This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5hwHyVFIjwTLOw_TOK-E135Gv1I.cer File: 5hwHyVFIjwTLOw_TOK-E135Gv1I.cer (raw, json) Hash identifier: Du33OOTc3AXZX3vCNDKd42D5LsYY/JWv67aDZSZ4sRY= Subject key identifier: E6:1C:07:C9:51:48:8F:04:CB:3B:0F:D3:38:AF:84:D7:7E:46:BF:52 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F83CA47DEDDB38B0714192ABFC9E320 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/5hwHyVFIjwTLOw_TOK-E135Gv1I.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:21:42 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 15507 AS: 31242 AS: 39603 AS: 41642 AS: 42900 AS: 49269 AS: 49873 AS: 50481 AS: 197903 AS: 201019 AS: 203435 IP: 5.173.0.0/16 IP: 31.43.176.0/23 IP: 31.172.176.0/20 IP: 31.174.0.0/15 IP: 46.112.0.0/15 IP: 83.175.162.0/24 IP: 83.175.166.0/24 IP: 84.205.167.0 -- 84.205.169.255 IP: 84.205.176.0 -- 84.205.181.255 IP: 84.205.184.0 -- 84.205.186.255 IP: 84.205.188.0/22 IP: 85.14.64.0/18 IP: 89.25.128.0/17 IP: 89.108.192.0/18 IP: 91.90.176.0/20 IP: 91.192.225.0/24 IP: 91.193.184.0/22 IP: 91.195.42.0/23 IP: 91.227.199.0 -- 91.227.203.255 IP: 93.179.192.0/18 IP: 94.254.128.0/17 IP: 109.232.242.0/24 IP: 109.243.0.0/16 IP: 119.12.16.0/20 IP: 164.126.0.0/15 IP: 178.219.20.0 -- 178.219.31.255 IP: 185.54.184.0/22 IP: 185.89.184.0/22 IP: 185.135.0.0/22 IP: 185.219.200.0/22 IP: 188.33.0.0/16 IP: 188.117.128.0/18 IP: 193.106.244.0/22 IP: 193.108.34.0/23 IP: 193.201.36.0/24 IP: 194.150.96.0/22 IP: 195.242.69.0/24 IP: 205.201.55.0/24 IP: 213.179.72.0/22 IP: 2001:678:b18::/48 IP: 2a00:13a0::/32 IP: 2a00:1980::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:ca:47:de:dd:b3:8b:07:14:19:2a:bf:c9:e3:20 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:21:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e61c07c951488f04cb3b0fd338af84d77e46bf52 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:2a:68:d8:2d:84:3f:20:13:db:d3:ca:14:5e: 50:c1:1c:7a:24:a1:3c:8b:3c:ba:91:7d:01:48:85: 5a:58:89:a5:6a:41:1f:4b:8b:e9:fa:c6:98:cf:ba: a5:83:7a:5a:a9:1f:20:3b:01:30:a7:87:37:74:66: c5:e2:b8:99:73:1e:2a:e5:46:1d:7f:40:7f:11:50: 9e:dd:e1:4a:35:1e:72:26:65:0f:f7:2f:53:6e:4f: ec:44:d4:fd:aa:46:5d:a0:bf:0d:2b:aa:a3:6b:85: 49:d2:34:a1:84:76:00:a6:8c:c2:60:6e:07:a5:77: b1:96:1b:05:9f:fd:01:85:78:11:b9:7b:31:75:34: f4:9e:d8:3a:5f:e1:33:4a:0f:fe:67:b2:96:cc:cb: cb:0c:60:ff:2d:9c:6a:b6:0c:2d:0d:02:87:c5:4f: ba:5f:6a:71:1e:26:91:4b:db:cc:7d:a0:fc:a4:aa: 11:f3:0d:c9:2b:54:e4:e1:18:0c:56:f2:b3:a5:72: 03:4b:c7:f9:22:c4:4f:46:5e:4d:a3:85:e9:41:f3: fa:d6:03:30:06:89:99:a1:a9:71:60:c0:9b:a8:dd: 6f:42:d3:52:79:d4:bd:e7:f2:2b:52:29:d2:9c:3c: 71:f9:e8:c9:8c:f5:c6:06:be:cb:99:67:f9:06:94: dd:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:1C:07:C9:51:48:8F:04:CB:3B:0F:D3:38:AF:84:D7:7E:46:BF:52 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bc/2dba5c-9a90-4052-a1eb-6a8477cb6c2a/1/5hwHyVFIjwTLOw_TOK-E135Gv1I.