This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/iw2B8-Dy0Y87WQ3MU21elM_gcBI.cer File: iw2B8-Dy0Y87WQ3MU21elM_gcBI.cer (raw, json) Hash identifier: 9eHXkljLtSwje+U+OflijCzFYwnmXvxNm7ThQ+OkQ0o= Subject key identifier: 8B:0D:81:F3:E0:F2:D1:8F:3B:59:0D:CC:53:6D:5E:94:CF:E0:70:12 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F1399FC6EDB9F6BFB3C02D7913BE33E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/iw2B8-Dy0Y87WQ3MU21elM_gcBI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:19:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203690 AS: 204995 AS: 206502 IP: 45.13.220.0/22 IP: 78.108.212.0/22 IP: 185.184.8.0/22 IP: 2a0b:2180::/32 IP: 2a0d:11c0::/32 IP: 2a0e:7c00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 21:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:13:99:fc:6e:db:9f:6b:fb:3c:02:d7:91:3b:e3:3e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:19:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=8b0d81f3e0f2d18f3b590dcc536d5e94cfe07012 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ab:34:cb:b0:64:74:37:48:90:ff:37:08:27:5d: e8:e0:d6:df:35:ba:07:06:bc:05:c5:7c:c4:5b:2f: a9:52:2c:3f:0e:7d:28:db:aa:8f:ee:fe:97:23:2c: 3c:67:f3:5a:92:5a:90:0e:77:31:11:c7:ef:84:8d: 34:72:2d:b8:eb:f0:87:6c:08:d3:b2:d7:bb:61:b0: 67:fc:59:1a:83:1b:ee:9b:7a:d7:d8:bb:d5:f6:9e: bd:83:ab:ee:42:8c:6c:e4:c2:0f:06:90:22:67:2f: b5:d7:63:1d:48:bd:a6:1e:da:63:d9:fb:47:4f:06: 0a:03:f8:4c:89:43:7f:5a:d4:5a:cd:00:d9:03:ff: dc:51:65:cc:43:4f:25:f6:d6:2f:8d:9b:e4:09:79: 7e:1c:9d:f5:85:a6:52:21:cd:18:e8:eb:30:bf:6e: fe:29:e8:0c:ff:1a:50:c7:dd:8c:62:59:ab:ed:28: 13:a8:8f:7c:09:a1:57:32:81:1c:c3:8e:b0:60:a6: 30:3d:7c:91:d6:63:7f:0b:ac:a4:2f:de:5f:bc:43: 72:6c:c3:08:29:49:9a:06:f0:7d:fe:d9:8c:b3:5b: 96:c0:9a:f4:6a:b5:39:a6:ba:8a:59:3e:e1:4b:2f: d0:2a:83:65:fd:3d:59:f1:94:2d:94:6d:6a:4f:6e: ab:2d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 8B:0D:81:F3:E0:F2:D1:8F:3B:59:0D:CC:53:6D:5E:94:CF:E0:70:12 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/64/0517f9-9a1e-4600-b043-f6541f778585/1/iw2B8-Dy0Y87WQ3MU21elM_gcBI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.13.220.0/22 78.108.212.0/22 185.184.8.0/22 IPv6: 2a0b:2180::/32 2a0d:11c0::/32 2a0e:7c00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203690 204995 206502 Signature Algorithm: sha256WithRSAEncryption 00:ba:9b:61:96:ac:03:b4:2e:71:32:ee:f6:bd:3d:49:76:ee: 