This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tVz-dxzyhP7o0MJ7vPEd4YeczEE.cer File: tVz-dxzyhP7o0MJ7vPEd4YeczEE.cer (raw, json) Hash identifier: 2psX5QfGqfO5RTesJVa1v154PFAuqtYkvEhkfZhXUlQ= Subject key identifier: B5:5C:FE:77:1C:F2:84:FE:E8:D0:C2:7B:BC:F1:1D:E1:87:9C:CC:41 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5AC1C3B1A0AAAEFB9AADBDFE0DDE9E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/97/844405-7a8f-4232-95b8-65c928c7b0bf/1/tVz-dxzyhP7o0MJ7vPEd4YeczEE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/97/844405-7a8f-4232-95b8-65c928c7b0bf/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:17:38 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 48987 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5a:c1:c3:b1:a0:aa:ae:fb:9a:ad:bd:fe:0d:de:9e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:17:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b55cfe771cf284fee8d0c27bbcf11de1879ccc41 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:be:84:e9:a1:02:a2:8e:7c:9a:50:49:ef:22:6f: d7:0d:b1:25:15:fe:d3:93:39:71:ac:af:ec:b0:de: 71:13:65:68:d9:d6:61:40:09:12:96:c3:60:29:1c: 24:09:07:dc:ce:2b:67:f7:23:d6:40:5a:23:c2:87: 69:38:02:0f:40:b3:1e:dd:4b:a5:f5:24:9a:24:7a: 58:bd:cd:ce:63:7b:c1:a0:aa:1a:a8:1c:a6:18:61: b5:b1:45:20:65:9e:6d:47:ca:98:26:fe:10:09:c3: 11:a5:d9:00:56:a7:75:44:77:69:3f:82:51:c2:dd: 56:20:15:d2:ac:75:49:29:f0:ed:55:de:41:1f:00: 74:2b:f5:1c:9e:c8:5a:89:c8:f3:ea:20:7f:da:c4: e2:e5:18:d1:1d:56:88:a2:0b:76:18:98:9f:3b:d1: 68:8c:e6:6b:25:47:a0:6d:0c:2a:5f:c5:a9:3c:d4: d1:35:99:5a:76:7e:fd:93:8c:6d:fc:69:84:02:5d: 01:27:75:d0:b7:26:aa:f2:4c:0c:cb:b4:6b:60:70: 6c:36:f8:da:c7:1a:25:fa:a9:e9:53:d8:95:41:4d: a7:6b:2a:49:ad:d8:51:80:8d:06:f6:f7:58:e2:49: 61:aa:f9:cb:6b:65:f6:d2:f2:c5:c6:a2:e9:b6:66: 17:cf Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:5C:FE:77:1C:F2:84:FE:E8:D0:C2:7B:BC:F1:1D:E1:87:9C:CC:41 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/844405-7a8f-4232-95b8-65c928c7b0bf/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/844405-7a8f-4232-95b8-65c928c7b0bf/1/tVz-dxzyhP7o0MJ7vPEd4YeczEE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 48987 Signature Algorithm: sha256WithRSAEncryption 4f:7a:e7:5c:d9:7e:f5:91:99:80:51:b4:a9:9c:a6:e5:c3:c0: 88:11:89:d5:cb:5d:a8:0e:c1:a2:f9:10:cb:ea:d2:e4:e4:2d: 27:41:92:b5:33:48:34:9c:a1:78:c5:e4:08:d0:26:1b:60:d8: d2:20:6b:cc:89:46:3c:9a:20:ef:79:4e:c4:cf:42:2b:d4:81: a1:52:79:c6:82:ca:54:a0:08:68:4d:f6:12:ef:8d:f4:5f:a9: 22:a7:b3:e2:d0:42:26:e9:f0:75:d3:8c:f6:6a:a1:4e:19:1b: 50:bf:f5:66:14:79:3e:01:ad:ab:a3:10:37:b2:e5:2c:59:be: d7:c4:e5:a9:1e:c5:e1:fb:65:f6:1a:6c:fe:c2:43:13:d0:4c: 0f:6d:a7:a5:0f:6f:0d:36:37:3e:1f:f0:9a:96:e8:8d:5c:67: 4b:52:2d:51:63:ed:1f:a0:8c:d4:2c:5c:85:85:20:91:29:80: 0a:eb:2e:16:50:6d:88:3f:e1:0f:79:87:e1:4b:b7:77:ec:fb: bc:41:59:6b:eb:ab:5e:58:06:47:9a:29:b9:a9:6c:00:6b:d9: 82:24:7d:13:14:a4:69:35:8c:c0:d8:f3:89:43:3c:bf:4a:3c: c6:b5:43:f0:c3:da:aa:57:fb:cd:a3:58:98:ec:a0:82:24:57: d8:bc:03:01 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt9WsHDsaCqrvuarb3+Dd6eMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxNzM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTVjZmU3NzFjZjI4NGZlZThkMGMyN2JiY2YxMWRlMTg3OWNjYzQxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvoTpoQKijnyaUEnvIm/XDbElFf7T kzlxrK/ssN5xE2Vo2dZhQAkSlsNgKRwkCQfczitn9yPWQFojwodpOAIPQLMe3Uul 9SSaJHpYvc3OY3vBoKoaqBymGGG1sUUgZZ5tR8qYJv4QCcMRpdkAVqd1RHdpP4JR wt1WIBXSrHVJKfDtVd5BHwB0K/Ucnshaicjz6iB/2sTi5RjRHVaIogt2GJifO9Fo jOZrJUegbQwqX8WpPNTRNZladn79k4xt/GmEAl0BJ3XQtyaq8kwMy7RrYHBsNvja xxol+qnpU9iVQU2naypJrdhRgI0G9vdY4klhqvnLa2X20vLFxqLptmYXzwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFLVc/ncc8oT+6NDCe7zxHeGHnMxBMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk3Lzg0NDQw NS03YThmLTQyMzItOTViOC02NWM5MjhjN2IwYmYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcvODQ0NDA1 LTdhOGYtNDIzMi05NWI4LTY1YzkyOGM3YjBiZi8xL3RWei1keHp5aFA3bzBNSjd2 UEVkNFllY3pFRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwC/WzANBgkqhkiG9w0BAQsFAAOCAQEAT3rnXNl+9ZGZ gFG0qZym5cPAiBGJ1ctdqA7BovkQy+rS5OQtJ0GStTNINJyheMXkCNAmG2DY0iBr zIlGPJog73lOxM9CK9SBoVJ5xoLKVKAIaE32Eu+N9F+pIqez4tBCJunwddOM9mqh ThkbUL/1ZhR5PgGtq6MQN7LlLFm+18TlqR7F4ftl9hps/sJDE9BMD22npQ9vDTY3 Ph/wmpbojVxnS1ItUWPtH6CM1CxchYUgkSmACusuFlBtiD/hD3mH4Uu3d+z7vEFZ a+urXlgGR5opualsAGvZgiR9ExSkaTWMwNjziUM8v0o8xrVD8MPaqlf7zaNYmOyg giRX2LwDAQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:47 2026 by rpki-client