This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wU1yTKWa3dD3-BCLAQWXlfNNM0U.cer File: wU1yTKWa3dD3-BCLAQWXlfNNM0U.cer (raw, json) Hash identifier: GOKH+SUCQjIhU8QBFeYMERZ1lFQd2AOFLYj921y7uNc= Subject key identifier: C1:4D:72:4C:A5:9A:DD:D0:F7:F8:10:8B:01:05:97:95:F3:4D:33:45 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCA93007DAEC1C5022B29FF08B076EB Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/48/b4ddd7-cd41-46b5-ac38-4f564ce07126/1/wU1yTKWa3dD3-BCLAQWXlfNNM0U.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/48/b4ddd7-cd41-46b5-ac38-4f564ce07126/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 214276 AS: 216344 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:93:00:7d:ae:c1:c5:02:2b:29:ff:08:b0:76:eb Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c14d724ca59addd0f7f8108b01059795f34d3345 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d7:28:30:75:7a:aa:f6:51:3a:b1:2c:2c:37:30: d4:e8:33:88:c6:89:de:f9:72:ee:15:3b:f0:f7:2c: cb:cd:eb:f0:2c:23:ac:2a:35:05:ad:2d:25:5e:4b: 48:02:04:36:02:9f:e3:70:01:d3:f1:bb:76:36:ee: f3:9a:be:1f:37:27:bf:67:8a:d2:b3:2b:4b:a6:f8: 88:76:37:f7:c5:ad:d4:12:19:7c:37:d6:8a:77:db: 7c:e7:79:4c:fe:28:11:1e:18:07:fc:4d:e0:13:aa: 85:53:4b:91:d4:5b:15:e2:4a:a6:dd:90:e3:52:56: b9:5a:b6:70:a0:56:7e:9f:4b:d2:17:5a:4a:81:d3: 40:a2:a3:f4:b3:69:d1:0b:b5:dc:2a:b8:ce:57:a5: f2:f9:75:90:4e:9a:4a:7a:38:41:7e:cd:fa:00:76: 9f:c7:41:16:40:00:a5:01:9c:9f:b4:67:2b:32:b1: d4:96:02:8a:b7:a5:ab:62:47:88:3c:96:41:03:b2: 69:d7:9e:fd:c6:d6:cd:22:8a:e1:87:c1:9e:cb:77: 8e:d2:e4:b8:6e:05:8f:42:18:c0:4f:ac:6c:9b:94: be:7c:af:dc:9c:fd:31:e0:e6:ee:74:26:0f:8a:1e: 8a:70:f4:4f:90:c1:bf:82:88:41:30:b6:9d:2f:c2: 46:79 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:4D:72:4C:A5:9A:DD:D0:F7:F8:10:8B:01:05:97:95:F3:4D:33:45 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/b4ddd7-cd41-46b5-ac38-4f564ce07126/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/48/b4ddd7-cd41-46b5-ac38-4f564ce07126/1/wU1yTKWa3dD3-BCLAQWXlfNNM0U.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 214276 216344 Signature Algorithm: sha256WithRSAEncryption 20:40:f4:9c:2e:24:fc:25:56:51:20:76:ef:30:28:97:3f:be: b9:fa:f6:3a:6f:2c:c6:6e:e3:02:d3:2f:85:ee:d3:90:3f:13: 28:9c:ca:eb:6f:f1:af:e1:ea:a3:8b:49:8f:88:b6:dd:2e:46: 1b:c2:e8:20:c9:34:ba:8e:b5:9e:50:73:3e:0f:e0:9f:0b:73: 2a:58:c5:07:66:37:40:a1:96:0a:69:e3:a1:ff:08:3f:3d:9b: c3:0d:ae:83:32:7e:a0:f1:fa:2b:ca:e1:b7:14:27:d9:3a:d0: 22:21:58:ea:8e:dd:99:21:60:1c:42:69:44:cf:c9:04:e0:c9: 4b:e4:f1:4f:f8:45:2e:2e:a1:a2:e0:fe:60:ad:ea:43:f9:1d: 1f:88:03:f1:3c:45:7c:fc:28:57:0e:ca:33:a0:c0:06:19:0f: 1b:25:54:ca:1e:27:44:cd:f2:fa:f5:d6:0d:71:df:ad:e7:09: c8:65:bc:1b:ae:0c:80:25:7f:e0:d9:8e:b0:67:dc:8b:0a:58: d3:cf:3b:f3:f6:6d:b6:3b:51:64:04:7a:57:18:cc:49:fc:ce: dc:94:59:c7:21:a8:1b:6f:b4:e7:12:f2:8e:74:5d:d5:a6:13: 16:5e:3a:29:68:18:e9:8a:e2:d1:41:98:66:9c:1e:37:65:a6: 47:03:4e:e9 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt9ypMAfa7BxQIrKf8IsHbrMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMTRkNzI0Y2E1OWFkZGQwZjdmODEwOGIwMTA1OTc5NWYzNGQzMzQ1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1ygwdXqq9lE6sSwsNzDU6DOIxone +XLuFTvw9yzLzevwLCOsKjUFrS0lXktIAgQ2Ap/jcAHT8bt2Nu7zmr4fNye/Z4rS sytLpviIdjf3xa3UEhl8N9aKd9t853lM/igRHhgH/E3gE6qFU0uR1FsV4kqm3ZDj Ula5WrZwoFZ+n0vSF1pKgdNAoqP0s2nRC7XcKrjOV6Xy+XWQTppKejhBfs36AHaf x0EWQAClAZyftGcrMrHUlgKKt6WrYkeIPJZBA7Jp1579xtbNIorhh8Gey3eO0uS4 bgWPQhjAT6xsm5S+fK/cnP0x4ObudCYPih6KcPRPkMG/gohBMLadL8JGeQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFMFNckylmt3Q9/gQiwEFl5XzTTNFMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ4L2I0ZGRk Ny1jZDQxLTQ2YjUtYWMzOC00ZjU2NGNlMDcxMjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDgvYjRkZGQ3 LWNkNDEtNDZiNS1hYzM4LTRmNTY0Y2UwNzEyNi8xL3dVMXlUS1dhM2REMy1CQ0xB UVdYbGZOTk0wVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEIAQH/BBAwDqAMMAoCAwNFBAIDA00YMA0GCSqGSIb3DQEBCwUAA4IBAQAgQPSc LiT8JVZRIHbvMCiXP765+vY6byzGbuMC0y+F7tOQPxMonMrrb/Gv4eqji0mPiLbd LkYbwuggyTS6jrWeUHM+D+CfC3MqWMUHZjdAoZYKaeOh/wg/PZvDDa6DMn6g8for yuG3FCfZOtAiIVjqjt2ZIWAcQmlEz8kE4MlL5PFP+EUuLqGi4P5grepD+R0fiAPx PEV8/ChXDsozoMAGGQ8bJVTKHidEzfL69dYNcd+t5wnIZbwbrgyAJX/g2Y6wZ9yL CljTzzvz9m22O1FkBHpXGMxJ/M7clFnHIagbb7TnEvKOdF3VphMWXjopaBjpiuLR QZhmnB43ZaZHA07p -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:26 2026 by rpki-client