This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5ARKnRChnmsaztrJ_3eNT0CQaMs.cer File: 5ARKnRChnmsaztrJ_3eNT0CQaMs.cer (raw, json) Hash identifier: PN6Hsmt7G1eJF4iAjJgVbHVPYzSsf28gq7A0xJLELes= Subject key identifier: E4:04:4A:9D:10:A1:9E:6B:1A:CE:DA:C9:FF:77:8D:4F:40:90:68:CB Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F820DAA933D330DA59C3B83D881AA07 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/5ARKnRChnmsaztrJ_3eNT0CQaMs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:19:48 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203011 IP: 80.75.209.0/24 IP: 193.28.176.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:0d:aa:93:3d:33:0d:a5:9c:3b:83:d8:81:aa:07 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:19:48 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e4044a9d10a19e6b1acedac9ff778d4f409068cb Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:92:d4:40:c9:ec:ac:2b:a9:7d:59:ef:30:9f: 30:43:51:28:bf:f9:02:62:c5:7b:00:77:20:2e:00: 51:93:32:5c:a5:b4:81:b3:d9:58:6a:35:7c:40:47: dd:f2:33:db:31:d2:67:6f:03:08:8b:5f:c1:e4:4f: bb:24:b1:45:c1:74:c9:dd:8d:de:d8:2b:26:f6:81: aa:af:0b:34:d3:7b:9e:b1:90:90:b3:c8:fe:34:0e: 0a:a8:17:16:c3:32:25:42:bd:25:e8:64:c5:06:5c: e4:7f:55:ef:e0:2e:b8:e2:95:fa:3d:e7:c5:82:79: 1a:cb:14:77:52:96:3b:0d:7d:40:96:00:67:a8:76: 5a:44:4c:39:59:0d:83:65:67:9d:ce:86:36:77:7a: ed:66:ca:5b:eb:7b:c2:69:e8:d5:4c:f5:75:e5:bb: cc:60:db:36:23:d2:a5:d1:61:ef:98:63:49:83:72: ac:87:b2:0e:86:38:44:66:bc:ca:64:bf:0b:97:f9: 20:a2:0e:39:99:8d:50:2c:a0:cd:a0:39:a0:b5:7a: 7d:b9:33:10:93:06:3a:3a:8f:a7:ed:4c:c4:6a:3a: 9d:bd:bf:c8:93:0e:21:0a:3a:5f:0c:71:f4:dc:5c: 3f:f7:66:d0:eb:0c:03:2f:93:ac:25:44:89:67:7c: 26:45 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:04:4A:9D:10:A1:9E:6B:1A:CE:DA:C9:FF:77:8D:4F:40:90:68:CB X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/18/0e8b5d-ee98-47fb-a389-03fa7a9c371e/1/5ARKnRChnmsaztrJ_3eNT0CQaMs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 80.75.209.0/24 193.28.176.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203011 Signature Algorithm: sha256WithRSAEncryption 9b:34:2b:53:ee:73:da:09:d1:42:4f:14:f5:cc:3d:7d:c8:43: 52:5d:17:3f:c5:39:4b:59:d7:46:c3:3a:4e:e6:26:3f:12:bc: 86:5d:71:ef:eb:8f:a4:e9:b3:5f:30:cc:60:b4:0a:e3:08:00: 22:20:1b:10:dc:f6:84:bf:f1:26:43:86:a1:b6:e3:c7:87:6f: 16:f7:d7:5e:5b:24:51:1c:4b:8d:b1:3b:c9:d2:0c:68:42:64: 87:34:1e:97:01:33:0c:d2:39:6c:65:f9:45:64:c1:5d:b0:53: 82:3e:c3:06:12:16:88:b0:8c:74:74:38:7e:11:9d:83:98:85: 47:7e:4b:09:fb:8d:24:1b:41:13:9a:72:1f:fe:aa:a2:97:f3: e9:1b:5f:2a:2d:a2:dc:85:80:5e:fd:de:6b:0b:b0:ce:f0:d4: 8b:82:18:e1:d1:c9:97:eb:ce:63:50:ad:b9:c1:f8:8e:20:df: 33:a0:fc:bc:46:88:83:46:12:c3:0e:dc:d0:09:e1:38:6f:1b: f7:ea:1d:26:78:71:1d:53:b7:de:d1:99:6e:04:16:b7:73:7c: 77:ed:52:47:a4:ce:5e:92:57:51:5b:24:b2:f8:48:9b:fd:7e: 98:1f:ae:7d:df:c8:c7:13:8f:18:e3:b3:96:65:e8:a3:65:62: b5:2a:68:4a -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt/gg2qkz0zDaWcO4PYgaoHMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYxOTQ4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNDA0NGE5ZDEwYTE5ZTZiMWFjZWRhYzlmZjc3OGQ0ZjQwOTA2OGNiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAypLUQMnsrCupfVnvMJ8wQ1Eov/kC YsV7AHcgLgBRkzJcpbSBs9lYajV8QEfd8jPbMdJnbwMIi1/B5E+7JLFFwXTJ3Y3e 2Csm9oGqrws003uesZCQs8j+NA4KqBcWwzIlQr0l6GTFBlzkf1Xv4C644pX6PefF gnkayxR3UpY7DX1AlgBnqHZaREw5WQ2DZWedzoY2d3rtZspb63vCaejVTPV15bvM YNs2I9Kl0WHvmGNJg3Ksh7IOhjhEZrzKZL8Ll/kgog45mY1QLKDNoDmgtXp9uTMQ kwY6Oo+n7UzEajqdvb/Ikw4hCjpfDHH03Fw/92bQ6wwDL5OsJUSJZ3wmRQIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFOQESp0QoZ5rGs7ayf93jU9AkGjLMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzE4LzBlOGI1 ZC1lZTk4LTQ3ZmItYTM4OS0wM2ZhN2E5YzM3MWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTgvMGU4YjVk LWVlOTgtNDdmYi1hMzg5LTAzZmE3YTljMzcxZS8xLzVBUktuUkNobm1zYXp0ckpf M2VOVDBDUWFNcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAUEvRAwQAwRywMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwMZAzANBgkqhkiG9w0BAQsFAAOCAQEAmzQrU+5z2gnRQk8U9cw9fchD Ul0XP8U5S1nXRsM6TuYmPxK8hl1x7+uPpOmzXzDMYLQK4wgAIiAbENz2hL/xJkOG obbjx4dvFvfXXlskURxLjbE7ydIMaEJkhzQelwEzDNI5bGX5RWTBXbBTgj7DBhIW iLCMdHQ4fhGdg5iFR35LCfuNJBtBE5pyH/6qopfz6RtfKi2i3IWAXv3eawuwzvDU i4IY4dHJl+vOY1CtucH4jiDfM6D8vEaIg0YSww7c0AnhOG8b9+odJnhxHVO33tGZ bgQWt3N8d+1SR6TOXpJXUVsksvhIm/1+mB+ufd/IxxOPGOOzlmXoo2VitSpoSg== -----END CERTIFICATE-----Generated at Mon Feb 9 18:25:25 2026 by rpki-client