This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vDImMeLrfqv7XttPywq4yZaCPEg.cer File: vDImMeLrfqv7XttPywq4yZaCPEg.cer (raw, json) Hash identifier: 6VYJgJwneaMKvb/iQ/nfLAUCIN/MCljQDr9b9Z4s/3o= Subject key identifier: BC:32:26:31:E2:EB:7E:AB:FB:5E:DB:4F:CB:0A:B8:C9:96:82:3C:48 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB65070F56BCA2B2636A54DF0ECFF1 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:18:16 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49149 IP: 91.232.112.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:65:07:0f:56:bc:a2:b2:63:6a:54:df:0e:cf:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:18:16 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bc322631e2eb7eabfb5edb4fcb0ab8c996823c48 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:de:2e:dd:f7:73:0c:ba:e2:3f:71:9d:dd:44: 80:0d:f5:1a:40:71:61:b2:20:f4:d1:3a:29:8b:3b: 3f:4f:4d:cb:ab:4e:17:36:88:81:ae:9d:17:0a:ad: b8:ac:c5:af:ce:14:0c:f4:41:c6:37:7f:1a:0a:49: 64:83:cf:c9:64:ee:b1:b1:1d:e9:f1:e3:61:23:6d: 76:dc:e9:a3:0b:34:f4:ce:71:7c:1c:ba:04:38:0f: 88:eb:b9:5e:4c:99:01:19:fa:01:eb:9a:8d:bd:41: f3:1b:a8:46:5c:27:34:5b:4e:66:dc:3a:42:a7:61: d5:a1:b9:f8:c3:7e:08:02:3d:53:50:c8:20:b4:2a: 5c:04:51:82:24:a6:6d:b0:df:3f:f6:da:04:c0:3b: 0f:1a:66:e6:3e:b2:5a:02:8f:85:52:39:d1:1a:32: f1:a3:f0:2e:09:eb:f4:50:5e:8a:a0:ac:0b:03:c3: 48:60:99:28:de:5e:7b:35:19:15:18:50:18:57:66: 77:be:b7:41:38:68:7e:53:c9:8b:dd:6f:32:5e:e2: 05:fa:cd:4b:fa:18:90:69:07:8f:56:1f:9b:b2:a5: 7b:cf:01:67:b3:70:c0:d5:d2:43:a0:47:74:b5:cf: 33:dd:73:4b:e9:80:b8:bb:3e:e2:5d:66:33:bc:de: a6:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:32:26:31:E2:EB:7E:AB:FB:5E:DB:4F:CB:0A:B8:C9:96:82:3C:48 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/3086b8-71f3-4a8d-9451-29edfab39f49/1/vDImMeLrfqv7XttPywq4yZaCPEg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.232.112.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49149 Signature Algorithm: sha256WithRSAEncryption 38:05:38:a9:a1:5e:45:be:d1:f6:66:b4:81:35:4e:6b:e6:6d: 26:e5:28:82:28:df:b3:e5:f1:d1:fb:b7:97:82:5e:23:4e:2d: e6:8c:5c:5d:72:2e:90:0f:5e:1b:56:30:12:da:42:04:fa:63: 70:c4:01:65:ed:12:ed:8e:66:7e:6c:bc:19:0a:fa:3f:3f:39: 02:54:d1:a0:c4:e0:e0:e4:1a:54:2d:a0:a6:ce:f0:3e:74:26: dc:80:be:4b:39:52:ff:59:ca:2a:07:ce:b9:8e:57:5f:cb:2b: e2:13:d5:55:7a:36:a9:29:82:f4:b0:19:3f:f8:6e:92:59:cd: 9f:90:5a:9a:24:ba:a1:0e:2c:cc:2a:4b:2d:40:c9:22:b9:db: 5f:00:68:0f:1c:f1:c1:9a:b8:d4:95:5b:15:53:79:66:5d:11: 49:f7:77:92:af:65:c2:01:af:22:c9:3e:e8:4b:f0:aa:54:f2: 8e:6f:5a:fb:bb:10:e8:49:f8:29:f0:e8:d2:18:8a:e9:14:99: 1b:6b:15:ed:42:6f:94:02:85:78:61:00:0d:86:b4:a4:9f:7b: b7:ea:a2:84:74:e8:bd:8f:0d:d8:e8:25:70:ef:00:90:ab:af: 6d:d3:8f:a8:0b:8b:b8:51:03:32:a0:22:c6:86:13:6e:87:5c: b0:ed:ab:27 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt262UHD1a8orJjalTfDs/xMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxODE2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiYzMyMjYzMWUyZWI3ZWFiZmI1ZWRiNGZjYjBhYjhjOTk2ODIzYzQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy94u3fdzDLriP3Gd3USADfUaQHFh siD00Topizs/T03Lq04XNoiBrp0XCq24rMWvzhQM9EHGN38aCklkg8/JZO6xsR3p 8eNhI2123OmjCzT0znF8HLoEOA+I67leTJkBGfoB65qNvUHzG6hGXCc0W05m3DpC p2HVobn4w34IAj1TUMggtCpcBFGCJKZtsN8/9toEwDsPGmbmPrJaAo+FUjnRGjLx o/AuCev0UF6KoKwLA8NIYJko3l57NRkVGFAYV2Z3vrdBOGh+U8mL3W8yXuIF+s1L +hiQaQePVh+bsqV7zwFns3DA1dJDoEd0tc8z3XNL6YC4uz7iXWYzvN6mQQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFLwyJjHi636r+17bT8sKuMmWgjxIMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk5LzMwODZi OC03MWYzLTRhOGQtOTQ1MS0yOWVkZmFiMzlmNDkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkvMzA4NmI4 LTcxZjMtNGE4ZC05NDUxLTI5ZWRmYWIzOWY0OS8xL3ZESW1NZUxyZnF2N1h0dFB5 d3E0eVphQ1BFZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW+hwMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwC//TANBgkqhkiG9w0BAQsFAAOCAQEAOAU4qaFeRb7R9ma0gTVOa+ZtJuUogijf s+Xx0fu3l4JeI04t5oxcXXIukA9eG1YwEtpCBPpjcMQBZe0S7Y5mfmy8GQr6Pz85 AlTRoMTg4OQaVC2gps7wPnQm3IC+SzlS/1nKKgfOuY5XX8sr4hPVVXo2qSmC9LAZ P/huklnNn5BamiS6oQ4szCpLLUDJIrnbXwBoDxzxwZq41JVbFVN5Zl0RSfd3kq9l wgGvIsk+6EvwqlTyjm9a+7sQ6En4KfDo0hiK6RSZG2sV7UJvlAKFeGEADYa0pJ97 t+qihHTovY8N2OglcO8AkKuvbdOPqAuLuFEDMqAixoYTbodcsO2rJw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:06 2026 by rpki-client