer File: tL3eeEFbacMSd8Cqx_ymYH1jXYg.cer (raw, json) Hash identifier: DoSJSVl7my1r4RALzllwkzsK7GnKhMXyEHVgnQlhCDY= Subject key identifier: B4:BD:DE:78:41:5B:69:C3:12:77:C0:AA:C7:FC:A6:60:7D:63:5D:88 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7B354296E0AE2AB08E480F8851EC5CF6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/4d/34d470-49f7-4ae0-b61a-0944bed0ed26/1/tL3eeEFbacMSd8Cqx_ymYH1jXYg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/4d/34d470-49f7-4ae0-b61a-0944bed0ed26/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 20:17:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 42541 IP: 89.23.224.0/19 IP: 185.10.220.0/22 IP: 193.104.135.0/24 IP: 193.106.164.0/22 IP: 2a03:5440::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:35:42:96:e0:ae:2a:b0:8e:48:0f:88:51:ec:5c:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 20:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b4bdde78415b69c31277c0aac7fca6607d635d88 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b6:59:16:77:fa:66:02:98:16:68:f5:84:f9:2d: 07:82:76:74:4d:2b:49:58:28:1e:b2:eb:3d:dd:e7: a5:27:dc:e0:09:76:3b:39:f5:55:56:95:e6:29:99: 61:7f:e2:30:49:28:38:e2:f6:6c:27:b7:fa:3c:4c: 86:ee:2f:05:16:61:44:2e:db:54:87:e2:93:72:0e: 0a:e3:24:50:79:fc:ae:78:02:a3:f3:ce:33:0f:63: 8c:e5:d1:58:10:d6:d0:8c:4d:42:aa:47:a3:33:ff: c9:3a:6f:e8:68:eb:d9:70:ae:0c:ff:68:81:2c:a4: c3:e9:17:3f:f1:4d:4f:3f:b9:35:b0:3f:c4:cb:7d: d4:be:d0:42:57:b7:9c:81:9f:0c:05:c1:7e:ee:93: 05:51:58:2a:2b:bb:82:2c:ce:e1:9d:db:90:90:ed: 4b:04:b5:50:23:87:42:54:a5:7e:31:ba:e1:d5:f6: 78:a2:a6:49:a5:3e:41:28:c3:3f:67:f4:7b:ff:e7: cc:28:38:51:5c:9f:b1:b8:72:0e:f4:74:53:c2:2a: e0:18:5a:9b:64:ee:bd:90:91:2f:c4:fe:f5:35:b4: 64:aa:9d:4e:60:1c:13:31:97:90:45:67:20:19:37: ff:26:90:c2:55:ef:e1:0e:58:c1:60:65:50:55:57: 30:cd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:BD:DE:78:41:5B:69:C3:12:77:C0:AA:C7:FC:A6:60:7D:63:5D:88 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/34d470-49f7-4ae0-b61a-0944bed0ed26/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/34d470-49f7-4ae0-b61a-0944bed0ed26/1/tL3eeEFbacMSd8Cqx_ymYH1jXYg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.23.224.0/19 185.10.220.0/22 193.104.135.0/24 193.106.164.0/22 IPv6: 2a03:5440::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 42541 Signature Algorithm: sha256WithRSAEncryption a6:f2:65:26:84:a7:a3:2a:34:6f:38:d8:f4:32:53:ee:79:a5: 60:33:a0:ef:5b:f4:4f:bf:db:6f:f6:7c:44:3a:bd:c1:c7:2b: ec:60:e1:bb:88:e6:00:37:67:33:2b:87:84:f6:1d:f8:3f:8e: e3:de:f5:74:3c:3f:0b:3d:2a:9a:55:8b:3b:63:55:30:81:13: c1:79:7c:f7:84:32:18:a8:b7:60:00:0e:50:99:e0:3f:8a:e8: fc:7d:a6:4a:12:f9:bd:f0:6d:65:e1:63:7a:77:62:36:94:a3: 6e:52:48:04:ed:db:22:ca:5a:5e:f0:ad:0b:3e:60:34:6f:60: cc:48:4e:ad:28:7c:88:20:c1:b7:4f:45:b2:55:b6:3f:92:76: 14:68:ba:c5:41:65:fc:34:b1:6e:92:77:8c:18:b6:b5:dc:04: 02:79:d0:45:d9:be:3f:4c:b8:61:4e:1e:de:84:d6:46:77:2f: 69:11:30:37:49:8a:43:c7:1c:8d:15:c6:2e:94:e7:fa:c6:e8: 10:2e:81:94:f1:ed:30:7f:45:b9:6d:1c:c6:4a:e8:f9:b5:93: ab:3f:ed:31:a9:1b:e5:a7:8a:e4:fd:5d:75:17:cb:c4:7a:d3: 94:ad:12:3b:69:8c:7a:e1:a2:7b:1a:40:fb:e6:e1:1a:b5:42: 2e:35:12:34 -----BEGIN CERTIFICATE----- MIIFtTCCBJ2gAwIBAgISAZt7NUKW4K4qsI5ID4hR7Fz2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjAxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNGJkZGU3ODQxNWI2OWMzMTI3N2MwYWFjN2ZjYTY2MDdkNjM1ZDg4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtlkWd/pmApgWaPWE+S0HgnZ0TStJ WCgesus93eelJ9zgCXY7OfVVVpXmKZlhf+IwSSg44vZsJ7f6PEyG7i8FFmFELttU h+KTcg4K4yRQefyueAKj884zD2OM5dFYENbQjE1CqkejM//JOm/oaOvZcK4M/2iB LKTD6Rc/8U1PP7k1sD/Ey33UvtBCV7ecgZ8MBcF+7pMFUVgqK7uCLM7hnduQkO1L BLVQI4dCVKV+Mbrh1fZ4oqZJpT5BKMM/Z/R7/+fMKDhRXJ+xuHIO9HRTwirgGFqb ZO69kJEvxP71NbRkqp1OYBwTMZeQRWcgGTf/JpDCVe/hDljBYGVQVVcwzQIDAQAB o4ICwTCCAr0wHQYDVR0OBBYEFLS93nhBW2nDEnfAqsf8pmB9Y12IMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzRkLzM0ZDQ3 MC00OWY3LTRhZTAtYjYxYS0wOTQ0YmVkMGVkMjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNGQvMzRkNDcw LTQ5ZjctNGFlMC1iNjFhLTA5NDRiZWQwZWQyNi8xL3RMM2VlRUZiYWNNU2Q4Q3F4 X3ltWUgxalhZZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQFWRfgAwQCuQrcAwQAwWiHAwQCwWqkMA0EAgAC MAcDBQMqA1RAMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwCmLTANBgkqhkiG9w0B AQsFAAOCAQEApvJlJoSnoyo0bzjY9DJT7nmlYDOg71v0T7/bb/Z8RDq9wccr7GDh u4jmADdnMyuHhPYd+D+O4971dDw/Cz0qmlWLO2NVMIETwXl894QyGKi3YAAOUJng P4ro/H2mShL5vfBtZeFjendiNpSjblJIBO3bIspaXvCtCz5gNG9gzEhOrSh8iCDB t09FslW2P5J2FGi6xUFl/DSxbpJ3jBi2tdwEAnnQRdm+P0y4YU4e3oTWRncvaREw N0mKQ8ccjRXGLpTn+sboEC6BlPHtMH9FuW0cxkro+bWTqz/tMakb5aeK5P1ddRfL xHrTlK0SO2mMeuGiexpA++bhGrVCLjUSNA== -----END CERTIFICATE-----Generated at Mon Feb 2 08:11:03 2026 by rpki-client