This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vSpaBrm0P86hiFQdMMbcNDCq85I.cer File: vSpaBrm0P86hiFQdMMbcNDCq85I.cer (raw, json) Hash identifier: Ni7yO3UpjtKXIkrcyz5f5dv2ITakkdKs0TOt6BSn2/c= Subject key identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7C1297CDECE9923E1EA0CE8B94934AD7 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 00:19:11 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205969 -- 205970 IP: 2001:67c:12f4::/48 IP: 2001:67c:2f3c::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7c:12:97:cd:ec:e9:92:3e:1e:a0:ce:8b:94:93:4a:d7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 00:19:11 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bd2a5a06b9b43fcea188541d30c6dc3430aaf392 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:37:18:50:4d:14:08:de:d1:2b:e3:57:0c:89: a5:39:c2:b3:b0:c0:88:f1:37:a5:0e:e9:7a:9e:74: de:9d:59:54:22:54:a4:47:36:c8:d1:10:2f:a7:0d: 47:b4:1b:8a:13:0c:9a:85:53:b4:a3:68:1d:1a:f4: 9c:91:66:5f:4f:7f:64:8c:5d:52:8c:48:6e:2d:3e: 9b:b2:49:35:7b:f3:49:fa:d6:7e:44:c8:19:10:ed: 40:f7:16:ba:e0:a7:3c:29:8e:50:65:32:3a:61:aa: c4:80:37:6e:fd:f3:b5:f2:e9:ec:c8:a2:b1:0e:8e: 84:40:45:67:6e:04:69:80:d8:03:f0:ff:98:08:c9: 22:29:ec:49:84:b8:09:a5:79:6c:f5:d0:5e:f6:a9: 03:60:05:5a:e1:b3:ad:4a:d0:f8:1d:f7:e1:7e:e8: 3d:73:b6:70:a4:48:ef:a1:e2:27:97:81:8f:a1:e0: 3a:ef:cd:db:3b:a6:bb:82:24:36:1c:b3:05:5d:b2: 8f:13:bb:ae:1f:71:fc:af:bb:59:ea:91:fa:75:84: 29:37:c2:0f:9d:ad:b4:81:7b:6f:22:a4:9e:29:29: 7a:01:a6:df:5c:b5:c5:c8:45:ed:2b:5e:ab:b5:e6: 68:0f:93:8b:08:67:65:28:0b:83:1d:a5:b8:03:cb: 59:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:2A:5A:06:B9:B4:3F:CE:A1:88:54:1D:30:C6:DC:34:30:AA:F3:92 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/85/caf034-cbe2-4d2d-a02b-5d34704b7c88/1/vSpaBrm0P86hiFQdMMbcNDCq85I.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:12f4::/48 2001:67c:2f3c::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205969-205970 Signature Algorithm: sha256WithRSAEncryption 8e:35:f2:64:f6:f4:a6:6c:7e:83:ef:33:8f:7d:19:b9:f1:5b: 3d:11:4f:24:73:ae:c3:7c:c3:a6:6b:2d:be:2f:51:6a:0f:0b: 44:e2:e7:63:12:85:fc:84:ee:9f:0c:98:be:09:77:d7:3f:0f: ef:ca:9a:fd:a9:3f:59:26:ac:3c:47:5d:8a:6c:ff:74:93:5f: db:94:c7:3c:61:5f:e5:2a:75:f4:9b:08:aa:83:93:dd:f7:73: bf:f6:cf:90:37:fb:f7:60:ce:03:99:0c:c5:a0:e0:d0:76:47: 77:9a:39:85:cd:5d:75:b4:87:e7:34:3f:80:bd:26:26:41:4e: b5:fd:7f:c2:76:2d:f4:4e:b3:88:91:68:d2:42:fd:e2:20:c7: 59:85:ac:af:ba:52:c8:cf:96:f4:80:07:ef:1b:eb:66:51:b8: fe:ca:ae:1d:02:30:e1:83:fc:6a:74:d4:b9:e5:bc:cc:e6:9e: 78:11:2d:30:28:c5:3a:28:71:a2:f7:1c:b2:e5:90:15:6f:d9: 65:64:c0:0b:e3:59:c2:ae:68:47:fa:8f:60:16:22:af:43:66: 0f:b9:2f:fb:80:80:9e:a2:13:25:cf:c8:aa:59:03:e3:93:22: 03:d9:3f:ce:9d:57:a0:10:ad:ef:8b:75:cb:c5:32:9c:5c:9a: 7b:ae:2d:64 -----BEGIN CERTIFICATE----- MIIFpzCCBI+gAwIBAgISAZt8EpfN7OmSPh6gzouUk0rXMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDAxOTExWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZDJhNWEwNmI5YjQzZmNlYTE4ODU0MWQzMGM2ZGMzNDMwYWFmMzkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnjcYUE0UCN7RK+NXDImlOcKzsMCI 8TelDul6nnTenVlUIlSkRzbI0RAvpw1HtBuKEwyahVO0o2gdGvSckWZfT39kjF1S jEhuLT6bskk1e/NJ+tZ+RMgZEO1A9xa64Kc8KY5QZTI6YarEgDdu/fO18unsyKKx Do6EQEVnbgRpgNgD8P+YCMkiKexJhLgJpXls9dBe9qkDYAVa4bOtStD4Hffhfug9 c7ZwpEjvoeInl4GPoeA6783bO6a7giQ2HLMFXbKPE7uuH3H8r7tZ6pH6dYQpN8IP na20gXtvIqSeKSl6AabfXLXFyEXtK16rteZoD5OLCGdlKAuDHaW4A8tZTwIDAQAB o4ICszCCAq8wHQYDVR0OBBYEFL0qWga5tD/OoYhUHTDG3DQwqvOSMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg1L2NhZjAz NC1jYmUyLTRkMmQtYTAyYi01ZDM0NzA0YjdjODgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODUvY2FmMDM0 LWNiZTItNGQyZC1hMDJiLTVkMzQ3MDRiN2M4OC8xL3ZTcGFCcm0wUDg2aGlGUWRN TWJjTkRDcTg1SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAAjASAwcAIAEGfBL0AwcAIAEGfC88MCEGCCsGAQUFBwEI AQH/BBIwEKAOMAwwCgIDAySRAgMDJJIwDQYJKoZIhvcNAQELBQADggEBAI418mT2 9KZsfoPvM499GbnxWz0RTyRzrsN8w6ZrLb4vUWoPC0Ti52MShfyE7p8MmL4Jd9c/ D+/Kmv2pP1kmrDxHXYps/3STX9uUxzxhX+UqdfSbCKqDk933c7/2z5A3+/dgzgOZ DMWg4NB2R3eaOYXNXXW0h+c0P4C9JiZBTrX9f8J2LfROs4iRaNJC/eIgx1mFrK+6 UsjPlvSAB+8b62ZRuP7Krh0CMOGD/Gp01LnlvMzmnngRLTAoxToocaL3HLLlkBVv 2WVkwAvjWcKuaEf6j2AWIq9DZg+5L/uAgJ6iEyXPyKpZA+OTIgPZP86dV6AQre+L dcvFMpxcmnuuLWQ= -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:01 2026 by rpki-client