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.173.0.0/16 31.43.176.0/23 31.172.176.0/20 31.174.0.0/15 46.112.0.0/15 83.175.162.0/24 83.175.166.0/24 84.205.167.0-84.205.169.255 84.205.176.0-84.205.181.255 84.205.184.0-84.205.186.255 84.205.188.0/22 85.14.64.0/18 89.25.128.0/17 89.108.192.0/18 91.90.176.0/20 91.192.225.0/24 91.193.184.0/22 91.195.42.0/23 91.227.199.0-91.227.203.255 93.179.192.0/18 94.254.128.0/17 109.232.242.0/24 109.243.0.0/16 119.12.16.0/20 164.126.0.0/15 178.219.20.0-178.219.31.255 185.54.184.0/22 185.89.184.0/22 185.135.0.0/22 185.219.200.0/22 188.33.0.0/16 188.117.128.0/18 193.106.244.0/22 193.108.34.0/23 193.201.36.0/24 194.150.96.0/22 195.242.69.0/24 205.201.55.0/24 213.179.72.0/22 IPv6: 2001:678:b18::/48 2a00:13a0::/32 2a00:1980::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 15507 31242 39603 41642 42900 49269 49873 50481 197903 201019 203435 Signature Algorithm: sha256WithRSAEncryption 5c:e4:17:9f:2a:d1:92:1c:1c:22:5b:92:c3:bb:58:a3:3f:76: 50:4a:ab:ce:13:f7:64:50:db:15:41:60:b0:99:e8:38:4c:fb: 2e:d9:8a:ae:12:d3:ae:3f:4e:c4:9f:6d:a9:5c:cf:83:86:3e: c2:d7:fd:43:e7:88:f5:ad:c2:3d:53:12:2f:dc:65:c0:ad:98: 4c:50:9b:cc:ae:b0:d8:75:53:7a:2d:49:40:d7:3f:05:5b:69: dc:40:61:3c:15:05:1a:0b:d4:9d:c8:86:a7:fe:bb:0c:e3:81: 71:60:bb:c9:ed:00:7a:4e:a5:87:e5:5a:63:84:88:c0:2b:04: d4:55:7f:3e:54:44:4d:46:bd:7c:8a:82:ec:b5:3d:09:5d:0d: a0:1c:a1:a0:33:76:18:e3:1d:03:dd:da:d9:6e:db:19:40:d5: 2d:3b:2e:dc:91:0b:5e:71:e2:b6:a7:95:57:81:e4:71:6e:3e: 4a:e9:a2:96:f7:ac:2e:4b:0d:dc:57:df:97:33:f8:fa:37:d4: b2:b0:38:08:8e:38:fd:f0:aa:72:2a:53:6a:d8:f8:c8:9f:92: 80:f0:de:1b:76:ce:dc:41:08:ff:a2:c1:77:f1:6d:13:40:b0: 85:d8:da:8f:bc:65:55:70:cb:ed:a6:17:7a:ea:bd:b7:9d:94: 4e:ad:79:95 -----BEGIN CERTIFICATE----- MIIG8zCCBdugAwIBAgISAZt/g8pH3t2ziwcUGSq/yeMgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMTQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjFjMDdjOTUxNDg4ZjA0Y2IzYjBmZDMzOGFmODRkNzdlNDZiZjUyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxypo2C2EPyAT29PKFF5QwRx6JKE8 izy6kX0BSIVaWImlakEfS4vp+saYz7qlg3paqR8gOwEwp4c3dGbF4riZcx4q5UYd f0B/EVCe3eFKNR5yJmUP9y9Tbk/sRNT9qkZdoL8NK6qja4VJ0jShhHYApozCYG4H pXexlhsFn/0BhXgRuXsxdTT0ntg6X+EzSg/+Z7KWzMvLDGD/LZxqtgwtDQKHxU+6 X2pxHiaRS9vMfaD8pKoR8w3JK1Tk4RgMVvKzpXIDS8f5IsRPRl5No4XpQfP61gMw BomZoalxYMCbqN1vQtNSedS95/IrUinSnDxx+ejJjPXGBr7LmWf5BpTdfQIDAQAB o4ID/zCCA/swHQYDVR0OBBYEFOYcB8lRSI8EyzsP0zivhNd+Rr9SMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JjLzJkYmE1 Yy05YTkwLTQwNTItYTFlYi02YTg0NzdjYjZjMmEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmMvMmRiYTVj LTlhOTAtNDA1Mi1hMWViLTZhODQ3N2NiNmMyYS8xLzVod0h5VkZJandUTE93X1RP Sy1FMTM1R3YxSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMIIBTAYIKwYB BQUHAQcBAf8EggE7MIIBNzCCARQEAgABMIIBDAMDAAWtAwQBHyuwAwQEH6ywAwMB H64DAwEucAMEAFOvogMEAFOvpjAMAwQAVM2nAwQBVM2oMAwDBARUzbADBAFUzbQw DAMEA1TNuAMEAFTNugMEAlTNvAMEBlUOQAMEB1kZgAMEBllswAMEBFtasAMEAFvA 4QMEAlvBuAMEAVvDKjAMAwQAW+PHAwQCW+PIAwQGXbPAAwQHXv6AAwQAbejyAwMA bfMDBAR3DBADAwGkfjAMAwQCstsUAwQFstsAAwQCuTa4AwQCuVm4AwQCuYcAAwQC udvIAwMAvCEDBAa8dYADBALBavQDBAHBbCIDBADBySQDBALClmADBADD8kUDBADN yTcDBALVs0gwHQQCAAIwFwMHACABBngLGAMFACoAE6ADBQMqABmAMEoGCCsGAQUF BwEIAQH/BDswOaA3MDUCAjyTAgJ6CgIDAJqzAgMAoqoCAwCnlAIDAMB1AgMAwtEC AwDFMQIDAwUPAgMDETsCAwMaqzANBgkqhkiG9w0BAQsFAAOCAQEAXOQXnyrRkhwc IluSw7tYoz92UEqrzhP3ZFDbFUFgsJnoOEz7LtmKrhLTrj9OxJ9tqVzPg4Y+wtf9 Q+eI9a3CPVMSL9xlwK2YTFCbzK6w2HVTei1JQNc/BVtp3EBhPBUFGgvUnciGp/67 DOOBcWC7ye0Aek6lh+VaY4SIwCsE1FV/PlRETUa9fIqC7LU9CV0NoByhoDN2GOMd A93a2W7bGUDVLTsu3JELXnHitqeVV4HkcW4+SumilvesLksN3FfflzP4+jfUsrA4 CI44/fCqcipTatj4yJ+SgPDeG3bO3EEI/6LBd/FtE0Cwhdjaj7xlVXDL7aYXeuq9 t52UTq15lQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:42 2026 by rpki-client