This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer File: N-dRoRwaeIj6WNv8MsiVm8lGMD4.cer (raw, json) Hash identifier: U2EJ3uCR5daCnHRAJUK/jCVMpalHDzS6KBEI6wnxwLo= Subject key identifier: 37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5ABDB52D6C56F14A8F481F57D34053 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/N-dRoRwaeIj6WNv8MsiVm8lGMD4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.205.70.0/24 IP: 2a10:9000::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 13:21:19 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:bd:b5:2d:6c:56:f1:4a:8f:48:1f:57:d3:40:53 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=37e751a11c1a7888fa58dbfc32c8959bc946303e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:84:46:44:b3:5b:c1:b7:91:e1:7e:4b:76:6e:10: f8:bb:69:11:0d:85:13:57:2e:b4:6f:2b:9e:cb:42: a1:fc:3a:f5:6d:8a:a2:5d:45:8f:bb:89:63:9f:04: 1a:97:65:fe:83:a4:b8:c9:1e:e7:e4:f5:d1:6b:66: 83:3f:6d:89:c3:d5:b0:de:ef:9d:b9:52:d3:29:91: 8c:f2:f4:1f:14:da:ee:b1:da:a4:8a:78:25:f1:8c: 47:f2:99:49:5b:16:ae:e5:9f:61:c3:50:34:0a:25: e5:97:96:2e:ad:1e:6a:93:42:de:50:bc:62:bc:90: ab:31:61:0c:be:fa:a0:7f:fd:1c:7a:d8:ce:70:eb: 35:01:83:dc:db:38:a7:b8:80:91:90:56:93:ab:24: 41:5b:6b:c8:0d:12:03:42:f2:9c:5a:62:45:5e:56: 87:35:08:50:d4:9f:7a:1e:15:72:fd:04:52:1d:fd: ec:4f:81:69:39:54:a0:b9:48:d3:2b:8b:4a:33:64: b1:76:73:9d:0b:da:e1:6b:ca:56:dc:88:5d:8a:e6: 41:b3:6c:29:97:0e:e7:5b:d3:76:8f:a6:95:95:3b: be:27:88:6a:84:a6:b6:79:89:c2:50:ee:ce:7d:f0: 7f:e7:6d:94:01:ba:62:09:d9:df:52:29:13:ca:3f: ae:e9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 37:E7:51:A1:1C:1A:78:88:FA:58:DB:FC:32:C8:95:9B:C9:46:30:3E X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/45/6b0344-8229-4d25-b498-8ce7c4fc5e0b/1/N-dRoRwaeIj6WNv8MsiVm8lGMD4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.205.70.0/24 IPv6: 2a10:9000::/29 Signature Algorithm: sha256WithRSAEncryption 25:a3:09:54:63:bd:6b:2f:88:62:a5:b1:72:4c:f6:e5:72:d2: 3e:8d:69:fb:eb:93:1a:18:2c:f7:f4:ea:cf:9f:66:c0:17:ad: 67:ab:10:bc:54:06:5b:ca:e9:92:b3:5d:04:7d:d2:07:72:bd: 22:cd:80:e6:9d:c7:b6:08:3f:46:8b:7a:27:bf:fc:2b:04:7b: 35:95:70:26:65:d5:a1:76:50:70:2b:1b:4c:75:19:4c:bd:62: 95:3a:b0:4c:df:31:42:fc:23:ff:2b:fb:04:ff:e0:3f:6e:66: 8f:c5:fd:55:10:1a:a7:9f:e9:9e:42:74:ef:3e:75:48:1c:e9: 40:bb:33:69:29:97:91:ad:28:ee:c6:e1:75:87:c7:92:d0:03: 62:a3:e7:82:e3:2a:50:21:2b:c1:37:c8:60:3c:12:9c:fa:9a: 1f:14:66:b3:96:dc:1b:68:d7:f0:45:89:1f:3d:03:af:83:12: 13:f0:1a:5e:1e:16:e5:ee:b0:20:f6:e0:44:0d:77:90:40:1e: 73:6f:4b:a2:e9:45:e7:32:97:1c:8e:14:35:3d:41:3e:ce:25: 16:21:fb:7f:40:55:41:62:64:72:3d:de:38:99:ad:78:93:35: 5d:59:33:55:9f:7e:5a:b2:5b:1d:3d:48:dd:34:b1:63:fc:54: 58:b1:9b:48 -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt6Wr21LWxW8UqPSB9X00BTMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzN2U3NTFhMTFjMWE3ODg4ZmE1OGRiZmMzMmM4OTU5YmM5NDYzMDNlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhEZEs1vBt5Hhfkt2bhD4u2kRDYUT Vy60byuey0Kh/Dr1bYqiXUWPu4ljnwQal2X+g6S4yR7n5PXRa2aDP22Jw9Ww3u+d uVLTKZGM8vQfFNrusdqkingl8YxH8plJWxau5Z9hw1A0CiXll5YurR5qk0LeULxi vJCrMWEMvvqgf/0cetjOcOs1AYPc2zinuICRkFaTqyRBW2vIDRIDQvKcWmJFXlaH NQhQ1J96HhVy/QRSHf3sT4FpOVSguUjTK4tKM2SxdnOdC9rha8pW3IhdiuZBs2wp lw7nW9N2j6aVlTu+J4hqhKa2eYnCUO7OffB/522UAbpiCdnfUikTyj+u6QIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFDfnUaEcGniI+ljb/DLIlZvJRjA+MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzQ1LzZiMDM0 NC04MjI5LTRkMjUtYjQ5OC04Y2U3YzRmYzVlMGIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNDUvNmIwMzQ0 LTgyMjktNGQyNS1iNDk4LThjZTdjNGZjNWUwYi8xL04tZFJvUndhZUlqNldOdjhN c2lWbThsR01ENC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQAuc1GMA0EAgACMAcDBQMqEJAAMA0GCSqGSIb3 DQEBCwUAA4IBAQAlowlUY71rL4hipbFyTPblctI+jWn765MaGCz39OrPn2bAF61n qxC8VAZbyumSs10EfdIHcr0izYDmnce2CD9Gi3onv/wrBHs1lXAmZdWhdlBwKxtM dRlMvWKVOrBM3zFC/CP/K/sE/+A/bmaPxf1VEBqnn+meQnTvPnVIHOlAuzNpKZeR rSjuxuF1h8eS0ANio+eC4ypQISvBN8hgPBKc+pofFGazltwbaNfwRYkfPQOvgxIT 8BpeHhbl7rAg9uBEDXeQQB5zb0ui6UXnMpccjhQ1PUE+ziUWIft/QFVBYmRyPd44 ma14kzVdWTNVn35aslsdPUjdNLFj/FRYsZtI -----END CERTIFICATE-----Generated at Sun Jan 25 18:11:25 2026 by rpki-client