This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/u_OiV_mVKMOpJNJp0a9DgYXCAG0.cer File: u_OiV_mVKMOpJNJp0a9DgYXCAG0.cer (raw, json) Hash identifier: +QVpJ1rwnDXOD9JlESxyftwg50SrD7VBntXlrq7UQmo= Subject key identifier: BB:F3:A2:57:F9:95:28:C3:A9:24:D2:69:D1:AF:43:81:85:C2:00:6D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B790FF66AC2F8E48F9BE4FD3956CBB969 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/u_OiV_mVKMOpJNJp0a9DgYXCAG0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:17:27 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 16145 IP: 80.87.240.0/20 IP: 185.150.192.0/22 IP: 2a04:f2c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:0f:f6:6a:c2:f8:e4:8f:9b:e4:fd:39:56:cb:b9:69 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:17:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bbf3a257f99528c3a924d269d1af438185c2006d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:68:2a:c3:e5:7c:69:30:1c:b9:80:bb:f6:dd: e0:69:67:f4:0e:f3:87:fb:ab:28:77:93:cf:2a:a8: 5d:b0:0e:c9:3e:cf:3f:bc:48:dd:52:b1:b5:cb:87: 76:c9:98:35:ab:49:6c:e8:f5:9d:e5:47:53:22:e6: bf:3b:6e:a1:ea:6b:e4:6b:6c:7f:3c:07:0b:9d:9b: d9:30:3e:cb:07:87:e1:86:e1:98:f7:98:88:2d:c4: f9:91:34:10:38:60:e2:68:83:84:2f:ac:4a:53:fd: d8:11:00:72:65:49:18:f2:5b:af:31:2b:87:fd:40: 34:e0:ca:df:24:1b:18:27:85:f2:ea:b9:e0:92:18: 01:cd:73:5a:8d:7e:0e:f1:8d:3a:ee:8e:29:2b:19: 8e:b2:0d:aa:1c:36:bb:14:09:d8:a9:ac:93:81:25: a3:21:5d:e1:1e:ed:58:05:33:05:d1:7d:67:8f:7b: 64:59:87:3b:84:11:61:b1:13:70:db:71:81:e5:e7: fd:19:fa:ee:29:14:1a:cb:af:fa:6d:80:5f:d5:16: 2e:37:55:a4:64:f1:b1:19:31:6c:a5:3a:30:b7:b7: 61:00:35:a8:f3:0b:e6:df:06:bb:cd:7e:36:41:d5: 08:8e:03:75:b6:33:a4:ea:d0:d1:d7:76:e6:fe:52: f8:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BB:F3:A2:57:F9:95:28:C3:A9:24:D2:69:D1:AF:43:81:85:C2:00:6D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/80/4faaff-384f-402e-8b8c-45f77dfa2636/1/u_OiV_mVKMOpJNJp0a9DgYXCAG0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.87.240.0/20 185.150.192.0/22 IPv6: 2a04:f2c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 16145 Signature Algorithm: sha256WithRSAEncryption 81:42:d5:4d:86:74:f9:b6:4b:c9:45:fd:f3:5a:e8:e2:72:e3: 88:8f:3c:1e:f7:0a:46:f6:d7:26:ac:74:c1:26:9a:4f:4e:6e: 25:08:7b:75:c4:6b:18:14:46:b6:f9:0f:18:d8:b6:bb:00:32: 89:10:22:ad:2e:77:33:3c:47:36:21:28:81:ac:e9:90:c2:ef: 0a:08:14:f4:11:d7:8a:d6:12:55:67:f9:d0:24:cc:04:a8:09: ef:8f:14:a5:b5:27:c5:d3:9e:b3:a6:38:4a:32:ae:4b:6b:66: fb:a2:51:75:6c:ba:7f:8f:29:e3:62:ce:6e:3a:e2:a3:97:d0: 75:50:5c:54:c8:bd:8f:f3:ff:27:f9:df:df:d5:dc:b7:fa:b8: f7:71:5a:45:2b:24:47:6b:2d:b4:74:78:10:5f:ef:04:02:99: b8:a4:60:f0:8d:be:1b:2e:50:0e:4e:cc:20:17:1e:d5:4f:40: 25:23:92:d1:35:e4:28:3d:2d:8d:a5:55:de:58:66:cb:c6:a4: 2b:39:36:c1:3b:c4:ca:d8:f3:07:91:26:24:87:aa:b4:31:4e: 12:67:77:72:e2:a7:25:71:5d:09:c5:0e:ca:ee:a5:7c:c5:bb: c9:e7:6e:7b:18:dc:d3:6e:0f:5e:a4:88:a2:ec:4c:9c:cd:ff: 70:e3:3f:87 -----BEGIN CERTIFICATE----- MIIFqDCCBJCgAwIBAgISAZt5D/Zqwvjkj5vk/TlWy7lpMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxNzI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYmYzYTI1N2Y5OTUyOGMzYTkyNGQyNjlkMWFmNDM4MTg1YzIwMDZkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGgqw+V8aTAcuYC79t3gaWf0DvOH +6sod5PPKqhdsA7JPs8/vEjdUrG1y4d2yZg1q0ls6PWd5UdTIua/O26h6mvka2x/ PAcLnZvZMD7LB4fhhuGY95iILcT5kTQQOGDiaIOEL6xKU/3YEQByZUkY8luvMSuH /UA04MrfJBsYJ4Xy6rngkhgBzXNajX4O8Y067o4pKxmOsg2qHDa7FAnYqayTgSWj IV3hHu1YBTMF0X1nj3tkWYc7hBFhsRNw23GB5ef9GfruKRQay6/6bYBf1RYuN1Wk ZPGxGTFspTowt7dhADWo8wvm3wa7zX42QdUIjgN1tjOk6tDR13bm/lL4GQIDAQAB o4ICtDCCArAwHQYDVR0OBBYEFLvzolf5lSjDqSTSadGvQ4GFwgBtMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzgwLzRmYWFm Zi0zODRmLTQwMmUtOGI4Yy00NWY3N2RmYTI2MzYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODAvNGZhYWZm LTM4NGYtNDAyZS04YjhjLTQ1Zjc3ZGZhMjYzNi8xL3VfT2lWX21WS01PcEpOSnAw YTlEZ1lYQ0FHMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQEUFfwAwQCuZbAMA0EAgACMAcDBQMqBPLAMBkG CCsGAQUFBwEIAQH/BAowCKAGMAQCAj8RMA0GCSqGSIb3DQEBCwUAA4IBAQCBQtVN hnT5tkvJRf3zWujicuOIjzwe9wpG9tcmrHTBJppPTm4lCHt1xGsYFEa2+Q8Y2La7 ADKJECKtLnczPEc2ISiBrOmQwu8KCBT0EdeK1hJVZ/nQJMwEqAnvjxSltSfF056z pjhKMq5La2b7olF1bLp/jynjYs5uOuKjl9B1UFxUyL2P8/8n+d/f1dy3+rj3cVpF KyRHay20dHgQX+8EApm4pGDwjb4bLlAOTswgFx7VT0AlI5LRNeQoPS2NpVXeWGbL xqQrOTbBO8TK2PMHkSYkh6q0MU4SZ3dy4qclcV0JxQ7K7qV8xbvJ5257GNzTbg9e pIii7Eyczf9w4z+H -----END CERTIFICATE-----Generated at Mon Feb 9 15:12:18 2026 by rpki-client