92:6d:ed:65:87:f1:5d:df:88:07:71:19:3b:2a:f5:b9:3f:fb: 77:de:d9:ff:10:f4:1e:e3:20:5a:c1:1a:44:63:0b:a7:eb:b4: 11:16:f5:49:75:f5:a3:b5:f8:1f:bf:b4:af:af:f0:a3:8f:6e: 63:9f:40:78:e1:6c:bd:fe:81:c7:61:dc:23:11:27:9f:e3:78: 53:18:c1:5d:b1:5a:8a:16:a7:ca:b7:e1:43:07:d2:37:72:2e: 3e:66:06:0d:2a:ee:25:b9:03:2d:f9:60:e7:ed:3f:86:f5:19: a2:24:85:52:b4:1c:f8:7d:40:ea:75:7b:dd:61:3f:7c:82:0c: 0b:44:a7:7a:3d:b6:04:4f:c0:ba:f4:bc:a7:03:55:7b:4f:12: 8e:b2:24:48:70:d2:32:cd:75:92:51:47:da:a4:a6:03:8c:8d: f0:0a:93:de:3f:82:23:cf:1e:09:ce:29:3b:f2:ce:5d:85:a1: 32:a7:ad:6b:8a:c9:73:1a:a6:4b:e0:f2:d5:4a:67:c0:2d:54: 59:90:ed:e1:60:3e:9d:ec:66:23:fd:b0:01:2d:ab:05:da:a0: 3b:86:1c:2a:df:db:40:26:04:6e:17:dd:de:72:03:4d:5b:15: 12:2b:42:f2 -----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgISAZt/E5n8btufa/s8AteRO+M+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQxOTA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg4YjBkODFmM2UwZjJkMThmM2I1OTBkY2M1MzZkNWU5NGNmZTA3MDEyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqzTLsGR0N0iQ/zcIJ13o4NbfNboH BrwFxXzEWy+pUiw/Dn0o26qP7v6XIyw8Z/NaklqQDncxEcfvhI00ci246/CHbAjT ste7YbBn/Fkagxvum3rX2LvV9p69g6vuQoxs5MIPBpAiZy+112MdSL2mHtpj2ftH TwYKA/hMiUN/WtRazQDZA//cUWXMQ08l9tYvjZvkCXl+HJ31haZSIc0Y6Oswv27+ KegM/xpQx92MYlmr7SgTqI98CaFXMoEcw46wYKYwPXyR1mN/C6ykL95fvENybMMI KUmaBvB9/tmMs1uWwJr0arU5prqKWT7hSy/QKoNl/T1Z8ZQtlG1qT26rLQIDAQAB o4IC0zCCAs8wHQYDVR0OBBYEFIsNgfPg8tGPO1kNzFNtXpTP4HASMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzY0LzA1MTdm OS05YTFlLTQ2MDAtYjA0My1mNjU0MWY3Nzg1ODUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjQvMDUxN2Y5 LTlhMWUtNDYwMC1iMDQzLWY2NTQxZjc3ODU4NS8xL2l3MkI4LUR5MFk4N1dRM01V MjFlbE1fZ2NCSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEgGCCsGAQUF BwEHAQH/BDkwNzAYBAIAATASAwQCLQ3cAwQCTmzUAwQCubgIMBsEAgACMBUDBQAq CyGAAwUAKg0RwAMFAyoOfAAwJAYIKwYBBQUHAQgBAf8EFTAToBEwDwIDAxuqAgMD IMMCAwMmpjANBgkqhkiG9w0BAQsFAAOCAQEAALqbYZasA7QucTLu9r09SXbukm3t ZYfxXd+IB3EZOyr1uT/7d97Z/xD0HuMgWsEaRGMLp+u0ERb1SXX1o7X4H7+0r6/w o49uY59AeOFsvf6Bx2HcIxEnn+N4UxjBXbFaihanyrfhQwfSN3IuPmYGDSruJbkD Lflg5+0/hvUZoiSFUrQc+H1A6nV73WE/fIIMC0Snej22BE/AuvS8pwNVe08SjrIk SHDSMs11klFH2qSmA4yN8AqT3j+CI88eCc4pO/LOXYWhMqeta4rJcxqmS+Dy1Upn wC1UWZDt4WA+nexmI/2wAS2rBdqgO4YcKt/bQCYEbhfd3nIDTVsVEitC8g== -----END CERTIFICATE-----Generated at Sat Jan 3 02:33:28 2026 by rpki-client