This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PWOfpO3cFi3zZZ5yHSR_8ziWL2g.cer File: PWOfpO3cFi3zZZ5yHSR_8ziWL2g.cer (raw, json) Hash identifier: R5sPsIAkc27V0raBW5p6zlnTYRDcAB8H/WBRUI7AN+c= Subject key identifier: 3D:63:9F:A4:ED:DC:16:2D:F3:65:9E:72:1D:24:7F:F3:38:96:2F:68 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019A915B2A9BF01E66AEFAD765D20D5BF2B4 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9a/c77983-be3a-48e3-b5d0-ad284d2824a4/1/PWOfpO3cFi3zZZ5yHSR_8ziWL2g.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9a/c77983-be3a-48e3-b5d0-ad284d2824a4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Mon 17 Nov 2025 10:27:42 +0000 Certificate not after: Wed 01 Jul 2026 00:00:00 +0000 Subordinate resources: AS: 208765 IP: 2a04:6400::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:91:5b:2a:9b:f0:1e:66:ae:fa:d7:65:d2:0d:5b:f2:b4 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Nov 17 10:27:42 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=3d639fa4eddc162df3659e721d247ff338962f68 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:cd:ea:19:08:ae:c3:bb:04:aa:be:a3:c1:bc: c8:11:8f:e6:6a:83:8d:52:55:cb:b5:ec:bf:22:f5: 1f:24:5c:6e:f5:2e:4a:61:c6:f6:72:04:c8:6f:88: 23:55:a8:a8:f4:85:9a:3b:b1:b6:3c:50:ab:a1:40: b8:5f:92:79:2d:37:74:11:70:f8:66:d5:99:2c:df: b8:d4:13:ba:70:9d:ca:b1:ae:3a:0d:fe:5f:e9:d5: c5:52:18:04:09:db:7e:34:9c:6d:64:7d:c4:a9:11: 4c:58:1f:0f:11:ed:05:1c:e5:a9:e3:1f:3e:8d:b2: 36:8b:84:25:29:6d:0d:ee:8d:fa:b4:15:03:75:59: a0:86:fb:14:04:fd:05:10:e9:0e:21:74:19:68:d9: 6a:f8:90:e3:32:74:6d:05:27:56:0c:99:4f:14:99: e9:d2:86:66:9d:ec:3e:13:0a:52:82:3c:a8:c2:e1: 83:e3:05:fe:0b:8b:58:ba:e1:c4:eb:be:62:29:b3: 0c:8c:f4:4e:57:33:02:db:46:10:79:6c:b7:b2:7d: 46:2d:8b:42:31:88:b7:64:d1:8d:a0:69:42:0f:01: 80:98:e4:10:c2:a7:d7:52:7d:3a:dd:94:e7:a0:78: ed:36:ce:9b:c9:2c:1f:6f:b5:dd:9f:da:a7:cf:97: bf:9f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3D:63:9F:A4:ED:DC:16:2D:F3:65:9E:72:1D:24:7F:F3:38:96:2F:68 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c77983-be3a-48e3-b5d0-ad284d2824a4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9a/c77983-be3a-48e3-b5d0-ad284d2824a4/1/PWOfpO3cFi3zZZ5yHSR_8ziWL2g.