This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x3_gBdfljsAzypq6h-BgYCFTNhc.cer File: x3_gBdfljsAzypq6h-BgYCFTNhc.cer (raw, json) Hash identifier: noHGlWKXOlcsQSXnl4zwKH15HPtHcoCR9ARuVLkX2cE= Subject key identifier: C7:7F:E0:05:D7:E5:8E:C0:33:CA:9A:BA:87:E0:60:60:21:53:36:17 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EB107D620525D465A413293AC09B67 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/x3_gBdfljsAzypq6h-BgYCFTNhc.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:17:55 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49840 IP: 95.142.128.0/20 IP: 185.235.44.0/22 IP: 2a02:26c0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:eb:10:7d:62:05:25:d4:65:a4:13:29:3a:c0:9b:67 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:17:55 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c77fe005d7e58ec033ca9aba87e0606021533617 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d9:f5:73:7f:6c:23:b4:fa:44:d4:63:60:eb:1f: 38:53:0a:c4:36:80:32:ae:03:d6:a6:28:4d:36:17: 52:c5:2e:20:1f:97:17:f7:02:9f:c5:b7:c4:4e:17: e5:f8:13:ab:cf:56:18:41:79:39:81:b7:fd:1c:6e: 1d:19:e6:a5:0e:06:8d:ff:8f:6f:8c:b4:81:87:dd: ee:c6:98:40:3b:65:ba:5d:14:dc:dd:08:80:f1:d5: d9:37:25:83:60:3e:d1:97:30:ae:9d:e4:3c:b4:03: 0b:c3:9e:9c:77:49:8f:95:19:8c:17:47:d4:4d:78: 6a:14:01:03:00:87:c6:82:36:a9:30:dd:6d:7e:0d: 8d:ad:7b:c3:b5:d2:5c:f6:dc:18:30:58:bd:49:04: b5:66:af:13:62:aa:c7:9c:ba:86:15:32:32:60:26: 66:6f:44:3a:58:bd:0e:42:33:33:3b:74:51:3d:29: b4:48:9e:88:ec:a5:2d:2b:ea:79:71:24:e3:95:69: 15:4b:b7:e8:16:b2:66:ef:c6:23:91:e5:86:f6:4d: 99:94:b5:bd:75:42:bc:37:8e:6c:dd:a8:81:c9:1d: 9d:15:37:7f:a4:81:e2:00:aa:b2:4d:e5:c9:77:1f: 4f:71:c4:59:6a:c4:da:4a:fd:e6:ba:2e:6c:27:67: f4:83 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:7F:E0:05:D7:E5:8E:C0:33:CA:9A:BA:87:E0:60:60:21:53:36:17 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1c/e32df8-3a1e-42fc-b351-0ed24ebc4ed8/1/x3_gBdfljsAzypq6h-BgYCFTNhc.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.142.128.0/20 185.235.44.0/22 IPv6: 2a02:26c0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49840 Signature Algorithm: sha256WithRSAEncryption 6e:d5:33:04:31:4d:a8:7a:81:30:39:2c:4b:2c:1e:2e:7d:22: 6d:cf:38:6c:ae:60:e8:9e:ef:00:77:e3:ba:05:5f:46:9a:68: 2e:3c:81:7c:6a:e6:22:ad:f5:ee:29:57:d6:57:11:73:f1:be: 49:d5:59:c0:41:52:a5:1d:22:b2:8c:82:d3:f7:63:4f:b7:fb: e6:68:35:b2:e7:2d:85:77:f5:80:f9:bb:1f:c9:c0:f0:c8:55: ca:c6:00:7b:e3:69:5a:2f:01:b6:54:ee:7c:b3:44:9f:ff:a8: dc:f3:74:b7:44:1e:fc:ac:b9:74:83:48:19:94:cb:c2:63:e2: 4f:54:8e:a2:d4:25:43:0e:52:9e:c1:c8:76:2f:e3:8f:24:aa: e6:e9:d1:e4:a0:69:e7:ad:ff:ca:17:a8:18:41:73:2d:f0:24: 08:d4:51:48:38:79:71:81:0c:29:03:97:75:c6:d8:2b:4e:9c: 20:00:f4:8e:79:2f:96:05:1f:3b:59:f7:bc:9f:90:1b:8a:d5: e4:2c:55:47:72:7b:ba:07:1b:3c:e5:e2:aa:a4:f1:f9:6c:6f: 2e:79:fb:f2:19:38:ac:6f:55:86:4b:99:90:7d:e8:b1:3d:3b: 7b:e1:f3:1e:d3:14:ca:a8:91:eb:45:ac:e9:d2:2a:f0:08:5a: fb:40:41:2f -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt26xB9YgUl1GWkEyk6wJtnMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxNzU1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNzdmZTAwNWQ3ZTU4ZWMwMzNjYTlhYmE4N2UwNjA2MDIxNTMzNjE3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2fVzf2wjtPpE1GNg6x84UwrENoAy rgPWpihNNhdSxS4gH5cX9wKfxbfEThfl+BOrz1YYQXk5gbf9HG4dGealDgaN/49v jLSBh93uxphAO2W6XRTc3QiA8dXZNyWDYD7RlzCuneQ8tAMLw56cd0mPlRmMF0fU TXhqFAEDAIfGgjapMN1tfg2NrXvDtdJc9twYMFi9SQS1Zq8TYqrHnLqGFTIyYCZm b0Q6WL0OQjMzO3RRPSm0SJ6I7KUtK+p5cSTjlWkVS7foFrJm78YjkeWG9k2ZlLW9 dUK8N45s3aiByR2dFTd/pIHiAKqyTeXJdx9PccRZasTaSv3mui5sJ2f0gwIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFMd/4AXX5Y7AM8qauofgYGAhUzYXMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFjL2UzMmRm OC0zYTFlLTQyZmMtYjM1MS0wZWQyNGViYzRlZDgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWMvZTMyZGY4 LTNhMWUtNDJmYy1iMzUxLTBlZDI0ZWJjNGVkOC8xL3gzX2dCZGZsanNBenlwcTZo LUJnWUNGVE5oYy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQEX46AAwQCuessMA0EAgACMAcDBQAqAibAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwDCsDANBgkqhkiG9w0BAQsFAAOCAQEAbtUz BDFNqHqBMDksSyweLn0ibc84bK5g6J7vAHfjugVfRppoLjyBfGrmIq317ilX1lcR c/G+SdVZwEFSpR0isoyC0/djT7f75mg1sucthXf1gPm7H8nA8MhVysYAe+NpWi8B tlTufLNEn/+o3PN0t0Qe/Ky5dINIGZTLwmPiT1SOotQlQw5SnsHIdi/jjySq5unR 5KBp563/yheoGEFzLfAkCNRRSDh5cYEMKQOXdcbYK06cIAD0jnkvlgUfO1n3vJ+Q G4rV5CxVR3J7ugcbPOXiqqTx+WxvLnn78hk4rG9VhkuZkH3osT07e+HzHtMUyqiR 60Ws6dIq8Aha+0BBLw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:07 2026 by rpki-client