This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5XKe6JY2ujT-Vr1y51j1gq3nDlI.cer File: 5XKe6JY2ujT-Vr1y51j1gq3nDlI.cer (raw, json) Hash identifier: tcR86f1W/A+BoYn6uanFTv4q6s2Pi+zmBNBAMXKgE1g= Subject key identifier: E5:72:9E:E8:96:36:BA:34:FE:56:BD:72:E7:58:F5:82:AD:E7:0E:52 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C6D50371A41391E5B263CBA932F8F1 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e7/a17ae7-8e86-43fd-b850-c138bd1c171e/1/5XKe6JY2ujT-Vr1y51j1gq3nDlI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e7/a17ae7-8e86-43fd-b850-c138bd1c171e/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:17:58 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206910 IP: 185.172.84.0/22 IP: 2a0b:b00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c6:d5:03:71:a4:13:91:e5:b2:63:cb:a9:32:f8:f1 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:17:58 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e5729ee89636ba34fe56bd72e758f582ade70e52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:a4:86:85:cc:46:41:b1:b4:eb:d1:73:12:3c:c5: 5f:f9:54:df:48:84:09:47:04:f1:95:df:fa:84:90: 4b:25:26:0e:8c:e5:bd:fc:34:1a:11:c3:d3:0c:a3: a9:f1:f0:50:a8:8c:4c:e0:30:ff:fe:99:e8:86:3d: 6a:92:aa:e2:ef:a2:22:59:56:c8:cb:70:8c:57:0b: b4:bf:b5:55:3c:d5:58:fc:be:78:90:bf:27:8a:66: 58:05:69:69:07:b1:60:19:ac:a5:9b:e5:e6:42:b4: d6:f9:e5:ff:b3:d1:33:b7:a9:9c:11:50:3b:6b:9c: 78:88:a6:c6:78:0d:eb:65:af:7e:39:f8:53:ef:33: c4:09:7b:0c:0c:cc:8b:7d:6b:cc:64:f9:80:6a:ff: 0d:ba:02:c3:7a:e7:53:84:94:b4:e2:97:02:ed:70: 93:80:05:41:2d:8d:e5:eb:c6:dc:be:98:06:b2:55: 00:1f:d7:01:ed:7a:7a:a4:d8:06:5b:48:8b:e7:84: ea:b9:3b:22:be:9e:09:c4:01:32:44:4a:ca:b8:8b: 14:d3:e2:92:70:03:b1:4d:31:28:8d:52:25:e7:f1: b0:65:99:67:3f:6b:7d:d6:82:e3:ff:ed:70:89:f6: 11:6b:7b:71:f2:ae:0d:fe:c1:e2:ab:42:ce:60:2e: 41:ad Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E5:72:9E:E8:96:36:BA:34:FE:56:BD:72:E7:58:F5:82:AD:E7:0E:52 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a17ae7-8e86-43fd-b850-c138bd1c171e/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e7/a17ae7-8e86-43fd-b850-c138bd1c171e/1/5XKe6JY2ujT-Vr1y51j1gq3nDlI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.172.84.0/22 IPv6: 2a0b:b00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206910 Signature Algorithm: sha256WithRSAEncryption 6b:9d:33:08:da:75:2e:19:e0:c5:cb:7d:83:3b:bf:a2:58:13: fc:6c:da:bc:27:4c:5e:d6:fe:f9:c0:13:ad:6f:26:16:5c:3d: 9f:44:a7:c5:6b:d7:2f:fe:8e:76:91:da:0a:87:56:1c:0b:c1: aa:91:0f:68:27:bd:98:a8:ca:a0:83:21:b2:e7:69:6b:68:c4: 54:04:3d:3c:38:29:38:9e:85:b8:82:2f:e5:6e:0d:9a:98:08: c3:cc:83:78:29:a3:4c:d9:cd:ac:02:66:a2:d9:a4:d5:11:bc: 92:32:38:57:9a:fa:3d:c3:77:61:13:3f:72:29:85:b5:8a:95: 2b:e1:48:14:45:44:b4:26:fd:0c:a4:df:a6:77:41:f8:c0:a9: 4d:df:44:8f:07:76:21:59:07:bd:23:2e:91:41:dc:e8:c0:ad: 82:b2:4a:cd:59:25:67:f3:18:40:3e:90:44:4d:67:02:0c:d1: 1a:f0:67:b8:08:45:55:88:7f:ae:63:6a:d3:01:85:14:36:65: 45:0d:21:c4:b2:fc:7f:a1:eb:b1:47:aa:50:96:36:1c:2c:c2: 7d:d1:fb:8f:de:de:51:7c:cb:11:95:45:5c:00:c8:b2:13:4d: 0d:14:89:15:03:26:e9:04:4d:1d:89:34:60:18:05:b7:95:dd: 0e:a3:d1:c0 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3xtUDcaQTkeWyY8upMvjxMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxNzU4WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNTcyOWVlODk2MzZiYTM0ZmU1NmJkNzJlNzU4ZjU4MmFkZTcwZTUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIaFzEZBsbTr0XMSPMVf+VTfSIQJ RwTxld/6hJBLJSYOjOW9/DQaEcPTDKOp8fBQqIxM4DD//pnohj1qkqri76IiWVbI y3CMVwu0v7VVPNVY/L54kL8nimZYBWlpB7FgGaylm+XmQrTW+eX/s9Ezt6mcEVA7 a5x4iKbGeA3rZa9+OfhT7zPECXsMDMyLfWvMZPmAav8NugLDeudThJS04pcC7XCT gAVBLY3l68bcvpgGslUAH9cB7Xp6pNgGW0iL54TquTsivp4JxAEyRErKuIsU0+KS cAOxTTEojVIl5/GwZZlnP2t91oLj/+1wifYRa3tx8q4N/sHiq0LOYC5BrQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFOVynuiWNro0/la9cudY9YKt5w5SMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2U3L2ExN2Fl Ny04ZTg2LTQzZmQtYjg1MC1jMTM4YmQxYzE3MWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTcvYTE3YWU3 LThlODYtNDNmZC1iODUwLWMxMzhiZDFjMTcxZS8xLzVYS2U2SlkydWpULVZyMXk1 MWoxZ3EzbkRsSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuaxUMA0EAgACMAcDBQMqCwsAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMoPjANBgkqhkiG9w0BAQsFAAOCAQEAa50zCNp1Lhng xct9gzu/olgT/GzavCdMXtb++cATrW8mFlw9n0SnxWvXL/6OdpHaCodWHAvBqpEP aCe9mKjKoIMhsudpa2jEVAQ9PDgpOJ6FuIIv5W4NmpgIw8yDeCmjTNnNrAJmotmk 1RG8kjI4V5r6PcN3YRM/cimFtYqVK+FIFEVEtCb9DKTfpndB+MCpTd9Ejwd2IVkH vSMukUHc6MCtgrJKzVklZ/MYQD6QRE1nAgzRGvBnuAhFVYh/rmNq0wGFFDZlRQ0h xLL8f6HrsUeqUJY2HCzCfdH7j97eUXzLEZVFXADIshNNDRSJFQMm6QRNHYk0YBgF t5XdDqPRwA== -----END CERTIFICATE-----Generated at Mon Feb 9 15:14:36 2026 by rpki-client