This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer File: 5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.cer (raw, json) Hash identifier: enhdZK9kcexZzfn+MbKQQiMtCevGebfgrqv8DxsoIPI= Subject key identifier: E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5B861FB73695E358E77A5DE6B89155 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:19:37 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 203966 AS: 211251 IP: 79.98.176.0/22 IP: 213.171.64.0/19 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5b:86:1f:b7:36:95:e3:58:e7:7a:5d:e6:b8:91:55 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:19:37 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e4984f8f36ebf9f8f54c12174f463664d7b23aee Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:3e:51:0a:0d:83:d9:7a:49:37:00:56:33:62: 82:c4:10:8e:93:c1:6d:e9:0d:00:8e:45:69:a9:83: 4e:76:0b:2a:a5:9a:6a:ff:46:06:dd:50:c8:f0:19: 6d:10:94:1a:43:12:25:7a:d6:88:53:38:6b:f0:2d: 02:0f:8f:07:ad:27:22:df:9c:7e:5a:2a:af:43:4c: 32:68:be:a8:1b:30:be:d5:a8:9c:db:1f:bb:80:5d: 16:d2:b9:cc:4e:f9:eb:45:80:c7:d6:94:95:4b:39: 5d:4a:0d:22:a0:9a:91:e8:15:e7:d5:1a:ac:19:4a: db:be:6e:a0:1b:61:8b:3f:22:df:d3:d8:2d:c9:e8: 30:ba:0f:70:ec:24:0b:16:34:38:1f:3f:44:9a:91: ef:74:91:16:16:d6:c1:e7:cc:04:d3:74:74:45:0a: 59:78:f9:0b:a6:07:64:0d:d9:17:a7:71:2f:58:53: e8:ba:fa:53:e7:13:72:dc:10:2c:17:8c:d1:bc:c6: b1:f9:95:8b:b7:2a:9a:6c:14:3f:e4:9f:50:8d:ae: fe:3d:c1:17:fe:d5:17:95:d1:42:d7:2e:6a:92:93: b6:88:a5:5a:7c:ec:0b:3d:e5:4a:1d:a6:64:c3:33: ef:72:ab:92:d8:b5:5e:75:7b:61:9c:11:ba:e6:6f: b6:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:98:4F:8F:36:EB:F9:F8:F5:4C:12:17:4F:46:36:64:D7:B2:3A:EE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/a6/57d908-207d-497c-ab18-de7be1e5c776/1/5JhPjzbr-fj1TBIXT0Y2ZNeyOu4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 79.98.176.0/22 213.171.64.0/19 sbgp-autonomousSysNum: critical Autonomous System Numbers: 203966 211251 Signature Algorithm: sha256WithRSAEncryption 67:2f:f7:90:41:e8:4a:0f:f6:be:28:21:f6:28:6d:ea:f7:ee: 8e:b0:3d:71:15:7e:b6:a5:6d:f6:02:dd:65:aa:e4:d0:10:6c: d1:c6:4c:19:64:e4:fd:b5:17:9d:a1:4d:8f:a4:a6:e5:e8:7c: 86:be:4b:d2:a1:b8:ed:60:76:49:7d:c4:32:b2:47:0e:09:ec: 53:24:04:ab:6a:63:b6:28:07:e9:37:5d:e4:30:f3:8e:f5:69: 50:f2:ba:29:f0:af:14:39:63:a3:69:ce:50:06:a1:b3:3a:25: ea:34:11:48:13:a6:de:e9:4b:cb:ae:4c:13:99:54:af:e5:30: 95:dc:d3:c9:71:7d:f3:5f:82:76:83:cb:47:65:d5:26:d9:bf: bf:00:41:14:5b:a9:71:6a:73:b9:be:8c:c2:de:20:56:33:e0: b7:2e:ec:06:78:8c:52:d6:cc:8b:7e:63:48:68:af:aa:ea:f4: ea:d2:1a:7c:fb:82:38:aa:5f:54:69:44:67:31:cd:6c:ed:9f: 2b:16:0f:2f:f5:ee:da:cb:63:59:7d:10:b4:05:d3:ca:88:22: 28:77:7d:87:c4:8b:61:ea:7e:21:4a:67:7b:f4:b0:86:c0:e8: 64:71:04:f5:cf:3c:94:b5:e9:4c:22:ca:a6:f5:04:9a:ae:34: 15:2c:9f:19 -----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgISAZt6W4YftzaV41jnel3muJFVMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxOTM3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNDk4NGY4ZjM2ZWJmOWY4ZjU0YzEyMTc0ZjQ2MzY2NGQ3YjIzYWVlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkT5RCg2D2XpJNwBWM2KCxBCOk8Ft 6Q0AjkVpqYNOdgsqpZpq/0YG3VDI8BltEJQaQxIletaIUzhr8C0CD48HrSci35x+ WiqvQ0wyaL6oGzC+1aic2x+7gF0W0rnMTvnrRYDH1pSVSzldSg0ioJqR6BXn1Rqs GUrbvm6gG2GLPyLf09gtyegwug9w7CQLFjQ4Hz9EmpHvdJEWFtbB58wE03R0RQpZ ePkLpgdkDdkXp3EvWFPouvpT5xNy3BAsF4zRvMax+ZWLtyqabBQ/5J9Qja7+PcEX /tUXldFC1y5qkpO2iKVafOwLPeVKHaZkwzPvcquS2LVedXthnBG65m+2PQIDAQAB o4ICqzCCAqcwHQYDVR0OBBYEFOSYT4826/n49UwSF09GNmTXsjruMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2E2LzU3ZDkw OC0yMDdkLTQ5N2MtYWIxOC1kZTdiZTFlNWM3NzYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYTYvNTdkOTA4 LTIwN2QtNDk3Yy1hYjE4LWRlN2JlMWU1Yzc3Ni8xLzVKaFBqemJyLWZqMVRCSVhU MFkyWk5leU91NC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQCT2KwAwQF1atAMB8GCCsGAQUFBwEIAQH/BBAw DqAMMAoCAwMcvgIDAzkzMA0GCSqGSIb3DQEBCwUAA4IBAQBnL/eQQehKD/a+KCH2 KG3q9+6OsD1xFX62pW32At1lquTQEGzRxkwZZOT9tRedoU2PpKbl6HyGvkvSobjt YHZJfcQyskcOCexTJASramO2KAfpN13kMPOO9WlQ8rop8K8UOWOjac5QBqGzOiXq NBFIE6be6UvLrkwTmVSv5TCV3NPJcX3zX4J2g8tHZdUm2b+/AEEUW6lxanO5vozC 3iBWM+C3LuwGeIxS1syLfmNIaK+q6vTq0hp8+4I4ql9UaURnMc1s7Z8rFg8v9e7a y2NZfRC0BdPKiCIod32HxIth6n4hSmd79LCGwOhkcQT1zzyUtelMIsqm9QSarjQV LJ8Z -----END CERTIFICATE-----Generated at Mon Feb 9 15:14:03 2026 by rpki-client