This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/v40IHJb6fQ_CqdMq7dUMI6YcbxE.cer File: v40IHJb6fQ_CqdMq7dUMI6YcbxE.cer (raw, json) Hash identifier: yZqvgKD9Yc3doYn2MapDwydsM1L3S7J6kV5Wr14Thsc= Subject key identifier: BF:8D:08:1C:96:FA:7D:0F:C2:A9:D3:2A:ED:D5:0C:23:A6:1C:6F:11 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BE50F2F514629EB7A78005489572AC73E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 22 Jan 2026 09:35:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208344 IP: 46.183.17.0/24 IP: 194.110.221.0/24 IP: 2a01:ff00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:e5:0f:2f:51:46:29:eb:7a:78:00:54:89:57:2a:c7:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 22 09:35:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf8d081c96fa7d0fc2a9d32aedd50c23a61c6f11 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:67:0f:c1:2b:e8:b1:5f:99:f0:ef:c9:21:47: 78:9a:de:22:13:80:b4:9a:13:3d:67:89:52:51:44: 41:85:8f:61:c1:5e:0d:60:fb:ff:cd:f9:bf:51:17: af:18:6b:41:fc:d8:6d:54:7b:8c:16:31:29:cb:42: 20:bb:86:19:60:57:30:a4:60:c7:82:aa:b3:dd:38: 71:ec:09:91:38:d3:58:22:e3:44:8e:d6:3e:ef:a6: cf:d7:5d:60:d2:1f:92:43:47:ff:35:72:d9:45:fe: 69:25:c0:be:e3:e0:b6:d7:da:91:79:44:28:94:62: 07:00:cb:32:ec:d9:11:ad:e5:4c:21:c6:5c:f5:2e: 94:e3:c3:77:ad:d1:69:06:e8:3d:6a:f6:88:81:57: 6c:39:88:e8:81:6a:a1:bb:d3:37:9c:98:d6:65:cd: f9:b3:7b:23:4a:c1:6e:38:88:6d:cb:c0:14:31:b7: 31:0a:9c:d4:92:5c:9a:00:52:40:78:c5:d5:a2:4b: 6c:6b:06:17:34:67:02:28:fa:2f:2d:e2:3c:93:3a: 1b:63:99:29:dc:d4:a6:7a:bd:da:a0:8d:8a:3f:64: 44:a5:7c:3e:65:6e:97:7d:60:ad:6d:ff:39:2b:20: 2b:2e:f8:cf:a3:c4:ce:44:76:2c:ea:91:12:52:2c: b9:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:8D:08:1C:96:FA:7D:0F:C2:A9:D3:2A:ED:D5:0C:23:A6:1C:6F:11 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/76/7f6f96-664c-4c61-bd25-0974f09879a9/1/v40IHJb6fQ_CqdMq7dUMI6YcbxE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.183.17.0/24 194.110.221.0/24 IPv6: 2a01:ff00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208344 Signature Algorithm: sha256WithRSAEncryption 18:ea:fc:58:be:12:a9:dd:4a:54:8b:4e:0a:85:26:b5:c0:69: de:69:94:a9:8f:43:ae:92:f2:1f:78:16:f8:82:46:34:0e:ae: b5:cb:99:e5:c7:55:74:3a:bb:f2:5b:50:5d:7d:e3:a4:40:4b: 0a:87:aa:89:af:90:13:9e:95:96:19:d0:91:44:43:f0:1b:20: d8:21:20:17:27:84:e3:55:49:64:2b:95:ee:0b:51:bc:f8:86: a9:c7:0c:d2:a7:30:ac:d8:22:44:b1:d2:38:79:be:06:03:ab: 25:18:5e:54:b3:18:a4:6f:c3:f1:d8:36:74:97:a6:17:0d:39: 2c:d6:e1:7c:38:af:b7:b8:25:85:de:f0:c1:24:fa:ec:70:c3: 7c:57:a2:0f:f9:c7:62:1e:3e:cb:16:b3:a1:41:67:85:49:21: 00:85:47:bc:17:b1:a8:b8:c3:22:43:13:b7:4e:3b:c6:44:8f: ce:1b:5e:ed:72:d5:78:97:84:9e:c0:56:2f:d9:e6:b0:43:a0: f3:07:2d:a1:1a:ca:0f:2b:52:ab:51:db:4e:ce:e9:6e:ac:47: 04:f3:f2:e9:da:fb:4b:88:e5:5b:59:76:3c:a3:94:c4:29:e5: c2:6a:86:98:0b:e8:4b:4b:40:1a:dd:e2:c8:98:3b:c6:e1:ed: d7:a6:95:97 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZvlDy9RRinrengAVIlXKsc+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTIyMDkzNTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjhkMDgxYzk2ZmE3ZDBmYzJhOWQzMmFlZGQ1MGMyM2E2MWM2ZjExMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzGcPwSvosV+Z8O/JIUd4mt4iE4C0 mhM9Z4lSUURBhY9hwV4NYPv/zfm/URevGGtB/NhtVHuMFjEpy0Igu4YZYFcwpGDH gqqz3Thx7AmRONNYIuNEjtY+76bP111g0h+SQ0f/NXLZRf5pJcC+4+C219qReUQo lGIHAMsy7NkRreVMIcZc9S6U48N3rdFpBug9avaIgVdsOYjogWqhu9M3nJjWZc35 s3sjSsFuOIhty8AUMbcxCpzUklyaAFJAeMXVoktsawYXNGcCKPovLeI8kzobY5kp 3NSmer3aoI2KP2REpXw+ZW6XfWCtbf85KyArLvjPo8TORHYs6pESUiy5gwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFL+NCByW+n0PwqnTKu3VDCOmHG8RMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzc2LzdmNmY5 Ni02NjRjLTRjNjEtYmQyNS0wOTc0ZjA5ODc5YTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNzYvN2Y2Zjk2 LTY2NGMtNGM2MS1iZDI1LTA5NzRmMDk4NzlhOS8xL3Y0MElISmI2ZlFfQ3FkTXE3 ZFVNSTZZY2J4RS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQALrcRAwQAwm7dMA0EAgACMAcDBQMqAf8AMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMt2DANBgkqhkiG9w0BAQsFAAOCAQEAGOr8 WL4Sqd1KVItOCoUmtcBp3mmUqY9DrpLyH3gW+IJGNA6utcuZ5cdVdDq78ltQXX3j pEBLCoeqia+QE56VlhnQkURD8Bsg2CEgFyeE41VJZCuV7gtRvPiGqccM0qcwrNgi RLHSOHm+BgOrJRheVLMYpG/D8dg2dJemFw05LNbhfDivt7glhd7wwST67HDDfFei D/nHYh4+yxazoUFnhUkhAIVHvBexqLjDIkMTt047xkSPzhte7XLVeJeEnsBWL9nm sEOg8wctoRrKDytSq1HbTs7pbqxHBPPy6dr7S4jlW1l2PKOUxCnlwmqGmAvoS0tA Gt3iyJg7xuHt16aVlw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:41 2026 by rpki-client