This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dIZPUCPsYmPvnxb5AYf18oBh0RU.cer File: dIZPUCPsYmPvnxb5AYf18oBh0RU.cer (raw, json) Hash identifier: jQAXh3PxkEuFQzTBA0tym5jzi0u3Ik9sbF9Hr5dhby8= Subject key identifier: 74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5D35D8BE2FB4EA334E3AF3AB815405 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:20:19 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 198470 IP: 91.235.82.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5d:35:d8:be:2f:b4:ea:33:4e:3a:f3:ab:81:54:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:20:19 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=74864f5023ec6263ef9f16f90187f5f28061d115 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:c3:22:02:ba:25:12:9a:3b:8b:dd:e6:10:0d: 81:91:5e:38:c3:18:5f:31:5a:1a:fe:0b:98:86:54: 7b:64:ef:5d:86:9e:22:42:3e:e7:ec:ca:e3:6b:92: 6a:c9:36:b7:d2:76:85:c5:13:20:a1:6d:bd:3d:35: 61:52:a5:2c:c0:78:f6:5a:eb:d1:c2:95:1d:b9:ac: 25:0d:2c:2f:2f:e3:5b:af:8b:17:8c:f7:9a:1c:2d: 99:2b:9d:3e:d2:c2:82:91:a0:63:a0:f7:ce:3e:b9: 6c:11:17:c1:0e:6c:7d:7a:82:f0:ab:85:0a:e4:f8: 90:1f:ef:18:16:32:ca:ee:c2:00:ab:83:be:e6:5d: 8e:a5:d2:a7:45:84:79:68:6d:7c:6e:a8:a2:0f:5f: c1:c7:96:08:f8:8c:d6:01:1c:3a:ab:a5:67:a3:5a: 25:ae:9f:07:ca:9e:19:43:ca:3c:20:c2:f8:52:66: 8e:3c:56:cd:6f:d5:01:75:f9:a7:17:72:78:f2:d7: e1:07:a4:8c:b9:d1:fc:4d:8b:3c:91:74:4c:6d:16: b6:01:8a:4a:1e:36:f7:0a:f1:f5:e6:7e:76:e4:c8: 5f:40:dd:0b:22:06:ae:7f:39:f4:59:e9:0b:a9:22: 5f:e0:be:62:af:55:71:0f:08:52:5e:26:5f:74:f4: dc:e1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 74:86:4F:50:23:EC:62:63:EF:9F:16:F9:01:87:F5:F2:80:61:D1:15 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/0ca4df-2e06-4406-9688-78f02805c709/1/dIZPUCPsYmPvnxb5AYf18oBh0RU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.235.82.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 198470 Signature Algorithm: sha256WithRSAEncryption 69:94:16:50:1c:de:3d:fb:4f:7c:be:82:22:0f:85:0f:42:e2: db:20:48:13:06:ac:3d:44:f3:b0:ba:c7:ad:45:9a:72:3c:da: 97:27:95:64:ef:2a:b6:b9:96:90:00:08:59:5e:08:c3:e0:3b: 6e:fa:30:02:b1:92:fa:b1:53:6d:19:a1:3c:5f:93:6d:df:e9: df:4e:e9:c6:b5:b3:90:5f:ed:7b:ef:39:8b:ae:53:18:54:64: 90:bb:ef:e2:a5:da:25:72:29:68:72:e1:ee:8f:e9:8b:28:2d: 33:ff:f1:49:1c:b1:48:e9:ac:f6:ec:51:36:a9:92:cd:9c:d5: 26:3f:1b:65:55:61:7d:b6:3e:e9:c4:6e:08:55:e0:94:77:4d: 93:7f:1d:b7:a0:d4:ab:25:01:82:cf:9f:36:bc:b8:8e:21:64: 4f:91:97:97:22:71:85:35:9d:57:a9:c1:0a:3e:6e:e4:ea:99: 45:fb:96:c2:0d:d8:2c:d8:27:ac:3e:57:63:96:ff:02:3e:3a: b1:27:c4:16:8b:ae:dc:6c:8b:59:3d:14:d1:5b:30:41:3f:ab: 36:7c:66:44:16:53:e8:1d:84:fc:92:4f:ac:20:38:a0:6f:a1: 23:5c:3b:cf:63:31:fd:55:3b:22:bd:d5:c2:d8:4d:9c:85:0c: bc:8e:c1:7e -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt9XTXYvi+06jNOOvOrgVQFMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYyMDE5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg3NDg2NGY1MDIzZWM2MjYzZWY5ZjE2ZjkwMTg3ZjVmMjgwNjFkMTE1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwsMiArolEpo7i93mEA2BkV44wxhf MVoa/guYhlR7ZO9dhp4iQj7n7Mrja5JqyTa30naFxRMgoW29PTVhUqUswHj2WuvR wpUduawlDSwvL+Nbr4sXjPeaHC2ZK50+0sKCkaBjoPfOPrlsERfBDmx9eoLwq4UK 5PiQH+8YFjLK7sIAq4O+5l2OpdKnRYR5aG18bqiiD1/Bx5YI+IzWARw6q6Vno1ol rp8Hyp4ZQ8o8IML4UmaOPFbNb9UBdfmnF3J48tfhB6SMudH8TYs8kXRMbRa2AYpK Hjb3CvH15n525MhfQN0LIgaufzn0WekLqSJf4L5ir1VxDwhSXiZfdPTc4QIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFHSGT1Aj7GJj758W+QGH9fKAYdEVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAxLzBjYTRk Zi0yZTA2LTQ0MDYtOTY4OC03OGYwMjgwNWM3MDkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEvMGNhNGRm LTJlMDYtNDQwNi05Njg4LTc4ZjAyODA1YzcwOS8xL2RJWlBVQ1BzWW1Qdm54YjVB WWYxOG9CaDBSVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW+tSMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMHRjANBgkqhkiG9w0BAQsFAAOCAQEAaZQWUBzePftPfL6CIg+FD0Li2yBIEwas PUTzsLrHrUWacjzalyeVZO8qtrmWkAAIWV4Iw+A7bvowArGS+rFTbRmhPF+Tbd/p 307pxrWzkF/te+85i65TGFRkkLvv4qXaJXIpaHLh7o/piygtM//xSRyxSOms9uxR NqmSzZzVJj8bZVVhfbY+6cRuCFXglHdNk38dt6DUqyUBgs+fNry4jiFkT5GXlyJx hTWdV6nBCj5u5OqZRfuWwg3YLNgnrD5XY5b/Aj46sSfEFouu3GyLWT0U0VswQT+r NnxmRBZT6B2E/JJPrCA4oG+hI1w7z2Mx/VU7Ir3VwthNnIUMvI7Bfg== -----END CERTIFICATE-----Generated at Sat Jan 3 03:54:17 2026 by rpki-client