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2a04:6400::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208765 Signature Algorithm: sha256WithRSAEncryption 59:b0:b0:17:a5:06:b2:c9:bd:cf:ea:82:34:31:40:05:29:75: 62:aa:e0:2c:8f:53:44:8c:41:04:f6:d6:9f:ba:1f:8a:b8:2d: 5d:b7:86:3d:72:40:4b:64:43:b7:19:29:c5:0d:ea:a6:6b:cd: 0c:ac:3c:b6:a2:f5:34:2a:1b:28:0a:2d:6d:de:d4:68:5b:a6: c7:ae:94:64:71:c1:ca:ff:06:bc:cc:e4:56:ff:83:d3:4b:5b: 3d:6c:82:e4:33:5c:6f:78:bd:7d:7e:9a:17:8d:c4:45:a9:4e: 5c:5f:5f:21:bb:58:15:97:8a:3f:ae:ad:b3:35:5e:4f:73:c5: d0:00:17:51:3a:e3:ff:3a:0f:c4:04:6f:9a:3e:7d:3f:fb:a1: 51:f3:7b:84:7d:8c:d2:99:97:c1:3e:20:f3:d5:8a:12:83:9e: a0:87:78:fc:f7:ed:a9:79:22:bf:76:e0:16:ce:0d:12:63:6a: 7f:b9:5a:0e:45:04:52:3f:ab:f7:59:a3:1b:4d:92:2d:d0:b8: 4f:c4:fd:0b:0f:95:14:b1:6d:39:75:f4:52:b6:1e:0c:c1:8b: 00:63:23:c2:1e:1e:3a:51:ef:bf:46:44:4a:96:7c:cf:7c:ec: 33:e7:6f:36:c0:36:84:f0:ff:ef:27:22:7c:c4:be:6f:ca:e5: 43:a4:6e:8b -----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgISAZqRWyqb8B5mrvrXZdINW/K0MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjUxMTE3MTAyNzQyWhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzZDYzOWZhNGVkZGMxNjJkZjM2NTllNzIxZDI0N2ZmMzM4OTYyZjY4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAms3qGQiuw7sEqr6jwbzIEY/maoON UlXLtey/IvUfJFxu9S5KYcb2cgTIb4gjVaio9IWaO7G2PFCroUC4X5J5LTd0EXD4 ZtWZLN+41BO6cJ3Ksa46Df5f6dXFUhgECdt+NJxtZH3EqRFMWB8PEe0FHOWp4x8+ jbI2i4QlKW0N7o36tBUDdVmghvsUBP0FEOkOIXQZaNlq+JDjMnRtBSdWDJlPFJnp 0oZmnew+EwpSgjyowuGD4wX+C4tYuuHE675iKbMMjPROVzMC20YQeWy3sn1GLYtC MYi3ZNGNoGlCDwGAmOQQwqfXUn063ZTnoHjtNs6bySwfb7Xdn9qnz5e/nwIDAQAB o4ICoTCCAp0wHQYDVR0OBBYEFD1jn6Tt3BYt82Wech0kf/M4li9oMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzlhL2M3Nzk4 My1iZTNhLTQ4ZTMtYjVkMC1hZDI4NGQyODI0YTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWEvYzc3OTgz LWJlM2EtNDhlMy1iNWQwLWFkMjg0ZDI4MjRhNC8xL1BXT2ZwTzNjRmkzelpaNXlI U1JfOHppV0wyZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCAGCCsGAQUF BwEHAQH/BBEwDzANBAIAAjAHAwUDKgRkADAaBggrBgEFBQcBCAEB/wQLMAmgBzAF AgMDL30wDQYJKoZIhvcNAQELBQADggEBAFmwsBelBrLJvc/qgjQxQAUpdWKq4CyP U0SMQQT21p+6H4q4LV23hj1yQEtkQ7cZKcUN6qZrzQysPLai9TQqGygKLW3e1Ghb pseulGRxwcr/BrzM5Fb/g9NLWz1sguQzXG94vX1+mheNxEWpTlxfXyG7WBWXij+u rbM1Xk9zxdAAF1E64/86D8QEb5o+fT/7oVHze4R9jNKZl8E+IPPVihKDnqCHePz3 7al5Ir924BbODRJjan+5Wg5FBFI/q/dZoxtNki3QuE/E/QsPlRSxbTl19FK2HgzB iwBjI8IeHjpR779GREqWfM987DPnbzbANoTw/+8nInzEvm/K5UOkbos= -----END CERTIFICATE-----Generated at Sat Dec 6 06:37:21 2025 by rpki-client