This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/Hvlb_PWV9GUP8xIlQ2KtJmaxzWs.cer File: Hvlb_PWV9GUP8xIlQ2KtJmaxzWs.cer (raw, json) Hash identifier: ly+L74/d4dfMIVemBgzxGWNDYEc8ai9kbDHjBcqESDw= Subject key identifier: 1E:F9:5B:FC:F5:95:F4:65:0F:F3:12:25:43:62:AD:26:66:B1:CD:6B Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7E390DD3180D0AFF9F77FCB536CD0EBF Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/f5/74d697-4a07-4020-9dda-550e1018fcbf/1/Hvlb_PWV9GUP8xIlQ2KtJmaxzWs.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/f5/74d697-4a07-4020-9dda-550e1018fcbf/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 10:20:26 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 208013 IP: 5.182.0.0/22 IP: 2a0e:7800::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7e:39:0d:d3:18:0d:0a:ff:9f:77:fc:b5:36:cd:0e:bf Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 10:20:26 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=1ef95bfcf595f4650ff312254362ad2666b1cd6b Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:90:04:78:54:2e:24:bf:7c:e7:51:df:bb:cf:2a: 8e:ae:a7:39:7c:74:f0:cf:81:52:3c:f8:6d:d5:e9: 75:36:7e:11:34:3a:bd:38:3e:02:a5:e5:05:f1:7d: 26:ed:56:41:93:bf:a4:31:a2:31:bc:dd:9d:b1:90: aa:92:b2:28:d4:89:10:a0:b6:38:1d:64:70:6d:c7: a1:43:f0:72:70:c8:59:06:16:f8:43:96:c9:94:4c: 9c:23:d7:c5:ac:71:95:44:70:9c:e4:43:6d:a5:6f: e6:dc:18:01:90:2c:48:1d:9f:6e:e4:fe:1a:0d:75: c5:6a:16:2a:80:27:c6:1c:8d:22:8b:23:87:5f:61: 11:44:f8:31:46:a8:63:c5:aa:9e:6d:e0:b2:38:4f: ee:1e:8f:71:82:7e:5d:f1:d7:be:dd:e9:6d:85:46: 7d:9f:70:b7:1f:f6:ef:dc:87:ff:e5:e7:77:8c:29: 97:c0:92:19:78:70:b8:01:3c:53:b8:5e:39:1d:17: 7c:7b:f2:66:77:12:5e:3b:cf:43:c2:4d:de:98:27: 68:3e:13:f8:9b:da:08:cc:22:bc:00:30:ae:56:fe: 85:dc:fa:1a:f9:93:ce:b0:f8:fb:c3:a8:93:e1:e2: 12:cc:34:d2:aa:5d:2e:97:55:2d:fb:19:f8:5b:0e: a6:b3 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 1E:F9:5B:FC:F5:95:F4:65:0F:F3:12:25:43:62:AD:26:66:B1:CD:6B X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/74d697-4a07-4020-9dda-550e1018fcbf/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/f5/74d697-4a07-4020-9dda-550e1018fcbf/1/Hvlb_PWV9GUP8xIlQ2KtJmaxzWs.