This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/zUDV6ln4DaYbRIa9mZvhEqGjU4c.cer File: zUDV6ln4DaYbRIa9mZvhEqGjU4c.cer (raw, json) Hash identifier: u92ZzgNAeAFc6O6BoGjYpo3XkqBs4SXvRnJg2CqtGeM= Subject key identifier: CD:40:D5:EA:59:F8:0D:A6:1B:44:86:BD:99:9B:E1:12:A1:A3:53:87 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7EA7397F488397FB3F237B4F3D95AA4A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/45/b329eb-fa5b-4fa8-b49b-f623304ed79a/1/zUDV6ln4DaYbRIa9mZvhEqGjU4c.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/45/b329eb-fa5b-4fa8-b49b-f623304ed79a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 12:20:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 38942 IP: 87.239.40.0/21 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:a7:39:7f:48:83:97:fb:3f:23:7b:4f:3d:95:aa:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 12:20:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=cd40d5ea59f80da61b4486bd999be112a1a35387 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ba:c1:cb:f2:59:ea:39:f3:b7:86:ab:c0:e5:73: 4e:08:96:c5:56:e4:f0:a6:00:0a:fe:6e:5d:72:48: 57:0a:dd:63:b0:19:82:8e:24:60:d5:8a:f1:c9:9f: d6:21:8a:bd:95:ca:fb:a8:76:57:56:3b:9c:41:62: b0:b0:e5:4a:8e:38:fa:13:00:ee:be:0d:0e:33:fe: fa:d1:57:ed:20:ec:fa:56:a7:86:75:f0:04:0d:20: da:8d:b4:b9:63:cc:66:53:39:10:9c:c8:f3:bc:de: 03:ae:33:57:da:88:65:3d:77:2e:d1:3d:f9:40:19: 78:cb:99:11:c9:e6:7b:1d:55:2d:7c:4b:e4:c1:3a: da:ce:27:72:e4:c9:11:8c:c7:20:cc:83:df:2b:3b: 83:c4:31:f9:75:46:64:b2:b3:64:23:0f:24:2f:40: 38:35:38:0f:49:dd:0e:35:33:42:0c:41:32:1d:6f: 38:04:58:69:83:25:1a:3e:05:f1:1b:0a:89:bd:e9: d0:03:88:ce:85:95:d9:6d:12:23:df:fe:d1:4a:c0: 08:d1:d0:16:85:8f:76:00:01:3f:ce:b3:16:47:e8: 17:be:c6:5c:20:82:9e:a9:02:de:fa:df:06:86:c9: 58:e3:02:d0:fd:31:b0:39:d2:cf:f8:71:59:d7:c7: da:cb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CD:40:D5:EA:59:F8:0D:A6:1B:44:86:BD:99:9B:E1:12:A1:A3:53:87 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/b329eb-fa5b-4fa8-b49b-f623304ed79a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/b329eb-fa5b-4fa8-b49b-f623304ed79a/1/zUDV6ln4DaYbRIa9mZvhEqGjU4c.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 87.239.40.0/21 sbgp-autonomousSysNum: critical Autonomous System Numbers: 38942 Signature Algorithm: sha256WithRSAEncryption a5:c9:1e:57:e6:bb:1f:a1:f1:17:f5:3d:05:58:e0:63:06:25: f6:fb:af:a7:88:a8:e2:19:d3:8c:05:a7:4c:6b:01:3f:39:bc: b5:ff:81:31:28:ce:4a:8a:51:51:97:f6:20:0e:d4:fb:ac:4b: 87:d9:01:0f:2f:c6:36:30:61:32:d7:fc:34:89:4e:5a:ed:0e: 92:a5:e4:5a:ee:f7:18:f8:3b:4d:1d:c0:42:78:00:a8:8a:0b: 88:e6:aa:f4:51:e0:6d:3c:e1:c9:b9:54:a8:30:75:76:16:1e: a1:2c:7c:a7:9c:6a:5d:9d:aa:93:ec:fd:ba:f5:2a:5f:ee:50: be:56:bb:fb:7e:95:1a:82:22:c4:ba:9e:d7:04:17:80:4c:85: c7:70:a7:c8:b1:f1:b3:eb:9f:8c:c8:e7:f2:88:d2:ec:b0:82: 8d:a4:d9:8a:c2:46:b5:69:c7:d6:41:22:64:16:80:94:16:d5: 0b:b8:44:01:4e:55:64:6c:3a:5e:97:f6:1f:e6:01:e5:9d:80: c1:11:1e:03:6a:22:ea:8e:2c:de:2b:fe:0d:87:88:e9:28:eb: cf:65:30:e6:ce:6f:1e:ad:fb:b1:16:d1:1d:b4:28:e3:6e:80: 5e:37:a2:2e:ef:35:8a:de:3c:2f:3c:16:dc:cf:fa:bf:7e:20: 88:a6:97:99 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt+pzl/SIOX+z8je089lapKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTIyMDQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhjZDQwZDVlYTU5ZjgwZGE2MWI0NDg2YmQ5OTliZTExMmExYTM1Mzg3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAusHL8lnqOfO3hqvA5XNOCJbFVuTw pgAK/m5dckhXCt1jsBmCjiRg1YrxyZ/WIYq9lcr7qHZXVjucQWKwsOVKjjj6EwDu vg0OM/760VftIOz6VqeGdfAEDSDajbS5Y8xmUzkQnMjzvN4DrjNX2ohlPXcu0T35 QBl4y5kRyeZ7HVUtfEvkwTrazidy5MkRjMcgzIPfKzuDxDH5dUZksrNkIw8kL0A4 NTgPSd0ONTNCDEEyHW84BFhpgyUaPgXxGwqJvenQA4jOhZXZbRIj3/7RSsAI0dAW hY92AAE/zrMWR+gXvsZcIIKeqQLe+t8GhslY4wLQ/TGwOdLP+HFZ18faywIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFM1A1epZ+A2mG0SGvZmb4RKho1OHMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ1L2IzMjll Yi1mYTViLTRmYTgtYjQ5Yi1mNjIzMzA0ZWQ3OWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDUvYjMyOWVi LWZhNWItNGZhOC1iNDliLWY2MjMzMDRlZDc5YS8xL3pVRFY2bG40RGFZYlJJYTlt WnZoRXFHalU0Yy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQDV+8oMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCYHjANBgkqhkiG9w0BAQsFAAOCAQEApckeV+a7H6HxF/U9BVjgYwYl9vuvp4io 4hnTjAWnTGsBPzm8tf+BMSjOSopRUZf2IA7U+6xLh9kBDy/GNjBhMtf8NIlOWu0O kqXkWu73GPg7TR3AQngAqIoLiOaq9FHgbTzhyblUqDB1dhYeoSx8p5xqXZ2qk+z9 uvUqX+5Qvla7+36VGoIixLqe1wQXgEyFx3CnyLHxs+ufjMjn8ojS7LCCjaTZisJG tWnH1kEiZBaAlBbVC7hEAU5VZGw6Xpf2H+YB5Z2AwREeA2oi6o4s3iv+DYeI6Sjr z2Uw5s5vHq37sRbRHbQo426AXjeiLu81it48LzwW3M/6v34giKaXmQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:10 2026 by rpki-client