This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/TU0qfS8eqI_7WgMlnLP06o0vVfs.cer File: TU0qfS8eqI_7WgMlnLP06o0vVfs.cer (raw, json) Hash identifier: HQ7nfAGfJKHu01I+ZgebaKbCFTtbIgx3YTYIqTIDpkc= Subject key identifier: 4D:4D:2A:7D:2F:1E:A8:8F:FB:5A:03:25:9C:B3:F4:EA:8D:2F:55:FB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019ADEE2AAF7C84819FAAAF439CDE476DAA8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c4/e72c80-6ad7-4b1f-989a-a6b513c47f85/1/TU0qfS8eqI_7WgMlnLP06o0vVfs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c4/e72c80-6ad7-4b1f-989a-a6b513c47f85/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Tue 02 Dec 2025 11:46:28 +0000 Certificate not after: Wed 01 Jul 2026 00:00:00 +0000 Subordinate resources: AS: 39803 IP: 195.189.138.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 06 Dec 2025 20:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:de:e2:aa:f7:c8:48:19:fa:aa:f4:39:cd:e4:76:da:a8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Dec 2 11:46:28 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=4d4d2a7d2f1ea88ffb5a03259cb3f4ea8d2f55fb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:59:5c:0a:5b:f6:d9:04:74:9f:15:73:98:a6: ef:e1:84:08:6b:f8:fe:4a:81:e1:b3:ff:e3:bd:f0: 07:5f:77:ca:b7:01:ff:2d:00:d5:dc:27:36:5d:c6: cf:17:5e:83:96:1b:93:7e:0d:6e:54:1e:18:18:6a: 87:cd:d9:be:35:11:f5:57:fa:37:65:99:10:8c:4d: 04:48:e1:09:ce:1d:d2:22:5a:4a:ea:3b:79:64:b1: 1d:13:b3:b8:b8:a3:68:5b:fa:81:a9:24:40:f2:be: eb:9e:32:48:00:19:b2:c7:9c:bc:c4:df:5d:ff:a0: 03:b7:9c:79:48:9a:57:6a:f5:85:50:fe:65:71:1c: 20:fe:a8:0a:e9:84:3b:bf:02:6a:1c:8d:c2:de:e8: 03:6a:16:55:54:91:77:b0:90:f2:fb:86:69:28:83: 34:29:67:5b:14:54:91:57:ee:e7:15:de:99:7b:90: 28:69:e6:ba:a2:8e:46:ec:9e:75:fa:a8:fa:46:55: c9:97:b3:75:17:6a:9a:6b:31:a2:7b:87:d4:5e:80: 72:d9:55:a0:66:50:06:04:55:01:7c:e8:01:a4:fa: cf:17:b0:99:3c:e9:1c:34:ac:0f:f3:99:75:26:c0: 67:2f:61:59:68:e8:1d:2c:ba:d8:d5:12:11:5b:d9: 24:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4D:4D:2A:7D:2F:1E:A8:8F:FB:5A:03:25:9C:B3:F4:EA:8D:2F:55:FB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e72c80-6ad7-4b1f-989a-a6b513c47f85/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c4/e72c80-6ad7-4b1f-989a-a6b513c47f85/1/TU0qfS8eqI_7WgMlnLP06o0vVfs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.189.138.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 39803 Signature Algorithm: sha256WithRSAEncryption 12:3d:4b:5e:d0:43:f7:8d:5b:0d:48:2f:44:e2:39:f9:17:9c: 7a:2d:3f:b6:80:1e:c4:2d:17:08:f8:cc:fc:dc:62:f4:2b:b5: 63:8a:52:b5:ba:ed:6c:a5:f5:37:84:9f:4a:4b:34:09:d3:00: 4b:8b:20:20:22:8f:7d:e9:e9:1a:18:70:f2:38:b6:1d:e2:cd: dd:68:26:52:b4:44:51:b6:6e:36:89:d2:1b:ba:bf:e9:e1:d7: df:e3:29:64:d4:20:e8:d3:cb:b9:0c:25:16:ac:83:26:75:ca: 95:ce:93:39:32:6f:69:be:3f:da:01:aa:26:c1:e1:85:b5:1b: 87:be:21:29:1a:84:93:b9:59:57:42:9f:fe:b5:ee:2f:18:0b: ee:fe:3f:be:ab:ca:f3:b1:6d:93:48:44:04:3b:cd:a6:94:9d: e6:52:2a:97:a4:89:50:1f:8c:86:88:88:59:39:e2:6b:21:33: 0a:da:32:89:02:9f:c3:55:7d:fe:ad:2a:97:a1:4b:da:3c:00: 4f:77:d0:df:70:89:2c:05:5b:e8:32:7f:d8:2c:b1:fb:4d:3f: e6:13:3b:bb:85:f2:07:3f:4a:70:18:a8:c5:fa:78:45:6b:84: d2:ab:e5:82:17:44:8f:99:85:ba:85:cc:e8:d7:54:c3:47:67: e6:41:56:57 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZre4qr3yEgZ+qr0Oc3kdtqoMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjUxMjAyMTE0NjI4WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZDRkMmE3ZDJmMWVhODhmZmI1YTAzMjU5Y2IzZjRlYThkMmY1NWZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkFlcClv22QR0nxVzmKbv4YQIa/j+ SoHhs//jvfAHX3fKtwH/LQDV3Cc2XcbPF16DlhuTfg1uVB4YGGqHzdm+NRH1V/o3 ZZkQjE0ESOEJzh3SIlpK6jt5ZLEdE7O4uKNoW/qBqSRA8r7rnjJIABmyx5y8xN9d /6ADt5x5SJpXavWFUP5lcRwg/qgK6YQ7vwJqHI3C3ugDahZVVJF3sJDy+4ZpKIM0 KWdbFFSRV+7nFd6Ze5Aoaea6oo5G7J51+qj6RlXJl7N1F2qaazGie4fUXoBy2VWg ZlAGBFUBfOgBpPrPF7CZPOkcNKwP85l1JsBnL2FZaOgdLLrY1RIRW9kkRQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFE1NKn0vHqiP+1oDJZyz9OqNL1X7MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M0L2U3MmM4 MC02YWQ3LTRiMWYtOTg5YS1hNmI1MTNjNDdmODUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzQvZTcyYzgw LTZhZDctNGIxZi05ODlhLWE2YjUxM2M0N2Y4NS8xL1RVMHFmUzhlcUlfN1dnTWxu TFAwNm8wdlZmcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBw72KMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCbezANBgkqhkiG9w0BAQsFAAOCAQEAEj1LXtBD941bDUgvROI5+Recei0/toAe xC0XCPjM/Nxi9Cu1Y4pStbrtbKX1N4SfSks0CdMAS4sgICKPfenpGhhw8ji2HeLN 3WgmUrREUbZuNonSG7q/6eHX3+MpZNQg6NPLuQwlFqyDJnXKlc6TOTJvab4/2gGq JsHhhbUbh74hKRqEk7lZV0Kf/rXuLxgL7v4/vqvK87Ftk0hEBDvNppSd5lIql6SJ UB+MhoiIWTniayEzCtoyiQKfw1V9/q0ql6FL2jwAT3fQ33CJLAVb6DJ/2Cyx+00/ 5hM7u4XyBz9KcBioxfp4RWuE0qvlghdEj5mFuoXM6NdUw0dn5kFWVw== -----END CERTIFICATE-----Generated at Sat Dec 6 05:54:26 2025 by rpki-client