This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/wVIzr0ulkRnW_xlNfNhmUISm7nc.cer File: wVIzr0ulkRnW_xlNfNhmUISm7nc.cer (raw, json) Hash identifier: NCmfSGSp0slKigEQxSW/u3DWbLlCnoH0pEtlgske5Lo= Subject key identifier: C1:52:33:AF:4B:A5:91:19:D6:FF:19:4D:7C:D8:66:50:84:A6:EE:77 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E379E836C6A9928F1FA27E58952C8B6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/wVIzr0ulkRnW_xlNfNhmUISm7nc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:18:52 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208617 IP: 185.160.204.0/24 IP: 2a12:e740::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:9e:83:6c:6a:99:28:f1:fa:27:e5:89:52:c8:b6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:18:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c15233af4ba59119d6ff194d7cd8665084a6ee77 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ae:d3:81:31:a8:9b:4e:e3:df:71:c3:9b:6f:c5: 2f:12:9a:b5:cd:46:47:99:9c:f3:ff:3f:f5:93:19: 32:ac:e4:0d:fc:eb:70:1e:24:28:a1:0b:c3:91:de: 12:8c:fe:71:68:cf:3d:e2:ed:a6:38:5f:e7:0d:15: 78:98:3e:3c:35:5c:84:5d:69:67:62:62:7d:e4:54: 82:50:6f:8a:fc:92:4b:95:67:b6:c7:d0:4f:d9:bc: 11:14:ae:dc:f4:92:70:1b:f4:f3:b3:f6:6d:7e:67: a2:55:a5:62:69:ee:46:a1:00:92:23:50:85:61:26: 20:d1:99:8b:3b:ef:95:31:66:ea:33:aa:d9:4f:13: 4e:46:0e:d4:5c:6c:14:07:91:5d:e8:04:d8:9d:d0: 79:f7:ec:19:18:34:09:ef:16:96:c1:dc:6b:7d:87: 09:a6:4b:29:45:98:fe:02:c6:6c:15:27:52:1c:1e: 07:a0:9a:73:6e:8e:88:a3:6b:aa:38:a8:77:4d:d8: 42:26:45:af:4f:83:c0:1b:eb:52:1b:f9:a1:32:58: cd:6e:70:a6:b1:1e:13:ae:73:d9:58:91:e1:cd:0c: 93:b3:e6:4a:0a:6b:40:d5:08:02:8b:46:26:15:6e: 20:f0:54:a6:89:a2:61:c8:2b:a0:56:9b:5f:9f:1b: c8:b1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C1:52:33:AF:4B:A5:91:19:D6:FF:19:4D:7C:D8:66:50:84:A6:EE:77 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/68/b66ff8-e2ab-483c-a373-4b7f375ecd06/1/wVIzr0ulkRnW_xlNfNhmUISm7nc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.160.204.0/24 IPv6: 2a12:e740::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208617 Signature Algorithm: sha256WithRSAEncryption 53:03:18:66:4a:9b:2f:b4:bd:ed:0d:cd:6f:85:6d:41:99:2c: d8:dc:00:58:97:85:d8:29:39:d2:1d:1d:46:60:6e:fb:bf:17: f6:6c:73:0f:34:ae:34:ad:7a:78:00:f8:7a:4d:31:20:54:bb: 87:b4:f5:3e:48:7d:e6:1f:eb:6a:91:ea:90:e3:66:80:f0:a2: c4:10:c6:d2:6b:35:f2:9a:9b:ee:6b:12:c6:74:86:79:7c:2e: f7:6c:2d:ef:82:86:0a:33:3a:7d:0c:35:b8:6a:c7:58:9e:8e: ca:d7:8f:49:89:38:d2:c2:ea:09:d4:b6:e5:2f:61:bf:22:82: e0:17:13:a6:00:1a:c5:9f:6e:d2:48:9b:a5:13:e7:f8:b9:5a: 80:d5:3d:d9:b8:28:8c:cd:36:e2:40:0f:a5:2b:71:9a:92:87: 48:4c:9c:e9:ab:23:73:f8:c3:05:b6:26:03:f2:30:e5:82:32: 8e:b0:44:7c:9f:15:3b:1c:2f:76:da:37:45:ac:f5:d5:f1:d3: 91:2d:ba:38:d6:48:a0:87:34:68:f3:35:18:bb:f1:87:14:e1: 75:1a:0a:de:09:dd:36:be:47:2a:7f:3b:3f:7e:c3:dc:c1:35: aa:21:99:62:1e:18:53:13:85:f1:70:7e:3f:43:89:f6:70:f8: 4a:4d:6f:78 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt+N56DbGqZKPH6J+WJUsi2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxODUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjMTUyMzNhZjRiYTU5MTE5ZDZmZjE5NGQ3Y2Q4NjY1MDg0YTZlZTc3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArtOBMaibTuPfccObb8UvEpq1zUZH mZzz/z/1kxkyrOQN/OtwHiQooQvDkd4SjP5xaM894u2mOF/nDRV4mD48NVyEXWln YmJ95FSCUG+K/JJLlWe2x9BP2bwRFK7c9JJwG/Tzs/ZtfmeiVaViae5GoQCSI1CF YSYg0ZmLO++VMWbqM6rZTxNORg7UXGwUB5Fd6ATYndB59+wZGDQJ7xaWwdxrfYcJ pkspRZj+AsZsFSdSHB4HoJpzbo6Io2uqOKh3TdhCJkWvT4PAG+tSG/mhMljNbnCm sR4TrnPZWJHhzQyTs+ZKCmtA1QgCi0YmFW4g8FSmiaJhyCugVptfnxvIsQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFMFSM69LpZEZ1v8ZTXzYZlCEpu53MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY4L2I2NmZm OC1lMmFiLTQ4M2MtYTM3My00YjdmMzc1ZWNkMDYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjgvYjY2ZmY4 LWUyYWItNDgzYy1hMzczLTRiN2YzNzVlY2QwNi8xL3dWSXpyMHVsa1JuV194bE5m TmhtVUlTbTduYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuaDMMA0EAgACMAcDBQMqEudAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMu6TANBgkqhkiG9w0BAQsFAAOCAQEAUwMYZkqbL7S9 7Q3Nb4VtQZks2NwAWJeF2Ck50h0dRmBu+78X9mxzDzSuNK16eAD4ek0xIFS7h7T1 Pkh95h/rapHqkONmgPCixBDG0ms18pqb7msSxnSGeXwu92wt74KGCjM6fQw1uGrH WJ6OytePSYk40sLqCdS25S9hvyKC4BcTpgAaxZ9u0kibpRPn+LlagNU92bgojM02 4kAPpStxmpKHSEyc6asjc/jDBbYmA/Iw5YIyjrBEfJ8VOxwvdto3Raz11fHTkS26 ONZIoIc0aPM1GLvxhxThdRoK3gndNr5HKn87P37D3ME1qiGZYh4YUxOF8XB+P0OJ 9nD4Sk1veA== -----END CERTIFICATE-----Generated at Mon Feb 9 18:26:19 2026 by rpki-client