This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tcr-HjrqL22RHtEHoIqv7peaT1E.cer File: tcr-HjrqL22RHtEHoIqv7peaT1E.cer (raw, json) Hash identifier: EgR/TKPh96QZgUpFGKKWitGNoH2CRynE8z+Xo1aCN/g= Subject key identifier: B5:CA:FE:1E:3A:EA:2F:6D:91:1E:D1:07:A0:8A:AF:EE:97:9A:4F:51 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834C7E19C4A83917C90B3E3C90CDD94 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/06/77f99c-35cb-47a6-bac3-caba81c9a152/1/tcr-HjrqL22RHtEHoIqv7peaT1E.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/06/77f99c-35cb-47a6-bac3-caba81c9a152/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 91.207.134.0/23 IP: 195.234.0.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:c7:e1:9c:4a:83:91:7c:90:b3:e3:c9:0c:dd:94 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b5cafe1e3aea2f6d911ed107a08aafee979a4f51 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:75:81:74:a1:39:55:2f:be:a4:ed:78:e7:1c: 42:86:67:f1:2b:24:e7:5d:85:cc:0a:3d:76:6b:00: 77:7c:b1:77:10:5a:0c:3f:93:2b:07:a3:08:c5:c3: be:0e:1d:b2:f1:10:1b:1b:7a:65:fe:9a:ac:ad:1c: d5:1c:c1:9e:b7:50:a8:7c:59:a7:d1:1d:6a:34:81: 56:75:41:a0:97:bd:c9:48:2c:dc:00:b3:ef:c6:9c: e5:34:cd:c3:2b:18:8a:b6:22:30:f3:4f:2c:59:03: b4:76:1a:b1:f6:c2:6b:e2:41:9d:e6:15:e9:47:c9: af:74:bc:f6:93:8f:89:c9:3d:40:71:ed:e5:a8:25: d3:f8:6d:b9:dd:09:93:8d:12:bb:0d:98:42:b8:cd: 82:08:1a:3b:54:22:2a:c5:ec:5a:68:23:ee:9f:7c: 86:68:f1:74:81:06:5c:e3:77:e3:33:3c:3f:8c:0a: 8c:53:34:06:6d:d8:80:33:fa:f1:0a:13:d7:2b:69: 99:15:c4:ae:4a:40:0e:0b:eb:93:0e:dd:45:56:83: 36:28:d1:57:83:cb:72:0e:f5:a9:25:2c:ff:1c:99: ae:05:f8:e6:b7:b7:a2:68:f0:63:84:46:ff:73:c5: 22:99:2a:0a:9a:e1:a5:64:f5:19:5a:de:30:39:eb: 8d:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:CA:FE:1E:3A:EA:2F:6D:91:1E:D1:07:A0:8A:AF:EE:97:9A:4F:51 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/77f99c-35cb-47a6-bac3-caba81c9a152/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/06/77f99c-35cb-47a6-bac3-caba81c9a152/1/tcr-HjrqL22RHtEHoIqv7peaT1E.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.207.134.0/23 195.234.0.0/23 Signature Algorithm: sha256WithRSAEncryption 01:12:1d:20:fd:f6:ed:08:db:50:eb:14:9a:44:55:d7:68:17: 1a:47:cb:db:f8:3c:36:3f:97:a0:30:3b:4f:4e:0d:c2:48:9c: 7e:55:ed:23:ff:0b:bc:cc:79:7c:c6:c6:4d:4e:50:e8:0a:e9: 80:c8:8a:86:e6:7c:d6:7e:22:4a:87:64:eb:3f:f9:49:50:61: b8:44:ca:cd:96:72:1d:0e:4f:8e:37:01:00:55:01:36:8e:bb: c3:e8:1e:30:d4:ba:b6:09:41:4d:c3:e3:df:1c:d5:02:a3:ba: cc:4c:09:30:3c:99:5f:56:4c:f9:3a:88:30:06:38:f4:59:12: 5f:7d:2b:ed:0f:03:56:0f:dc:fa:58:ea:ad:25:26:05:c9:11: 24:07:d0:e3:9c:8d:03:c6:4d:63:e8:98:89:e1:c8:d4:cb:20: 77:fb:3d:88:69:67:50:b6:15:0f:b0:69:cc:3f:42:71:22:16: fa:e6:33:37:22:69:2b:8e:5f:95:fd:00:1d:b9:26:05:c3:13: dd:1b:69:58:1c:7f:89:ee:4c:5f:5e:93:21:2b:6c:9e:b2:4e: a9:c7:1e:3f:7d:65:7a:57:66:3c:25:0a:ed:f9:99:09:8b:32: d1:9f:57:9d:25:b2:fa:82:4d:98:09:84:07:b4:63:55:dd:5b: de:f6:d9:cc -----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgISAZt4NMfhnEqDkXyQs+PJDN2UMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNWNhZmUxZTNhZWEyZjZkOTExZWQxMDdhMDhhYWZlZTk3OWE0ZjUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvHWBdKE5VS++pO145xxChmfxKyTn XYXMCj12awB3fLF3EFoMP5MrB6MIxcO+Dh2y8RAbG3pl/pqsrRzVHMGet1CofFmn 0R1qNIFWdUGgl73JSCzcALPvxpzlNM3DKxiKtiIw808sWQO0dhqx9sJr4kGd5hXp R8mvdLz2k4+JyT1Ace3lqCXT+G253QmTjRK7DZhCuM2CCBo7VCIqxexaaCPun3yG aPF0gQZc43fjMzw/jAqMUzQGbdiAM/rxChPXK2mZFcSuSkAOC+uTDt1FVoM2KNFX g8tyDvWpJSz/HJmuBfjmt7eiaPBjhEb/c8UimSoKmuGlZPUZWt4wOeuNrQIDAQAB o4ICijCCAoYwHQYDVR0OBBYEFLXK/h466i9tkR7RB6CKr+6Xmk9RMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzA2Lzc3Zjk5 Yy0zNWNiLTQ3YTYtYmFjMy1jYWJhODFjOWExNTIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDYvNzdmOTlj LTM1Y2ItNDdhNi1iYWMzLWNhYmE4MWM5YTE1Mi8xL3Rjci1IanJxTDIyUkh0RUhv SXF2N3BlYVQxRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQBW8+GAwQBw+oAMA0GCSqGSIb3DQEBCwUAA4IB AQABEh0g/fbtCNtQ6xSaRFXXaBcaR8vb+Dw2P5egMDtPTg3CSJx+Ve0j/wu8zHl8 xsZNTlDoCumAyIqG5nzWfiJKh2TrP/lJUGG4RMrNlnIdDk+ONwEAVQE2jrvD6B4w 1Lq2CUFNw+PfHNUCo7rMTAkwPJlfVkz5OogwBjj0WRJffSvtDwNWD9z6WOqtJSYF yREkB9DjnI0Dxk1j6JiJ4cjUyyB3+z2IaWdQthUPsGnMP0JxIhb65jM3Imkrjl+V /QAduSYFwxPdG2lYHH+J7kxfXpMhK2yesk6pxx4/fWV6V2Y8JQrt+ZkJizLRn1ed JbL6gk2YCYQHtGNV3Vve9tnM -----END CERTIFICATE-----Generated at Mon Feb 9 22:39:55 2026 by rpki-client