This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q2TJrlviZApf1pRYanBMo0wgh78.cer File: q2TJrlviZApf1pRYanBMo0wgh78.cer (raw, json) Hash identifier: FWPuUigwLsdMv7YYQPzlYwoGvFil7WWp9bcKDC49GVg= Subject key identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B783497AF641685EF7DD75DDCBE82DD7A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:17:51 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 20815 IP: 80.64.32.0/20 IP: 2a00:5c00::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 13 Jan 2026 03:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:97:af:64:16:85:ef:7d:d7:5d:dc:be:82:dd:7a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:17:51 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab64c9ae5be2640a5fd694586a704ca34c2087bf Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bc:14:5e:d5:22:a3:c9:24:f7:e3:78:ca:c1:93: 86:c2:98:5b:22:2a:d7:6d:9e:32:79:04:d5:e4:ef: 6a:d7:7a:df:37:96:0d:49:54:f9:5a:fc:85:e1:14: 82:bb:d5:67:a0:8d:81:33:57:64:83:a9:c9:f9:b1: db:98:4d:e0:33:54:bf:00:67:52:79:3f:84:a5:fb: 23:1d:c8:6c:78:04:14:7e:f3:55:9d:8b:d6:ca:80: ab:f4:32:22:29:a0:93:34:64:ce:a8:c0:d0:5a:e8: dd:d3:59:d2:36:fc:4b:50:25:59:77:d0:26:b6:02: 49:91:51:99:16:5d:be:a2:2d:1c:a9:15:b2:8e:ca: d8:69:11:88:c2:a1:3d:ff:08:08:de:de:8e:ef:a8: 97:59:e6:a5:14:85:4f:29:4e:0f:66:b0:c2:bd:89: f3:6c:76:74:c6:56:b1:46:ae:33:e7:7d:fb:77:54: ff:ef:3c:dd:70:06:50:ab:82:76:ad:b0:9c:b7:9d: 6f:20:39:8f:e2:ae:51:49:62:98:f7:b9:e5:41:ba: b5:f3:09:c2:a0:65:fa:c6:4e:45:88:2c:82:9b:5f: 9f:42:63:fb:8e:d6:17:43:08:94:3e:43:fb:9f:5f: a5:87:94:d1:a8:71:ca:07:87:db:f2:e1:2e:a2:39: fb:71 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:64:C9:AE:5B:E2:64:0A:5F:D6:94:58:6A:70:4C:A3:4C:20:87:BF X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/10/c55cbc-e43d-40cb-844f-31c5137ec38a/1/q2TJrlviZApf1pRYanBMo0wgh78.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.64.32.0/20 IPv6: 2a00:5c00::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 20815 Signature Algorithm: sha256WithRSAEncryption 52:23:7a:f5:06:e4:73:42:cf:44:5b:fd:99:14:8d:03:fd:ed: 8c:b7:8c:59:bc:04:28:4a:0c:e6:b9:68:33:86:73:e9:22:1c: 51:9c:40:2c:6a:3c:8d:ac:c4:cc:46:be:7d:49:84:e1:4a:2f: 77:e2:31:97:67:24:5d:20:db:4c:22:09:1c:5c:77:ad:99:22: 8e:4a:c5:16:52:15:f9:c4:fc:2e:27:db:56:29:81:9b:e4:a6: e2:2e:a5:c9:f1:da:fb:cf:6b:ae:28:02:09:82:54:70:39:3a: ce:70:eb:3e:2b:1b:29:43:19:f3:de:45:bb:5d:03:dc:8b:ed: 58:43:bc:01:99:77:38:55:80:1b:05:53:09:e1:37:6b:81:b5: 3c:23:56:4f:bb:ad:51:74:bc:9e:a7:1e:d0:79:6c:dc:d2:6a: 08:1d:f4:ea:ca:47:c6:5d:25:fb:8b:f0:a9:61:95:57:11:8d: 75:29:e7:48:b5:90:35:a6:1d:38:01:7c:f2:64:87:56:9a:23: 65:60:ed:63:b4:e4:c9:22:3c:d8:8d:77:56:87:4b:00:52:28: e6:f7:ee:a6:6e:3f:79:cd:0c:51:46:1d:92:f0:aa:9d:fa:4b: 37:eb:76:65:5e:04:73:a3:1c:51:95:f0:62:31:e0:34:a3:7e: e3:9e:dc:c5 -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgISAZt4NJevZBaF733XXdy+gt16MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxNzUxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjY0YzlhZTViZTI2NDBhNWZkNjk0NTg2YTcwNGNhMzRjMjA4N2JmMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvBRe1SKjyST343jKwZOGwphbIirX bZ4yeQTV5O9q13rfN5YNSVT5WvyF4RSCu9VnoI2BM1dkg6nJ+bHbmE3gM1S/AGdS eT+EpfsjHchseAQUfvNVnYvWyoCr9DIiKaCTNGTOqMDQWujd01nSNvxLUCVZd9Am tgJJkVGZFl2+oi0cqRWyjsrYaRGIwqE9/wgI3t6O76iXWealFIVPKU4PZrDCvYnz bHZ0xlaxRq4z5337d1T/7zzdcAZQq4J2rbCct51vIDmP4q5RSWKY97nlQbq18wnC oGX6xk5FiCyCm1+fQmP7jtYXQwiUPkP7n1+lh5TRqHHKB4fb8uEuojn7cQIDAQAB o4ICrjCCAqowHQYDVR0OBBYEFKtkya5b4mQKX9aUWGpwTKNMIIe/MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEwL2M1NWNi Yy1lNDNkLTQwY2ItODQ0Zi0zMWM1MTM3ZWMzOGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTAvYzU1Y2Jj LWU0M2QtNDBjYi04NDRmLTMxYzUxMzdlYzM4YS8xL3EyVEpybHZpWkFwZjFwUllh bkJNbzB3Z2g3OC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQEUEAgMA0EAgACMAcDBQAqAFwAMBkGCCsGAQUF BwEIAQH/BAowCKAGMAQCAlFPMA0GCSqGSIb3DQEBCwUAA4IBAQBSI3r1BuRzQs9E W/2ZFI0D/e2Mt4xZvAQoSgzmuWgzhnPpIhxRnEAsajyNrMTMRr59SYThSi934jGX ZyRdINtMIgkcXHetmSKOSsUWUhX5xPwuJ9tWKYGb5KbiLqXJ8dr7z2uuKAIJglRw OTrOcOs+KxspQxnz3kW7XQPci+1YQ7wBmXc4VYAbBVMJ4TdrgbU8I1ZPu61RdLye px7QeWzc0moIHfTqykfGXSX7i/CpYZVXEY11KedItZA1ph04AXzyZIdWmiNlYO1j tOTJIjzYjXdWh0sAUijm9+6mbj95zQxRRh2S8Kqd+ks363ZlXgRzoxxRlfBiMeA0 o37jntzF -----END CERTIFICATE-----Generated at Mon Jan 12 10:30:20 2026 by rpki-client