This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vbeqx8STvIqn7HBZ0-x2u_wvI9g.cer File: vbeqx8STvIqn7HBZ0-x2u_wvI9g.cer (raw, json) Hash identifier: 84HprjCAnY5h15IioG5I/avcrPpTMOv15x3e7cPEhOg= Subject key identifier: BD:B7:AA:C7:C4:93:BC:8A:A7:EC:70:59:D3:EC:76:BB:FC:2F:23:D8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ED51FD14ECB3D3E10D19A74FAED485 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/0a/c00989-f654-47c4-bb09-697c0e2c3d35/1/vbeqx8STvIqn7HBZ0-x2u_wvI9g.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/0a/c00989-f654-47c4-bb09-697c0e2c3d35/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:19:14 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 57907 IP: 37.152.48.0/21 IP: 212.162.156.0/22 IP: 2a09:d800::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ed:51:fd:14:ec:b3:d3:e1:0d:19:a7:4f:ae:d4:85 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:19:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bdb7aac7c493bc8aa7ec7059d3ec76bbfc2f23d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:25:5e:c6:e6:72:4c:f4:14:c6:4a:65:0e:05: fc:10:29:c5:cb:45:30:f9:fc:89:b0:90:1a:5d:27: d4:ba:81:fb:f4:10:4b:a5:36:28:17:bc:22:00:45: 82:8e:0c:2a:40:9d:ed:54:ec:29:74:57:4b:87:39: a3:bf:f2:2f:a3:5f:45:08:99:8c:9d:77:c7:83:d9: 87:6f:de:e5:3d:c1:3a:10:10:4a:be:06:cb:2c:80: 36:88:a5:58:54:c9:a2:fb:4a:55:91:e7:50:c5:bb: b2:09:d6:56:8c:11:4f:43:a1:71:39:c1:48:46:2c: 47:9d:82:e0:85:b9:02:91:26:f0:f4:59:72:57:86: 95:85:72:e6:01:15:54:7f:21:34:e5:c9:4d:cd:84: 94:01:7f:85:03:df:44:83:eb:61:08:d4:56:b3:99: ee:ea:c4:a0:c1:a7:aa:17:a3:75:0f:38:b1:49:34: 31:f9:2f:db:29:4d:ea:49:0c:bb:3e:87:28:30:08: 1e:8e:d0:fc:70:c1:a6:c1:14:b8:a8:95:3d:76:07: 9f:fd:91:99:59:87:79:9d:3a:92:db:e5:7e:97:36: bc:a5:fd:5f:33:18:ce:69:f0:d0:48:e9:cd:22:b1: 68:58:bc:81:ac:91:4b:d9:38:95:e8:0c:f6:96:98: dc:e7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BD:B7:AA:C7:C4:93:BC:8A:A7:EC:70:59:D3:EC:76:BB:FC:2F:23:D8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/c00989-f654-47c4-bb09-697c0e2c3d35/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/0a/c00989-f654-47c4-bb09-697c0e2c3d35/1/vbeqx8STvIqn7HBZ0-x2u_wvI9g.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 37.152.48.0/21 212.162.156.0/22 IPv6: 2a09:d800::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 57907 Signature Algorithm: sha256WithRSAEncryption a5:75:07:52:4a:50:ff:f6:5b:36:f2:b0:36:c1:ff:f6:90:cf: 7d:7d:4f:4f:11:ca:ed:1d:0f:41:ea:f2:f2:db:e8:e4:39:cd: fd:5a:79:93:25:b6:b9:ec:be:ba:d4:c7:4c:91:a2:15:1d:0b: 79:7d:b3:d1:13:59:f6:fb:76:c4:6c:0d:5b:22:48:42:95:ba: 57:c9:3e:40:c4:69:f3:24:a1:78:f3:e1:6a:db:16:87:35:6a: 02:bb:ab:27:17:ec:92:c7:ad:49:2e:94:2f:39:7e:0e:ad:9c: f5:4f:2e:bd:ac:f4:6d:ba:45:40:ff:77:f7:81:0a:b8:b1:0e: 7e:fe:93:5f:42:3e:58:73:4a:67:76:2e:6f:a3:fe:1c:9b:f0: 70:6f:b9:10:12:26:6f:de:de:00:1c:9f:2b:3f:a3:d3:36:5f: 55:7b:d7:da:a3:4f:b4:11:21:ba:b4:aa:d0:3b:2f:65:13:ac: 8f:8b:e1:7e:3f:05:cc:2b:17:33:25:4e:cc:6c:74:10:21:17: 88:f1:50:e1:fe:7b:e3:eb:12:72:27:5a:b6:4d:d9:bb:19:72: 3b:a0:07:93:f3:65:c8:77:b1:0f:3a:b7:a5:fa:53:94:a5:10: 33:79:de:03:c0:3c:e7:15:54:b0:a4:29:83:67:d5:73:78:4c: 42:bf:dc:2e -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt57VH9FOyz0+ENGadPrtSFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxOTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZGI3YWFjN2M0OTNiYzhhYTdlYzcwNTlkM2VjNzZiYmZjMmYyM2Q4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmiVexuZyTPQUxkplDgX8ECnFy0Uw +fyJsJAaXSfUuoH79BBLpTYoF7wiAEWCjgwqQJ3tVOwpdFdLhzmjv/Ivo19FCJmM nXfHg9mHb97lPcE6EBBKvgbLLIA2iKVYVMmi+0pVkedQxbuyCdZWjBFPQ6FxOcFI RixHnYLghbkCkSbw9FlyV4aVhXLmARVUfyE05clNzYSUAX+FA99Eg+thCNRWs5nu 6sSgwaeqF6N1DzixSTQx+S/bKU3qSQy7PocoMAgejtD8cMGmwRS4qJU9dgef/ZGZ WYd5nTqS2+V+lza8pf1fMxjOafDQSOnNIrFoWLyBrJFL2TiV6Az2lpjc5wIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFL23qsfEk7yKp+xwWdPsdrv8LyPYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzBhL2MwMDk4 OS1mNjU0LTQ3YzQtYmIwOS02OTdjMGUyYzNkMzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMGEvYzAwOTg5 LWY2NTQtNDdjNC1iYjA5LTY5N2MwZTJjM2QzNS8xL3ZiZXF4OFNUdklxbjdIQlow LXgydV93dkk5Zy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQDJZgwAwQC1KKcMA0EAgACMAcDBQMqCdgAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwDiMzANBgkqhkiG9w0BAQsFAAOCAQEApXUH UkpQ//ZbNvKwNsH/9pDPfX1PTxHK7R0PQery8tvo5DnN/Vp5kyW2uey+utTHTJGi FR0LeX2z0RNZ9vt2xGwNWyJIQpW6V8k+QMRp8yShePPhatsWhzVqArurJxfskset SS6ULzl+Dq2c9U8uvaz0bbpFQP9394EKuLEOfv6TX0I+WHNKZ3Yub6P+HJvwcG+5 EBImb97eAByfKz+j0zZfVXvX2qNPtBEhurSq0DsvZROsj4vhfj8FzCsXMyVOzGx0 ECEXiPFQ4f574+sScidatk3ZuxlyO6AHk/NlyHexDzq3pfpTlKUQM3neA8A85xVU sKQpg2fVc3hMQr/cLg== -----END CERTIFICATE-----Generated at Mon Feb 9 15:10:46 2026 by rpki-client