This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ELQ2E1Nf-qc9msxQPHGij6F7ODk.cer File: ELQ2E1Nf-qc9msxQPHGij6F7ODk.cer (raw, json) Hash identifier: 92PvTEL7QjggwSmZcBl4DUq8PRlfKE/fhkdInZPYTdk= Subject key identifier: 10:B4:36:13:53:5F:FA:A7:3D:9A:CC:50:3C:71:A2:8F:A1:7B:38:39 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F1580C9A2A66556EAD79C4B4CE9BBD6 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/88/2ee71b-8ffe-4eb6-9434-cf3c1a79e634/1/ELQ2E1Nf-qc9msxQPHGij6F7ODk.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/88/2ee71b-8ffe-4eb6-9434-cf3c1a79e634/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:21:14 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49772 IP: 91.213.210.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:80:c9:a2:a6:65:56:ea:d7:9c:4b:4c:e9:bb:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:21:14 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=10b43613535ffaa73d9acc503c71a28fa17b3839 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:97:35:47:b1:36:26:0f:11:fa:e9:5b:cd:9a:53: c3:12:18:1a:fa:85:53:da:a9:8a:de:cb:e5:ee:43: 77:1a:5d:70:db:5d:ce:99:34:d5:cc:26:a9:29:1e: 81:95:b0:c6:d3:83:13:a8:ed:4a:ee:1b:3d:78:c7: af:ae:9d:e6:2a:1a:c9:d3:43:e7:86:5a:04:88:a3: 59:aa:72:57:c4:33:e1:60:6d:f4:6b:89:73:f7:a3: 73:5f:68:2f:91:d4:5e:72:6a:e4:fc:61:98:d3:aa: d8:e3:a9:37:0d:35:ac:ee:46:05:fe:8f:30:de:36: fb:3a:8a:fe:a7:4b:1f:0a:40:12:c3:38:99:f2:fe: 3e:37:c9:8f:d9:d1:92:8b:53:1e:19:24:f3:dc:04: 56:b8:39:5a:fe:11:8a:5b:de:cb:7e:37:51:00:09: 84:25:fb:16:71:a0:1a:ad:dc:ae:86:b5:9a:a4:7a: 2f:96:8e:b3:ff:d3:83:35:02:5c:d3:f2:29:63:f7: af:be:88:25:96:b0:78:b4:d4:94:46:81:d3:61:cd: 7f:e9:6f:96:2e:19:c1:80:6e:8f:b9:50:a7:38:6d: 71:54:16:0e:59:71:38:32:52:0f:2e:37:1a:73:74: 18:e1:9b:9c:ce:73:75:ff:97:b1:33:f6:9f:9e:8b: f5:65 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 10:B4:36:13:53:5F:FA:A7:3D:9A:CC:50:3C:71:A2:8F:A1:7B:38:39 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2ee71b-8ffe-4eb6-9434-cf3c1a79e634/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/88/2ee71b-8ffe-4eb6-9434-cf3c1a79e634/1/ELQ2E1Nf-qc9msxQPHGij6F7ODk.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.213.210.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49772 Signature Algorithm: sha256WithRSAEncryption 6e:9a:d3:50:3b:44:fc:75:80:01:65:ef:9c:26:1b:53:b4:f9: b3:c9:d4:d8:0f:37:47:41:98:d5:01:55:ec:64:64:25:e6:ef: de:94:17:0b:a6:c0:13:b6:00:dc:1b:d7:32:fa:d2:0a:34:2f: 36:67:48:d6:cc:34:7f:a8:eb:a1:57:f5:f8:79:6e:27:54:41: 34:d6:14:c0:a4:a1:1e:f7:8c:44:bc:5b:46:46:90:b8:cd:ac: d1:fe:87:03:7e:3f:33:fd:f4:e8:b8:62:2c:7d:c5:cd:a1:6c: ea:c9:03:f9:9b:6b:ed:49:52:13:ea:f1:99:34:46:f3:8a:3c: 46:d2:aa:42:06:6b:f5:dd:32:c1:32:c5:3c:77:5e:a1:5c:f7: 69:20:07:14:74:ff:1f:a8:14:16:25:e5:69:08:4e:51:c6:36: 44:e1:22:03:e6:ae:5b:28:45:5e:af:4a:b5:4f:11:17:ee:9a: 86:e7:bd:22:f6:1e:b6:2e:e5:c4:24:62:80:d5:5a:dd:2b:60: db:54:30:7b:5b:4a:ed:61:f1:a8:d1:83:45:89:16:69:fc:54: 4a:a6:eb:65:c3:4d:c6:3f:6c:42:03:41:9c:bd:41:78:62:34: 7f:49:11:f8:8b:36:57:32:d2:f9:21:ba:6d:9f:be:49:a9:94: f8:54:ff:e5 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt/FYDJoqZlVurXnEtM6bvWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMTE0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMGI0MzYxMzUzNWZmYWE3M2Q5YWNjNTAzYzcxYTI4ZmExN2IzODM5MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlzVHsTYmDxH66VvNmlPDEhga+oVT 2qmK3svl7kN3Gl1w213OmTTVzCapKR6BlbDG04MTqO1K7hs9eMevrp3mKhrJ00Pn hloEiKNZqnJXxDPhYG30a4lz96NzX2gvkdRecmrk/GGY06rY46k3DTWs7kYF/o8w 3jb7Oor+p0sfCkASwziZ8v4+N8mP2dGSi1MeGSTz3ARWuDla/hGKW97LfjdRAAmE JfsWcaAardyuhrWapHovlo6z/9ODNQJc0/IpY/evvogllrB4tNSURoHTYc1/6W+W LhnBgG6PuVCnOG1xVBYOWXE4MlIPLjcac3QY4ZucznN1/5exM/afnov1ZQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFBC0NhNTX/qnPZrMUDxxoo+hezg5MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzg4LzJlZTcx Yi04ZmZlLTRlYjYtOTQzNC1jZjNjMWE3OWU2MzQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvODgvMmVlNzFi LThmZmUtNGViNi05NDM0LWNmM2MxYTc5ZTYzNC8xL0VMUTJFMU5mLXFjOW1zeFFQ SEdpajZGN09Eay5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAW9XSMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDCbDANBgkqhkiG9w0BAQsFAAOCAQEAbprTUDtE/HWAAWXvnCYbU7T5s8nU2A83 R0GY1QFV7GRkJebv3pQXC6bAE7YA3BvXMvrSCjQvNmdI1sw0f6jroVf1+HluJ1RB NNYUwKShHveMRLxbRkaQuM2s0f6HA34/M/306LhiLH3FzaFs6skD+Ztr7UlSE+rx mTRG84o8RtKqQgZr9d0ywTLFPHdeoVz3aSAHFHT/H6gUFiXlaQhOUcY2ROEiA+au WyhFXq9KtU8RF+6ahue9IvYeti7lxCRigNVa3Stg21Qwe1tK7WHxqNGDRYkWafxU SqbrZcNNxj9sQgNBnL1BeGI0f0kR+Is2VzLS+SG6bZ++SamU+FT/5Q== -----END CERTIFICATE-----Generated at Mon Feb 9 19:47:03 2026 by rpki-client