This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vPI0wEREFriFL7NHh4rTdtCBjWQ.cer File: vPI0wEREFriFL7NHh4rTdtCBjWQ.cer (raw, json) Hash identifier: fJBD+TfuCmn09XH9zYhWolA6KwAxNIW6NjGkFBh64xs= Subject key identifier: BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A2F9FF7570CE5E187A666EC1194E80 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:18:25 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 199925 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:f9:ff:75:70:ce:5e:18:7a:66:6e:c1:19:4e:80 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:18:25 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bcf234c0444416b8852fb347878ad376d0818d64 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:99:6b:0b:63:ba:fe:4f:b8:7e:f0:3a:9b:39:50: 29:98:06:0f:49:b0:80:8a:57:31:4f:ca:1a:98:1c: 5e:a2:ce:23:fc:92:b4:f2:57:84:86:f6:40:8d:1f: 7b:45:88:da:cd:d1:c2:d7:3b:49:56:9e:d5:dc:b5: 55:7b:82:7a:9b:4f:18:7e:44:72:2d:1d:fb:e4:4d: c8:1e:f5:d6:9a:06:99:0d:94:ea:15:4c:5e:01:fd: 41:d4:6f:78:78:f0:b0:31:64:e0:c2:ac:fc:bb:10: c1:73:61:a3:a2:a3:67:62:93:f2:d9:41:31:4c:58: f4:9d:c4:18:51:e9:65:2b:80:a7:47:55:44:69:c8: 27:97:56:c9:5c:c1:00:61:8d:b3:11:c4:05:f6:f9: 79:71:31:f1:88:50:51:e8:e9:98:ae:a0:e0:7b:ce: dc:41:aa:0c:7a:86:9e:29:d1:77:ae:5f:20:6d:49: 57:03:59:a1:28:b5:f3:cb:85:0f:a0:f3:46:e1:98: 52:54:65:b9:25:7a:5e:b0:de:63:88:dd:49:9e:15: 4b:03:e9:7e:bf:ee:bd:f2:b3:51:35:1e:fa:9c:30: 47:ab:24:98:38:9d:24:31:ad:c3:24:d0:2d:bd:39: 52:ec:2d:3d:1a:67:3e:54:c8:5f:7b:28:05:3c:a8: aa:2b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BC:F2:34:C0:44:44:16:B8:85:2F:B3:47:87:8A:D3:76:D0:81:8D:64 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/bb7a7a-303f-4234-82a1-9aca7bd8ec0f/1/vPI0wEREFriFL7NHh4rTdtCBjWQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 199925 Signature Algorithm: sha256WithRSAEncryption 8f:db:ad:89:58:5d:d9:cf:14:39:45:b1:f4:54:2f:40:b7:73: 20:c0:20:65:e1:a0:3b:05:0d:d8:f0:24:8b:0a:6f:bc:56:69: c1:0c:dd:34:c1:7f:58:2f:c5:02:82:41:43:ec:81:f9:97:de: 3e:a0:ee:5e:af:70:95:03:3d:90:1a:19:64:2b:71:74:58:68: f6:bb:44:f4:61:8c:1b:df:ec:7f:ca:6e:61:62:d5:88:54:d3: 1c:29:bf:d7:cd:e5:8b:af:c8:73:45:01:43:cd:59:49:93:21: 6e:6b:31:6f:01:3d:6f:6e:a9:f6:83:62:db:cc:03:21:66:16: c5:52:4b:12:d3:79:2d:a7:14:52:3e:56:a3:e9:4a:39:4b:6b: 18:60:fb:be:02:78:cb:43:c3:7a:d4:c0:47:19:08:c9:3c:fb: 46:c3:a2:f3:23:98:dd:e8:9e:ad:cc:a7:45:a2:01:3d:28:c6: ea:fe:f3:82:59:f7:b5:04:47:1d:41:a9:e4:f7:d8:8b:5f:42: 51:62:db:50:1e:5c:23:f1:d3:05:e4:1f:93:c9:03:57:c5:fc: 47:cf:9c:9b:b2:a1:d6:4b:50:88:20:b4:69:80:a4:16:41:95: 71:47:18:87:68:e9:c7:63:f7:73:a0:2a:8e:0d:16:fd:10:db: 7a:3b:db:6a -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt4ovn/dXDOXhh6Zm7BGU6AMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxODI1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiY2YyMzRjMDQ0NDQxNmI4ODUyZmIzNDc4NzhhZDM3NmQwODE4ZDY0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmWsLY7r+T7h+8DqbOVApmAYPSbCA ilcxT8oamBxeos4j/JK08leEhvZAjR97RYjazdHC1ztJVp7V3LVVe4J6m08YfkRy LR375E3IHvXWmgaZDZTqFUxeAf1B1G94ePCwMWTgwqz8uxDBc2GjoqNnYpPy2UEx TFj0ncQYUellK4CnR1VEacgnl1bJXMEAYY2zEcQF9vl5cTHxiFBR6OmYrqDge87c QaoMeoaeKdF3rl8gbUlXA1mhKLXzy4UPoPNG4ZhSVGW5JXpesN5jiN1JnhVLA+l+ v+698rNRNR76nDBHqySYOJ0kMa3DJNAtvTlS7C09Gmc+VMhfeygFPKiqKwIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFLzyNMBERBa4hS+zR4eK03bQgY1kMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY0L2JiN2E3 YS0zMDNmLTQyMzQtODJhMS05YWNhN2JkOGVjMGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjQvYmI3YTdh LTMwM2YtNDIzNC04MmExLTlhY2E3YmQ4ZWMwZi8xL3ZQSTB3RVJFRnJpRkw3Tkho NHJUZHRDQmpXUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMM9TANBgkqhkiG9w0BAQsFAAOCAQEAj9utiVhd2c8U OUWx9FQvQLdzIMAgZeGgOwUN2PAkiwpvvFZpwQzdNMF/WC/FAoJBQ+yB+ZfePqDu Xq9wlQM9kBoZZCtxdFho9rtE9GGMG9/sf8puYWLViFTTHCm/183li6/Ic0UBQ81Z SZMhbmsxbwE9b26p9oNi28wDIWYWxVJLEtN5LacUUj5Wo+lKOUtrGGD7vgJ4y0PD etTARxkIyTz7RsOi8yOY3eiercynRaIBPSjG6v7zgln3tQRHHUGp5PfYi19CUWLb UB5cI/HTBeQfk8kDV8X8R8+cm7Kh1ktQiCC0aYCkFkGVcUcYh2jpx2P3c6Aqjg0W /RDbejvbag== -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:26 2026 by rpki-client