This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/x3cBNdDw0wqGjfVR2HUtS0utwsE.cer File: x3cBNdDw0wqGjfVR2HUtS0utwsE.cer (raw, json) Hash identifier: YjVSw8hpWAKl0qUyP0JsF/9XF4FjcLs5JYTcOVibI0s= Subject key identifier: C7:77:01:35:D0:F0:D3:0A:86:8D:F5:51:D8:75:2D:4B:4B:AD:C2:C1 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78344D7CDC377106A921F4A7C2DF3AFA Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/b97070-c5f4-4410-94b5-d64d75394037/1/x3cBNdDw0wqGjfVR2HUtS0utwsE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/b97070-c5f4-4410-94b5-d64d75394037/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:32 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51942 AS: 60938 IP: 81.173.44.0/22 IP: 91.221.150.0/23 IP: 185.133.36.0/22 IP: 2001:67c:16b4::/48 IP: 2a06:21c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:4d:7c:dc:37:71:06:a9:21:f4:a7:c2:df:3a:fa Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:32 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=c7770135d0f0d30a868df551d8752d4b4badc2c1 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:db:5e:96:df:66:92:a0:29:9f:8b:bb:28:c1:8c: 6e:b5:8c:69:57:2c:fc:ab:2f:1f:72:69:20:a9:e2: 70:87:38:ca:96:24:c6:ab:d0:6f:65:56:68:d0:6c: cc:f0:28:fd:a4:5c:8a:5a:c6:13:7b:fa:b9:a6:84: df:9f:1c:b8:99:32:d7:3a:b8:cf:0f:51:c0:f7:f0: 80:66:35:a7:a9:0b:e7:0d:6c:a0:ff:4d:08:1d:86: 95:15:c7:f5:d7:a4:db:b9:45:f4:9d:e8:ce:f2:79: 63:97:e8:2d:b6:c0:b6:ab:2e:2d:f8:ef:e1:80:a8: ad:91:01:d8:62:ac:33:59:f3:8b:cb:f1:1e:c8:f1: dc:9c:08:7e:9a:10:54:72:48:9e:62:50:9c:a9:0b: eb:c5:09:0f:c4:fc:a2:c9:6a:62:ed:57:5f:a9:24: db:a7:56:53:61:6c:8b:e9:ec:5a:98:77:11:c5:cb: 58:b2:cf:fb:b7:8b:14:28:54:3b:3f:17:3b:74:a7: bd:74:e9:fd:95:11:16:5d:99:b7:6e:eb:9b:ec:8e: 83:3f:6d:37:7c:28:6a:c2:6e:11:be:45:ac:14:a9: 90:c7:22:65:d1:ab:14:06:81:0c:93:d3:25:5d:50: dd:dd:6c:67:f6:6c:6d:5f:cb:21:c1:fe:92:6e:b5: 69:1d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C7:77:01:35:D0:F0:D3:0A:86:8D:F5:51:D8:75:2D:4B:4B:AD:C2:C1 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b97070-c5f4-4410-94b5-d64d75394037/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/b97070-c5f4-4410-94b5-d64d75394037/1/x3cBNdDw0wqGjfVR2HUtS0utwsE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 81.173.44.0/22 91.221.150.0/23 185.133.36.0/22 IPv6: 2001:67c:16b4::/48 2a06:21c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51942 60938 Signature