This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/rjRcTQnm4iTh2vRmV9PHEYewIjY.cer File: rjRcTQnm4iTh2vRmV9PHEYewIjY.cer (raw, json) Hash identifier: UcjIiutlBcMwPpRJrZ4yaGF411hXoG1v7vcVjTiID84= Subject key identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCA67C11590B404CF1E77308F932947 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:19:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206409 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 02:42:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:67:c1:15:90:b4:04:cf:1e:77:30:8f:93:29:47 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:19:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ae345c4d09e6e224e1daf46657d3c71187b02236 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a0:05:8d:9e:97:f7:cd:60:10:33:22:83:cd:39: 2a:69:99:f9:d5:60:bc:8f:a4:25:a3:80:5a:3a:19: 69:fd:cd:e1:c3:c0:21:a3:13:a4:d3:46:00:b7:b0: 68:e8:f2:ab:12:40:75:37:3d:eb:69:0e:38:d1:f5: 64:79:d5:98:77:03:9d:a3:9d:95:53:1b:88:54:fc: 1d:6c:f4:a0:90:6a:7a:29:06:15:bc:dd:5d:53:b5: 4a:3e:4d:83:51:1f:68:66:ba:b5:48:f3:d3:2a:f9: db:27:57:b4:28:fa:79:0f:04:94:48:15:85:ac:53: 21:94:eb:d5:40:a7:b7:47:aa:de:5d:ed:bb:0e:21: 67:97:c8:00:8d:2d:f6:d2:f6:c0:17:60:0a:f6:d3: ac:f2:c7:b3:cc:85:73:8f:83:25:39:4e:ac:d6:6a: a8:ae:f6:05:36:0d:31:52:0e:38:8b:57:83:75:a3: 27:6f:1b:3c:f6:ce:b6:65:01:4b:af:cb:5a:e4:37: 17:8c:97:10:e4:66:f8:df:a2:62:fb:45:f5:a0:af: 2a:87:ea:fa:6a:3b:26:2c:bd:a3:b1:71:44:ac:8e: b5:e9:56:4c:71:58:d0:33:43:0b:68:6b:33:ac:66: 88:37:72:68:96:50:24:35:3e:43:32:2f:5c:c8:39: c8:c9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AE:34:5C:4D:09:E6:E2:24:E1:DA:F4:66:57:D3:C7:11:87:B0:22:36 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f4/21a53c-63ef-4fc5-9549-3bf61779ddc7/1/rjRcTQnm4iTh2vRmV9PHEYewIjY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 206409 Signature Algorithm: sha256WithRSAEncryption 34:1a:04:fd:59:36:8e:59:09:de:16:91:ff:37:03:69:29:37: dd:f9:3a:29:f2:91:63:80:d3:b1:f9:1a:a0:31:5e:88:3e:61: 19:5b:ad:1c:69:ef:8c:ee:e5:58:7d:16:42:a6:59:c1:24:e9: cc:da:28:e7:b8:1c:35:30:5b:65:31:a3:9f:56:fb:59:e5:73: 8a:d9:71:4e:f1:5b:df:d3:74:2b:74:8d:5e:f8:72:5a:54:96: ee:f5:4a:da:4f:ef:a7:fe:fe:03:5e:6c:01:42:e6:8e:b3:8e: 90:e1:d8:f2:d7:c3:ff:b0:6f:bc:65:e6:04:1c:7c:37:04:09: e5:d7:fa:cc:77:21:75:bc:c5:51:f7:a2:21:d3:f6:d9:33:52: de:63:c7:1f:d0:63:d6:de:94:08:0f:5d:a2:cf:c5:ce:58:55: 54:b9:6f:09:34:4a:9c:48:af:de:ac:9c:3f:22:86:7d:58:aa: dc:5e:06:21:5c:0c:cc:1c:9b:99:89:d5:04:d6:f7:6e:2f:87: 6e:5e:9f:4f:f2:35:53:bc:49:a1:19:3d:46:7e:a9:e7:24:33: 2a:5c:b4:bc:a4:a7:aa:41:1b:ff:02:57:8d:32:ea:34:9b:89: 05:4c:ab:71:51:7e:e4:83:69:4c:ed:d4:06:71:4e:8f:62:6c: be:33:9b:76 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt9ymfBFZC0BM8edzCPkylHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgxOTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhZTM0NWM0ZDA5ZTZlMjI0ZTFkYWY0NjY1N2QzYzcxMTg3YjAyMjM2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoAWNnpf3zWAQMyKDzTkqaZn51WC8 j6Qlo4BaOhlp/c3hw8AhoxOk00YAt7Bo6PKrEkB1Nz3raQ440fVkedWYdwOdo52V UxuIVPwdbPSgkGp6KQYVvN1dU7VKPk2DUR9oZrq1SPPTKvnbJ1e0KPp5DwSUSBWF rFMhlOvVQKe3R6reXe27DiFnl8gAjS320vbAF2AK9tOs8sezzIVzj4MlOU6s1mqo rvYFNg0xUg44i1eDdaMnbxs89s62ZQFLr8ta5DcXjJcQ5Gb436Ji+0X1oK8qh+r6 ajsmLL2jsXFErI616VZMcVjQM0MLaGszrGaIN3JollAkNT5DMi9cyDnIyQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFK40XE0J5uIk4dr0ZlfTxxGHsCI2MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y0LzIxYTUz Yy02M2VmLTRmYzUtOTU0OS0zYmY2MTc3OWRkYzcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjQvMjFhNTNj LTYzZWYtNGZjNS05NTQ5LTNiZjYxNzc5ZGRjNy8xL3JqUmNUUW5tNGlUaDJ2Um1W OVBIRVlld0lqWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMmSTANBgkqhkiG9w0BAQsFAAOCAQEANBoE/Vk2jlkJ 3haR/zcDaSk33fk6KfKRY4DTsfkaoDFeiD5hGVutHGnvjO7lWH0WQqZZwSTpzNoo 57gcNTBbZTGjn1b7WeVzitlxTvFb39N0K3SNXvhyWlSW7vVK2k/vp/7+A15sAULm jrOOkOHY8tfD/7BvvGXmBBx8NwQJ5df6zHchdbzFUfeiIdP22TNS3mPHH9Bj1t6U CA9dos/FzlhVVLlvCTRKnEiv3qycPyKGfViq3F4GIVwMzBybmYnVBNb3bi+Hbl6f T/I1U7xJoRk9Rn6p5yQzKly0vKSnqkEb/wJXjTLqNJuJBUyrcVF+5INpTO3UBnFO j2JsvjObdg== -----END CERTIFICATE-----Generated at Mon Jan 12 05:35:55 2026 by rpki-client