This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/CgbwM1N7vYY7vKK2IJLY3jYR9lE.cer File: CgbwM1N7vYY7vKK2IJLY3jYR9lE.cer (raw, json) Hash identifier: QRAWxew3CWt7XBuI/sc6IjXBbqfigK0kSwAjtu2SnZ4= Subject key identifier: 0A:06:F0:33:53:7B:BD:86:3B:BC:A2:B6:20:92:D8:DE:36:11:F6:51 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F82F41EDBB7086252EC6FFC85AD9D59 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ac/4cd16b-2a23-48a9-9eeb-2a4813a13120/1/CgbwM1N7vYY7vKK2IJLY3jYR9lE.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ac/4cd16b-2a23-48a9-9eeb-2a4813a13120/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:20:47 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 207919 IP: 45.133.52.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:82:f4:1e:db:b7:08:62:52:ec:6f:fc:85:ad:9d:59 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:20:47 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0a06f033537bbd863bbca2b62092d8de3611f651 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:b5:c7:ee:ef:a5:ce:d2:0b:cf:df:5f:5e:3f:15: 9a:ab:8c:e8:f8:59:d8:4d:6f:7f:70:99:b8:ba:53: 10:e1:68:62:d2:5b:ca:d6:2d:15:5d:29:39:d1:46: 0c:9b:82:57:a5:b1:0b:38:ac:e6:d1:b9:20:1f:94: bf:f5:77:9a:96:1f:17:13:9c:8e:10:b8:5e:d9:03: 53:1e:0c:7d:0f:97:e4:cb:af:f3:a5:0f:7b:94:68: c3:fd:e1:5c:e1:12:80:af:7d:4c:a4:13:f1:04:e0: bd:e5:f2:3b:0b:6e:2e:74:24:69:a7:77:62:79:6a: cb:ef:de:b7:76:c4:c9:47:43:f9:d0:68:1e:79:1e: 9e:5f:93:de:62:93:46:a0:00:8f:76:c6:3f:29:42: ef:62:4e:c1:a8:db:68:8b:4a:ad:32:7b:c3:9f:f7: fe:1e:92:aa:54:f6:9a:0b:52:6c:d9:7c:c9:90:1e: 8c:ad:66:4f:49:e2:21:2b:90:e7:39:2a:6d:1a:92: 72:62:ae:c2:c2:62:72:20:c0:65:a3:6e:d3:66:78: 59:e1:a8:08:4e:54:48:f4:6b:e7:a6:eb:fd:29:df: ba:d7:e6:64:29:ae:32:6d:2e:fc:1a:e8:bd:65:b3: 66:e8:0d:63:7d:64:56:ae:7b:e1:b0:34:2e:fe:60: 7b:59 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0A:06:F0:33:53:7B:BD:86:3B:BC:A2:B6:20:92:D8:DE:36:11:F6:51 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4cd16b-2a23-48a9-9eeb-2a4813a13120/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ac/4cd16b-2a23-48a9-9eeb-2a4813a13120/1/CgbwM1N7vYY7vKK2IJLY3jYR9lE.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.133.52.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 207919 Signature Algorithm: sha256WithRSAEncryption 27:4e:b3:5d:9b:42:00:3e:3f:f1:81:2b:36:a6:cd:91:e0:21: ca:fc:5c:81:70:ef:ae:a8:a6:e8:30:70:5e:93:c7:4b:c1:c4: 50:8a:9b:1b:b7:c1:39:f6:d4:80:da:32:dc:c8:fd:a0:64:6d: 83:2a:89:e7:76:84:da:84:8e:6b:e8:a9:34:62:f5:2e:f1:9d: 34:17:84:9e:c7:c9:4a:00:96:b6:dd:1f:ca:2e:7a:1f:94:7b: b6:97:95:b4:a8:6a:4c:84:43:31:c3:ff:f8:91:37:bd:a3:2d: 1f:3d:d1:e4:76:c5:41:22:fe:e5:89:18:58:78:ab:48:9c:8d: 5a:28:48:84:bf:61:4c:19:62:d0:bd:ab:df:84:2c:04:c0:25: c9:e8:1a:36:77:62:46:ca:08:71:ad:80:70:00:95:88:8b:d5: ef:32:8c:c3:58:56:cf:24:33:96:92:f8:cc:9b:52:1a:2e:0a: 67:a8:20:71:57:23:17:99:ce:13:fd:70:17:0a:ce:f4:69:b0: 8d:2f:f7:d2:71:10:f9:0a:32:f9:d6:86:83:da:cc:57:59:1b: 6e:36:ec:27:4d:7d:a7:2f:a2:16:a3:61:5f:6b:fb:b6:0a:7b: 77:6a:a1:52:d6:49:14:93:9c:5c:46:f6:06:f1:7f:8d:12:a4: 56:b5:eb:13 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt/gvQe27cIYlLsb/yFrZ1ZMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMDQ3WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwYTA2ZjAzMzUzN2JiZDg2M2JiY2EyYjYyMDkyZDhkZTM2MTFmNjUxMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtcfu76XO0gvP319ePxWaq4zo+FnY TW9/cJm4ulMQ4Whi0lvK1i0VXSk50UYMm4JXpbELOKzm0bkgH5S/9Xealh8XE5yO ELhe2QNTHgx9D5fky6/zpQ97lGjD/eFc4RKAr31MpBPxBOC95fI7C24udCRpp3di eWrL7963dsTJR0P50GgeeR6eX5PeYpNGoACPdsY/KULvYk7BqNtoi0qtMnvDn/f+ HpKqVPaaC1Js2XzJkB6MrWZPSeIhK5DnOSptGpJyYq7CwmJyIMBlo27TZnhZ4agI TlRI9Gvnpuv9Kd+61+ZkKa4ybS78Gui9ZbNm6A1jfWRWrnvhsDQu/mB7WQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFAoG8DNTe72GO7yitiCS2N42EfZRMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2FjLzRjZDE2 Yi0yYTIzLTQ4YTktOWVlYi0yYTQ4MTNhMTMxMjAvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYWMvNGNkMTZi LTJhMjMtNDhhOS05ZWViLTJhNDgxM2ExMzEyMC8xL0NnYndNMU43dllZN3ZLSzJJ SkxZM2pZUjlsRS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCLYU0MBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMsLzANBgkqhkiG9w0BAQsFAAOCAQEAJ06zXZtCAD4/8YErNqbNkeAhyvxcgXDv rqim6DBwXpPHS8HEUIqbG7fBOfbUgNoy3Mj9oGRtgyqJ53aE2oSOa+ipNGL1LvGd NBeEnsfJSgCWtt0fyi56H5R7tpeVtKhqTIRDMcP/+JE3vaMtHz3R5HbFQSL+5YkY WHirSJyNWihIhL9hTBli0L2r34QsBMAlyegaNndiRsoIca2AcACViIvV7zKMw1hW zyQzlpL4zJtSGi4KZ6ggcVcjF5nOE/1wFwrO9GmwjS/30nEQ+Qoy+daGg9rMV1kb bjbsJ019py+iFqNhX2v7tgp7d2qhUtZJFJOcXEb2BvF/jRKkVrXrEw== -----END CERTIFICATE-----Generated at Mon Feb 9 21:04:43 2026 by rpki-client