This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2xQOBpsx8rhMXb0hPtRnc7BjPlI.cer File: 2xQOBpsx8rhMXb0hPtRnc7BjPlI.cer (raw, json) Hash identifier: W2ZhmyZyv3gocjJF7ONr+qzV2S9/7Rmm+DBkeFASNUA= Subject key identifier: DB:14:0E:06:9B:31:F2:B8:4C:5D:BD:21:3E:D4:67:73:B0:63:3E:52 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019C239A2C8AB44B421F90FB2435483D782A Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Tue 03 Feb 2026 13:03:52 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207953 IP: 45.159.24.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9c:23:9a:2c:8a:b4:4b:42:1f:90:fb:24:35:48:3d:78:2a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Feb 3 13:03:52 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=db140e069b31f2b84c5dbd213ed46773b0633e52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d4:51:67:58:d7:e7:01:9a:38:58:3b:03:7c:dc: 08:a5:c7:ee:a7:b8:bf:7f:14:e1:eb:19:04:d2:67: 86:c8:1c:cd:11:66:b3:a2:22:5f:db:30:ae:93:2f: 71:df:5d:73:66:6e:2c:d3:12:a5:a1:29:9c:6c:75: a3:a3:c0:55:df:29:54:23:b0:6f:bb:8b:8e:a2:26: ca:b9:c3:4f:dd:e4:69:4e:89:24:64:73:d5:87:20: 2b:89:a2:56:8e:c4:73:4e:0b:44:d1:3e:d4:59:09: d4:e9:ad:aa:21:a5:90:2e:e2:c6:b8:5a:ac:f7:ef: 6d:f0:2c:56:9a:2b:5c:76:ca:f8:1d:2e:3d:15:1d: c3:7b:fb:72:b4:45:d0:8f:ee:ce:6f:de:6c:63:0e: 37:30:46:64:fe:6c:07:f6:6e:e8:ac:17:5a:8b:6f: 5d:db:9e:eb:1d:70:8a:c0:4d:cb:73:35:88:61:bb: 6c:4b:3a:f4:52:77:57:e7:79:d5:ed:4e:6a:06:a5: 41:0b:ed:16:ef:ac:20:94:62:ad:48:7e:81:1c:28: 51:a3:fc:bb:a8:35:a6:6f:37:24:78:7e:fc:bb:e5: 1d:47:3e:70:d7:17:91:0d:21:ca:80:c0:47:42:32: 77:3e:82:cb:29:18:4f:85:7e:d0:a9:12:ee:68:20: 08:15 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DB:14:0E:06:9B:31:F2:B8:4C:5D:BD:21:3E:D4:67:73:B0:63:3E:52 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/99/e37b66-45a1-4956-9731-3496e48e5514/1/2xQOBpsx8rhMXb0hPtRnc7BjPlI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.159.24.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207953 Signature Algorithm: sha256WithRSAEncryption 0d:f9:fd:41:a8:39:41:f4:61:08:a3:1c:51:9a:dc:b0:ac:2d: 45:9a:02:18:a7:ef:d5:37:80:bd:60:2a:e7:fe:6e:48:ef:de: 70:9c:89:41:01:52:26:a3:74:1f:b3:48:36:01:ff:f6:25:e2: e1:73:0d:db:71:d8:03:db:ae:7e:2f:b5:e3:88:65:92:26:b4: 43:bc:a9:4e:38:47:61:67:fb:48:11:b0:d7:f9:79:a9:a6:d0: 11:23:e3:7a:29:3a:05:d7:e2:3f:9c:88:0a:3a:d2:30:67:2f: 07:75:b8:9d:2d:82:96:c2:ad:0e:1a:e4:19:2e:7d:42:23:77: 6e:a1:97:d9:a8:7c:27:d1:dd:23:ee:b4:ef:d7:31:de:50:e5: 7d:d9:f5:5a:3b:4f:f0:4d:44:1b:da:da:fa:39:ec:7d:51:da: c8:51:3c:55:0c:ff:86:1c:fe:dc:dc:65:ab:6c:21:75:36:39: 0a:41:72:88:49:b0:c3:0d:c8:de:c4:15:4c:93:ff:28:5b:4a: fc:bc:5b:21:3c:bb:78:b8:a2:10:c4:0f:cf:e9:13:89:3d:fe: 81:e5:fc:92:98:87:bd:66:51:cd:8a:32:4a:3f:07:38:29:b4: d3:e1:21:c7:52:a3:ab:24:6e:81:65:c3:7b:47:aa:7d:86:fa: 41:dd:09:6b -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZwjmiyKtEtCH5D7JDVIPXgqMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMjAzMTMwMzUyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhkYjE0MGUwNjliMzFmMmI4NGM1ZGJkMjEzZWQ0Njc3M2IwNjMzZTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1FFnWNfnAZo4WDsDfNwIpcfup7i/ fxTh6xkE0meGyBzNEWazoiJf2zCuky9x311zZm4s0xKloSmcbHWjo8BV3ylUI7Bv u4uOoibKucNP3eRpTokkZHPVhyAriaJWjsRzTgtE0T7UWQnU6a2qIaWQLuLGuFqs 9+9t8CxWmitcdsr4HS49FR3De/tytEXQj+7Ob95sYw43MEZk/mwH9m7orBdai29d 257rHXCKwE3LczWIYbtsSzr0UndX53nV7U5qBqVBC+0W76wglGKtSH6BHChRo/y7 qDWmbzckeH78u+UdRz5w1xeRDSHKgMBHQjJ3PoLLKRhPhX7QqRLuaCAIFQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFNsUDgabMfK4TF29IT7UZ3OwYz5SMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzk5L2UzN2I2 Ni00NWExLTQ5NTYtOTczMS0zNDk2ZTQ4ZTU1MTQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOTkvZTM3YjY2 LTQ1YTEtNDk1Ni05NzMxLTM0OTZlNDhlNTUxNC8xLzJ4UU9CcHN4OHJoTVhiMGhQ dFJuYzdCalBsSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCLZ8YMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMsUTANBgkqhkiG9w0BAQsFAAOCAQEADfn9Qag5QfRhCKMcUZrcsKwtRZoCGKfv 1TeAvWAq5/5uSO/ecJyJQQFSJqN0H7NINgH/9iXi4XMN23HYA9uufi+144hlkia0 Q7ypTjhHYWf7SBGw1/l5qabQESPjeik6BdfiP5yICjrSMGcvB3W4nS2ClsKtDhrk GS59QiN3bqGX2ah8J9HdI+6079cx3lDlfdn1WjtP8E1EG9ra+jnsfVHayFE8VQz/ hhz+3Nxlq2whdTY5CkFyiEmwww3I3sQVTJP/KFtK/LxbITy7eLiiEMQPz+kTiT3+ geX8kpiHvWZRzYoySj8HOCm00+Ehx1KjqyRugWXDe0eqfYb6Qd0Jaw== -----END CERTIFICATE-----Generated at Mon Feb 9 16:48:41 2026 by rpki-client