This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/u303nAT4F1s172c9dsaORMcOgz8.cer File: u303nAT4F1s172c9dsaORMcOgz8.cer (raw, json) Hash identifier: 4b6d3oZ2Z7DN6DcUIHg/ju1Hvd51fAE6dshpqgdg4yQ= Subject key identifier: BB:7D:37:9C:04:F8:17:5B:35:EF:67:3D:76:C6:8E:44:C7:0E:83:3F Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5C1BA1B6C6007167FBFFA00A745021 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bc/9e0f5e-8141-43c9-8f44-33ebab24bbb3/1/u303nAT4F1s172c9dsaORMcOgz8.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bc/9e0f5e-8141-43c9-8f44-33ebab24bbb3/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:19:07 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 35336 IP: 2.56.40.0/22 IP: 2a09:d040::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:1b:a1:b6:c6:00:71:67:fb:ff:a0:0a:74:50:21 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:19:07 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bb7d379c04f8175b35ef673d76c68e44c70e833f Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:2f:5f:61:21:de:67:6b:91:78:cc:1c:40:98: 00:f2:a2:58:4f:e7:d9:3e:41:3e:f2:44:be:d3:a2: 06:0f:9d:b9:e0:39:a0:72:5c:71:a4:1a:73:e6:cf: 20:b9:5a:27:ff:1b:02:e7:6c:e2:a5:9d:8e:bc:18: 1f:7f:da:d7:54:90:63:cb:13:6f:fa:e8:bf:7e:9a: 56:29:a2:7c:55:52:7d:53:90:7c:1a:bb:c4:33:0d: 4f:dc:84:3e:a3:52:ab:86:f0:e4:91:77:1d:00:2b: d4:4e:ec:b8:83:c7:51:41:92:26:9e:4c:5f:4d:c8: 0e:3b:bd:7a:cd:78:61:4b:dd:75:7c:96:68:b8:c7: 1a:5e:31:8a:c2:07:25:e1:7b:5b:e4:ca:a5:26:7c: 80:81:1a:62:54:ec:68:b9:3a:55:bc:70:0e:16:cc: 02:e8:c4:4a:47:72:b0:64:a8:f0:a3:78:d3:bb:73: b2:54:bf:e5:4a:57:bf:50:7d:a4:d2:7b:11:f9:3a: c7:ca:05:2c:e2:78:d8:07:08:65:8b:0b:a4:19:07: e1:1f:a9:97:1f:18:ff:e6:6a:75:55:3f:fe:c8:5d: 06:a4:68:6b:2f:e0:97:93:7e:a0:b3:68:9a:3e:70: ee:97:f0:e6:a9:0f:e1:ae:bd:0b:c1:d7:ed:9e:dd: 81:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:7D:37:9C:04:F8:17:5B:35:EF:67:3D:76:C6:8E:44:C7:0E:83:3F X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9e0f5e-8141-43c9-8f44-33ebab24bbb3/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/9e0f5e-8141-43c9-8f44-33ebab24bbb3/1/u303nAT4F1s172c9dsaORMcOgz8.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 2.56.40.0/22 IPv6: 2a09:d040::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 35336 Signature Algorithm: sha256WithRSAEncryption 97:4a:02:f3:92:c9:66:0c:c2:41:93:f3:35:bb:58:6e:0d:15: 65:06:49:ac:a9:70:46:7a:98:27:3e:0c:6f:00:09:84:9e:81: fd:4f:65:f0:1c:2c:d4:de:3b:32:e1:88:fc:ba:c6:f6:5c:0a: dd:d9:16:ff:46:6b:86:cd:24:7e:f7:13:4e:c6:5e:b9:84:a0: 57:dd:8a:08:4d:8f:5c:d5:c1:ed:e1:1b:4b:aa:18:0d:2c:57: 0a:9a:29:01:11:d0:0f:13:c0:d6:2c:ae:10:ef:a4:42:a3:3d: 86:7e:21:f3:e0:b2:a2:1b:68:5e:27:9e:8f:7a:aa:09:c6:02: 17:9f:8d:b5:e1:7e:6f:ed:c4:41:d7:af:e7:ce:23:1a:4b:a7: d6:d1:9e:42:95:8c:3a:e8:60:8a:68:28:be:c2:2e:a4:49:d0: 2d:8b:9f:94:3b:dd:0b:7f:c3:83:96:c0:ef:1b:6f:8f:40:55: 53:a5:8a:9b:a7:7c:76:46:0e:61:70:67:8a:5d:4c:19:e5:a6: 06:a9:88:53:87:eb:80:19:3e:c0:b8:27:8b:99:14:5d:35:f6: 07:52:71:1c:98:91:4d:50:0d:2e:c5:f2:ab:be:5f:d9:c5:62: 86:99:50:76:c1:4c:91:7f:7b:77:dc:27:c0:23:8c:b7:ca:7c: 50:93:e8:11 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9XBuhtsYAcWf7/6AKdFAhMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxOTA3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYjdkMzc5YzA0ZjgxNzViMzVlZjY3M2Q3NmM2OGU0NGM3MGU4MzNmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAri9fYSHeZ2uReMwcQJgA8qJYT+fZ PkE+8kS+06IGD5254DmgclxxpBpz5s8guVon/xsC52zipZ2OvBgff9rXVJBjyxNv +ui/fppWKaJ8VVJ9U5B8GrvEMw1P3IQ+o1KrhvDkkXcdACvUTuy4g8dRQZImnkxf TcgOO716zXhhS911fJZouMcaXjGKwgcl4Xtb5MqlJnyAgRpiVOxouTpVvHAOFswC 6MRKR3KwZKjwo3jTu3OyVL/lSle/UH2k0nsR+TrHygUs4njYBwhliwukGQfhH6mX Hxj/5mp1VT/+yF0GpGhrL+CXk36gs2iaPnDul/DmqQ/hrr0Lwdftnt2BxwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFLt9N5wE+BdbNe9nPXbGjkTHDoM/MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JjLzllMGY1 ZS04MTQxLTQzYzktOGY0NC0zM2ViYWIyNGJiYjMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMvOWUwZjVl LTgxNDEtNDNjOS04ZjQ0LTMzZWJhYjI0YmJiMy8xL3UzMDNuQVQ0RjFzMTcyYzlk c2FPUk1jT2d6OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCAjgoMA0EAgACMAcDBQMqCdBAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwCKCDANBgkqhkiG9w0BAQsFAAOCAQEAl0oC85LJZgzC QZPzNbtYbg0VZQZJrKlwRnqYJz4MbwAJhJ6B/U9l8Bws1N47MuGI/LrG9lwK3dkW /0Zrhs0kfvcTTsZeuYSgV92KCE2PXNXB7eEbS6oYDSxXCpopARHQDxPA1iyuEO+k QqM9hn4h8+CyohtoXieej3qqCcYCF5+NteF+b+3EQdev584jGkun1tGeQpWMOuhg imgovsIupEnQLYuflDvdC3/Dg5bA7xtvj0BVU6WKm6d8dkYOYXBnil1MGeWmBqmI U4frgBk+wLgni5kUXTX2B1JxHJiRTVANLsXyq75f2cVihplQdsFMkX97d9wnwCOM t8p8UJPoEQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:27:04 2026 by rpki-client