This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2hpSHsEwMVJ9Lyys_IXrmeSEElY.cer File: 2hpSHsEwMVJ9Lyys_IXrmeSEElY.cer (raw, json) Hash identifier: q+5gdyoYk5lz9aYX8Uy4i+beud0WDhanJPVGAbKAdn4= Subject key identifier: DA:1A:52:1E:C1:30:31:52:7D:2F:2C:AC:FC:85:EB:99:E4:84:12:56 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC92EA4436B79B737F072E4941BEF2A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/2hpSHsEwMVJ9Lyys_IXrmeSEElY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:19:23 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 46.18.184.0/21 IP: 91.209.81.0/24 IP: 195.189.236.0/23 IP: 2a02:2840::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c9:2e:a4:43:6b:79:b7:37:f0:72:e4:94:1b:ef:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:19:23 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=da1a521ec13031527d2f2cacfc85eb99e4841256 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9d:90:62:5f:3f:21:d5:c7:b7:32:5a:df:4b:9d: 3b:ac:03:70:f4:49:b4:11:22:2f:64:c2:3c:73:3a: bc:6e:78:27:1c:c7:2b:82:17:00:90:ce:89:52:0c: 44:fc:e0:85:90:d8:e1:82:9e:46:7c:24:34:e2:74: fa:83:46:d6:8c:e2:92:46:18:7b:b6:82:12:03:01: 94:b7:a4:b3:d9:a1:27:91:2d:5a:a3:46:08:8c:73: 9f:e9:82:40:55:af:5c:84:98:74:ef:83:3c:0c:f9: 4c:b2:c1:f8:5b:b4:40:2a:07:d7:c4:cf:7b:1b:1b: bb:d1:d2:68:ac:ff:23:36:05:13:fb:ba:36:0c:8c: 7e:dd:c2:8f:d0:9f:f4:2b:4b:99:2b:9a:47:3a:0b: 19:dc:46:3a:b8:ab:91:90:e6:20:4b:a4:42:7e:e6: e3:64:fb:0b:c4:03:fb:94:1e:da:01:4f:9a:ec:ea: 17:20:5c:c2:f9:74:da:80:dc:98:8f:74:3e:90:73: 1b:b2:85:5f:23:1e:88:83:05:38:72:42:bb:f6:c1: 5a:39:d3:21:3d:a0:ff:a4:a4:d6:60:43:18:a9:2d: 33:b8:b6:6a:79:5f:d4:7c:12:1d:57:c0:e3:d5:43: 28:06:64:ef:20:28:55:c7:e1:94:66:4d:a9:ca:49: 96:f1 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DA:1A:52:1E:C1:30:31:52:7D:2F:2C:AC:FC:85:EB:99:E4:84:12:56 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/27/fead16-dd2f-4d66-8503-5d5aec20fc9a/1/2hpSHsEwMVJ9Lyys_IXrmeSEElY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.18.184.0/21 91.209.81.0/24 195.189.236.0/23 IPv6: 2a02:2840::/32 Signature Algorithm: sha256WithRSAEncryption 5b:6a:1d:9a:0b:4f:06:bc:44:be:c3:f3:06:93:f7:c4:7a:df: 93:77:bd:d7:66:ac:da:fa:bf:2e:85:63:9d:56:24:64:3b:1d: 32:11:e5:59:1b:04:a0:95:5a:26:d9:8f:d2:a7:5a:07:a1:82: 8b:5e:ab:28:1f:c1:a8:e3:76:7d:03:1c:a8:4f:94:92:35:a1: 0f:d1:27:4f:de:a6:16:ae:96:9b:72:45:48:be:b6:d7:37:4a: d3:d0:ed:10:14:2f:75:c1:4d:00:c8:71:a1:fd:36:5c:70:f2: ef:23:d2:eb:c7:da:78:47:b3:5c:d5:6c:6f:8b:65:e1:01:60: b3:5b:0c:c7:e6:70:88:13:58:0b:27:86:cf:a1:63:c5:b2:bb: 37:f6:92:57:12:4f:9d:28:34:fb:31:e3:df:61:35:98:dd:d6: 11:38:15:e8:e0:30:bb:86:b5:c8:b8:73:62:cc:c6:37:83:0f: 40:62:dd:90:d8:93:3d:50:ef:e6:8b:b2:7e:04:36:10:2e:31: 07:6c:14:16:06:ce:71:4f:3b:73:83:e7:ba:e5:76:f0:3e:b7: 39:56:e0:75:a7:5c:ce:d7:f7:cb:64:4d:18:5d:47:f5:39:2d: 8f:67:9c:7d:54:1a:a9:ef:2e:aa:7e:05:67:c2:d7:79:19:1a: e3:51:c0:a3 -----BEGIN CERTIFICATE----- MIIFkzCCBHugAwIBAgISAZt6yS6kQ2t5tzfwcuSUG+8qMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxOTIzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYTFhNTIxZWMxMzAzMTUyN2QyZjJjYWNmYzg1ZWI5OWU0ODQxMjU2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnZBiXz8h1ce3MlrfS507rANw9Em0 ESIvZMI8czq8bngnHMcrghcAkM6JUgxE/OCFkNjhgp5GfCQ04nT6g0bWjOKSRhh7 toISAwGUt6Sz2aEnkS1ao0YIjHOf6YJAVa9chJh074M8DPlMssH4W7RAKgfXxM97 Gxu70dJorP8jNgUT+7o2DIx+3cKP0J/0K0uZK5pHOgsZ3EY6uKuRkOYgS6RCfubj ZPsLxAP7lB7aAU+a7OoXIFzC+XTagNyYj3Q+kHMbsoVfIx6IgwU4ckK79sFaOdMh PaD/pKTWYEMYqS0zuLZqeV/UfBIdV8Dj1UMoBmTvIChVx+GUZk2pykmW8QIDAQAB o4ICnzCCApswHQYDVR0OBBYEFNoaUh7BMDFSfS8srPyF65nkhBJWMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI3L2ZlYWQx Ni1kZDJmLTRkNjYtODUwMy01ZDVhZWMyMGZjOWEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjcvZmVhZDE2 LWRkMmYtNGQ2Ni04NTAzLTVkNWFlYzIwZmM5YS8xLzJocFNIc0V3TVZKOUx5eXNf SVhybWVTRUVsWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQDLhK4AwQAW9FRAwQBw73sMA0EAgACMAcDBQAq AihAMA0GCSqGSIb3DQEBCwUAA4IBAQBbah2aC08GvES+w/MGk/fEet+Td73XZqza +r8uhWOdViRkOx0yEeVZGwSglVom2Y/Sp1oHoYKLXqsoH8Go43Z9AxyoT5SSNaEP 0SdP3qYWrpabckVIvrbXN0rT0O0QFC91wU0AyHGh/TZccPLvI9Lrx9p4R7Nc1Wxv i2XhAWCzWwzH5nCIE1gLJ4bPoWPFsrs39pJXEk+dKDT7MePfYTWY3dYROBXo4DC7 hrXIuHNizMY3gw9AYt2Q2JM9UO/mi7J+BDYQLjEHbBQWBs5xTztzg+e65XbwPrc5 VuB1p1zO1/fLZE0YXUf1OS2PZ5x9VBqp7y6qfgVnwtd5GRrjUcCj -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:13 2026 by rpki-client