This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/q5qrE0J62MAHKuCNm7gKvBnT-YQ.cer File: q5qrE0J62MAHKuCNm7gKvBnT-YQ.cer (raw, json) Hash identifier: +ftzkTOuEplJ0OSKZaCOwIcUnyKOUL3uioBAxWXCeVI= Subject key identifier: AB:9A:AB:13:42:7A:D8:C0:07:2A:E0:8D:9B:B8:0A:BC:19:D3:F9:84 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B797EF10898D4D460B9946B08E63D1ED8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8d/eb9582-d275-497a-b62b-39260319c7bd/1/q5qrE0J62MAHKuCNm7gKvBnT-YQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8d/eb9582-d275-497a-b62b-39260319c7bd/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 12:18:41 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 215783 IP: 185.141.152.0/22 IP: 2a07:2440::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 18:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:7e:f1:08:98:d4:d4:60:b9:94:6b:08:e6:3d:1e:d8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 12:18:41 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=ab9aab13427ad8c0072ae08d9bb80abc19d3f984 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9f:0c:7a:ef:65:e1:53:49:10:95:e8:d1:6f:4b: 6e:08:c8:b4:a1:e3:a8:55:b9:ce:d1:a1:07:03:cf: 4d:cb:73:83:36:49:4b:de:de:d8:4e:73:32:b0:72: b6:a6:2c:2c:29:f7:81:1e:a4:b7:72:46:72:cd:c4: 00:83:a3:e9:29:77:46:f5:12:85:af:0c:f3:00:dc: 72:e3:63:d9:56:13:19:aa:2d:fb:27:28:8f:75:46: 88:9e:c5:93:4f:91:0f:53:cd:44:ab:94:97:95:96: 52:93:94:01:50:da:ac:69:5b:98:f4:08:69:dc:5a: b9:e6:01:ab:ee:58:da:5c:af:bb:be:6f:86:b8:d2: 02:a0:e2:71:bf:f2:dd:da:bc:ed:16:d8:6c:6a:be: a4:99:8c:b3:10:ba:6c:b9:28:b1:2b:6e:33:be:5c: 8c:f1:c1:09:08:a0:58:51:a7:49:c0:06:a2:de:3e: cf:00:5f:45:74:7a:ff:a1:11:df:35:6b:db:70:cf: 6d:59:43:e1:15:ca:e1:8b:44:89:a7:17:77:7e:2c: 6e:3d:96:1d:bf:6c:6e:6b:a9:76:fc:c8:2a:63:64: 89:45:32:49:66:0c:44:51:44:66:0b:f0:26:43:83: 70:36:87:04:9b:20:e5:72:09:a4:60:82:91:94:48: dd:e3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: AB:9A:AB:13:42:7A:D8:C0:07:2A:E0:8D:9B:B8:0A:BC:19:D3:F9:84 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/eb9582-d275-497a-b62b-39260319c7bd/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8d/eb9582-d275-497a-b62b-39260319c7bd/1/q5qrE0J62MAHKuCNm7gKvBnT-YQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.141.152.0/22 IPv6: 2a07:2440::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 215783 Signature Algorithm: sha256WithRSAEncryption 15:41:d7:ef:fd:c8:22:3c:ff:2e:08:19:e5:c3:0a:fc:ce:4a: d9:1e:d2:91:9b:25:12:66:42:dc:b9:7d:8e:71:86:53:83:20: ad:65:b8:a7:77:43:f4:7f:81:8f:3a:ed:11:30:13:2e:4c:a4: 87:b3:ef:0d:de:0c:a5:85:7a:11:41:19:eb:aa:a2:d3:d4:ac: ee:8b:74:db:27:6f:99:51:c7:a2:5e:70:e7:5c:de:9b:20:ec: a6:5e:b8:84:1e:ab:52:57:f4:92:64:41:1f:6a:1c:bd:76:e2: ad:48:0c:05:60:f5:a7:7e:d9:85:9b:9a:d8:87:79:a9:98:75: 9e:bf:48:b6:6a:ef:d7:12:58:fe:ad:d5:b5:cd:94:bd:8b:87: 29:ef:c2:16:c9:74:d9:2d:94:b3:e2:a3:61:7f:9e:38:b5:b5: 5f:ad:b7:9a:ca:04:a3:6e:24:d9:ae:fe:2b:dc:f7:2e:84:56: 39:4a:9d:c0:ab:f2:2f:15:18:a4:47:c2:e3:be:4e:e6:66:23: ac:ee:fc:0c:a2:d4:1a:e4:a8:61:f6:3c:93:de:8d:bc:38:ec: 53:6d:8b:26:ff:16:d8:87:90:33:d8:2c:18:8a:a9:56:4c:85: 38:1f:fd:61:15:18:66:06:47:ef:ce:f6:38:d8:3d:26:75:47: 04:ae:c2:a7 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt5fvEImNTUYLmUawjmPR7YMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTIxODQxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhhYjlhYWIxMzQyN2FkOGMwMDcyYWUwOGQ5YmI4MGFiYzE5ZDNmOTg0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnwx672XhU0kQlejRb0tuCMi0oeOo VbnO0aEHA89Ny3ODNklL3t7YTnMysHK2piwsKfeBHqS3ckZyzcQAg6PpKXdG9RKF rwzzANxy42PZVhMZqi37JyiPdUaInsWTT5EPU81Eq5SXlZZSk5QBUNqsaVuY9Ahp 3Fq55gGr7ljaXK+7vm+GuNICoOJxv/Ld2rztFthsar6kmYyzELpsuSixK24zvlyM 8cEJCKBYUadJwAai3j7PAF9FdHr/oRHfNWvbcM9tWUPhFcrhi0SJpxd3fixuPZYd v2xua6l2/MgqY2SJRTJJZgxEUURmC/AmQ4NwNocEmyDlcgmkYIKRlEjd4wIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFKuaqxNCetjAByrgjZu4CrwZ0/mEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhkL2ViOTU4 Mi1kMjc1LTQ5N2EtYjYyYi0zOTI2MDMxOWM3YmQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGQvZWI5NTgy LWQyNzUtNDk3YS1iNjJiLTM5MjYwMzE5YzdiZC8xL3E1cXJFMEo2Mk1BSEt1Q05t N2dLdkJuVC1ZUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuY2YMA0EAgACMAcDBQMqByRAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwNK5zANBgkqhkiG9w0BAQsFAAOCAQEAFUHX7/3IIjz/ LggZ5cMK/M5K2R7SkZslEmZC3Ll9jnGGU4MgrWW4p3dD9H+BjzrtETATLkykh7Pv Dd4MpYV6EUEZ66qi09Ss7ot02ydvmVHHol5w51zemyDspl64hB6rUlf0kmRBH2oc vXbirUgMBWD1p37ZhZua2Id5qZh1nr9Itmrv1xJY/q3Vtc2UvYuHKe/CFsl02S2U s+KjYX+eOLW1X623msoEo24k2a7+K9z3LoRWOUqdwKvyLxUYpEfC475O5mYjrO78 DKLUGuSoYfY8k96NvDjsU22LJv8W2IeQM9gsGIqpVkyFOB/9YRUYZgZH7872ONg9 JnVHBK7Cpw== -----END CERTIFICATE-----Generated at Sun Jan 11 23:04:13 2026 by rpki-client