This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tATMDgOOsOaX7G565J0ChhRuDBo.cer File: tATMDgOOsOaX7G565J0ChhRuDBo.cer (raw, json) Hash identifier: DgR2J0qmOnIPLzgifbPJwhvIup3l+rJKH9PMvF7sOAk= Subject key identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019A78AC8BC0A63C62102F58DD68B865790F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Wed 12 Nov 2025 15:26:05 +0000 Certificate not after: Wed 01 Jul 2026 00:00:00 +0000 Subordinate resources: AS: 58026 IP: 74.122.24.0/22 IP: 103.124.182.0/23 IP: 103.250.172.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sun 07 Dec 2025 02:00:29 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9a:78:ac:8b:c0:a6:3c:62:10:2f:58:dd:68:b8:65:79:0f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Nov 12 15:26:05 2025 GMT Not After : Jul 1 00:00:00 2026 GMT Subject: CN=b404cc0e038eb0e697ec6e7ae49d0286146e0c1a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ad:b9:3e:99:09:8a:81:e7:e8:7e:14:21:ca:0c: 6b:9b:85:eb:7c:b0:f2:b6:e7:d8:7a:4a:12:1c:b2: d6:38:a3:66:a2:20:0e:a2:f0:5c:dc:68:b4:56:35: 01:4d:8d:db:d0:64:2c:23:06:5e:d7:fe:72:45:a6: ca:d9:1b:00:6e:03:cc:1f:1b:7d:c5:92:cb:3f:c8: f1:5a:19:c5:5d:e9:86:48:01:f1:4c:1d:a4:16:6f: bc:64:19:34:25:5f:ed:23:92:72:b5:79:7e:a2:16: 4f:4d:19:70:15:77:9b:84:a2:20:d5:f9:33:e0:63: 85:e6:33:47:86:d3:1d:e8:84:69:e0:a1:71:cd:9a: 3f:85:94:f7:56:c1:fb:6a:a5:12:cb:2a:f9:36:39: 31:3f:d8:7b:b6:bb:3c:2a:9a:b2:29:97:93:74:9c: 92:30:f0:65:5c:32:5a:b4:b9:f4:e1:3a:35:91:03: d6:f8:05:d0:0e:dc:19:94:8d:04:69:c8:77:82:f6: d7:dc:2b:b3:11:65:a8:e1:82:e8:42:ce:bb:01:3a: 93:57:3b:c6:67:ab:6a:a1:71:34:ce:a3:62:72:31: 60:ac:82:43:d6:fc:5d:57:44:d4:09:aa:af:3c:35: d7:c2:75:f6:f0:b5:4d:ac:7e:3f:1b:7d:04:88:fb: 67:1f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B4:04:CC:0E:03:8E:B0:E6:97:EC:6E:7A:E4:9D:02:86:14:6E:0C:1A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/abe16b-92cc-48e3-b5b9-86a2f067b4e8/1/tATMDgOOsOaX7G565J0ChhRuDBo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 74.122.24.0/22 103.124.182.0/23 103.250.172.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 58026 Signature Algorithm: sha256WithRSAEncryption 47:d5:32:ef:cb:01:2f:07:f5:c5:db:2d:aa:7c:7a:e8:bf:5e: d0:ac:6d:d7:43:d4:2b:30:a8:7f:a6:51:2c:9c:e4:83:fc:84: c8:85:d1:c4:63:69:9a:69:78:4c:0a:72:ef:c0:da:25:6c:97: 3a:31:fe:1d:ad:16:81:42:02:7c:bb:44:e1:d1:b3:b2:04:be: cb:31:c7:e5:81:9f:3a:dc:37:28:91:97:19:c6:9b:bc:8b:dc: f9:f1:db:81:78:ba:d9:6d:f3:84:3c:45:1a:11:76:cd:94:13: 3d:66:43:4c:ae:59:10:09:ba:c9:30:d1:a8:92:0e:12:7e:aa: 64:13:ed:05:6a:be:4e:17:9d:dd:c1:b3:1b:c7:2f:e5:97:4b: 09:5c:7d:60:4d:f6:c6:2e:3c:70:3e:3c:ef:a0:1a:04:23:8b: 2e:e1:32:e2:32:0a:40:f9:d4:bb:2d:9a:bb:2f:da:fa:07:14: a3:c2:b5:66:33:7e:7c:98:52:73:32:68:ce:4f:bf:2c:5c:c8: 8d:7d:80:06:33:db:8d:00:f9:46:e4:26:26:7c:6e:2c:cd:53: 73:07:95:a8:df:48:32:e0:2f:c4:a1:8f:93:d4:c6:5e:90:8d: d1:65:8b:82:83:8f:e7:f2:9f:d7:63:b9:30:97:74:5a:56:bb: 75:5a:cf:8a -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgISAZp4rIvApjxiEC9Y3Wi4ZXkPMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjUxMTEyMTUyNjA1WhcNMjYwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNDA0Y2MwZTAzOGViMGU2OTdlYzZlN2FlNDlkMDI4NjE0NmUwYzFhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArbk+mQmKgefofhQhygxrm4XrfLDy tufYekoSHLLWOKNmoiAOovBc3Gi0VjUBTY3b0GQsIwZe1/5yRabK2RsAbgPMHxt9 xZLLP8jxWhnFXemGSAHxTB2kFm+8ZBk0JV/tI5JytXl+ohZPTRlwFXebhKIg1fkz 4GOF5jNHhtMd6IRp4KFxzZo/hZT3VsH7aqUSyyr5NjkxP9h7trs8KpqyKZeTdJyS MPBlXDJatLn04To1kQPW+AXQDtwZlI0Each3gvbX3CuzEWWo4YLoQs67ATqTVzvG Z6tqoXE0zqNicjFgrIJD1vxdV0TUCaqvPDXXwnX28LVNrH4/G30EiPtnHwIDAQAB o4ICrDCCAqgwHQYDVR0OBBYEFLQEzA4DjrDml+xueuSdAoYUbgwaMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg4L2FiZTE2 Yi05MmNjLTQ4ZTMtYjViOS04NmEyZjA2N2I0ZTgvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODgvYWJlMTZi LTkyY2MtNDhlMy1iNWI5LTg2YTJmMDY3YjRlOC8xL3RBVE1EZ09Pc09hWDdHNTY1 SjBDaGhSdURCby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAATASAwQCSnoYAwQBZ3y2AwQCZ/qsMBoGCCsGAQUFBwEI AQH/BAswCaAHMAUCAwDiqjANBgkqhkiG9w0BAQsFAAOCAQEAR9Uy78sBLwf1xdst qnx66L9e0Kxt10PUKzCof6ZRLJzkg/yEyIXRxGNpmml4TApy78DaJWyXOjH+Ha0W gUICfLtE4dGzsgS+yzHH5YGfOtw3KJGXGcabvIvc+fHbgXi62W3zhDxFGhF2zZQT PWZDTK5ZEAm6yTDRqJIOEn6qZBPtBWq+Thed3cGzG8cv5ZdLCVx9YE32xi48cD48 76AaBCOLLuEy4jIKQPnUuy2auy/a+gcUo8K1ZjN+fJhSczJozk+/LFzIjX2ABjPb jQD5RuQmJnxuLM1TcweVqN9IMuAvxKGPk9TGXpCN0WWLgoOP5/Kf12O5MJd0Wla7 dVrPig== -----END CERTIFICATE-----Generated at Sat Dec 6 06:38:31 2025 by rpki-client