This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/AAtPqsebsZaQw69aB4xssUqRrUI.cer File: AAtPqsebsZaQw69aB4xssUqRrUI.cer (raw, json) Hash identifier: 55/oKFzJGjKbxhKpnYegVqfnpSAxUeC5YB0Muh1hHcs= Subject key identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5C6CEA489570E58FF27969D9BAF4F6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:19:27 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 52054 IP: 185.156.192.0/22 IP: 2a03:afa0::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:6c:ea:48:95:70:e5:8f:f2:79:69:d9:ba:f4:f6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:19:27 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=000b4faac79bb19690c3af5a078c6cb14a91ad42 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7b:43:14:6d:c2:b3:5c:02:d6:b5:3e:9d:34: dc:11:08:81:4e:cd:c6:aa:31:fd:84:dd:ad:1b:95: 2f:b5:6f:8d:16:8b:5e:c0:5d:52:42:f2:0a:a5:24: 7b:06:a2:9b:b1:49:3f:73:05:b5:cf:2f:d9:2a:8a: 02:a9:96:4e:5c:2d:e3:88:cb:2c:74:90:cc:d3:3f: b9:28:f4:d3:da:10:79:6a:80:24:5e:61:ed:7a:70: 3d:3f:83:81:f9:3b:b4:5b:95:9e:27:65:56:f1:58: 86:6b:6c:3c:28:ee:f1:fe:4d:11:ca:8f:95:b7:8e: ff:cf:42:56:a5:a4:53:32:45:f5:68:cf:9f:fc:55: 4e:57:f2:1a:3e:c3:9c:c7:0f:c6:0a:4c:42:3b:81: 1a:10:18:5f:3c:cd:23:a6:94:dd:90:f1:99:24:82: 96:8a:9c:3a:18:e7:42:a7:59:da:19:11:7f:63:b3: bc:b8:a5:29:35:26:62:63:f3:41:e4:27:f7:f4:40: d6:ab:92:e2:44:53:aa:8d:8a:ab:5e:44:5f:ad:a2: e4:aa:a8:14:b0:64:5c:5d:16:0a:9b:7c:0d:47:c7: eb:9b:c9:22:88:f4:d9:8c:d0:96:45:08:cf:f6:d5: 87:33:87:8a:2a:9d:b3:ce:7f:7d:65:9b:5d:a2:f1: a0:61 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 00:0B:4F:AA:C7:9B:B1:96:90:C3:AF:5A:07:8C:6C:B1:4A:91:AD:42 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/51/990bb5-fe42-4985-9caf-a096eecda793/1/AAtPqsebsZaQw69aB4xssUqRrUI.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.156.192.0/22 IPv6: 2a03:afa0::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 52054 Signature Algorithm: sha256WithRSAEncryption 70:3c:2d:6d:52:d8:6f:89:e2:34:ed:18:49:b4:95:cc:85:76: da:60:e7:0a:12:63:16:90:a6:ad:c3:cc:27:c2:7a:ca:0c:ad: ac:be:67:29:33:97:e3:7c:06:37:26:42:19:5e:26:72:6e:09: e6:3e:cd:d4:7a:aa:e0:74:29:05:44:8b:0b:78:37:a7:fb:5b: be:d9:f0:82:a5:78:00:a4:da:2b:8c:43:21:4c:47:3c:f7:04: 08:aa:98:f6:69:e6:12:30:69:94:0f:a9:95:18:55:9e:c5:18: 2b:d4:6b:f1:3f:9b:20:21:72:e1:82:e4:3a:89:0b:cc:c1:a5: 07:40:1e:9d:8b:1b:f9:04:9f:c3:ca:54:77:fc:c1:46:0c:59: 5c:9a:7e:8a:58:d7:2e:d8:5b:03:a5:6f:bf:4a:d9:c9:86:c1: 75:48:c4:68:55:d6:e6:87:a9:5d:3a:d3:79:7c:bd:28:a6:a4: ae:96:57:37:4e:a7:6d:7e:91:85:92:ef:96:89:bb:44:0b:90: 54:57:b3:4f:fa:c5:99:e9:be:25:35:b7:71:d2:a8:32:ff:cb: f6:ed:b0:96:a2:92:08:25:a1:ee:e6:c2:f4:98:32:2d:0e:3d: d2:4e:50:21:59:81:6a:90:ce:0c:66:bb:55:b4:ce:77:e7:43: 0c:8d:b8:b5 -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt9XGzqSJVw5Y/yeWnZuvT2MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYxOTI3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMDBiNGZhYWM3OWJiMTk2OTBjM2FmNWEwNzhjNmNiMTRhOTFhZDQyMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3tDFG3Cs1wC1rU+nTTcEQiBTs3G qjH9hN2tG5UvtW+NFotewF1SQvIKpSR7BqKbsUk/cwW1zy/ZKooCqZZOXC3jiMss dJDM0z+5KPTT2hB5aoAkXmHtenA9P4OB+Tu0W5WeJ2VW8ViGa2w8KO7x/k0Ryo+V t47/z0JWpaRTMkX1aM+f/FVOV/IaPsOcxw/GCkxCO4EaEBhfPM0jppTdkPGZJIKW ipw6GOdCp1naGRF/Y7O8uKUpNSZiY/NB5Cf39EDWq5LiRFOqjYqrXkRfraLkqqgU sGRcXRYKm3wNR8frm8kiiPTZjNCWRQjP9tWHM4eKKp2zzn99ZZtdovGgYQIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFAALT6rHm7GWkMOvWgeMbLFKka1CMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUxLzk5MGJi NS1mZTQyLTQ5ODUtOWNhZi1hMDk2ZWVjZGE3OTMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTEvOTkwYmI1 LWZlNDItNDk4NS05Y2FmLWEwOTZlZWNkYTc5My8xL0FBdFBxc2Vic1phUXc2OWFC NHhzc1VxUnJVSS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCuZzAMA0EAgACMAcDBQAqA6+gMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwDLVjANBgkqhkiG9w0BAQsFAAOCAQEAcDwtbVLYb4ni NO0YSbSVzIV22mDnChJjFpCmrcPMJ8J6ygytrL5nKTOX43wGNyZCGV4mcm4J5j7N 1Hqq4HQpBUSLC3g3p/tbvtnwgqV4AKTaK4xDIUxHPPcECKqY9mnmEjBplA+plRhV nsUYK9Rr8T+bICFy4YLkOokLzMGlB0AenYsb+QSfw8pUd/zBRgxZXJp+iljXLthb A6Vvv0rZyYbBdUjEaFXW5oepXTrTeXy9KKakrpZXN06nbX6RhZLvlom7RAuQVFez T/rFmem+JTW3cdKoMv/L9u2wlqKSCCWh7ubC9JgyLQ490k5QIVmBapDODGa7VbTO d+dDDI24tQ== -----END CERTIFICATE-----Generated at Mon Feb 9 15:05:21 2026 by rpki-client