This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5LEwYQHMnsn86YUoDB2w83wTWjo.cer File: 5LEwYQHMnsn86YUoDB2w83wTWjo.cer (raw, json) Hash identifier: gtqfC9h5XsQXRBlI8ZUfECpbSCqr/T6UzDlzJU0/bdc= Subject key identifier: E4:B1:30:61:01:CC:9E:C9:FC:E9:85:28:0C:1D:B0:F3:7C:13:5A:3A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5B3633AA1E6F34981F2869BC86EC06 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/5LEwYQHMnsn86YUoDB2w83wTWjo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:18:08 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 47165 IP: 46.233.192.0/18 IP: 94.137.0.0/18 IP: 109.120.0.0/18 IP: 176.62.64.0/18 IP: 178.74.64.0/18 IP: 185.13.176.0/22 IP: 217.25.208.0/20 IP: 2a02:ddc0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5b:36:33:aa:1e:6f:34:98:1f:28:69:bc:86:ec:06 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:18:08 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e4b1306101cc9ec9fce985280c1db0f37c135a3a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:dc:45:ce:9a:03:b0:62:53:c5:b4:ca:a1:34:0c: aa:07:f7:58:d9:67:9c:ea:f7:05:62:9f:c0:82:df: 0b:14:83:98:f0:53:ad:c9:c1:0d:ec:d3:92:7b:34: 14:5e:02:62:2d:51:1e:cb:fb:e5:68:8f:95:82:d8: fe:8c:d5:f0:eb:fa:34:ee:b3:92:b6:ea:bd:50:b2: 40:e7:41:d1:f2:a2:64:74:91:63:e0:0f:16:de:95: a3:b3:79:ae:50:a1:d9:f4:9f:9e:6a:65:26:33:6c: 68:5b:62:a0:45:11:ed:b2:27:20:7b:4a:a9:90:c3: 83:b5:f3:8c:7b:b0:8a:9f:78:ab:a6:3d:ff:55:10: cc:ff:35:ba:c5:45:7c:53:63:68:fa:49:88:88:c9: 6b:7d:16:21:af:5c:ea:e7:51:63:89:14:c5:36:cb: 33:50:f2:f5:1f:2e:e3:bd:76:63:1c:76:05:36:01: a8:84:13:b0:32:0a:38:c7:7d:f7:60:0b:5f:28:0c: 15:63:e1:71:48:ba:86:12:4f:4f:d9:f7:f9:57:00: 3b:89:66:4a:7d:a6:b6:b5:23:72:dc:b5:e2:bf:96: 9c:74:b3:36:a0:64:b0:c2:d2:f0:f3:e9:b3:65:e6: d5:f4:14:a4:15:46:4a:6d:3d:42:07:c1:31:7c:fe: 7b:d7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E4:B1:30:61:01:CC:9E:C9:FC:E9:85:28:0C:1D:B0:F3:7C:13:5A:3A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/61/4d089e-5d1c-4e34-9465-fa6348f695b5/1/5LEwYQHMnsn86YUoDB2w83wTWjo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 46.233.192.0/18 94.137.0.0/18 109.120.0.0/18 176.62.64.0/18 178.74.64.0/18 185.13.176.0/22 217.25.208.0/20 IPv6: 2a02:ddc0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 47165 Signature Algorithm: sha256WithRSAEncryption 7e:6a:37:d0:45:dd:30:13:2a:30:05:de:1e:9c:99:0d:21:c9: 