This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer File: ubNQoK4y5z5mDEFsPxQG7dNhX4I.cer (raw, json) Hash identifier: yixjiHdgzUU0qwxygT/g8UGGG/rGyBdhkrucS1Ag3v0= Subject key identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7BA51E3627A59BAB3F86860A657D19C3 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 22:19:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 51275 IP: 89.107.248.0/21 IP: 109.232.200.0/21 IP: 193.23.138.0/23 IP: 2a00:1608::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Sat 03 Jan 2026 12:00:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:a5:1e:36:27:a5:9b:ab:3f:86:86:0a:65:7d:19:c3 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 22:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=b9b350a0ae32e73e660c416c3f1406edd3615f82 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d2:ac:f5:dd:5b:26:44:18:d9:90:4c:9a:fb:be: b8:ee:db:b1:24:24:83:56:93:99:e7:08:0f:ff:37: 62:c1:d0:49:1f:c0:94:90:2f:e1:e9:f0:46:be:bc: 8c:2a:e7:dd:bb:b8:ff:99:52:8f:16:74:8c:2d:e5: 2d:42:bd:7c:52:a0:7b:89:1a:2c:f9:db:5c:86:dd: 3c:88:e1:da:63:83:d6:86:69:b7:48:3f:db:91:ac: fe:9f:4f:fd:61:16:82:d3:98:da:7b:eb:77:c6:ea: 58:00:05:e4:59:64:f0:b3:2c:7b:9d:73:dc:92:ff: da:68:3c:1b:c2:5a:8b:ad:02:42:33:5e:78:2d:86: 65:f4:e2:85:80:5e:2c:68:44:52:32:cf:16:50:5a: 5b:48:24:7e:98:3f:ca:9c:a1:85:01:75:67:c9:21: e0:41:e8:79:cf:0c:3d:75:bb:90:5f:03:3b:1b:b4: 10:98:53:3d:fc:93:60:e2:b8:b2:de:c2:d6:c9:5c: 6c:94:1d:a5:a8:2f:7a:93:6d:b5:46:7e:8f:e2:72: ec:dd:d2:1f:cb:d5:17:ab:ce:42:7e:a1:4e:ad:1a: e1:2a:6c:42:b3:02:6e:ca:28:be:f0:55:ec:11:25: db:a0:26:f2:bb:32:38:10:8e:b8:c4:97:de:92:72: 83:4d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: B9:B3:50:A0:AE:32:E7:3E:66:0C:41:6C:3F:14:06:ED:D3:61:5F:82 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/627e60-00a6-4d26-b93a-ef73b7b4ca3c/1/ubNQoK4y5z5mDEFsPxQG7dNhX4I.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 89.107.248.0/21 109.232.200.0/21 193.23.138.0/23 IPv6: 2a00:1608::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 51275 Signature Algorithm: sha256WithRSAEncryption b0:e1:6b:5b:48:08:c9:05:5b:56:8a:3f:a2:3c:e4:6e:d0:11: d9:46:ce:fa:23:b5:5f:ac:c1:89:52:1f:17:60:8d:bc:d4:88: 6b:39:7f:59:48:09:02:a5:fc:b7:b5:97:25:32:d4:8b:4b:bb: 98:04:12:2f:ed:3e:46:9b:f0:aa:97:69:74:77:6d:49:f8:f9: a0:a4:f8:de:66:92:3f:58:13:18:a4:b1:98:c6:9c:5b:96:0e: 2a:fa:12:b5:92:d6:9f:a1:55:5c:b1:55:95:58:8b:84:52:fc: cd:f8:82:d1:c6:d8:81:94:18:3b:76:c7:6c:f4:fc:6f:87:93: cd:21:2d:50:e9:a3:82:d5:6a:61:8a:8e:cc:b3:1d:4b:d8:a7: 99:c6:08:4a:77:ac:4e:ca:b2:12:5f:92:98:99:b2:c5:ab:57: d2:94:85:95:4c:9b:a9:b9:3f:2c:68:5a:fb:a0:fb:d3:42:82: b5:5e:58:8d:3e:37:e8:e3:09:d8:39:a0:2b:ff:ce:f2:94:d8: d7:95:00:e9:94:13:bc:bd:52:7d:0e:be:63:34:96:81:f7:3a: e9:9c:8a:70:21:0d:db:5e:5d:4e:84:89:95:de:cb:b2:2a:44: d2:e2:46:5d:5b:fc:1b:5a:8e:a4:dd:02:40:03:89:d7:61:b9: e8:83:60:92 -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZt7pR42J6Wbqz+GhgplfRnDMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMjIxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhiOWIzNTBhMGFlMzJlNzNlNjYwYzQxNmMzZjE0MDZlZGQzNjE1ZjgyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0qz13VsmRBjZkEya+7647tuxJCSD VpOZ5wgP/zdiwdBJH8CUkC/h6fBGvryMKufdu7j/mVKPFnSMLeUtQr18UqB7iRos +dtcht08iOHaY4PWhmm3SD/bkaz+n0/9YRaC05jae+t3xupYAAXkWWTwsyx7nXPc kv/aaDwbwlqLrQJCM154LYZl9OKFgF4saERSMs8WUFpbSCR+mD/KnKGFAXVnySHg Qeh5zww9dbuQXwM7G7QQmFM9/JNg4riy3sLWyVxslB2lqC96k221Rn6P4nLs3dIf y9UXq85CfqFOrRrhKmxCswJuyii+8FXsESXboCbyuzI4EI64xJfeknKDTQIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFLmzUKCuMuc+ZgxBbD8UBu3TYV+CMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAxLzYyN2U2 MC0wMGE2LTRkMjYtYjkzYS1lZjczYjdiNGNhM2MvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEvNjI3ZTYw LTAwYTYtNGQyNi1iOTNhLWVmNzNiN2I0Y2EzYy8xL3ViTlFvSzR5NXo1bURFRnNQ eFFHN2ROaFg0SS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQDWWv4AwQDbejIAwQBwReKMA0EAgACMAcDBQAq ABYIMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwDISzANBgkqhkiG9w0BAQsFAAOC AQEAsOFrW0gIyQVbVoo/ojzkbtAR2UbO+iO1X6zBiVIfF2CNvNSIazl/WUgJAqX8 t7WXJTLUi0u7mAQSL+0+RpvwqpdpdHdtSfj5oKT43maSP1gTGKSxmMacW5YOKvoS tZLWn6FVXLFVlViLhFL8zfiC0cbYgZQYO3bHbPT8b4eTzSEtUOmjgtVqYYqOzLMd S9inmcYISnesTsqyEl+SmJmyxatX0pSFlUybqbk/LGha+6D700KCtV5YjT436OMJ 2DmgK//O8pTY15UA6ZQTvL1SfQ6+YzSWgfc66ZyKcCEN215dToSJld7LsipE0uJG XVv8G1qOpN0CQAOJ12G56INgkg== -----END CERTIFICATE-----Generated at Fri Jan 2 16:57:54 2026 by rpki-client