This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5XB6RVkqydFxmoV2lgMXeCm0bgo.cer File: 5XB6RVkqydFxmoV2lgMXeCm0bgo.cer (raw, json) Hash identifier: TbZjJlfi4bFI1+o3enmY8vA8mAOija/3XPJnTJsCjXU= Subject key identifier: E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7DCAD1549E4DA959885F0285A2064430 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 08:20:02 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 12347 IP: 93.189.64.0/21 IP: 2a02:410::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:ca:d1:54:9e:4d:a9:59:88:5f:02:85:a2:06:44:30 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 08:20:02 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e5707a45592ac9d1719a85769603177829b46e0a Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:15:1f:f0:ba:a3:4b:2c:e1:ed:18:4c:26:15: d8:a7:9d:eb:14:bf:fe:2f:69:12:0d:e8:60:3f:6b: bf:d7:c1:39:aa:46:c2:4a:40:77:d0:fe:cb:cc:37: 94:10:b0:2d:80:85:e0:1f:79:a5:d3:58:f0:0b:a1: 2a:5f:8c:61:f3:0d:c5:c1:1e:ff:63:cb:76:7c:88: 16:cd:4c:5e:54:11:93:72:e6:13:76:0a:6c:30:59: c8:71:a5:53:b2:4d:e9:ba:af:df:d5:aa:44:ff:e6: a5:3d:b4:66:3d:5f:24:49:19:97:78:70:2f:8a:eb: de:c6:47:16:b7:d9:38:f1:b9:ab:ba:a6:99:07:c3: 4f:34:fe:1d:be:e1:cb:df:57:50:13:72:7a:f4:ab: 97:be:25:9b:ca:60:0c:d8:71:5b:df:ca:e7:8e:04: ca:fe:8c:2c:d1:bf:a7:14:17:23:71:70:03:28:b7: 68:b6:07:13:db:46:f6:66:87:5c:e2:b2:a9:ee:65: 8b:bf:c4:98:5f:bd:d2:67:eb:94:28:ea:fd:67:1d: ff:e8:85:d1:cd:a1:b9:52:da:df:a7:68:78:46:d3: d9:8d:3d:e4:46:30:db:27:57:01:50:39:2a:bf:12: d8:2f:99:6a:a9:99:b3:4b:11:2f:bb:4e:3e:95:6d: 38:3d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:70:7A:45:59:2A:C9:D1:71:9A:85:76:96:03:17:78:29:B4:6E:0A X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f1/1446aa-6e41-45c0-b09a-32c3658b25be/1/5XB6RVkqydFxmoV2lgMXeCm0bgo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 93.189.64.0/21 IPv6: 2a02:410::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 12347 Signature Algorithm: sha256WithRSAEncryption 13:ad:f8:74:b1:b1:99:4c:9e:65:4d:29:b2:f9:be:27:17:d8: 9c:e8:cc:9e:0e:fe:a7:49:4d:31:53:57:0a:87:d6:75:4c:ef: 43:62:36:42:e0:b1:d2:f1:f9:a0:02:a6:e9:1a:da:b7:43:34: 16:24:88:5a:aa:f2:fb:72:52:16:68:33:4b:99:34:51:10:1a: d3:f0:b2:fb:bd:d2:f9:d1:8b:16:5c:13:9c:6e:03:9a:30:96: 6d:4a:1a:a8:e4:20:39:4a:06:c4:45:96:c4:e4:96:1c:7c:b0: 15:cd:b5:20:8d:25:4f:6b:f9:42:62:1d:e4:40:83:44:e4:c9: a5:2f:57:5a:cb:4f:e9:e0:d8:b0:d0:cf:13:7f:1c:75:3b:74: bd:5a:67:68:11:3c:7a:2e:79:3d:41:d4:aa:bf:d4:d6:2a:5d: d0:85:7e:f5:0f:30:bf:75:a8:aa:cb:9b:30:7c:c5:57:18:cb: 6f:6d:9c:36:42:84:58:d9:ec:1a:ac:57:45:c7:5b:a5:ba:31: f0:03:fa:97:25:25:52:10:04:8d:0d:c8:58:76:4b:71:db:70: c1:3e:f8:8c:ff:f3:1f:47:7b:58:d7:1c:cf:fb:94:27:92:87: 9f:6a:64:4f:10:04:ac:89:f5:5e:b5:29:d8:cf:96:f0:f9:50: e6:b8:e6:ba -----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgISAZt9ytFUnk2pWYhfAoWiBkQwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDgyMDAyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNTcwN2E0NTU5MmFjOWQxNzE5YTg1NzY5NjAzMTc3ODI5YjQ2ZTBhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRUf8LqjSyzh7RhMJhXYp53rFL/+ L2kSDehgP2u/18E5qkbCSkB30P7LzDeUELAtgIXgH3ml01jwC6EqX4xh8w3FwR7/ Y8t2fIgWzUxeVBGTcuYTdgpsMFnIcaVTsk3puq/f1apE/+alPbRmPV8kSRmXeHAv iuvexkcWt9k48bmruqaZB8NPNP4dvuHL31dQE3J69KuXviWbymAM2HFb38rnjgTK /ows0b+nFBcjcXADKLdotgcT20b2Zodc4rKp7mWLv8SYX73SZ+uUKOr9Zx3/6IXR zaG5Utrfp2h4RtPZjT3kRjDbJ1cBUDkqvxLYL5lqqZmzSxEvu04+lW04PQIDAQAB o4ICrjCCAqowHQYDVR0OBBYEFOVwekVZKsnRcZqFdpYDF3gptG4KMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YxLzE0NDZh YS02ZTQxLTQ1YzAtYjA5YS0zMmMzNjU4YjI1YmUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjEvMTQ0NmFh LTZlNDEtNDVjMC1iMDlhLTMyYzM2NThiMjViZS8xLzVYQjZSVmtxeWRGeG1vVjJs Z01YZUNtMGJnby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQDXb1AMA0EAgACMAcDBQAqAgQQMBkGCCsGAQUF BwEIAQH/BAowCKAGMAQCAjA7MA0GCSqGSIb3DQEBCwUAA4IBAQATrfh0sbGZTJ5l TSmy+b4nF9ic6MyeDv6nSU0xU1cKh9Z1TO9DYjZC4LHS8fmgAqbpGtq3QzQWJIha qvL7clIWaDNLmTRREBrT8LL7vdL50YsWXBOcbgOaMJZtShqo5CA5SgbERZbE5JYc fLAVzbUgjSVPa/lCYh3kQINE5MmlL1day0/p4Niw0M8Tfxx1O3S9WmdoETx6Lnk9 QdSqv9TWKl3QhX71DzC/daiqy5swfMVXGMtvbZw2QoRY2ewarFdFx1ulujHwA/qX JSVSEASNDchYdktx23DBPviM//MfR3tY1xzP+5QnkoefamRPEASsifVetSnYz5bw +VDmuOa6 -----END CERTIFICATE-----Generated at Mon Feb 9 15:04:44 2026 by rpki-client