This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ToWU69x9fPfaLgA8hNhqfBr4cbw.cer File: ToWU69x9fPfaLgA8hNhqfBr4cbw.cer (raw, json) Hash identifier: HjBXJbEHmEwlZXg0xkw3Luvpk6DAMuVu/tqExh28Iik= Subject key identifier: 4E:85:94:EB:DC:7D:7C:F7:DA:2E:00:3C:84:D8:6A:7C:1A:F8:71:BC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79ECCA836118C7D59D41BFA493B5EE02 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f4/ffe7d5-d91d-48ae-8ee5-ce94e38e82d6/1/ToWU69x9fPfaLgA8hNhqfBr4cbw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f4/ffe7d5-d91d-48ae-8ee5-ce94e38e82d6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:18:40 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.155.72.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:ec:ca:83:61:18:c7:d5:9d:41:bf:a4:93:b5:ee:02 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:18:40 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=4e8594ebdc7d7cf7da2e003c84d86a7c1af871bc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b8:a3:0f:66:29:b0:fa:02:93:5c:86:74:b4:de: a7:1c:10:d7:c5:1b:64:c0:94:f0:2e:8c:6e:2e:12: d3:1f:51:4a:50:9d:3b:85:f6:81:2d:27:ae:97:df: 95:c4:5f:29:cb:77:ab:ec:02:8b:d6:39:cf:ef:fc: 71:80:51:16:e1:7f:07:95:7d:46:41:2e:1a:13:78: 07:92:b0:c8:fc:4b:95:25:59:95:d5:ad:1e:08:85: e8:5f:b8:c0:f6:9e:57:ad:ec:09:1b:34:44:3a:e4: 25:71:38:dc:82:72:85:fa:ba:2a:9b:8b:a7:d2:50: 7d:56:5c:ee:3e:0c:8a:5f:61:b9:17:6f:ac:27:0a: 04:e6:92:06:ea:c0:04:58:c4:bf:16:e3:36:e4:bb: 24:40:d1:ac:c4:37:df:f8:c6:cb:a4:d9:fd:4c:0b: e3:46:81:52:2d:d8:54:24:39:9c:11:44:3d:21:41: 5d:b9:97:c6:06:f3:4a:1f:ad:22:01:18:94:29:57: 36:06:77:72:11:f6:85:e4:a1:f7:28:e5:d6:83:c9: af:ce:48:4f:6d:d0:2a:56:9e:d0:f9:cc:1b:83:9b: 01:b6:fe:37:92:32:cf:99:6b:48:cf:25:b9:70:4b: a3:9e:6a:b3:af:74:ba:3e:37:ff:54:0f:de:46:be: 11:fb Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 4E:85:94:EB:DC:7D:7C:F7:DA:2E:00:3C:84:D8:6A:7C:1A:F8:71:BC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ffe7d5-d91d-48ae-8ee5-ce94e38e82d6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/ffe7d5-d91d-48ae-8ee5-ce94e38e82d6/1/ToWU69x9fPfaLgA8hNhqfBr4cbw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.155.72.0/24 Signature Algorithm: sha256WithRSAEncryption 78:1f:1a:4f:74:a8:93:75:f0:30:8a:10:29:4a:08:da:8c:35: 83:d8:5f:ca:9a:d1:c4:ab:ec:88:c9:bb:00:8c:30:f0:e4:4e: 5c:42:bc:fb:6c:05:01:76:27:69:a8:bb:0e:e2:9b:94:1f:29: 7c:f1:6e:6b:02:ce:58:71:89:8e:f4:42:43:a5:cb:22:a5:bf: 9d:db:3a:07:b8:14:c6:af:b1:cb:c0:d3:fd:3c:11:c4:9f:d2: 52:1a:85:56:e9:0f:0e:d4:1b:f9:90:ce:66:da:2f:9b:8a:7c: 50:59:2f:84:c7:3d:49:cc:90:b5:10:0f:7a:88:a2:79:02:8a: a4:4e:21:23:a9:82:26:6d:7b:63:58:20:b4:43:6b:93:fb:5f: 9f:7d:af:93:9b:6a:1f:25:3f:c6:a2:8d:4d:ff:69:e8:7d:45: 86:52:92:f2:fe:f2:10:af:6b:f4:a6:37:f8:04:4a:f2:10:35: bf:36:fe:91:b4:61:d6:70:5e:c0:28:84:99:4b:3d:65:c8:74: 61:cb:d0:25:b3:6e:87:a4:16:c9:b9:23:6c:9b:a0:b4:92:ba: 94:02:5b:b0:2e:ad:c1:bd:57:99:1e:e5:53:52:64:b9:92:a9: f9:5f:41:e0:2c:e0:3e:a2:9a:f0:5d:f3:12:d2:99:8f:5a:ed: 8f:de:00:c9 -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt57MqDYRjH1Z1Bv6STte4CMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxODQwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0ZTg1OTRlYmRjN2Q3Y2Y3ZGEyZTAwM2M4NGQ4NmE3YzFhZjg3MWJjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuKMPZimw+gKTXIZ0tN6nHBDXxRtk wJTwLoxuLhLTH1FKUJ07hfaBLSeul9+VxF8py3er7AKL1jnP7/xxgFEW4X8HlX1G QS4aE3gHkrDI/EuVJVmV1a0eCIXoX7jA9p5XrewJGzREOuQlcTjcgnKF+roqm4un 0lB9VlzuPgyKX2G5F2+sJwoE5pIG6sAEWMS/FuM25LskQNGsxDff+MbLpNn9TAvj RoFSLdhUJDmcEUQ9IUFduZfGBvNKH60iARiUKVc2BndyEfaF5KH3KOXWg8mvzkhP bdAqVp7Q+cwbg5sBtv43kjLPmWtIzyW5cEujnmqzr3S6Pjf/VA/eRr4R+wIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFE6FlOvcfXz32i4APITYanwa+HG8MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y0L2ZmZTdk NS1kOTFkLTQ4YWUtOGVlNS1jZTk0ZTM4ZTgyZDYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjQvZmZlN2Q1 LWQ5MWQtNDhhZS04ZWU1LWNlOTRlMzhlODJkNi8xL1RvV1U2OXg5ZlBmYUxnQTho TmhxZkJyNGNidy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAuZtIMA0GCSqGSIb3DQEBCwUAA4IBAQB4HxpP dKiTdfAwihApSgjajDWD2F/KmtHEq+yIybsAjDDw5E5cQrz7bAUBdidpqLsO4puU Hyl88W5rAs5YcYmO9EJDpcsipb+d2zoHuBTGr7HLwNP9PBHEn9JSGoVW6Q8O1Bv5 kM5m2i+binxQWS+Exz1JzJC1EA96iKJ5AoqkTiEjqYImbXtjWCC0Q2uT+1+ffa+T m2ofJT/Goo1N/2nofUWGUpLy/vIQr2v0pjf4BEryEDW/Nv6RtGHWcF7AKISZSz1l yHRhy9Als26HpBbJuSNsm6C0krqUAluwLq3BvVeZHuVTUmS5kqn5X0HgLOA+oprw XfMS0pmPWu2P3gDJ -----END CERTIFICATE-----Generated at Mon Jan 26 05:35:53 2026 by rpki-client