2d:c7:8e:c2:ef:4e:4e:f8:51:52:53:c9:2a:b3:eb:f2:b7:c5: b3:69:1f:bc:6a:e5:3a:40:4d:d1:52:91:23:93:54:96:ce:f0: 9a:96:40:b2:97:f5:e1:7b:c1:84:bb:25:4f:37:71:bc:95:cb: ab:e9:0a:57:55:39:18:ae:9d:5b:0e:68:c3:87:1f:b0:29:b7: 45:3b:c7:0d:87:f7:1c:1c:6a:88:a1:9e:2b:e9:fa:64:b5:ce: 5b:0b:93:c1:3c:87:cd:ea:7a:ca:7a:12:87:a2:47:db:6a:3d: c7:27:e1:e0:fa:50:1d:df:f9:94:e7:c5:1d:81:db:6d:b7:41: 93:2e:c1:4c:b5:d5:07:e9:2c:f3:2c:8a:75:10:f4:d2:ca:b2: 17:3c:28:84:c4:95:22:8a:83:26:da:fc:4d:fe:ca:35:1d:09: a8:74:ce:72:07:15:c5:66:49:52:29:a0:3f:bb:2f:75:54:ac: f3:e5:c7:4c:73:80:0f:2f:12:a2:72:c4:41:c3:ab:c3:00:58: 2a:81:16:7f:13:aa:70:a4:3c:5d:a0:48:ed:d9:a7:26:ec:05: a7:d6:cc:f9:0b:98:62:2c:92:95:58:cd:d6:0c:82:fc:80:8f: 35:d2:1e:9d -----BEGIN CERTIFICATE----- MIIFxzCCBK+gAwIBAgISAZt9WzYzqh5vNJgfKGm8huwGMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxODA4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNGIxMzA2MTAxY2M5ZWM5ZmNlOTg1MjgwYzFkYjBmMzdjMTM1YTNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3EXOmgOwYlPFtMqhNAyqB/dY2Wec 6vcFYp/Agt8LFIOY8FOtycEN7NOSezQUXgJiLVEey/vlaI+Vgtj+jNXw6/o07rOS tuq9ULJA50HR8qJkdJFj4A8W3pWjs3muUKHZ9J+eamUmM2xoW2KgRRHtsicge0qp kMODtfOMe7CKn3irpj3/VRDM/zW6xUV8U2No+kmIiMlrfRYhr1zq51FjiRTFNssz UPL1Hy7jvXZjHHYFNgGohBOwMgo4x333YAtfKAwVY+FxSLqGEk9P2ff5VwA7iWZK faa2tSNy3LXiv5acdLM2oGSwwtLw8+mzZebV9BSkFUZKbT1CB8ExfP571wIDAQAB o4IC0zCCAs8wHQYDVR0OBBYEFOSxMGEBzJ7J/OmFKAwdsPN8E1o6MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzYxLzRkMDg5 ZS01ZDFjLTRlMzQtOTQ2NS1mYTYzNDhmNjk1YjUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNjEvNGQwODll LTVkMWMtNGUzNC05NDY1LWZhNjM0OGY2OTViNS8xLzVMRXdZUUhNbnNuODZZVW9E QjJ3ODN3VFdqby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMFIGCCsGAQUF BwEHAQH/BEMwQTAwBAIAATAqAwQGLunAAwQGXokAAwQGbXgAAwQGsD5AAwQGskpA AwQCuQ2wAwQE2RnQMA0EAgACMAcDBQMqAt3AMBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwC4PTANBgkqhkiG9w0BAQsFAAOCAQEAfmo30EXdMBMqMAXeHpyZDSHJLceO wu9OTvhRUlPJKrPr8rfFs2kfvGrlOkBN0VKRI5NUls7wmpZAspf14XvBhLslTzdx vJXLq+kKV1U5GK6dWw5ow4cfsCm3RTvHDYf3HBxqiKGeK+n6ZLXOWwuTwTyHzep6 ynoSh6JH22o9xyfh4PpQHd/5lOfFHYHbbbdBky7BTLXVB+ks8yyKdRD00sqyFzwo hMSVIoqDJtr8Tf7KNR0JqHTOcgcVxWZJUimgP7svdVSs8+XHTHOADy8SonLEQcOr wwBYKoEWfxOqcKQ8XaBI7dmnJuwFp9bM+QuYYiySlVjN1gyC/ICPNdIenQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:06:46 2026 by rpki-client