This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2wU2Dphzgl911nHa8WJKUumFOQw.cer File: 2wU2Dphzgl911nHa8WJKUumFOQw.cer (raw, json) Hash identifier: 0oz34p5HyXPgjj1PtwQtQgcppMHgZcFV7I8c2hbhwMg= Subject key identifier: DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C6C259B5187D368BB5E49D2BABC2A3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:17:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 195.49.180.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 01:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:c2:59:b5:18:7d:36:8b:b5:e4:9d:2b:ab:c2:a3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:17:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db05360e9873825f75d671daf1624a52e985390c Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d0:72:17:9b:d2:76:b4:90:31:c2:e8:70:53:19: 1a:2f:30:69:3d:c6:64:4d:c2:41:5d:0c:d0:e8:74: 97:de:72:b6:a7:b5:52:bd:f7:eb:2c:3b:31:e5:a5: 05:08:c5:89:2d:d2:19:b0:20:99:43:11:24:00:21: 6b:68:2e:fb:67:84:56:f5:6e:8f:51:22:b0:d6:0d: e4:dc:07:03:2b:66:0e:2a:eb:da:62:78:a6:ee:76: 96:f5:01:88:2c:c0:a4:43:77:93:2f:a8:f3:0a:17: 6d:cc:cd:ef:01:8a:4b:cc:2f:cd:e2:cd:73:61:64: 6f:fe:d9:bd:fc:e9:a1:46:0c:46:7f:92:85:d9:d5: 49:f1:be:a3:08:f7:79:c2:98:14:ef:9b:5c:7d:85: 13:90:1d:1b:e5:6f:92:b7:bf:90:71:fe:2a:a7:ad: c8:f0:3a:a7:53:75:1d:5d:82:1c:6b:71:fd:d8:a1: 68:34:62:61:94:b4:79:de:c7:1f:c4:32:1a:90:dc: c0:a6:86:13:b8:cb:20:4f:04:8d:ff:d6:ed:83:9a: f2:d7:b2:6e:46:53:7d:77:65:50:87:a1:c4:02:7f: 7d:e5:5c:73:ba:e4:60:a6:a0:59:4e:f5:e3:df:d1: 12:ea:21:92:0d:01:7c:8b:05:63:08:6b:45:27:52: db:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:05:36:0E:98:73:82:5F:75:D6:71:DA:F1:62:4A:52:E9:85:39:0C X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/8fc1e2-41d7-4f35-a13e-d62d224e3caf/1/2wU2Dphzgl911nHa8WJKUumFOQw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.49.180.0/22 Signature Algorithm: sha256WithRSAEncryption 3e:67:ef:3f:5d:d7:01:52:9c:f7:b1:c5:ae:70:af:d3:fe:04: 33:90:cf:14:4b:0d:16:b0:6e:c9:ba:7f:96:5d:73:8d:8e:20: 7a:c6:ae:d1:ef:68:ed:e5:85:85:23:69:e2:9b:93:30:4c:9c: c2:f4:36:46:a2:14:3e:15:c1:1b:d5:f3:79:6c:3d:4c:cb:29: 57:a9:20:ef:ae:ae:6d:a7:9f:d4:ce:84:4d:fa:c7:50:4a:2c: 1f:29:c1:d3:87:8a:60:c1:8d:23:83:11:57:da:a9:60:3c:9d: fb:53:23:96:f5:f5:50:70:2f:3e:28:e9:16:fe:74:5f:5e:99: d0:7f:da:9e:6c:fe:3a:69:cb:4b:1e:60:2c:81:48:7a:7a:e3: 1f:08:17:bc:16:ed:7f:c5:ec:0f:d5:c1:5f:76:48:67:ab:ba: 37:ed:ac:87:c2:66:f8:bb:c8:33:5e:85:40:50:7a:32:d0:25: 75:b1:05:f0:c3:9c:d7:3c:bb:b5:6c:68:ee:05:6e:8c:d0:9f: de:77:dd:09:ed:b9:e9:88:b3:e2:1c:e2:14:84:b2:6e:2a:33: f1:08:e5:48:70:08:85:db:93:52:a7:e9:0c:11:31:91:63:f7: 71:ca:de:bf:95:cb:c7:9a:f2:9b:c5:4a:6b:26:f0:2d:1c:55: e9:d6:cc:74 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt3xsJZtRh9Nou15J0rq8KjMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxNzUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjA1MzYwZTk4NzM4MjVmNzVkNjcxZGFmMTYyNGE1MmU5ODUzOTBjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0HIXm9J2tJAxwuhwUxkaLzBpPcZk TcJBXQzQ6HSX3nK2p7VSvffrLDsx5aUFCMWJLdIZsCCZQxEkACFraC77Z4RW9W6P USKw1g3k3AcDK2YOKuvaYnim7naW9QGILMCkQ3eTL6jzChdtzM3vAYpLzC/N4s1z YWRv/tm9/OmhRgxGf5KF2dVJ8b6jCPd5wpgU75tcfYUTkB0b5W+St7+Qcf4qp63I 8DqnU3UdXYIca3H92KFoNGJhlLR53scfxDIakNzApoYTuMsgTwSN/9btg5ry17Ju RlN9d2VQh6HEAn995VxzuuRgpqBZTvXj39ES6iGSDQF8iwVjCGtFJ1LbyQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFNsFNg6Yc4JfddZx2vFiSlLphTkMMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UxLzhmYzFl Mi00MWQ3LTRmMzUtYTEzZS1kNjJkMjI0ZTNjYWYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTEvOGZjMWUy LTQxZDctNGYzNS1hMTNlLWQ2MmQyMjRlM2NhZi8xLzJ3VTJEcGh6Z2w5MTFuSGE4 V0pLVXVtRk9Rdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCwzG0MA0GCSqGSIb3DQEBCwUAA4IBAQA+Z+8/ XdcBUpz3scWucK/T/gQzkM8USw0WsG7Jun+WXXONjiB6xq7R72jt5YWFI2nim5Mw TJzC9DZGohQ+FcEb1fN5bD1MyylXqSDvrq5tp5/UzoRN+sdQSiwfKcHTh4pgwY0j gxFX2qlgPJ37UyOW9fVQcC8+KOkW/nRfXpnQf9qebP46actLHmAsgUh6euMfCBe8 Fu1/xewP1cFfdkhnq7o37ayHwmb4u8gzXoVAUHoy0CV1sQXww5zXPLu1bGjuBW6M 0J/ed90J7bnpiLPiHOIUhLJuKjPxCOVIcAiF25NSp+kMETGRY/dxyt6/lcvHmvKb xUprJvAtHFXp1sx0 -----END CERTIFICATE-----Generated at Mon Jan 26 10:17:13 2026 by rpki-client