This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/D5XJyafxmprXF-TapTDIXPmauXU.cer File: D5XJyafxmprXF-TapTDIXPmauXU.cer (raw, json) Hash identifier: GZewV7BnrKDCHW418YZloAN4bKRr0pcynfdIZYtYX7k= Subject key identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F85761E191EC996615118CE8AD9CC6D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 16:23:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 58221 IP: 91.237.36.0/24 IP: 91.239.80.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:85:76:1e:19:1e:c9:96:61:51:18:ce:8a:d9:cc:6d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 16:23:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=0f95c9c9a7f19a9ad717e4daa530c85cf99ab975 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c2:26:34:fb:30:07:29:e1:a1:0f:3a:34:da:b3: 7d:5a:ea:b2:7d:9e:32:b7:15:af:98:60:6a:dc:4c: 64:a5:45:a9:ec:66:b9:69:20:73:e4:49:76:de:9b: 08:72:7a:12:aa:f0:ad:3b:ba:6d:37:de:d9:2f:da: 70:01:2f:cf:6c:a8:da:34:ca:68:5d:0c:e2:2b:8c: 4f:05:4f:56:49:c6:16:84:44:45:c6:15:d2:57:10: 35:5c:7e:c9:cd:86:30:0f:f4:ab:f2:7d:30:b9:93: c9:37:70:b1:2b:98:d5:76:92:33:32:32:5d:04:9e: 45:f6:55:13:8e:40:bf:3c:3a:04:a2:3e:59:cb:ca: 6d:2e:e5:e8:e4:6d:47:32:49:e6:f6:ee:f0:67:e0: 0a:b4:58:68:72:bb:9d:01:83:d9:a9:0b:7c:09:22: 58:6d:81:01:1b:0d:e1:19:98:77:41:da:8d:c3:b4: 3e:94:c9:99:c6:09:4c:fe:fe:93:64:74:b3:34:23: ab:3c:13:25:e5:06:7b:64:12:32:cc:9a:63:21:38: 7f:5d:6e:fb:a4:02:fa:cd:c1:30:94:60:bb:85:35: 27:0c:0b:2b:9c:b6:0f:8b:87:2a:97:5a:3e:50:e2: 6c:37:ef:d0:24:ca:a1:28:33:46:4d:16:8f:7a:02: 53:19 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 0F:95:C9:C9:A7:F1:9A:9A:D7:17:E4:DA:A5:30:C8:5C:F9:9A:B9:75 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/53/08f5cd-8eec-4d55-8812-c93659f76737/1/D5XJyafxmprXF-TapTDIXPmauXU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.237.36.0/24 91.239.80.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 58221 Signature Algorithm: sha256WithRSAEncryption a4:cb:5b:f2:7c:1b:33:32:35:17:7e:49:8f:41:53:e2:b8:7c: 8c:4b:bb:69:b2:7f:81:8a:d1:b2:0d:e8:f0:5e:3b:ab:d5:3b: 93:95:e9:93:71:a7:b5:09:ca:3a:49:e5:43:49:37:07:46:a6: f4:80:2a:7f:2e:09:8c:41:11:8b:84:fb:5c:01:3a:5e:10:eb: 2f:27:ab:84:54:04:1f:ea:3a:97:a8:4a:a2:c0:22:d3:ed:0d: 18:c4:0b:3b:bb:83:2f:6e:3e:9c:8f:58:4d:da:e1:91:08:58: 4a:ed:c5:58:5a:25:54:24:37:73:17:44:b0:3f:60:61:0e:28: c3:80:36:94:f1:35:2f:9c:0e:c7:06:08:32:1b:7d:2b:81:16: 8d:9a:7a:ff:63:10:31:dd:c1:aa:0c:26:a1:13:a7:81:b2:f6: 2d:a9:ee:25:6c:61:29:54:e6:b9:7f:7f:2e:3f:0b:d9:25:be: 47:dc:17:06:4a:a8:a9:30:d5:76:92:ed:52:8a:e7:8f:48:a5: 03:22:6b:2f:9a:24:18:57:54:61:31:18:e7:89:0e:f6:67:ad: c7:bb:40:c5:d1:39:e3:c1:f7:5d:24:c8:29:26:9a:c4:11:b0: 19:72:bf:b8:c8:f3:46:94:b5:ea:64:b0:e4:6f:55:f0:27:62: 3c:06:35:8e -----BEGIN CERTIFICATE----- MIIFmjCCBIKgAwIBAgISAZt/hXYeGR7JlmFRGM6K2cxtMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTYyMzMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygwZjk1YzljOWE3ZjE5YTlhZDcxN2U0ZGFhNTMwYzg1Y2Y5OWFiOTc1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwiY0+zAHKeGhDzo02rN9WuqyfZ4y txWvmGBq3ExkpUWp7Ga5aSBz5El23psIcnoSqvCtO7ptN97ZL9pwAS/PbKjaNMpo XQziK4xPBU9WScYWhERFxhXSVxA1XH7JzYYwD/Sr8n0wuZPJN3CxK5jVdpIzMjJd BJ5F9lUTjkC/PDoEoj5Zy8ptLuXo5G1HMknm9u7wZ+AKtFhocrudAYPZqQt8CSJY bYEBGw3hGZh3QdqNw7Q+lMmZxglM/v6TZHSzNCOrPBMl5QZ7ZBIyzJpjITh/XW77 pAL6zcEwlGC7hTUnDAsrnLYPi4cql1o+UOJsN+/QJMqhKDNGTRaPegJTGQIDAQAB o4ICpjCCAqIwHQYDVR0OBBYEFA+Vycmn8Zqa1xfk2qUwyFz5mrl1MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzUzLzA4ZjVj ZC04ZWVjLTRkNTUtODgxMi1jOTM2NTlmNzY3MzcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTMvMDhmNWNk LThlZWMtNGQ1NS04ODEyLWM5MzY1OWY3NjczNy8xL0Q1WEp5YWZ4bXByWEYtVGFw VERJWFBtYXVYVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCUGCCsGAQUF BwEHAQH/BBYwFDASBAIAATAMAwQAW+0kAwQCW+9QMBoGCCsGAQUFBwEIAQH/BAsw CaAHMAUCAwDjbTANBgkqhkiG9w0BAQsFAAOCAQEApMtb8nwbMzI1F35Jj0FT4rh8 jEu7abJ/gYrRsg3o8F47q9U7k5Xpk3GntQnKOknlQ0k3B0am9IAqfy4JjEERi4T7 XAE6XhDrLyerhFQEH+o6l6hKosAi0+0NGMQLO7uDL24+nI9YTdrhkQhYSu3FWFol VCQ3cxdEsD9gYQ4ow4A2lPE1L5wOxwYIMht9K4EWjZp6/2MQMd3BqgwmoROngbL2 LanuJWxhKVTmuX9/Lj8L2SW+R9wXBkqoqTDVdpLtUornj0ilAyJrL5okGFdUYTEY 54kO9metx7tAxdE548H3XSTIKSaaxBGwGXK/uMjzRpS16mSw5G9V8CdiPAY1jg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:07 2026 by rpki-client