This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/spIJTWkd9KfDjxa3VVfpwm1KxpI.cer File: spIJTWkd9KfDjxa3VVfpwm1KxpI.cer (raw, json) Hash identifier: SLbat9oJgOFucwLJMNh4SWLJSheGOxLf4sVjgsiaY5Q= Subject key identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC8790759A9EF5869A1405FEAFEA7C3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 185.204.228.0/22 IP: 2a0b:4c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 26 Jan 2026 22:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c8:79:07:59:a9:ef:58:69:a1:40:5f:ea:fe:a7:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b292094d691df4a7c38f16b75557e9c26d4ac692 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:98:37:9a:67:a8:91:a8:28:7f:2b:2c:87:59:dd: d0:a6:00:6d:59:a2:02:99:95:24:ae:1a:e5:13:22: 2d:c9:0c:d4:44:fb:f5:98:b8:92:d5:1f:f4:46:30: 79:ce:6d:e9:68:93:11:94:72:71:0c:bf:ce:93:bc: 90:40:71:d9:ef:f4:c3:f2:a5:39:cc:6e:ef:d1:34: 1d:fe:c2:3e:23:74:39:c2:b5:4d:a1:2d:6e:40:28: 43:5b:fc:52:d8:0f:b3:36:a7:57:0e:17:9f:83:ca: 1d:ad:c8:42:ed:66:13:8b:9f:d1:ac:74:08:c9:36: 84:70:e0:bb:c8:9d:7a:f4:55:b3:7f:55:c6:39:1e: 85:c9:4b:f6:d7:d9:13:67:04:a7:3c:7e:eb:4d:ad: a6:da:62:e7:79:34:87:13:84:0d:52:e8:fb:b9:f5: 48:8b:ec:40:0e:63:7d:d9:9d:e5:ad:34:97:d2:9c: 85:5a:9e:64:4b:04:4e:4a:87:43:18:e6:60:4a:a6: bf:4d:21:9f:70:a0:06:65:20:97:93:93:78:73:3d: c0:de:d5:1d:95:05:ec:cf:ae:8f:67:3c:58:7a:19: 7a:41:06:02:46:13:1e:06:85:c4:88:77:75:e6:5b: 17:29:48:de:52:b6:97:bb:b7:f7:c8:f7:18:0b:3a: e9:37 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B2:92:09:4D:69:1D:F4:A7:C3:8F:16:B7:55:57:E9:C2:6D:4A:C6:92 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/1b/e7b932-fc21-4a61-aef0-15a093e2bb8f/1/spIJTWkd9KfDjxa3VVfpwm1KxpI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.204.228.0/22 IPv6: 2a0b:4c0::/29 Signature Algorithm: sha256WithRSAEncryption 4e:4a:41:17:bd:6e:c1:4a:32:20:2e:0d:f7:66:13:dd:87:ea: ae:10:f9:26:c6:a0:64:a1:4f:c6:c2:05:c5:72:54:a7:ab:5a: a5:bd:5c:b3:1e:3e:be:b1:0e:a6:3d:98:a6:10:39:63:ed:35: f4:78:41:41:93:fc:4e:6b:f6:49:e5:ce:9c:b0:7c:a2:5c:eb: 30:3f:6d:69:aa:3e:35:67:91:2f:9a:88:d5:a7:70:64:35:88: 9f:ec:22:ac:d6:56:47:46:3b:53:e2:20:4a:62:48:6e:29:73: e8:88:29:94:23:32:40:4e:99:dc:5c:e3:ad:55:cc:f1:05:0c: 0f:c2:5e:52:48:06:3d:b4:fe:90:91:09:f0:d4:46:2e:e7:e2: 95:9d:a9:a5:cf:56:81:1a:30:47:fd:e0:26:1a:15:d7:74:95: 25:f4:1c:06:10:e9:76:07:58:11:e9:51:6a:f7:57:78:6f:8f: 28:d5:cf:17:a7:79:2f:47:c5:39:e2:73:09:4c:d2:01:5b:dd: 41:39:0e:0f:b6:c2:bf:7a:6f:8f:67:1f:10:bc:2e:ad:1a:5e: e9:bc:8a:ff:3a:d0:a4:9b:73:55:5c:c9:6b:b6:ba:38:c9:b9: fe:4e:4a:5c:1a:10:3e:94:2d:78:a1:09:ac:21:0e:bc:a5:9a: 16:8b:95:1e -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt6yHkHWanvWGmhQF/q/qfDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiMjkyMDk0ZDY5MWRmNGE3YzM4ZjE2Yjc1NTU3ZTljMjZkNGFjNjkyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmDeaZ6iRqCh/KyyHWd3QpgBtWaIC mZUkrhrlEyItyQzURPv1mLiS1R/0RjB5zm3paJMRlHJxDL/Ok7yQQHHZ7/TD8qU5 zG7v0TQd/sI+I3Q5wrVNoS1uQChDW/xS2A+zNqdXDhefg8odrchC7WYTi5/RrHQI yTaEcOC7yJ169FWzf1XGOR6FyUv219kTZwSnPH7rTa2m2mLneTSHE4QNUuj7ufVI i+xADmN92Z3lrTSX0pyFWp5kSwROSodDGOZgSqa/TSGfcKAGZSCXk5N4cz3A3tUd lQXsz66PZzxYehl6QQYCRhMeBoXEiHd15lsXKUjeUraXu7f3yPcYCzrpNwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFLKSCU1pHfSnw48Wt1VX6cJtSsaSMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzFiL2U3Yjkz Mi1mYzIxLTRhNjEtYWVmMC0xNWEwOTNlMmJiOGYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMWIvZTdiOTMy LWZjMjEtNGE2MS1hZWYwLTE1YTA5M2UyYmI4Zi8xL3NwSUpUV2tkOUtmRGp4YTNW VmZwd20xS3hwSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuczkMA0EAgACMAcDBQMqCwTAMA0GCSqGSIb3 DQEBCwUAA4IBAQBOSkEXvW7BSjIgLg33ZhPdh+quEPkmxqBkoU/GwgXFclSnq1ql vVyzHj6+sQ6mPZimEDlj7TX0eEFBk/xOa/ZJ5c6csHyiXOswP21pqj41Z5EvmojV p3BkNYif7CKs1lZHRjtT4iBKYkhuKXPoiCmUIzJATpncXOOtVczxBQwPwl5SSAY9 tP6QkQnw1EYu5+KVnamlz1aBGjBH/eAmGhXXdJUl9BwGEOl2B1gR6VFq91d4b48o 1c8Xp3kvR8U54nMJTNIBW91BOQ4PtsK/em+PZx8QvC6tGl7pvIr/OtCkm3NVXMlr tro4ybn+TkpcGhA+lC14oQmsIQ68pZoWi5Ue -----END CERTIFICATE-----Generated at Mon Jan 26 03:10:41 2026 by rpki-client