This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wBV0y54ONb-XVO-RdQFLx0YAjw4.cer File: wBV0y54ONb-XVO-RdQFLx0YAjw4.cer (raw, json) Hash identifier: fz3Q/b1pnr9p5g5fQd6QRraYqLfxz907185Apf76xpI= Subject key identifier: C0:15:74:CB:9E:0E:35:BF:97:54:EF:91:75:01:4B:C7:46:00:8F:0E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BFFE1A36DFDAA3E40AF1AF068B7E40389 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/wBV0y54ONb-XVO-RdQFLx0YAjw4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Tue 27 Jan 2026 14:35:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 91.199.44.0/24 IP: 193.47.84.0/24 IP: 2a0d:b700::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:ff:e1:a3:6d:fd:aa:3e:40:af:1a:f0:68:b7:e4:03:89 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 27 14:35:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c01574cb9e0e35bf9754ef9175014bc746008f0e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:b9:63:ab:cb:f9:dc:46:ff:dd:75:51:50:8b: 72:68:35:8e:fb:e8:22:02:43:fd:b5:a5:8c:cf:7c: c2:27:a2:ec:b8:e8:c6:49:86:cd:a5:4b:28:00:f5: 50:c0:38:3a:8d:43:c1:58:c5:44:08:a0:2e:88:99: 7c:a2:1a:ab:28:a5:73:4d:47:6f:16:05:67:cd:62: c1:04:12:8f:53:53:81:f2:65:ad:54:77:72:f1:57: 98:3a:d2:ae:4e:d6:13:c2:8f:2a:02:43:40:56:e5: 28:d0:79:bf:8d:14:ad:52:27:6b:e8:e2:22:bd:c6: fb:99:94:23:68:85:9c:9e:07:b3:70:c4:7e:60:b2: 74:12:d9:fa:05:45:16:71:98:dd:25:cf:dc:c2:ba: 3b:e3:67:36:ec:6c:3b:02:9a:b9:43:91:d7:68:f8: 55:97:b8:0a:f0:b0:51:9c:d3:2c:9f:e1:b1:2a:79: 18:1a:6c:15:0d:91:b2:3e:82:e4:8c:40:6e:27:75: 22:ec:2f:51:8b:c2:1c:e3:ed:f1:fa:e7:05:ec:4e: 58:66:2b:30:2f:c4:7c:06:f8:af:0c:12:b0:fa:33: 18:47:66:fc:32:95:56:1d:c8:55:bf:f8:f6:c6:5c: 89:88:b2:1a:42:24:4b:47:8a:19:7d:6f:5f:f4:7a: 42:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C0:15:74:CB:9E:0E:35:BF:97:54:EF:91:75:01:4B:C7:46:00:8F:0E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/396890-e96c-4d1f-936c-8fee7ec7c3cd/1/wBV0y54ONb-XVO-RdQFLx0YAjw4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.199.44.0/24 193.47.84.0/24 IPv6: 2a0d:b700::/32 Signature Algorithm: sha256WithRSAEncryption 12:be:ce:5f:27:f9:98:69:10:96:65:84:5f:f5:cb:5f:17:40: f7:7e:1e:12:83:c9:63:66:14:d5:ca:94:2a:c1:30:aa:aa:4e: 28:a1:a7:64:ed:3d:c3:4b:2c:bd:cb:3b:5d:2d:ff:67:9b:b4: 13:be:2e:da:bb:9c:ad:5f:98:a8:f4:f8:f0:0d:22:ca:23:35: a9:c7:80:e0:4b:f0:97:c4:9f:e4:19:bd:78:69:16:d0:ac:c9: 5a:07:18:8a:d4:1f:68:02:5f:5a:42:b8:f7:ff:bd:09:8e:ee: a6:e0:00:85:71:cb:f1:7c:fc:4b:f2:0e:26:0d:96:69:d0:46: 85:7d:70:66:fd:f2:f5:60:d0:e4:10:57:01:be:37:90:b1:31: e7:87:da:04:38:6a:16:e7:dc:61:55:71:9a:b7:ff:4a:0b:ef: 61:21:b0:ee:6d:9f:ae:de:2f:15:9e:66:5f:d5:4b:17:bf:d3: 85:8a:07:2d:92:2e:28:05:7f:cb:ab:90:c6:92:6d:67:b8:a5: 63:85:01:83:60:e4:b1:fa:d0:07:53:5e:2a:4c:92:d3:c3:14: 0e:74:22:38:ea:e5:35:e0:75:05:21:6f:c3:2f:1f:91:05:1a: 31:87:d5:49:22:92:05:46:85:fc:fb:cf:40:8a:eb:ab:dc:f4: aa:5d:1e:9d -----BEGIN CERTIFICATE----- MIIFjTCCBHWgAwIBAgISAZv/4aNt/ao+QK8a8Gi35AOJMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTI3MTQzNTM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMDE1NzRjYjllMGUzNWJmOTc1NGVmOTE3NTAxNGJjNzQ2MDA4ZjBlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA17ljq8v53Eb/3XVRUItyaDWO++gi AkP9taWMz3zCJ6LsuOjGSYbNpUsoAPVQwDg6jUPBWMVECKAuiJl8ohqrKKVzTUdv FgVnzWLBBBKPU1OB8mWtVHdy8VeYOtKuTtYTwo8qAkNAVuUo0Hm/jRStUidr6OIi vcb7mZQjaIWcngezcMR+YLJ0Etn6BUUWcZjdJc/cwro742c27Gw7Apq5Q5HXaPhV l7gK8LBRnNMsn+GxKnkYGmwVDZGyPoLkjEBuJ3Ui7C9Ri8Ic4+3x+ucF7E5YZisw L8R8BvivDBKw+jMYR2b8MpVWHchVv/j2xlyJiLIaQiRLR4oZfW9f9HpCjQIDAQAB o4ICmTCCApUwHQYDVR0OBBYEFMAVdMueDjW/l1TvkXUBS8dGAI8OMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JkLzM5Njg5 MC1lOTZjLTRkMWYtOTM2Yy04ZmVlN2VjN2MzY2QvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQvMzk2ODkw LWU5NmMtNGQxZi05MzZjLThmZWU3ZWM3YzNjZC8xL3dCVjB5NTRPTmItWFZPLVJk UUZMeDBZQWp3NC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQAW8csAwQAwS9UMA0EAgACMAcDBQAqDbcAMA0G CSqGSIb3DQEBCwUAA4IBAQASvs5fJ/mYaRCWZYRf9ctfF0D3fh4Sg8ljZhTVypQq wTCqqk4ooadk7T3DSyy9yztdLf9nm7QTvi7au5ytX5io9PjwDSLKIzWpx4DgS/CX xJ/kGb14aRbQrMlaBxiK1B9oAl9aQrj3/70Jju6m4ACFccvxfPxL8g4mDZZp0EaF fXBm/fL1YNDkEFcBvjeQsTHnh9oEOGoW59xhVXGat/9KC+9hIbDubZ+u3i8VnmZf 1UsXv9OFigctki4oBX/Lq5DGkm1nuKVjhQGDYOSx+tAHU14qTJLTwxQOdCI46uU1 4HUFIW/DLx+RBRoxh9VJIpIFRoX8+89Aiuur3PSqXR6d -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:21 2026 by rpki-client