This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5nvBKzaFcW2O9lZ-IZBBlDd74eU.cer File: 5nvBKzaFcW2O9lZ-IZBBlDd74eU.cer (raw, json) Hash identifier: X3So2fspXvzhpEgHFaMvL+TvzoWkS674T85hjpLiF0Q= Subject key identifier: E6:7B:C1:2B:36:85:71:6D:8E:F6:56:7E:21:90:41:94:37:7B:E1:E5 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F15D1E53EE3A8FCCEE484275CF3C0B2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/5nvBKzaFcW2O9lZ-IZBBlDd74eU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:35 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207074 IP: 185.166.148.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:d1:e5:3e:e3:a8:fc:ce:e4:84:27:5c:f3:c0:b2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:35 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e67bc12b3685716d8ef6567e21904194377be1e5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:cf:fb:1b:9f:d2:2c:94:58:e8:97:f0:4e:b3: 3f:d4:d5:e6:aa:ab:60:f3:86:88:ed:17:e2:8e:17: f0:c2:91:54:c0:6b:be:67:35:03:03:59:fe:ce:37: 88:b8:db:07:5a:ad:e3:f6:3d:b9:71:83:36:38:f8: a4:eb:41:80:ba:1a:b6:88:d8:1d:41:7f:4f:b6:dc: 12:d6:c1:b1:ba:b5:85:2f:cc:13:e1:06:cc:d0:77: bb:fd:81:6a:74:f6:20:3c:55:8c:2a:b9:2a:7b:29: 33:75:3d:df:be:68:79:e4:d1:59:e7:af:08:bf:fd: b9:14:4e:09:22:78:79:c7:1d:44:82:2b:b8:02:44: 34:22:52:29:dc:0d:33:f6:6c:1a:e8:5c:4c:33:cc: 21:f0:52:7e:f2:2b:ad:72:4f:fa:e4:ea:1f:d6:92: 68:66:43:90:f9:62:f2:c4:71:72:9d:f1:aa:b4:ab: 31:f3:72:2f:bc:35:28:bd:c6:ae:96:47:ee:d5:48: 0a:b1:bf:41:48:bb:b3:ea:dd:0e:e0:0e:63:fe:fc: b6:33:49:1e:a6:90:a8:f3:0c:f0:7a:b0:ea:f2:b0: ef:b4:21:29:16:65:28:83:b8:ba:e3:81:8b:0c:ba: 10:ad:ef:bd:77:43:1b:93:57:2e:ca:00:77:79:55: 33:33 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:7B:C1:2B:36:85:71:6D:8E:F6:56:7E:21:90:41:94:37:7B:E1:E5 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/e1/6afa85-367a-4efd-a311-41172b249740/1/5nvBKzaFcW2O9lZ-IZBBlDd74eU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.166.148.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207074 Signature Algorithm: sha256WithRSAEncryption b0:53:90:d5:5b:1d:c4:77:db:01:db:f6:e3:5a:1a:c0:b4:8a: c7:68:1f:29:ce:09:15:81:ad:c8:92:2a:ca:86:1a:e5:43:6c: 3c:e3:2c:ee:8d:a2:d9:54:b9:38:32:3f:5a:3d:56:83:7a:af: 35:c6:3d:86:38:67:c4:cc:ef:3d:b0:1f:8a:b5:18:0c:29:e9: 4d:29:d7:7d:20:17:45:b0:9d:0e:e0:b3:33:7f:c5:9c:dd:88: f8:f5:2a:0e:76:13:8b:3b:b5:2d:eb:08:a0:5d:bc:24:4f:da: f6:b9:a8:c8:6f:67:70:c8:e0:a3:c9:f0:45:99:f7:24:ab:4a: 67:d1:fa:46:46:b4:52:94:f4:a9:9e:ad:29:4e:dd:1e:57:af: d0:de:f5:fa:7f:e3:e4:9b:72:92:13:70:b9:15:28:92:53:19: a6:79:38:a0:28:c8:0f:79:8a:4e:c2:83:4c:53:62:88:3a:eb: 32:19:40:5f:82:ac:65:a4:2b:cb:a1:0b:41:57:f6:a6:84:86: 0c:40:bb:79:22:e5:ab:23:09:e9:e3:55:57:aa:0d:e3:39:56: 2e:fc:ea:bc:32:50:8a:66:75:33:7f:57:46:f0:7e:74:a2:bb: 1c:03:54:7a:20:70:f0:8f:02:6a:3a:1d:b8:fa:3a:c1:0c:c1: 26:c6:03:68 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt/FdHlPuOo/M7khCdc88CyMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTM1WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNjdiYzEyYjM2ODU3MTZkOGVmNjU2N2UyMTkwNDE5NDM3N2JlMWU1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8/7G5/SLJRY6JfwTrM/1NXmqqtg 84aI7RfijhfwwpFUwGu+ZzUDA1n+zjeIuNsHWq3j9j25cYM2OPik60GAuhq2iNgd QX9PttwS1sGxurWFL8wT4QbM0He7/YFqdPYgPFWMKrkqeykzdT3fvmh55NFZ568I v/25FE4JInh5xx1Egiu4AkQ0IlIp3A0z9mwa6FxMM8wh8FJ+8iutck/65Oof1pJo ZkOQ+WLyxHFynfGqtKsx83IvvDUovcaulkfu1UgKsb9BSLuz6t0O4A5j/vy2M0ke ppCo8wzwerDq8rDvtCEpFmUog7i644GLDLoQre+9d0Mbk1cuygB3eVUzMwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFOZ7wSs2hXFtjvZWfiGQQZQ3e+HlMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2UxLzZhZmE4 NS0zNjdhLTRlZmQtYTMxMS00MTE3MmIyNDk3NDAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZTEvNmFmYTg1 LTM2N2EtNGVmZC1hMzExLTQxMTcyYjI0OTc0MC8xLzVudkJLemFGY1cyTzlsWi1J WkJCbERkNzRlVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCuaaUMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMo4jANBgkqhkiG9w0BAQsFAAOCAQEAsFOQ1VsdxHfbAdv241oawLSKx2gfKc4J FYGtyJIqyoYa5UNsPOMs7o2i2VS5ODI/Wj1Wg3qvNcY9hjhnxMzvPbAfirUYDCnp TSnXfSAXRbCdDuCzM3/FnN2I+PUqDnYTizu1LesIoF28JE/a9rmoyG9ncMjgo8nw RZn3JKtKZ9H6Rka0UpT0qZ6tKU7dHlev0N71+n/j5JtykhNwuRUoklMZpnk4oCjI D3mKTsKDTFNiiDrrMhlAX4KsZaQry6ELQVf2poSGDEC7eSLlqyMJ6eNVV6oN4zlW LvzqvDJQimZ1M39XRvB+dKK7HANUeiBw8I8CajoduPo6wQzBJsYDaA== -----END CERTIFICATE-----Generated at Mon Feb 9 16:50:21 2026 by rpki-client