This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4xbAPPr_4TTHvtpIhquLCc9F-8Q.cer File: 4xbAPPr_4TTHvtpIhquLCc9F-8Q.cer (raw, json) Hash identifier: 5AXWsH5i80F2gOfV0wllw5kcVoNyiGWd1HwoU9ETXJc= Subject key identifier: E3:16:C0:3C:FA:FF:E1:34:C7:BE:DA:48:86:AB:8B:09:CF:45:FB:C4 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C700B9AA5D1F1D5A22E0F04AAB0D05 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/63/91402e-ed28-4a21-84e2-e4d64dca67ac/1/4xbAPPr_4TTHvtpIhquLCc9F-8Q.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/63/91402e-ed28-4a21-84e2-e4d64dca67ac/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:09 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 199789 IP: 2001:67c:b98::/48 IP: 2001:67c:29a4::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:00:b9:aa:5d:1f:1d:5a:22:e0:f0:4a:ab:0d:05 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:09 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e316c03cfaffe134c7beda4886ab8b09cf45fbc4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c4:1e:1f:02:ee:c8:ce:31:c8:e3:cc:7b:b2:cc: 96:11:75:f2:65:54:73:17:85:c4:22:8c:91:e0:1b: dd:d8:10:ca:1e:01:6d:a2:0c:62:2f:af:28:df:e3: d4:c3:5a:96:6d:22:ef:69:cf:ed:6d:1d:3e:89:3d: 52:79:36:d4:b7:3b:76:40:19:9f:54:a4:2b:2e:96: 64:a8:c3:4b:77:f8:1e:c9:77:f9:81:f6:cc:6a:5c: bc:50:41:b2:46:b4:ea:75:8c:5a:f7:6b:56:b8:47: f5:c8:6c:72:8f:30:54:c9:60:6c:98:57:be:86:f5: 09:cb:c3:c8:64:48:13:df:68:83:1d:f2:60:a5:5f: 25:40:e5:f8:fb:a3:1e:11:eb:1e:99:9b:26:bc:a8: a4:26:b0:dd:cf:30:41:0f:62:9a:19:a4:0b:39:ef: 67:f0:d4:dd:17:87:0e:cd:f0:8c:52:b8:32:3d:9b: c9:ae:bf:a8:65:56:e9:3c:6a:72:05:e5:c5:92:9e: fd:9a:e3:5a:ff:57:43:e9:d6:4a:a5:23:74:04:10: af:ef:7a:8f:bd:ba:f2:4c:8e:0c:9a:ce:a4:4d:ff: fc:89:fa:8e:a8:6f:b0:e4:aa:b1:1c:e8:00:f0:33: bd:46:e2:64:41:da:8a:6f:96:77:0a:10:16:51:51: d4:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E3:16:C0:3C:FA:FF:E1:34:C7:BE:DA:48:86:AB:8B:09:CF:45:FB:C4 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/91402e-ed28-4a21-84e2-e4d64dca67ac/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/63/91402e-ed28-4a21-84e2-e4d64dca67ac/1/4xbAPPr_4TTHvtpIhquLCc9F-8Q.