Algorithm: sha256WithRSAEncryption 32:93:0b:c5:c5:1f:7b:e1:eb:b1:51:39:fd:4f:0f:f2:81:ae: e1:0b:c0:20:96:dc:27:d5:5d:c3:85:61:87:40:74:3b:c3:5e: f5:ac:cf:a6:9f:5f:8f:79:01:92:4b:64:ce:47:60:be:59:44: 7a:cf:02:da:65:bc:cc:a8:9f:3c:4d:eb:16:87:50:0b:5a:49: 52:51:79:c8:92:d0:70:b8:32:fa:73:b3:de:87:04:5b:b1:af: 52:66:6f:6d:54:3f:40:b1:3e:66:23:27:af:d7:48:d4:1e:f1: 3c:3e:d2:02:83:1a:45:5c:71:0b:54:62:4a:4f:60:7f:84:85: ec:68:82:18:c6:72:71:d1:9c:24:f2:31:c9:9f:14:8f:f7:65: 88:15:76:4b:98:e3:5e:60:00:a6:66:76:ce:91:43:3c:b2:e7: c9:0f:ce:c0:d3:59:32:4b:5e:35:e3:03:a8:96:f7:a7:7f:21: 8e:8f:8a:df:43:72:78:e3:99:5a:31:3a:20:15:a1:d5:c7:8a: 3c:eb:2c:54:eb:13:a2:34:1a:d4:72:3f:36:f9:40:79:8e:ae: 9d:74:55:76:f0:04:41:8a:17:0e:35:f5:68:35:33:32:8f:14: 6f:a8:f4:cf:19:9a:94:eb:18:38:6f:ea:be:78:fd:7b:f0:c2: 71:35:52:24 -----BEGIN CERTIFICATE----- MIIFvTCCBKWgAwIBAgISAZt4NE183DdxBqkh9KfC3zr6MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzMyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjNzc3MDEzNWQwZjBkMzBhODY4ZGY1NTFkODc1MmQ0YjRiYWRjMmMxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA216W32aSoCmfi7sowYxutYxpVyz8 qy8fcmkgqeJwhzjKliTGq9BvZVZo0GzM8Cj9pFyKWsYTe/q5poTfnxy4mTLXOrjP D1HA9/CAZjWnqQvnDWyg/00IHYaVFcf116TbuUX0nejO8nljl+gttsC2qy4t+O/h gKitkQHYYqwzWfOLy/EeyPHcnAh+mhBUckieYlCcqQvrxQkPxPyiyWpi7VdfqSTb p1ZTYWyL6examHcRxctYss/7t4sUKFQ7Pxc7dKe9dOn9lREWXZm3buub7I6DP203 fChqwm4RvkWsFKmQxyJl0asUBoEMk9MlXVDd3Wxn9mxtX8shwf6SbrVpHQIDAQAB o4ICyTCCAsUwHQYDVR0OBBYEFMd3ATXQ8NMKho31Udh1LUtLrcLBMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYxL2I5NzA3 MC1jNWY0LTQ0MTAtOTRiNS1kNjRkNzUzOTQwMzcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEvYjk3MDcw LWM1ZjQtNDQxMC05NGI1LWQ2NGQ3NTM5NDAzNy8xL3gzY0JOZER3MHdxR2pmVlIy SFV0UzB1dHdzRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEMGCCsGAQUF BwEHAQH/BDQwMjAYBAIAATASAwQCUa0sAwQBW92WAwQCuYUkMBYEAgACMBADBwAg AQZ8FrQDBQMqBiHAMB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwDK5gIDAO4KMA0G CSqGSIb3DQEBCwUAA4IBAQAykwvFxR974euxUTn9Tw/yga7hC8Agltwn1V3DhWGH QHQ7w171rM+mn1+PeQGSS2TOR2C+WUR6zwLaZbzMqJ88TesWh1ALWklSUXnIktBw uDL6c7PehwRbsa9SZm9tVD9AsT5mIyev10jUHvE8PtICgxpFXHELVGJKT2B/hIXs aIIYxnJx0Zwk8jHJnxSP92WIFXZLmONeYACmZnbOkUM8sufJD87A01kyS1414wOo lvenfyGOj4rfQ3J445laMTogFaHVx4o86yxU6xOiNBrUcj82+UB5jq6ddFV28ARB ihcONfVoNTMyjxRvqPTPGZqU6xg4b+q+eP178MJxNVIk -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:28 2026 by rpki-client