This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer File: tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.cer (raw, json) Hash identifier: ZfSuf4drxeTQWS7mU08c8ubtAG2GZapVYNg/9Djw0fY= Subject key identifier: B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A25E0A4E0A6FC7B10D976CC3546F63 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:17:45 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41493 AS: 48967 IP: 5.253.108.0/22 IP: 95.130.104.0/21 IP: 195.3.208.0/22 IP: 195.24.250.0/23 IP: 195.93.196.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 07:52:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:5e:0a:4e:0a:6f:c7:b1:0d:97:6c:c3:54:6f:63 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:17:45 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b55800300fa4017f970c95d767d812fd10d0dcbc Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ee:49:0c:d7:04:57:5c:49:f9:21:29:ac:de:b2: 99:b6:0e:c4:9d:59:81:a7:4c:64:47:c0:4d:c7:dd: b6:2e:4f:3c:a3:e7:fd:6f:31:92:c1:eb:0d:34:4c: bc:7e:ab:a5:bd:71:4e:68:7b:9b:8e:ad:27:03:64: 5c:db:3d:0e:df:b2:67:7e:b5:73:31:2c:c2:0e:aa: 9a:ae:ad:04:97:1d:df:ca:3e:6d:16:b7:12:96:d8: 38:a2:69:a1:1c:4b:a8:b0:f0:fc:6e:7c:6e:f0:a1: 02:3f:18:b1:91:57:6a:88:a6:84:07:12:0d:36:07: e8:1d:b1:08:56:51:01:65:e2:eb:74:25:5e:93:57: 9d:16:34:29:ed:bd:cb:c7:85:ea:1b:92:46:4a:e6: 4b:f2:5c:9f:24:be:01:f5:f8:81:2a:b2:30:84:08: aa:85:e2:91:0e:b2:14:2e:dd:cb:72:f2:8c:bd:b7: 83:e2:34:0b:21:fe:7b:57:6e:d4:f4:9b:10:e1:81: 23:50:47:2c:b4:ff:43:02:e4:d5:7d:d8:99:cd:44: 36:02:b2:41:ec:ba:58:fd:60:52:a7:db:c0:f4:a4: 40:43:c3:03:f4:5d:ad:7d:f3:d1:0e:c9:ae:41:66: 3d:bf:1a:af:b2:c3:d0:76:b8:89:98:4c:9f:89:16: f2:4f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B5:58:00:30:0F:A4:01:7F:97:0C:95:D7:67:D8:12:FD:10:D0:DC:BC X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e4/8a8487-931a-42fb-b664-c52df4aa521d/1/tVgAMA-kAX-XDJXXZ9gS_RDQ3Lw.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.253.108.0/22 95.130.104.0/21 195.3.208.0/22 195.24.250.0/23 195.93.196.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41493 48967 Signature Algorithm: sha256WithRSAEncryption 39:6d:b4:9c:14:ab:0e:09:8a:69:26:d4:0c:fc:75:87:d0:5d: 02:4d:c7:b8:7d:c4:34:64:25:f3:dc:09:07:cd:78:b1:d6:71: 76:9a:8e:1a:9f:35:a0:e2:cc:4d:23:20:c3:c6:ad:cb:ea:4a: 3c:b9:08:37:bb:a7:7b:37:15:d2:56:bf:93:8b:e8:78:ac:dd: f7:d7:14:e1:c9:a2:ef:67:93:dd:46:60:be:d6:e2:e5:41:e3: 76:57:f0:99:1d:0e:95:14:6f:10:3d:2b:41:84:64:59:99:c0: 85:cf:73:f3:42:93:cf:90:ce:e2:36:b6:aa:4f:2d:78:a4:1e: 65:ea:b5:26:64:6e:c3:bf:b0:85:dd:d2:6a:d8:e8:36:07:f0: 0a:19:09:f5:9c:af:bd:ca:a7:29:17:01:d8:68:b3:1b:2e:e9: 88:20:dd:69:eb:47:e5:dd:da:40:52:83:ed:1e:91:cb:1f:b5: a0:c9:9a:15:16:9f:22:74:8d:e6:3a:09:91:fc:61:52:80:43: 63:33:99:3b:94:83:fd:8c:ee:df:82:f9:08:b9:93:b9:ea:89: 0f:ba:c8:d0:dc:fd:db:d9:72:1d:a8:6a:ce:ab:bf:cf:b2:a8: b3:e4:63:a0:c1:3d:0d:ea:1e:40:38:20:d8:d4:56:c5:15:54: 2a:5f:41:e8 -----BEGIN CERTIFICATE----- MIIFsTCCBJmgAwIBAgISAZt4ol4KTgpvx7ENl2zDVG9jMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxNzQ1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiNTU4MDAzMDBmYTQwMTdmOTcwYzk1ZDc2N2Q4MTJmZDEwZDBkY2JjMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7kkM1wRXXEn5ISms3rKZtg7EnVmB p0xkR8BNx922Lk88o+f9bzGSwesNNEy8fqulvXFOaHubjq0nA2Rc2z0O37JnfrVz MSzCDqqarq0Elx3fyj5tFrcSltg4ommhHEuosPD8bnxu8KECPxixkVdqiKaEBxIN NgfoHbEIVlEBZeLrdCVek1edFjQp7b3Lx4XqG5JGSuZL8lyfJL4B9fiBKrIwhAiq heKRDrIULt3LcvKMvbeD4jQLIf57V27U9JsQ4YEjUEcstP9DAuTVfdiZzUQ2ArJB 7LpY/WBSp9vA9KRAQ8MD9F2tffPRDsmuQWY9vxqvssPQdriJmEyfiRbyTwIDAQAB o4ICvTCCArkwHQYDVR0OBBYEFLVYADAPpAF/lwyV12fYEv0Q0Ny8MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U0LzhhODQ4 Ny05MzFhLTQyZmItYjY2NC1jNTJkZjRhYTUyMWQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTQvOGE4NDg3 LTkzMWEtNDJmYi1iNjY0LWM1MmRmNGFhNTIxZC8xL3RWZ0FNQS1rQVgtWERKWFha OWdTX1JEUTNMdy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDcGCCsGAQUF BwEHAQH/BCgwJjAkBAIAATAeAwQCBf1sAwQDX4JoAwQCwwPQAwQBwxj6AwQBw13E MB8GCCsGAQUFBwEIAQH/BBAwDqAMMAoCAwCiFQIDAL9HMA0GCSqGSIb3DQEBCwUA A4IBAQA5bbScFKsOCYppJtQM/HWH0F0CTce4fcQ0ZCXz3AkHzXix1nF2mo4anzWg 4sxNIyDDxq3L6ko8uQg3u6d7NxXSVr+Ti+h4rN331xThyaLvZ5PdRmC+1uLlQeN2 V/CZHQ6VFG8QPStBhGRZmcCFz3PzQpPPkM7iNraqTy14pB5l6rUmZG7Dv7CF3dJq 2Og2B/AKGQn1nK+9yqcpFwHYaLMbLumIIN1p60fl3dpAUoPtHpHLH7WgyZoVFp8i dI3mOgmR/GFSgENjM5k7lIP9jO7fgvkIuZO56okPusjQ3P3b2XIdqGrOq7/Psqiz 5GOgwT0N6h5AOCDY1FbFFVQqX0Ho -----END CERTIFICATE-----Generated at Sun Jan 11 14:34:00 2026 by rpki-client