This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5qirioB4uztX5W_3wL1Npj7oLIs.cer File: 5qirioB4uztX5W_3wL1Npj7oLIs.cer (raw, json) Hash identifier: 787zC+3zogsibNOjHfy1KfUhmlZBHVx2XY6w3sMle0s= Subject key identifier: E6:A8:AB:8A:80:78:BB:3B:57:E5:6F:F7:C0:BD:4D:A6:3E:E8:2C:8B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B77C732B4EC016365B6C4F07468624C0E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/26/228e16-f808-4471-a984-364ee2859f2c/1/5qirioB4uztX5W_3wL1Npj7oLIs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/26/228e16-f808-4471-a984-364ee2859f2c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 04:18:21 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 60086 IP: 185.59.0.0/22 IP: 2a02:66a0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:77:c7:32:b4:ec:01:63:65:b6:c4:f0:74:68:62:4c:0e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 04:18:21 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e6a8ab8a8078bb3b57e56ff7c0bd4da63ee82c8b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e8:0d:da:d8:05:87:95:aa:92:6f:1d:a1:c5:eb: f4:41:47:6a:08:a8:1a:04:61:85:75:93:cf:b8:4e: d8:3b:a1:c8:6b:02:bf:e7:ae:1c:6b:34:8f:58:60: 7c:9b:03:9d:d5:b6:52:9b:ba:99:0a:5f:b1:40:86: 44:99:69:69:35:a3:a3:1f:08:66:37:27:77:e6:46: b1:4a:52:a4:60:e0:cf:65:37:77:ba:62:e6:17:09: f4:80:79:d2:52:e4:6d:b6:e7:cb:3e:57:ba:a9:d7: 40:f0:64:5d:14:8e:50:49:7b:ec:f0:2a:8d:b5:71: c0:c6:63:b3:14:07:96:83:7e:19:ac:a4:f6:c4:64: a0:2f:8a:5b:69:34:1c:c1:9c:e0:5c:9a:42:07:3d: 05:87:ae:db:6f:ac:bd:b2:c5:92:ea:5a:23:3c:8f: 73:7f:b0:3f:fd:1c:29:37:58:ee:bb:37:68:62:b7: be:0b:ba:b4:fd:0a:48:9e:43:f4:b9:e0:83:7d:01: 48:6d:84:d1:71:28:29:b3:44:c2:75:22:0b:7a:97: 5d:d6:36:80:00:24:5e:ff:2b:c5:e8:f5:01:44:38: 16:68:09:33:20:f8:92:54:5a:a0:f5:e1:db:6f:a1: 46:e9:b6:6e:fe:44:63:10:62:bb:66:0d:d8:9f:a5: b5:57 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E6:A8:AB:8A:80:78:BB:3B:57:E5:6F:F7:C0:BD:4D:A6:3E:E8:2C:8B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/228e16-f808-4471-a984-364ee2859f2c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/26/228e16-f808-4471-a984-364ee2859f2c/1/5qirioB4uztX5W_3wL1Npj7oLIs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.59.0.0/22 IPv6: 2a02:66a0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 60086 Signature Algorithm: sha256WithRSAEncryption 73:04:5c:30:99:3b:9a:25:43:34:93:bb:6c:ff:3c:95:2f:c7: 57:c1:9b:20:51:f3:c6:55:e8:dd:e5:a0:e9:9a:ac:d3:0d:d7: f1:95:f1:71:95:f0:9e:79:b5:ec:c3:13:87:a5:36:79:f0:54: 08:28:01:c7:4a:50:e5:53:1d:ff:2e:bc:93:d1:12:61:15:1e: d0:a6:e2:4b:d6:7f:58:0f:06:3e:75:81:64:c8:c0:19:f4:f2: 20:c9:15:91:ff:48:3e:f2:05:a5:08:8b:50:01:56:1a:c6:58: ff:75:f1:1a:7a:9b:cb:28:1f:f2:26:19:9e:4c:27:cd:76:86: 1b:dd:81:b3:50:40:db:cf:7e:ac:90:bb:bf:57:4e:35:fe:6c: 3f:4f:b7:28:3b:3a:d9:d5:70:41:76:9d:4b:b8:8a:a6:c1:83: 77:2c:44:55:f5:aa:4f:0b:13:8c:4b:39:c8:51:11:31:86:4c: 40:f6:42:0e:54:89:27:3e:8c:84:93:4e:41:4c:4f:76:52:c8: 81:85:8e:95:cc:73:bf:a1:b9:52:24:fa:e8:e5:0c:a9:4c:b8: 43:87:d3:a3:fa:90:a2:b4:1d:59:b9:e4:43:d8:cd:7f:44:97: bc:96:91:67:f9:ba:49:87:58:39:ea:86:2c:db:73:e3:13:6d: a2:f6:92:4b -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt3xzK07AFjZbbE8HRoYkwOMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDQxODIxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNmE4YWI4YTgwNzhiYjNiNTdlNTZmZjdjMGJkNGRhNjNlZTgyYzhiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6A3a2AWHlaqSbx2hxev0QUdqCKga BGGFdZPPuE7YO6HIawK/564cazSPWGB8mwOd1bZSm7qZCl+xQIZEmWlpNaOjHwhm Nyd35kaxSlKkYODPZTd3umLmFwn0gHnSUuRttufLPle6qddA8GRdFI5QSXvs8CqN tXHAxmOzFAeWg34ZrKT2xGSgL4pbaTQcwZzgXJpCBz0Fh67bb6y9ssWS6lojPI9z f7A//RwpN1juuzdoYre+C7q0/QpInkP0ueCDfQFIbYTRcSgps0TCdSILepdd1jaA ACRe/yvF6PUBRDgWaAkzIPiSVFqg9eHbb6FG6bZu/kRjEGK7Zg3Yn6W1VwIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFOaoq4qAeLs7V+Vv98C9TaY+6CyLMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI2LzIyOGUx Ni1mODA4LTQ0NzEtYTk4NC0zNjRlZTI4NTlmMmMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjYvMjI4ZTE2 LWY4MDgtNDQ3MS1hOTg0LTM2NGVlMjg1OWYyYy8xLzVxaXJpb0I0dXp0WDVXXzN3 TDFOcGo3b0xJcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuTsAMA0EAgACMAcDBQAqAmagMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDqtjANBgkqhkiG9w0BAQsFAAOCAQEAcwRcMJk7miVD NJO7bP88lS/HV8GbIFHzxlXo3eWg6Zqs0w3X8ZXxcZXwnnm17MMTh6U2efBUCCgB x0pQ5VMd/y68k9ESYRUe0KbiS9Z/WA8GPnWBZMjAGfTyIMkVkf9IPvIFpQiLUAFW GsZY/3XxGnqbyygf8iYZnkwnzXaGG92Bs1BA289+rJC7v1dONf5sP0+3KDs62dVw QXadS7iKpsGDdyxEVfWqTwsTjEs5yFERMYZMQPZCDlSJJz6MhJNOQUxPdlLIgYWO lcxzv6G5UiT66OUMqUy4Q4fTo/qQorQdWbnkQ9jNf0SXvJaRZ/m6SYdYOeqGLNtz 4xNtovaSSw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:32 2026 by rpki-client