This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/loH8jHM3xqHSC4SADfhion5f29c.cer File: loH8jHM3xqHSC4SADfhion5f29c.cer (raw, json) Hash identifier: tcz8rBG7Juh4nveaW08g3jCNLwqhuvAPcrFQ/Bi2JHM= Subject key identifier: 96:81:FC:8C:73:37:C6:A1:D2:0B:84:80:0D:F8:62:A2:7E:5F:DB:D7 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79113BEF941F338205392F1F017E1C4A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:18:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 195.8.98.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:11:3b:ef:94:1f:33:82:05:39:2f:1f:01:7e:1c:4a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:18:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=9681fc8c7337c6a1d20b84800df862a27e5fdbd7 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cf:e3:3b:14:99:68:dd:35:3e:8c:28:48:45:79: aa:37:90:4a:ac:31:80:ce:f5:8a:a6:e8:69:04:66: 30:d5:81:0f:8f:db:68:15:1e:15:97:fd:e4:5d:8a: e0:b6:54:7c:93:4e:fb:95:f0:fe:a2:52:39:7e:76: ef:dd:bf:fe:67:e2:0a:8e:76:e4:0e:ed:69:9f:2d: ad:39:1c:e8:fc:62:5d:1c:ca:eb:35:80:8b:14:af: 46:1a:b0:dd:31:5b:2e:d3:aa:cf:57:d7:86:b8:99: 6f:8e:67:11:20:c1:18:24:c9:7c:1c:9a:87:ae:de: b6:ff:13:7a:c7:80:f6:f8:f5:30:98:90:78:f3:c9: 54:14:6a:fe:1f:77:a1:c8:0a:44:b8:1f:7a:f5:0e: 10:b7:77:37:7a:e2:08:90:b1:f7:6b:89:23:9e:70: 04:da:fd:d8:0c:31:08:8e:b7:07:96:e7:a2:0f:b0: 39:4c:14:7a:9d:aa:17:d7:30:e8:5b:8b:61:7e:87: 78:27:0d:34:01:6a:ec:d3:6a:9c:46:81:ab:a8:f0: a4:fb:27:0e:85:45:00:a6:af:cd:0a:49:04:8b:ed: 5d:30:e5:73:fe:8a:85:55:c4:8d:b1:92:a6:91:64: 4a:a4:68:66:f7:85:24:a5:4b:8e:22:b9:ea:c1:03: ac:8d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 96:81:FC:8C:73:37:C6:A1:D2:0B:84:80:0D:F8:62:A2:7E:5F:DB:D7 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/97/40e5d5-ed41-4dd3-9332-53d96099d7b1/1/loH8jHM3xqHSC4SADfhion5f29c.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.8.98.0/24 Signature Algorithm: sha256WithRSAEncryption 3a:21:41:1c:2c:15:89:bd:a7:56:4a:1b:bf:4f:88:d9:fe:ca: 3f:5b:4d:ad:37:f0:3d:f7:d3:3a:ea:b7:18:4e:42:f6:c3:18: e1:5e:de:bb:e3:90:1e:f2:8e:27:6d:5b:77:d1:1a:fe:88:5c: b9:7f:0e:c8:73:a8:32:2e:8b:d5:aa:e2:0f:99:36:f7:fd:7e: f4:f0:a3:e3:3a:6e:84:55:fe:81:d2:3f:be:97:bb:da:7f:ad: 29:f5:e5:a5:c0:7d:0b:68:e9:d0:a3:bc:fb:51:f7:cf:53:aa: b1:24:03:0c:ff:5c:13:80:d4:df:6d:bc:b3:d6:8f:93:e8:fd: f4:95:48:51:b2:76:a0:9c:44:c6:e1:f2:ac:88:44:52:46:8f: 8e:af:97:c3:a0:15:9a:4c:6a:dc:1e:00:d4:ce:e2:ae:33:f7: 91:07:da:ae:5b:1c:81:10:89:b4:bb:c4:10:f8:ed:b7:cc:02: f7:37:8e:5d:98:56:5f:53:07:d0:94:ce:c8:ea:cf:9c:81:bc: 8a:25:b1:d2:7e:a6:0f:89:82:64:54:a6:48:9e:5f:d1:d1:0b: bf:b7:e9:02:bd:ba:4f:2b:5a:e8:ff:a3:18:a1:18:0a:34:2f: e3:23:2c:b9:70:95:b1:6c:04:fd:41:37:f2:aa:aa:7b:d5:d1: 47:9b:4b:9b -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt5ETvvlB8zggU5Lx8BfhxKMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxODUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg5NjgxZmM4YzczMzdjNmExZDIwYjg0ODAwZGY4NjJhMjdlNWZkYmQ3MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz+M7FJlo3TU+jChIRXmqN5BKrDGA zvWKpuhpBGYw1YEPj9toFR4Vl/3kXYrgtlR8k077lfD+olI5fnbv3b/+Z+IKjnbk Du1pny2tORzo/GJdHMrrNYCLFK9GGrDdMVsu06rPV9eGuJlvjmcRIMEYJMl8HJqH rt62/xN6x4D2+PUwmJB488lUFGr+H3ehyApEuB969Q4Qt3c3euIIkLH3a4kjnnAE 2v3YDDEIjrcHlueiD7A5TBR6naoX1zDoW4thfod4Jw00AWrs02qcRoGrqPCk+ycO hUUApq/NCkkEi+1dMOVz/oqFVcSNsZKmkWRKpGhm94UkpUuOIrnqwQOsjQIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFJaB/IxzN8ah0guEgA34YqJ+X9vXMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk3LzQwZTVk NS1lZDQxLTRkZDMtOTMzMi01M2Q5NjA5OWQ3YjEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTcvNDBlNWQ1 LWVkNDEtNGRkMy05MzMyLTUzZDk2MDk5ZDdiMS8xL2xvSDhqSE0zeHFIU0M0U0FE Zmhpb241ZjI5Yy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwwhiMA0GCSqGSIb3DQEBCwUAA4IBAQA6IUEc LBWJvadWShu/T4jZ/so/W02tN/A999M66rcYTkL2wxjhXt6745Ae8o4nbVt30Rr+ iFy5fw7Ic6gyLovVquIPmTb3/X708KPjOm6EVf6B0j++l7vaf60p9eWlwH0LaOnQ o7z7UffPU6qxJAMM/1wTgNTfbbyz1o+T6P30lUhRsnagnETG4fKsiERSRo+Or5fD oBWaTGrcHgDUzuKuM/eRB9quWxyBEIm0u8QQ+O23zAL3N45dmFZfUwfQlM7I6s+c gbyKJbHSfqYPiYJkVKZInl/R0Qu/t+kCvbpPK1ro/6MYoRgKNC/jIyy5cJWxbAT9 QTfyqqp71dFHm0ub -----END CERTIFICATE-----Generated at Mon Jan 26 04:51:36 2026 by rpki-client