This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/5xHIkR7brjbfGoC76BSyWg-UOfo.cer File: 5xHIkR7brjbfGoC76BSyWg-UOfo.cer (raw, json) Hash identifier: nD3GaFjvqloRDbbGrARVCnQkwaJt8sMpWX39eK0scWU= Subject key identifier: E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F832821A552DA293369C13D59D29EB5 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:21:00 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41464 IP: 194.9.46.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:83:28:21:a5:52:da:29:33:69:c1:3d:59:d2:9e:b5 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:21:00 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=e711c8911edbae36df1a80bbe814b25a0f9439fa Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:d1:62:43:e9:a9:ee:6d:d2:be:e2:32:28:8c: de:0e:31:87:1a:dc:dc:fd:4a:47:3c:82:8a:99:3d: ee:b0:f8:5e:f4:6a:e2:44:99:81:ce:98:1a:fc:0d: ad:33:96:30:be:92:bd:54:a8:07:fa:fe:f4:48:dd: 0f:61:f7:ad:5f:52:66:67:5d:bb:ac:9f:5e:4b:43: 71:76:fe:c1:ef:25:52:56:16:15:3f:9e:b1:fe:ae: e8:3b:66:28:c0:e8:89:be:06:92:dd:eb:b7:b1:2d: 47:6d:5b:8b:0d:04:3b:19:7a:ff:10:84:b0:9b:a1: 34:81:c9:84:a7:ea:6e:56:69:61:21:43:b4:af:59: 96:cf:e3:15:8d:b7:a0:74:d9:f6:8b:74:f1:af:5d: 68:74:17:b1:33:54:87:bf:d3:43:24:94:e9:6b:b9: 10:b9:14:b0:95:e3:f9:98:b1:92:a4:03:ea:af:78: 5a:0e:dd:ef:57:28:24:56:ff:ad:1d:80:29:6d:39: b6:57:41:68:19:7c:57:00:34:16:ca:52:96:84:95: f2:62:0c:8a:c3:de:17:5b:3f:ba:e1:83:e6:35:40: 35:9f:2a:34:f4:01:59:7e:b7:c3:99:ab:de:ef:96: 1b:8b:4b:cc:e2:4c:68:c2:f5:d4:39:a0:4c:db:24: 01:db Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: E7:11:C8:91:1E:DB:AE:36:DF:1A:80:BB:E8:14:B2:5A:0F:94:39:FA X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/fe/aafc15-1e79-4fe9-9fad-03a4dd4a9156/1/5xHIkR7brjbfGoC76BSyWg-UOfo.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.9.46.0/23 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41464 Signature Algorithm: sha256WithRSAEncryption 0c:e7:a3:a8:9e:83:f0:dc:7b:79:76:df:31:f2:85:d1:6d:43: b1:d2:01:23:a9:ba:3a:45:bb:46:86:51:be:32:cc:d1:af:ab: 75:71:0e:ba:25:73:35:83:25:bd:9c:7c:55:c3:57:a0:c8:9e: ce:da:9f:e4:df:43:dd:c4:d8:a4:12:87:d3:ce:dd:6a:65:31: 8a:a3:d8:41:75:a9:54:31:02:36:20:dc:15:0d:57:01:b7:0c: 77:6d:64:d6:4c:b3:02:c1:0a:1a:d8:93:47:b8:f1:10:ab:0e: a4:8c:70:b2:31:65:df:42:76:0b:4d:d0:ad:09:79:17:b8:8a: 6c:0b:f6:b3:21:7e:8b:d9:e0:ad:cb:b4:f0:39:d0:85:2e:cf: 30:62:e7:c6:98:af:35:6e:b3:3a:90:cf:b1:e3:18:98:a0:0d: 03:cf:a5:83:25:45:56:2b:08:86:de:23:04:49:b0:be:b5:49: 65:5b:26:5f:82:f4:a2:2c:7e:be:92:bc:84:96:13:89:b5:96: 59:22:b3:f0:0e:56:9a:e9:b5:b5:ac:23:ae:f5:aa:fb:ce:d3: 99:b9:fe:60:57:c6:6b:0f:cd:7a:c4:a5:ad:fa:42:b7:49:e4: 0d:df:50:26:13:52:c7:a5:9c:90:73:c7:78:49:61:1f:12:a2: b7:47:b5:fa -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt/gyghpVLaKTNpwT1Z0p61MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMTAwWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EyhlNzExYzg5MTFlZGJhZTM2ZGYxYTgwYmJlODE0YjI1YTBmOTQzOWZhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv9FiQ+mp7m3SvuIyKIzeDjGHGtzc /UpHPIKKmT3usPhe9GriRJmBzpga/A2tM5YwvpK9VKgH+v70SN0PYfetX1JmZ127 rJ9eS0Nxdv7B7yVSVhYVP56x/q7oO2YowOiJvgaS3eu3sS1HbVuLDQQ7GXr/EISw m6E0gcmEp+puVmlhIUO0r1mWz+MVjbegdNn2i3Txr11odBexM1SHv9NDJJTpa7kQ uRSwleP5mLGSpAPqr3haDt3vVygkVv+tHYApbTm2V0FoGXxXADQWylKWhJXyYgyK w94XWz+64YPmNUA1nyo09AFZfrfDmave75Ybi0vM4kxowvXUOaBM2yQB2wIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFOcRyJEe26423xqAu+gUsloPlDn6MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2ZlL2FhZmMx NS0xZTc5LTRmZTktOWZhZC0wM2E0ZGQ0YTkxNTYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZmUvYWFmYzE1 LTFlNzktNGZlOS05ZmFkLTAzYTRkZDRhOTE1Ni8xLzV4SElrUjdicmpiZkdvQzc2 QlN5V2ctVU9mby5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBwgkuMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCh+DANBgkqhkiG9w0BAQsFAAOCAQEADOejqJ6D8Nx7eXbfMfKF0W1DsdIBI6m6 OkW7RoZRvjLM0a+rdXEOuiVzNYMlvZx8VcNXoMieztqf5N9D3cTYpBKH087damUx iqPYQXWpVDECNiDcFQ1XAbcMd21k1kyzAsEKGtiTR7jxEKsOpIxwsjFl30J2C03Q rQl5F7iKbAv2syF+i9ngrcu08DnQhS7PMGLnxpivNW6zOpDPseMYmKANA8+lgyVF VisIht4jBEmwvrVJZVsmX4L0oix+vpK8hJYTibWWWSKz8A5Wmum1tawjrvWq+87T mbn+YFfGaw/NesSlrfpCt0nkDd9QJhNSx6WckHPHeElhHxKit0e1+g== -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:14 2026 by rpki-client