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 5.182.0.0/22 IPv6: 2a0e:7800::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 208013 Signature Algorithm: sha256WithRSAEncryption a7:e1:c0:6d:3e:30:48:cf:2d:59:e1:d6:4d:0b:8a:22:4a:7e: 5f:57:42:4c:99:50:c9:89:d4:14:80:c0:e3:5a:a3:86:91:6a: 01:a6:2a:1d:eb:c9:55:bc:01:20:14:d3:c1:84:7b:d3:65:e8: fa:31:3f:82:a1:1c:61:e8:8b:10:03:c1:43:49:f4:88:9f:84: 4b:e3:cf:f8:5c:20:42:e7:02:ff:e1:e0:b2:fd:56:43:10:c4: 54:70:e0:97:d7:87:16:92:7f:c0:4b:82:87:13:ec:9a:ad:f0: 04:ce:e2:fc:cf:22:7f:e1:1a:eb:7c:c2:5a:9d:e2:bf:8c:a7: f3:e8:49:e8:9d:2d:71:e5:2f:52:a8:f6:8b:29:fe:69:0e:2d: 08:43:0b:e5:24:cd:38:f1:2b:d1:4e:34:dc:d9:e0:1d:55:0a: 41:5e:96:b3:20:0f:cf:04:ba:8f:64:d2:fd:d0:f0:44:f3:6b: 0d:43:56:f6:ca:13:07:bc:a7:ae:fc:95:14:53:68:a6:da:0a: 64:4c:41:8f:67:e8:ce:81:53:c7:0e:fe:18:26:4a:92:c5:ab: 29:3a:7f:1e:34:e1:04:f1:bc:20:e7:d5:a4:83:f3:de:27:c5: 43:f8:99:29:57:2c:cb:66:f1:8d:81:9b:77:ca:91:93:3a:49: 45:e8:00:3a -----BEGIN CERTIFICATE----- MIIFozCCBIugAwIBAgISAZt+OQ3TGA0K/593/LU2zQ6/MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMTAyMDI2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygxZWY5NWJmY2Y1OTVmNDY1MGZmMzEyMjU0MzYyYWQyNjY2YjFjZDZiMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkAR4VC4kv3znUd+7zyqOrqc5fHTw z4FSPPht1el1Nn4RNDq9OD4CpeUF8X0m7VZBk7+kMaIxvN2dsZCqkrIo1IkQoLY4 HWRwbcehQ/BycMhZBhb4Q5bJlEycI9fFrHGVRHCc5ENtpW/m3BgBkCxIHZ9u5P4a DXXFahYqgCfGHI0iiyOHX2ERRPgxRqhjxaqebeCyOE/uHo9xgn5d8de+3elthUZ9 n3C3H/bv3If/5ed3jCmXwJIZeHC4ATxTuF45HRd8e/JmdxJeO89Dwk3emCdoPhP4 m9oIzCK8ADCuVv6F3Poa+ZPOsPj7w6iT4eISzDTSql0ul1Ut+xn4Ww6mswIDAQAB o4ICrzCCAqswHQYDVR0OBBYEFB75W/z1lfRlD/MSJUNirSZmsc1rMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2Y1Lzc0ZDY5 Ny00YTA3LTQwMjAtOWRkYS01NTBlMTAxOGZjYmYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZjUvNzRkNjk3 LTRhMDctNDAyMC05ZGRhLTU1MGUxMDE4ZmNiZi8xL0h2bGJfUFdWOUdVUDh4SWxR Mkt0Sm1heHpXcy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMC4GCCsGAQUF BwEHAQH/BB8wHTAMBAIAATAGAwQCBbYAMA0EAgACMAcDBQMqDngAMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMsjTANBgkqhkiG9w0BAQsFAAOCAQEAp+HAbT4wSM8t WeHWTQuKIkp+X1dCTJlQyYnUFIDA41qjhpFqAaYqHevJVbwBIBTTwYR702Xo+jE/ gqEcYeiLEAPBQ0n0iJ+ES+PP+FwgQucC/+Hgsv1WQxDEVHDgl9eHFpJ/wEuChxPs mq3wBM7i/M8if+Ea63zCWp3iv4yn8+hJ6J0tceUvUqj2iyn+aQ4tCEML5STNOPEr 0U403NngHVUKQV6WsyAPzwS6j2TS/dDwRPNrDUNW9soTB7ynrvyVFFNoptoKZExB j2fozoFTxw7+GCZKksWrKTp/HjThBPG8IOfVpIPz3ifFQ/iZKVcsy2bxjYGbd8qR kzpJRegAOg== -----END CERTIFICATE-----Generated at Mon Feb 9 16:49:52 2026 by rpki-client