This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/v8pT8KWH822Jqcq4K_WlA2xhQKI.cer File: v8pT8KWH822Jqcq4K_WlA2xhQKI.cer (raw, json) Hash identifier: JGVQf/2/jDmP3W/yEjY5eLM40nySTRbigIa0tFJAQz0= Subject key identifier: BF:CA:53:F0:A5:87:F3:6D:89:A9:CA:B8:2B:F5:A5:03:6C:61:40:A2 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7835520A4E0A97AF409C46EBA25C743B Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/v8pT8KWH822Jqcq4K_WlA2xhQKI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:38 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197751 IP: 195.149.117.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:35:52:0a:4e:0a:97:af:40:9c:46:eb:a2:5c:74:3b Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:38 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bfca53f0a587f36d89a9cab82bf5a5036c6140a2 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:19:2d:14:6b:a3:3c:f4:1a:51:23:af:92:cc: 25:80:97:4f:d4:1f:18:f9:7e:3a:e7:e9:de:cc:d6: a0:9a:f7:95:7c:49:8d:23:96:af:42:a2:6e:18:3f: e6:fe:81:77:4b:fe:59:a9:e8:3f:77:d9:3d:11:bc: 31:01:a2:70:24:71:52:09:8b:31:81:6e:2f:f0:b5: 14:63:a1:fc:8b:83:d1:1c:a9:ce:ba:8d:32:23:76: 87:01:cc:68:2e:1d:75:7a:dd:c5:69:87:cf:85:8d: 22:a9:8e:2a:aa:11:c8:8a:39:32:57:e0:98:ee:27: cf:5c:3a:e6:ca:34:57:43:c1:c1:1a:b7:ae:6f:bf: e7:d3:61:4a:79:bc:23:8d:13:7e:fe:08:10:41:70: 02:4e:61:2a:f9:1a:4d:8d:f5:60:9c:e1:e9:4e:80: 2b:c9:44:41:fc:95:90:9f:f0:33:f7:95:f5:16:9d: 3b:c3:1d:c6:d7:ce:7f:b6:45:dc:bc:59:99:e8:18: de:82:b9:80:d4:b4:61:6b:fa:85:f0:95:4b:ad:4f: df:81:f2:06:b5:68:09:1f:25:2a:97:08:ea:aa:e7: d8:83:ba:16:b0:74:e1:77:8c:fd:85:8e:77:35:a3: 74:88:1c:7f:6e:f4:5f:8d:55:28:25:13:02:ef:1a: 00:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:CA:53:F0:A5:87:F3:6D:89:A9:CA:B8:2B:F5:A5:03:6C:61:40:A2 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e2/fc12ec-3eac-4455-91c9-f99c4e5c2953/1/v8pT8KWH822Jqcq4K_WlA2xhQKI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.149.117.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 197751 Signature Algorithm: sha256WithRSAEncryption 03:dd:65:65:03:02:37:86:f7:73:24:9f:29:93:10:c0:b8:10: 0f:49:b3:b9:22:1c:82:08:8a:30:b0:57:51:88:7c:fe:c1:d1: a3:c1:ae:8b:61:91:45:16:61:3a:06:93:63:d9:72:a4:4c:d4: 93:d3:1d:fe:f3:41:8b:0a:59:bc:a1:89:5e:e5:f3:61:f1:e2: 1f:a6:31:97:23:7c:a9:8c:69:e7:f9:6e:95:c0:32:af:96:4b: 44:ed:83:39:49:c5:07:9f:fe:57:a6:1b:e4:76:2d:0a:c0:51: ce:fe:12:b4:67:97:3d:b8:d0:13:65:0b:f8:72:84:21:f8:a5: 80:ef:fb:00:dd:f6:53:07:59:c3:26:a9:43:b3:eb:6b:85:c6: 48:9d:42:a9:2c:a3:a7:f3:e9:90:2a:a8:d1:2b:75:a9:d3:40: d7:40:33:ad:62:e2:84:ef:11:04:2d:e6:f3:e9:6e:de:a1:8d: e9:37:38:74:a8:da:ab:1a:68:d0:8d:07:07:40:5d:ef:0f:ca: ee:d5:eb:f5:ca:ef:d3:eb:dc:80:54:f9:a4:db:ef:8c:de:c2: 43:db:0f:f0:ce:54:e1:9d:60:35:6a:2a:12:ff:ee:19:da:b8: 78:0d:19:dd:5c:a1:92:2a:9a:ea:cc:e8:37:4c:57:0d:39:4a: fc:b7:f2:69 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4NVIKTgqXr0CcRuuiXHQ7MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODM4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZmNhNTNmMGE1ODdmMzZkODlhOWNhYjgyYmY1YTUwMzZjNjE0MGEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoBktFGujPPQaUSOvkswlgJdP1B8Y +X465+nezNagmveVfEmNI5avQqJuGD/m/oF3S/5Zqeg/d9k9EbwxAaJwJHFSCYsx gW4v8LUUY6H8i4PRHKnOuo0yI3aHAcxoLh11et3FaYfPhY0iqY4qqhHIijkyV+CY 7ifPXDrmyjRXQ8HBGreub7/n02FKebwjjRN+/ggQQXACTmEq+RpNjfVgnOHpToAr yURB/JWQn/Az95X1Fp07wx3G185/tkXcvFmZ6BjegrmA1LRha/qF8JVLrU/fgfIG tWgJHyUqlwjqqufYg7oWsHThd4z9hY53NaN0iBx/bvRfjVUoJRMC7xoATwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFL/KU/Clh/NtianKuCv1pQNsYUCiMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UyL2ZjMTJl Yy0zZWFjLTQ0NTUtOTFjOS1mOTljNGU1YzI5NTMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTIvZmMxMmVj LTNlYWMtNDQ1NS05MWM5LWY5OWM0ZTVjMjk1My8xL3Y4cFQ4S1dIODIySnFjcTRL X1dsQTJ4aFFLSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAw5V1MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMEdzANBgkqhkiG9w0BAQsFAAOCAQEAA91lZQMCN4b3cySfKZMQwLgQD0mzuSIc ggiKMLBXUYh8/sHRo8Gui2GRRRZhOgaTY9lypEzUk9Md/vNBiwpZvKGJXuXzYfHi H6YxlyN8qYxp5/lulcAyr5ZLRO2DOUnFB5/+V6Yb5HYtCsBRzv4StGeXPbjQE2UL +HKEIfilgO/7AN32UwdZwyapQ7Pra4XGSJ1CqSyjp/PpkCqo0St1qdNA10AzrWLi hO8RBC3m8+lu3qGN6Tc4dKjaqxpo0I0HB0Bd7w/K7tXr9crv0+vcgFT5pNvvjN7C Q9sP8M5U4Z1gNWoqEv/uGdq4eA0Z3Vyhkiqa6szoN0xXDTlK/LfyaQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:11:45 2026 by rpki-client