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:67c:b98::/48 2001:67c:29a4::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 199789 Signature Algorithm: sha256WithRSAEncryption 7d:f9:5c:ea:62:51:be:5e:d3:ae:7e:92:f7:52:9f:68:41:2e: b9:08:f4:1f:c8:fa:43:93:82:8a:b7:e4:06:0a:d6:bf:38:eb: e2:eb:50:f5:a4:04:5e:7a:73:dd:81:cb:21:2e:01:c1:64:97: 46:74:e1:4f:5a:97:7d:11:77:c4:29:90:28:90:88:f5:1f:1b: 99:1b:25:a7:49:3e:de:4c:8a:8c:25:e5:4b:76:3a:b1:e7:5e: 9b:12:72:f3:4d:72:95:f7:86:2a:6c:14:3c:09:c3:e2:48:14: 48:8a:91:90:0c:2e:f7:2f:40:9c:69:05:94:0f:89:35:9c:cf: ed:3c:2e:7e:c5:a3:a6:69:85:2d:f2:f6:92:a6:bc:c8:f6:ae: be:25:d8:65:cb:8e:f2:7c:f5:7b:26:65:54:c9:9a:e2:66:a3: 89:39:9a:c5:ad:2c:25:00:59:68:59:fe:4a:bf:94:b3:da:6e: 67:df:0f:fc:2b:56:41:5d:8a:1e:29:8d:c7:c2:18:03:0b:e3: a9:18:58:06:7e:a2:c1:8b:d7:8a:e6:03:77:64:0f:d8:72:b1: 21:5b:9d:3a:bf:08:9b:86:4e:7b:4e:31:ec:a3:b3:ab:66:b6: 65:ce:d6:30:db:d7:8a:c1:4e:4a:40:bc:ae:19:9b:4b:65:65: d7:19:77:11 -----BEGIN CERTIFICATE----- MIIFoDCCBIigAwIBAgISAZt3xwC5ql0fHVoi4PBKqw0FMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODA5WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlMzE2YzAzY2ZhZmZlMTM0YzdiZWRhNDg4NmFiOGIwOWNmNDVmYmM0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxB4fAu7IzjHI48x7ssyWEXXyZVRz F4XEIoyR4Bvd2BDKHgFtogxiL68o3+PUw1qWbSLvac/tbR0+iT1SeTbUtzt2QBmf VKQrLpZkqMNLd/geyXf5gfbMaly8UEGyRrTqdYxa92tWuEf1yGxyjzBUyWBsmFe+ hvUJy8PIZEgT32iDHfJgpV8lQOX4+6MeEesemZsmvKikJrDdzzBBD2KaGaQLOe9n 8NTdF4cOzfCMUrgyPZvJrr+oZVbpPGpyBeXFkp79muNa/1dD6dZKpSN0BBCv73qP vbryTI4Mms6kTf/8ifqOqG+w5KqxHOgA8DO9RuJkQdqKb5Z3ChAWUVHUjwIDAQAB o4ICrDCCAqgwHQYDVR0OBBYEFOMWwDz6/+E0x77aSIariwnPRfvEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYzLzkxNDAy ZS1lZDI4LTRhMjEtODRlMi1lNGQ2NGRjYTY3YWMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjMvOTE0MDJl LWVkMjgtNGEyMS04NGUyLWU0ZDY0ZGNhNjdhYy8xLzR4YkFQUHJfNFRUSHZ0cElo cXVMQ2M5Ri04US5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCsGCCsGAQUF BwEHAQH/BBwwGjAYBAIAAjASAwcAIAEGfAuYAwcAIAEGfCmkMBoGCCsGAQUFBwEI AQH/BAswCaAHMAUCAwMMbTANBgkqhkiG9w0BAQsFAAOCAQEAfflc6mJRvl7Trn6S 91KfaEEuuQj0H8j6Q5OCirfkBgrWvzjr4utQ9aQEXnpz3YHLIS4BwWSXRnThT1qX fRF3xCmQKJCI9R8bmRslp0k+3kyKjCXlS3Y6sedemxJy801ylfeGKmwUPAnD4kgU SIqRkAwu9y9AnGkFlA+JNZzP7TwufsWjpmmFLfL2kqa8yPauviXYZcuO8nz1eyZl VMma4majiTmaxa0sJQBZaFn+Sr+Us9puZ98P/CtWQV2KHimNx8IYAwvjqRhYBn6i wYvXiuYDd2QP2HKxIVudOr8Im4ZOe04x7KOzq2a2Zc7WMNvXisFOSkC8rhmbS2Vl 1xl3EQ== -----END CERTIFICATE-----Generated at Mon Feb 9 19:41:38 2026 by rpki-client