This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer File: I5P_Icb3MQdXqdzXgdqIBfI3lNg.cer (raw, json) Hash identifier: JzJu6Mp18mtUviDlnNLsv9Hdnq7220FhUCk0JId1sj8= Subject key identifier: 23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B76EAC5E65F531736ADFE035CF19EE91D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 00:17:36 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 12807 IP: 94.124.128.0/21 IP: 185.63.192.0/22 IP: 193.33.36.0/23 IP: 193.56.160.0/23 IP: 2a01:9940::/32 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:76:ea:c5:e6:5f:53:17:36:ad:fe:03:5c:f1:9e:e9:1d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 00:17:36 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2393ff21c6f7310757a9dcd781da8805f23794d8 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cb:53:32:99:e4:4e:0f:a2:b4:01:94:28:25:f7: 52:96:92:ba:29:b4:82:7c:2b:d3:38:aa:d8:ed:1a: 5b:0f:b1:04:db:fe:82:2b:ca:f2:a1:2c:55:68:29: bf:15:f3:f8:ea:f7:96:bc:d8:3e:da:bc:24:65:7f: 62:c5:de:19:a0:78:ca:e7:1f:1f:af:7a:1f:50:5a: 25:f3:ea:95:6e:d0:c5:7f:1a:b3:a2:b6:ff:fb:fe: 8a:73:1f:dd:ca:22:d0:09:d2:ce:3b:3f:7e:d4:76: d4:39:6f:71:ec:c8:c0:b2:28:37:17:87:8d:33:77: 99:e0:15:27:f6:f5:74:22:06:05:ec:48:40:c8:9b: 50:10:a1:ae:d6:1f:9d:d5:bc:9d:64:87:52:aa:ca: 99:0d:7d:fe:b2:a4:b7:80:c8:20:71:6a:bb:65:4f: 9f:75:74:10:2d:1b:70:b7:8a:66:25:89:bb:b5:42: 5f:84:57:7b:df:fd:de:59:58:64:e3:24:72:d6:0c: 0b:03:5b:48:d3:70:9d:3b:25:a7:fb:35:bc:d6:cc: 67:70:04:c8:c9:e5:55:88:aa:69:d6:aa:fc:1a:80: ee:4a:19:d7:da:ce:1a:d4:f7:78:10:eb:4b:d3:cb: 97:31:5d:91:d6:92:a3:d9:4e:cd:ac:0f:65:0f:fc: a4:93 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:93:FF:21:C6:F7:31:07:57:A9:DC:D7:81:DA:88:05:F2:37:94:D8 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/12/baeddc-dbf2-447f-b42d-5b30639babf6/1/I5P_Icb3MQdXqdzXgdqIBfI3lNg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 94.124.128.0/21 185.63.192.0/22 193.33.36.0/23 193.56.160.0/23 IPv6: 2a01:9940::/32 sbgp-autonomousSysNum: critical Autonomous System Numbers: 12807 Signature Algorithm: sha256WithRSAEncryption 31:72:80:9d:83:41:10:09:a0:cb:b6:68:2d:45:27:31:9e:db: ef:7c:af:c1:06:7b:bc:e9:a6:52:03:1c:21:1d:c9:38:b4:09: 9e:55:2f:82:98:0a:c8:cc:db:8f:b6:ee:35:a5:66:ae:3c:2d: 5d:bc:58:4e:8b:5b:2f:a2:eb:4a:1c:2e:5d:ab:89:16:6a:e4: d8:3f:91:b6:44:b2:81:78:8b:5e:8e:a7:d5:fa:6c:43:e7:4a: f4:f3:3b:dd:30:4e:05:21:f8:ab:ec:c6:41:02:71:fc:90:a5: 20:ed:69:f9:6c:8e:9c:7e:53:d1:ba:20:86:16:67:4f:13:f1: d8:aa:36:56:3d:f4:a6:89:db:10:07:a1:6d:48:a1:d5:db:33: d4:7f:5d:24:3b:5a:47:5a:a2:48:77:5e:4a:19:cf:2c:12:55: fa:66:e0:1b:55:18:38:96:d2:00:68:23:7d:83:63:2a:91:fa: fc:a3:37:24:62:a1:4b:3b:c5:44:98:60:77:de:2b:77:27:1a: 4d:17:8d:1d:07:6a:1d:06:93:52:58:0d:2d:b9:57:9d:f9:bf: b4:dc:30:ca:8d:41:a2:53:b4:0a:1b:e8:d2:3c:db:88:47:64: 93:a7:ce:72:ef:6f:b1:f0:a0:7b:ca:a5:53:e3:51:11:87:07: 3e:53:87:fa -----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgISAZt26sXmX1MXNq3+A1zxnukdMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDAxNzM2WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzkzZmYyMWM2ZjczMTA3NTdhOWRjZDc4MWRhODgwNWYyMzc5NGQ4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy1MymeROD6K0AZQoJfdSlpK6KbSC fCvTOKrY7RpbD7EE2/6CK8ryoSxVaCm/FfP46veWvNg+2rwkZX9ixd4ZoHjK5x8f r3ofUFol8+qVbtDFfxqzorb/+/6Kcx/dyiLQCdLOOz9+1HbUOW9x7MjAsig3F4eN M3eZ4BUn9vV0IgYF7EhAyJtQEKGu1h+d1bydZIdSqsqZDX3+sqS3gMggcWq7ZU+f dXQQLRtwt4pmJYm7tUJfhFd73/3eWVhk4yRy1gwLA1tI03CdOyWn+zW81sxncATI yeVViKpp1qr8GoDuShnX2s4a1Pd4EOtL08uXMV2R1pKj2U7NrA9lD/ykkwIDAQAB o4ICwDCCArwwHQYDVR0OBBYEFCOT/yHG9zEHV6nc14HaiAXyN5TYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzEyL2JhZWRk Yy1kYmYyLTQ0N2YtYjQyZC01YjMwNjM5YmFiZjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMTIvYmFlZGRj LWRiZjItNDQ3Zi1iNDJkLTViMzA2MzliYWJmNi8xL0k1UF9JY2IzTVFkWHFkelhn ZHFJQmZJM2xOZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMEAGCCsGAQUF BwEHAQH/BDEwLzAeBAIAATAYAwQDXnyAAwQCuT/AAwQBwSEkAwQBwTigMA0EAgAC MAcDBQAqAZlAMBkGCCsGAQUFBwEIAQH/BAowCKAGMAQCAjIHMA0GCSqGSIb3DQEB CwUAA4IBAQAxcoCdg0EQCaDLtmgtRScxntvvfK/BBnu86aZSAxwhHck4tAmeVS+C mArIzNuPtu41pWauPC1dvFhOi1svoutKHC5dq4kWauTYP5G2RLKBeItejqfV+mxD 50r08zvdME4FIfir7MZBAnH8kKUg7Wn5bI6cflPRuiCGFmdPE/HYqjZWPfSmidsQ B6FtSKHV2zPUf10kO1pHWqJId15KGc8sElX6ZuAbVRg4ltIAaCN9g2Mqkfr8ozck YqFLO8VEmGB33it3JxpNF40dB2odBpNSWA0tuVed+b+03DDKjUGiU7QKG+jSPNuI R2STp85y72+x8KB7yqVT41ERhwc+U4f6 -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:46 2026 by rpki-client