This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/vw3BRJMWtlZ8Ph43S4LtiStdD2M.cer File: vw3BRJMWtlZ8Ph43S4LtiStdD2M.cer (raw, json) Hash identifier: St8QMgxJWI3bAcL3wxqa62s70s5F+7zj23bR5t5SJ7U= Subject key identifier: BF:0D:C1:44:93:16:B6:56:7C:3E:1E:37:4B:82:ED:89:2B:5D:0F:63 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79EC021888C1533D6B5FD916B31451C7 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/vw3BRJMWtlZ8Ph43S4LtiStdD2M.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:17:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 213065 IP: 145.84.0.0/16 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Wed 21 Jan 2026 03:00:41 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:02:18:88:c1:53:3d:6b:5f:d9:16:b3:14:51:c7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:17:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=bf0dc1449316b6567c3e1e374b82ed892b5d0f63 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:02:d0:16:53:b0:c6:67:89:8e:99:05:8b:00: ad:c1:10:93:71:37:e2:a4:74:54:a6:21:a5:e1:d1: 94:c0:5d:5a:71:6c:b6:0e:1d:0f:38:d9:ff:d6:92: 53:81:1f:8e:67:5b:4d:c1:d7:7c:63:47:b4:67:5a: 37:fe:8f:2f:3f:d2:91:b4:19:54:c8:28:79:c4:fd: f4:6a:1c:54:ba:73:88:22:3e:e1:c3:d4:b9:55:8f: 5e:38:aa:0d:b6:59:cd:45:38:e0:32:14:9b:a4:26: c2:89:65:19:58:c3:ac:8e:6c:4b:39:6a:4a:be:77: 5c:0d:60:81:b7:0a:fe:34:6e:ad:82:e7:41:fa:4b: 1e:94:c2:ee:d5:9c:c1:c8:f4:df:3f:ca:42:b1:41: d3:60:77:7d:1d:54:e9:29:38:69:ed:1f:61:e9:4d: d0:7f:a5:2d:ba:1f:1f:e6:ac:c6:13:d9:d8:72:dc: 26:b6:fe:bd:b4:7d:f4:06:a1:3a:75:3b:90:4c:0b: 98:b1:78:14:65:14:ec:ef:ad:c0:37:55:18:f6:57: 0d:d5:8f:53:98:1e:6e:76:ca:04:37:56:ab:6a:d2: 45:40:bc:9e:2a:65:10:80:04:f4:e0:40:2b:e1:19: 79:e3:da:27:30:60:29:6c:17:16:0e:a5:11:4e:ec: 16:01 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: BF:0D:C1:44:93:16:B6:56:7C:3E:1E:37:4B:82:ED:89:2B:5D:0F:63 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/266e62-9498-46e0-a14c-5755b2f10418/1/vw3BRJMWtlZ8Ph43S4LtiStdD2M.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 145.84.0.0/16 sbgp-autonomousSysNum: critical Autonomous System Numbers: 213065 Signature Algorithm: sha256WithRSAEncryption 20:5e:74:87:b5:0f:f3:64:53:fe:a4:48:51:77:2f:e9:06:71: f6:8f:46:23:7f:0e:31:7f:4c:64:03:7b:1a:12:a8:9b:cf:42: da:3a:8f:78:73:4e:24:90:9d:ce:a7:52:93:62:7a:5f:f4:65: b6:71:74:b6:1f:79:bd:39:88:a8:4f:28:26:06:b2:a9:f8:b6: c2:96:bd:a3:eb:82:aa:85:0c:d1:74:38:1c:1f:50:42:29:4d: de:2b:3b:2d:2f:03:d6:d4:9d:3e:c9:80:e3:b7:20:61:85:de: 2a:2c:b9:77:c3:9d:41:b2:f5:58:21:f9:f1:e1:60:13:9b:98: 71:c2:53:03:c0:ec:c9:d3:ea:81:b4:2b:64:8e:31:bc:ff:42: 7c:67:cf:62:14:ee:de:68:33:2f:da:74:58:47:73:10:f7:55: 36:05:c9:e0:25:77:d2:4f:e4:d9:f8:42:b3:fe:10:0d:73:17: b1:90:f1:9b:99:05:dc:80:64:dd:e9:6c:12:52:b6:fe:39:0b: 62:d1:a7:76:4c:af:a0:a8:f9:1f:ee:2e:3f:14:b5:81:aa:a5: 3e:93:60:f0:a1:b7:6f:9f:a8:e7:cb:dd:4a:21:47:9c:79:87: 6e:c0:84:a9:32:8c:eb:aa:d7:35:c2:46:31:44:b8:9d:9b:43: de:b0:7d:5a -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt57AIYiMFTPWtf2RazFFHHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxNzQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiZjBkYzE0NDkzMTZiNjU2N2MzZTFlMzc0YjgyZWQ4OTJiNWQwZjYzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3ALQFlOwxmeJjpkFiwCtwRCTcTfi pHRUpiGl4dGUwF1acWy2Dh0PONn/1pJTgR+OZ1tNwdd8Y0e0Z1o3/o8vP9KRtBlU yCh5xP30ahxUunOIIj7hw9S5VY9eOKoNtlnNRTjgMhSbpCbCiWUZWMOsjmxLOWpK vndcDWCBtwr+NG6tgudB+kselMLu1ZzByPTfP8pCsUHTYHd9HVTpKThp7R9h6U3Q f6Utuh8f5qzGE9nYctwmtv69tH30BqE6dTuQTAuYsXgUZRTs763AN1UY9lcN1Y9T mB5udsoEN1aratJFQLyeKmUQgAT04EAr4Rl549onMGApbBcWDqURTuwWAQIDAQAB o4ICnzCCApswHQYDVR0OBBYEFL8NwUSTFrZWfD4eN0uC7YkrXQ9jMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzlmLzI2NmU2 Mi05NDk4LTQ2ZTAtYTE0Yy01NzU1YjJmMTA0MTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYvMjY2ZTYy LTk0OTgtNDZlMC1hMTRjLTU3NTViMmYxMDQxOC8xL3Z3M0JSSk1XdGxaOFBoNDNT NEx0aVN0ZEQyTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB4GCCsGAQUF BwEHAQH/BA8wDTALBAIAATAFAwMAkVQwGgYIKwYBBQUHAQgBAf8ECzAJoAcwBQID A0BJMA0GCSqGSIb3DQEBCwUAA4IBAQAgXnSHtQ/zZFP+pEhRdy/pBnH2j0Yjfw4x f0xkA3saEqibz0LaOo94c04kkJ3Op1KTYnpf9GW2cXS2H3m9OYioTygmBrKp+LbC lr2j64KqhQzRdDgcH1BCKU3eKzstLwPW1J0+yYDjtyBhhd4qLLl3w51BsvVYIfnx 4WATm5hxwlMDwOzJ0+qBtCtkjjG8/0J8Z89iFO7eaDMv2nRYR3MQ91U2BcngJXfS T+TZ+EKz/hANcxexkPGbmQXcgGTd6WwSUrb+OQti0ad2TK+gqPkf7i4/FLWBqqU+ k2Dwobdvn6jny91KIUeceYduwISpMozrqtc1wkYxRLidm0PesH1a -----END CERTIFICATE-----Generated at Tue Jan 20 09:31:36 2026 by rpki-client