This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/HApvbzqa4dpeW-h1L6sY3rKLphQ.cer File: HApvbzqa4dpeW-h1L6sY3rKLphQ.cer (raw, json) Hash identifier: H85tlJsAGX6fsIleN8/J49WFaIUJx/dkDwj1E74UM2g= Subject key identifier: 1C:0A:6F:6F:3A:9A:E1:DA:5E:5B:E8:75:2F:AB:18:DE:B2:8B:A6:14 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E3786DD81CC882DD8423F053CA749B0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/25/2a9dd4-17b8-473c-83bf-9af1074c227f/1/HApvbzqa4dpeW-h1L6sY3rKLphQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/25/2a9dd4-17b8-473c-83bf-9af1074c227f/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:18:46 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 91.205.192.0/23 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 12 Jan 2026 09:00:54 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:37:86:dd:81:cc:88:2d:d8:42:3f:05:3c:a7:49:b0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:18:46 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1c0a6f6f3a9ae1da5e5be8752fab18deb28ba614 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c7:7a:09:8c:af:40:a4:42:f8:a0:b5:fe:48:2f: 9b:ad:d2:b0:1e:c8:0a:b1:3b:61:2a:99:85:65:c9: 6f:ff:95:ee:6b:4d:52:97:04:0b:4b:e2:20:5d:5f: c3:7c:d3:49:58:fb:8a:00:b5:9c:80:0b:27:78:a6: 61:98:04:a7:9a:83:59:5f:9d:a2:38:29:cf:99:cd: 07:de:bc:76:b7:ae:1e:ff:e5:4d:2c:85:06:c6:72: 34:bd:7c:cf:ea:98:88:70:6f:5d:7d:ac:e7:b3:2c: 32:84:99:c7:83:70:c7:2a:65:16:dd:56:39:49:cc: ac:35:b7:52:b6:f2:cd:f2:3e:76:33:93:04:4c:35: 5a:a5:06:0c:86:cd:1d:74:70:5f:a3:86:c1:29:67: bf:7e:2b:3c:ce:ee:67:b8:e0:0a:94:c7:49:7a:61: a1:20:60:f3:d2:3a:23:af:8a:24:4b:14:7d:70:03: ed:f8:eb:8b:6f:3c:09:ff:8a:34:7e:43:f9:34:a1: fc:3e:cc:12:b5:c1:46:ce:45:9e:3e:41:e6:c1:2c: ea:09:94:9e:d6:d7:85:29:14:96:24:7e:21:99:d8: 66:c3:50:4c:71:0a:04:97:07:a4:57:4c:10:f0:3f: 7d:0f:d6:92:83:33:35:46:2f:b9:0f:87:1c:26:03: 73:d9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1C:0A:6F:6F:3A:9A:E1:DA:5E:5B:E8:75:2F:AB:18:DE:B2:8B:A6:14 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2a9dd4-17b8-473c-83bf-9af1074c227f/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/25/2a9dd4-17b8-473c-83bf-9af1074c227f/1/HApvbzqa4dpeW-h1L6sY3rKLphQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 91.205.192.0/23 Signature Algorithm: sha256WithRSAEncryption 5d:a3:75:77:c2:d5:4b:95:45:7e:23:a8:de:bb:93:21:2a:08: a1:bc:d5:fe:3d:2d:82:a7:70:3f:2c:b6:c5:e8:a3:7c:30:34: 0f:b3:56:52:03:af:32:16:e3:fa:22:fd:ca:f6:bf:e3:24:03: 46:e4:6f:9b:85:43:b2:f1:c8:bb:73:22:14:95:7b:72:4a:2c: 04:bf:0c:b9:a0:a2:39:a5:00:a3:85:4c:b3:b8:05:2a:28:84: 04:11:59:6a:19:32:f2:b0:1b:3c:bf:7a:26:b7:1b:3d:17:3a: 35:3c:ee:ef:c1:82:61:9b:23:f7:91:a4:59:8a:c6:48:fc:e4: 8a:71:08:05:fc:1c:7a:6a:1a:6c:61:b2:ce:c0:19:55:a9:b4: 89:4d:69:9b:51:f7:86:ca:3c:25:08:b9:d6:79:ab:76:6d:72: 5b:7c:f4:26:d1:af:2e:c7:d9:62:e6:14:c6:ed:aa:56:30:cf: 0d:1f:1f:48:97:a9:5b:c0:8b:64:43:fa:9a:55:f6:97:f9:95: ca:c3:aa:d3:1b:4d:cf:a8:9a:16:4b:7c:3a:26:5a:f7:27:66: 74:f8:43:f3:20:a5:f4:38:11:d6:cc:e5:7d:bd:9d:4c:cc:75: 79:af:60:16:da:35:27:29:88:06:e9:ed:92:38:9f:6f:66:43: 7f:66:e0:fd -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt+N4bdgcyILdhCPwU8p0mwMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAxODQ2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxYzBhNmY2ZjNhOWFlMWRhNWU1YmU4NzUyZmFiMThkZWIyOGJhNjE0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx3oJjK9ApEL4oLX+SC+brdKwHsgK sTthKpmFZclv/5Xua01SlwQLS+IgXV/DfNNJWPuKALWcgAsneKZhmASnmoNZX52i OCnPmc0H3rx2t64e/+VNLIUGxnI0vXzP6piIcG9dfaznsywyhJnHg3DHKmUW3VY5 ScysNbdStvLN8j52M5METDVapQYMhs0ddHBfo4bBKWe/fis8zu5nuOAKlMdJemGh IGDz0jojr4okSxR9cAPt+OuLbzwJ/4o0fkP5NKH8PswStcFGzkWePkHmwSzqCZSe 1teFKRSWJH4hmdhmw1BMcQoElwekV0wQ8D99D9aSgzM1Ri+5D4ccJgNz2QIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFBwKb286muHaXlvodS+rGN6yi6YUMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzI1LzJhOWRk NC0xN2I4LTQ3M2MtODNiZi05YWYxMDc0YzIyN2YvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMjUvMmE5ZGQ0 LTE3YjgtNDczYy04M2JmLTlhZjEwNzRjMjI3Zi8xL0hBcHZienFhNGRwZVctaDFM NnNZM3JLTHBoUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQBW83AMA0GCSqGSIb3DQEBCwUAA4IBAQBdo3V3 wtVLlUV+I6jeu5MhKgihvNX+PS2Cp3A/LLbF6KN8MDQPs1ZSA68yFuP6Iv3K9r/j JANG5G+bhUOy8ci7cyIUlXtySiwEvwy5oKI5pQCjhUyzuAUqKIQEEVlqGTLysBs8 v3omtxs9Fzo1PO7vwYJhmyP3kaRZisZI/OSKcQgF/Bx6ahpsYbLOwBlVqbSJTWmb UfeGyjwlCLnWeat2bXJbfPQm0a8ux9li5hTG7apWMM8NHx9Il6lbwItkQ/qaVfaX +ZXKw6rTG03PqJoWS3w6Jlr3J2Z0+EPzIKX0OBHWzOV9vZ1MzHV5r2AW2jUnKYgG 6e2SOJ9vZkN/ZuD9 -----END CERTIFICATE-----Generated at Sun Jan 11 18:20:18 2026 by rpki-client