This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/EQqvkBamh1L8kTIUm5Ho-rFuJL4.cer File: EQqvkBamh1L8kTIUm5Ho-rFuJL4.cer (raw, json) Hash identifier: RtwkCzxz5HMIcTo0GDFaOyp/DagzFRVWASaRJPAEr8E= Subject key identifier: 11:0A:AF:90:16:A6:87:52:FC:91:32:14:9B:91:E8:FA:B1:6E:24:BE Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7F152EAB1D331F465F16A56F7B4A3122 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f2/e411e8-0dc6-46e2-b3a7-d0debcfffd76/1/EQqvkBamh1L8kTIUm5Ho-rFuJL4.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f2/e411e8-0dc6-46e2-b3a7-d0debcfffd76/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 14:20:53 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 45.90.164.0/22 IP: 2a0e:2c0::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7f:15:2e:ab:1d:33:1f:46:5f:16:a5:6f:7b:4a:31:22 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 14:20:53 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=110aaf9016a68752fc9132149b91e8fab16e24be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:a1:5c:39:3a:37:26:cd:03:14:49:63:5d:39: 10:67:e5:9e:5d:78:69:19:dd:3d:7a:67:e7:1f:86: 58:c5:70:78:c5:c3:5b:5b:0e:e7:8b:3f:e7:3a:16: d7:44:5b:3e:af:e2:d7:4f:a6:37:83:93:37:2c:a5: df:2d:81:39:29:dd:6f:52:86:f9:23:1d:85:e3:23: 49:e6:f4:6a:67:b7:33:5a:4c:ce:5e:74:38:f7:d6: 00:d1:72:90:b5:00:2d:5d:ed:97:93:5c:99:1a:4c: 5e:2e:f1:ac:9b:e6:2a:d2:be:ee:e7:e9:d1:a0:db: 60:bd:5f:1c:aa:a3:f1:9b:7d:00:2a:0e:7e:f2:6d: b8:72:64:43:71:96:a2:b0:6a:1c:5c:cd:ff:7a:78: 87:dd:46:8e:ec:3b:b9:77:65:2a:3a:4d:12:bf:db: 95:52:70:29:54:2a:d1:2d:53:35:5f:44:06:c2:43: 60:ce:12:9e:a1:04:09:40:c2:61:b0:55:45:54:da: 28:49:32:09:ce:59:64:0b:91:a4:d2:38:e2:85:0d: 53:29:ba:43:8c:02:00:50:fa:3a:0a:7d:8a:1b:fc: d1:b9:86:f1:cb:7b:8c:2c:39:1c:00:a8:96:7f:bb: 31:f9:6c:bf:fc:ba:44:d3:87:a3:50:98:8c:59:80: e5:af Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 11:0A:AF:90:16:A6:87:52:FC:91:32:14:9B:91:E8:FA:B1:6E:24:BE X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/e411e8-0dc6-46e2-b3a7-d0debcfffd76/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f2/e411e8-0dc6-46e2-b3a7-d0debcfffd76/1/EQqvkBamh1L8kTIUm5Ho-rFuJL4.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 45.90.164.0/22 IPv6: 2a0e:2c0::/29 Signature Algorithm: sha256WithRSAEncryption 94:47:17:4e:b9:32:e3:db:0e:96:66:d7:7f:9e:ca:e4:1d:cf: bc:f7:77:77:21:8e:42:b9:60:ed:bd:e1:44:a7:31:00:7a:a4: 27:cc:a3:22:6d:29:b7:33:bc:48:9e:54:82:50:19:2e:dc:2f: 2f:d7:fc:14:39:7c:a8:3d:ee:93:69:b2:f9:a7:8c:6d:eb:61: 7e:55:a9:a8:5d:a8:21:dc:1c:20:11:3e:f3:6c:66:33:12:29: 0d:58:49:97:52:21:d6:99:e2:a6:d6:d2:49:62:ab:ad:da:c3: ab:2e:e1:1f:28:a1:0d:80:c4:9e:a7:ea:09:7b:73:b3:94:58: a0:0e:d0:20:be:23:46:b3:59:2b:49:8d:fe:80:b0:c8:1d:69: 81:a0:e7:2d:54:47:c2:4f:df:bf:cb:83:90:5e:db:49:98:8f: d9:7f:de:c1:cd:0a:86:67:6d:4c:8d:17:1b:3c:14:e2:1a:c8: c6:cc:b7:a3:2c:c3:db:04:80:20:2e:74:67:dd:de:60:51:6e: 94:c8:f2:2b:56:8f:03:48:39:02:7a:58:7b:4c:44:d3:bb:ea: f8:48:f3:74:9b:6e:1d:5a:23:60:e0:74:c7:64:75:c0:2f:3d: d2:ac:97:93:87:b8:31:70:c2:87:3f:25:16:da:01:63:86:b3: 6b:f6:33:9b -----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISAZt/FS6rHTMfRl8WpW97SjEiMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTQyMDUzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxMTBhYWY5MDE2YTY4NzUyZmM5MTMyMTQ5YjkxZThmYWIxNmUyNGJlMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6aFcOTo3Js0DFEljXTkQZ+WeXXhp Gd09emfnH4ZYxXB4xcNbWw7niz/nOhbXRFs+r+LXT6Y3g5M3LKXfLYE5Kd1vUob5 Ix2F4yNJ5vRqZ7czWkzOXnQ499YA0XKQtQAtXe2Xk1yZGkxeLvGsm+Yq0r7u5+nR oNtgvV8cqqPxm30AKg5+8m24cmRDcZaisGocXM3/eniH3UaO7Du5d2UqOk0Sv9uV UnApVCrRLVM1X0QGwkNgzhKeoQQJQMJhsFVFVNooSTIJzllkC5Gk0jjihQ1TKbpD jAIAUPo6Cn2KG/zRuYbxy3uMLDkcAKiWf7sx+Wy//LpE04ejUJiMWYDlrwIDAQAB o4ICkzCCAo8wHQYDVR0OBBYEFBEKr5AWpodS/JEyFJuR6PqxbiS+MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2YyL2U0MTFl OC0wZGM2LTQ2ZTItYjNhNy1kMGRlYmNmZmZkNzYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjIvZTQxMWU4 LTBkYzYtNDZlMi1iM2E3LWQwZGViY2ZmZmQ3Ni8xL0VRcXZrQmFtaDFMOGtUSVVt NUhvLXJGdUpMNC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCLVqkMA0EAgACMAcDBQMqDgLAMA0GCSqGSIb3 DQEBCwUAA4IBAQCURxdOuTLj2w6WZtd/nsrkHc+893d3IY5CuWDtveFEpzEAeqQn zKMibSm3M7xInlSCUBku3C8v1/wUOXyoPe6TabL5p4xt62F+VamoXagh3BwgET7z bGYzEikNWEmXUiHWmeKm1tJJYqut2sOrLuEfKKENgMSep+oJe3OzlFigDtAgviNG s1krSY3+gLDIHWmBoOctVEfCT9+/y4OQXttJmI/Zf97BzQqGZ21MjRcbPBTiGsjG zLejLMPbBIAgLnRn3d5gUW6UyPIrVo8DSDkCelh7TETTu+r4SPN0m24dWiNg4HTH ZHXALz3SrJeTh7gxcMKHPyUW2gFjhrNr9jOb -----END CERTIFICATE-----Generated at Mon Feb 9 15:08:09 2026 by rpki-client