This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/AxlsieVU2-R3RSJ1mQbiWBoXRpQ.cer File: AxlsieVU2-R3RSJ1mQbiWBoXRpQ.cer (raw, json) Hash identifier: 6/58cKyZlUdhrr7pVx+WjaQ7BK2c2AsA5d5f/1IQZtU= Subject key identifier: 03:19:6C:89:E5:54:DB:E4:77:45:22:75:99:06:E2:58:1A:17:46:94 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79EBAC69E05EEC56226C8A62D459BD7E Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/AxlsieVU2-R3RSJ1mQbiWBoXRpQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 14:17:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 42893 AS: 215092 IP: 146.66.160.0 -- 146.66.207.255 IP: 178.252.64.0/18 IP: 2a0b:c0c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:eb:ac:69:e0:5e:ec:56:22:6c:8a:62:d4:59:bd:7e Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 14:17:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=03196c89e554dbe4774522759906e2581a174694 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:3f:3a:fd:b2:94:69:df:51:1c:1f:5c:7e:b8: 32:9a:d4:5e:9c:ef:27:7d:1f:d1:a4:da:6d:b4:04: fa:f5:36:d1:0b:a2:0e:2f:6f:b1:59:67:87:27:b7: e5:1a:44:58:a1:04:db:3d:ca:e7:87:d8:bb:ce:2a: 36:0a:1c:68:bc:69:06:52:10:d4:48:e3:b4:8c:b8: 2c:2e:e4:64:f3:9b:87:89:38:a4:e2:55:88:b6:8b: 9b:e6:6f:76:06:b6:af:b0:19:d9:33:c0:e8:d3:03: 02:f1:0c:d1:d3:09:a3:15:f9:3e:9a:d7:c2:c8:58: 26:6a:3b:02:78:da:65:f7:e5:b8:8d:f8:62:3d:ba: eb:b3:68:c2:ce:27:ff:c0:80:d2:6d:e5:9b:8d:cd: bb:27:3a:9b:1c:34:b2:c7:e0:e6:3f:df:6e:23:9b: bc:89:ae:ac:db:de:ae:cb:d1:fd:cb:07:ae:2f:9a: 45:d3:29:0b:44:7a:e6:04:35:37:95:2d:65:4f:ab: 94:95:d0:89:15:e4:2f:0f:9a:01:55:94:da:8e:4f: 1c:86:69:13:b9:0f:62:aa:e8:e5:f6:a4:f1:d7:9e: cc:98:d3:02:2e:de:a4:d4:36:e1:40:62:6f:4c:29: cc:cb:b6:b1:74:13:ea:b2:b2:f7:64:d6:c7:50:f4: 92:3b Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 03:19:6C:89:E5:54:DB:E4:77:45:22:75:99:06:E2:58:1A:17:46:94 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/3b/9ed76b-35a6-4a9d-9fa6-8517a8f355ae/1/AxlsieVU2-R3RSJ1mQbiWBoXRpQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 146.66.160.0-146.66.207.255 178.252.64.0/18 IPv6: 2a0b:c0c0::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 42893 215092 Signature Algorithm: sha256WithRSAEncryption 8f:c4:ba:d3:cf:31:f3:0c:69:6f:c3:97:d0:6f:15:e2:b6:ff: 56:af:88:9d:85:88:b1:84:41:9a:ca:74:00:9c:39:64:b2:1c: be:ae:94:f4:6d:8f:76:a1:38:0e:86:af:e5:02:95:17:6b:54: b9:f3:7c:30:4e:ec:f1:e5:14:e2:71:bf:af:9e:7e:c2:71:89: da:be:ec:5f:48:8b:0e:53:f6:49:31:79:a3:f3:fa:6e:44:3f: 32:eb:c6:0e:c1:e9:46:0b:11:96:3f:f4:66:ec:e4:30:ab:1b: 33:46:a0:da:68:7c:37:03:38:0e:9f:ec:8f:be:d1:b3:56:c7: 95:8f:e8:9c:11:cd:9a:c6:7c:9c:fe:d4:af:bb:aa:74:23:61: 92:ff:50:92:e7:3d:bb:87:fe:f9:b0:7a:1e:59:93:74:82:69: ed:2d:92:a2:55:03:e7:f3:86:f7:cf:3a:79:d7:cc:47:37:bc: 89:df:63:cb:95:a3:41:bc:22:45:8f:ab:eb:19:d9:7c:45:a6: d5:ed:9f:41:70:df:74:7b:b9:5d:ed:19:67:1a:80:3d:9f:22: eb:a8:45:f4:d3:45:1d:dd:0c:05:49:77:46:3c:a6:a5:a4:62: b8:66:45:96:47:51:55:ff:c8:e2:eb:82:c0:86:ca:0d:29:98: 5c:59:2d:62 -----BEGIN CERTIFICATE----- MIIFtjCCBJ6gAwIBAgISAZt566xp4F7sViJsimLUWb1+MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTQxNzI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwMzE5NmM4OWU1NTRkYmU0Nzc0NTIyNzU5OTA2ZTI1ODFhMTc0Njk0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxT86/bKUad9RHB9cfrgymtRenO8n fR/RpNpttAT69TbRC6IOL2+xWWeHJ7flGkRYoQTbPcrnh9i7zio2ChxovGkGUhDU SOO0jLgsLuRk85uHiTik4lWItoub5m92BravsBnZM8Do0wMC8QzR0wmjFfk+mtfC yFgmajsCeNpl9+W4jfhiPbrrs2jCzif/wIDSbeWbjc27JzqbHDSyx+DmP99uI5u8 ia6s296uy9H9yweuL5pF0ykLRHrmBDU3lS1lT6uUldCJFeQvD5oBVZTajk8chmkT uQ9iqujl9qTx157MmNMCLt6k1DbhQGJvTCnMy7axdBPqsrL3ZNbHUPSSOwIDAQAB o4ICwjCCAr4wHQYDVR0OBBYEFAMZbInlVNvkd0UidZkG4lgaF0aUMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzNiLzllZDc2 Yi0zNWE2LTRhOWQtOWZhNi04NTE3YThmMzU1YWUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvM2IvOWVkNzZi LTM1YTYtNGE5ZC05ZmE2LTg1MTdhOGYzNTVhZS8xL0F4bHNpZVZVMi1SM1JTSjFt UWJpV0JvWFJwUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDwGCCsGAQUF BwEHAQH/BC0wKzAaBAIAATAUMAwDBAWSQqADBASSQsADBAay/EAwDQQCAAIwBwMF AyoLwMAwHwYIKwYBBQUHAQgBAf8EEDAOoAwwCgIDAKeNAgMDSDQwDQYJKoZIhvcN AQELBQADggEBAI/EutPPMfMMaW/Dl9BvFeK2/1aviJ2FiLGEQZrKdACcOWSyHL6u lPRtj3ahOA6Gr+UClRdrVLnzfDBO7PHlFOJxv6+efsJxidq+7F9Iiw5T9kkxeaPz +m5EPzLrxg7B6UYLEZY/9Gbs5DCrGzNGoNpofDcDOA6f7I++0bNWx5WP6JwRzZrG fJz+1K+7qnQjYZL/UJLnPbuH/vmweh5Zk3SCae0tkqJVA+fzhvfPOnnXzEc3vInf Y8uVo0G8IkWPq+sZ2XxFptXtn0Fw33R7uV3tGWcagD2fIuuoRfTTRR3dDAVJd0Y8 pqWkYrhmRZZHUVX/yOLrgsCGyg0pmFxZLWI= -----END CERTIFICATE-----Generated at Mon Feb 9 18:24:08 2026 by rpki-client