This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/ILpx5Gx1kWuOXeGTzH-BBp34b3M.cer File: ILpx5Gx1kWuOXeGTzH-BBp34b3M.cer (raw, json) Hash identifier: bIF7Q78JETipRZTLABEV0MhRlpDN8PjOFmH03ujjcBk= Subject key identifier: 20:BA:71:E4:6C:75:91:6B:8E:5D:E1:93:CC:7F:81:06:9D:F8:6F:73 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7AC7F92FABAD5752AA52F2C71E81DACC Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/55/d0642c-84e6-4290-afb1-484500bcfb07/1/ILpx5Gx1kWuOXeGTzH-BBp34b3M.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/55/d0642c-84e6-4290-afb1-484500bcfb07/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 18:18:04 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206616 IP: 185.149.92.0/22 IP: 212.15.88.0/21 IP: 2a07:7a80::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:c7:f9:2f:ab:ad:57:52:aa:52:f2:c7:1e:81:da:cc Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 18:18:04 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=20ba71e46c75916b8e5de193cc7f81069df86f73 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:86:ff:49:88:80:1f:da:c0:a5:f8:d0:0c:c6:6f: 97:6e:83:29:b0:a4:9a:07:24:6a:26:c1:d3:7e:de: 85:b3:48:e3:23:9f:3e:51:39:fe:1b:ad:bd:14:ab: e8:96:cd:09:97:be:fc:89:03:a4:1e:39:a6:d2:fe: 1d:a8:ff:1c:b4:14:7d:9d:37:02:fd:7b:5c:5a:60: 27:29:2a:62:11:e3:1c:ef:28:7d:1c:84:29:73:29: 86:e5:12:29:52:19:db:22:2e:56:ca:a5:60:20:bc: 83:db:24:01:0e:04:34:87:50:b6:c4:3f:16:3c:61: 2e:49:27:56:85:fc:2f:22:41:99:b2:fe:2c:2c:93: d9:8d:7d:14:82:d1:19:ba:a2:49:b1:45:8b:16:9e: 04:89:29:9d:05:2d:ea:c7:54:ac:e6:e0:40:b6:51: 60:72:69:91:50:f0:5b:fa:71:78:99:3f:78:5a:11: fb:da:cf:97:49:65:78:a5:a8:26:1e:2c:04:85:6f: 26:22:aa:76:4a:8e:5e:4f:bc:a7:ec:e2:87:72:7f: fa:41:17:f6:a8:b4:a3:06:6b:e5:a0:dd:08:97:e4: a5:1a:c8:47:e2:71:a1:0f:a6:76:44:31:dc:33:7f: 18:0b:b9:62:ee:0b:68:a1:1d:11:47:45:49:a8:24: e8:a9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 20:BA:71:E4:6C:75:91:6B:8E:5D:E1:93:CC:7F:81:06:9D:F8:6F:73 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/d0642c-84e6-4290-afb1-484500bcfb07/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/55/d0642c-84e6-4290-afb1-484500bcfb07/1/ILpx5Gx1kWuOXeGTzH-BBp34b3M.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.149.92.0/22 212.15.88.0/21 IPv6: 2a07:7a80::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206616 Signature Algorithm: sha256WithRSAEncryption 62:b5:18:7c:fe:65:62:91:d9:e0:a6:2f:56:9b:51:2f:e9:52: 7d:cc:6f:8d:9b:ed:5b:12:e0:90:d4:2b:52:a9:43:49:40:2a: ad:64:5f:b9:cc:eb:d5:38:6c:45:5d:cd:47:03:bc:55:52:62: 94:cc:32:44:d9:72:0e:54:67:0d:f6:bb:cc:1a:3e:61:98:f0: d3:5b:1a:65:b3:e5:fb:e9:e9:cc:6d:9d:e5:ae:68:ac:8e:68: c2:30:8e:fa:0b:98:fd:f0:1f:b9:60:11:66:80:65:0b:85:e9: 99:af:4a:6e:27:27:bb:0d:64:ee:78:31:63:a1:66:b7:e0:10: 5a:f3:82:07:f9:f3:d6:d3:41:27:52:44:a7:3e:f1:6a:0a:ce: 5b:78:99:83:48:6b:de:0e:25:3b:cc:56:e5:5d:d5:7d:2d:b5: 3a:33:db:f4:fc:e9:87:3d:a7:38:95:38:f3:9b:99:60:12:a7: 10:cf:b8:25:23:cd:65:ef:eb:55:6f:53:3c:72:9b:f5:8a:05: ca:ab:26:27:a8:8c:2c:13:fa:c1:a8:e7:21:25:6c:e9:28:da: 9d:0f:2d:ce:49:d8:13:e5:90:f0:dc:f5:46:ea:2b:3a:e0:0c: 58:d3:65:23:81:9a:8d:c8:bd:02:32:b1:d5:04:82:10:ee:82: e6:cc:91:75 -----BEGIN CERTIFICATE----- MIIFqTCCBJGgAwIBAgISAZt6x/kvq61XUqpS8scegdrMMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTgxODA0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMGJhNzFlNDZjNzU5MTZiOGU1ZGUxOTNjYzdmODEwNjlkZjg2ZjczMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAhv9JiIAf2sCl+NAMxm+XboMpsKSa ByRqJsHTft6Fs0jjI58+UTn+G629FKvols0Jl778iQOkHjmm0v4dqP8ctBR9nTcC /XtcWmAnKSpiEeMc7yh9HIQpcymG5RIpUhnbIi5WyqVgILyD2yQBDgQ0h1C2xD8W PGEuSSdWhfwvIkGZsv4sLJPZjX0UgtEZuqJJsUWLFp4EiSmdBS3qx1Ss5uBAtlFg cmmRUPBb+nF4mT94WhH72s+XSWV4pagmHiwEhW8mIqp2So5eT7yn7OKHcn/6QRf2 qLSjBmvloN0Il+SlGshH4nGhD6Z2RDHcM38YC7li7gtooR0RR0VJqCToqQIDAQAB o4ICtTCCArEwHQYDVR0OBBYEFCC6ceRsdZFrjl3hk8x/gQad+G9zMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzU1L2QwNjQy Yy04NGU2LTQyOTAtYWZiMS00ODQ1MDBiY2ZiMDcvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvNTUvZDA2NDJj LTg0ZTYtNDI5MC1hZmIxLTQ4NDUwMGJjZmIwNy8xL0lMcHg1R3gxa1d1T1hlR1R6 SC1CQnAzNGIzTS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDQGCCsGAQUF BwEHAQH/BCUwIzASBAIAATAMAwQCuZVcAwQD1A9YMA0EAgACMAcDBQMqB3qAMBoG CCsGAQUFBwEIAQH/BAswCaAHMAUCAwMnGDANBgkqhkiG9w0BAQsFAAOCAQEAYrUY fP5lYpHZ4KYvVptRL+lSfcxvjZvtWxLgkNQrUqlDSUAqrWRfuczr1ThsRV3NRwO8 VVJilMwyRNlyDlRnDfa7zBo+YZjw01saZbPl++npzG2d5a5orI5owjCO+guY/fAf uWARZoBlC4Xpma9Kbicnuw1k7ngxY6Fmt+AQWvOCB/nz1tNBJ1JEpz7xagrOW3iZ g0hr3g4lO8xW5V3VfS21OjPb9Pzphz2nOJU485uZYBKnEM+4JSPNZe/rVW9TPHKb 9YoFyqsmJ6iMLBP6wajnISVs6SjanQ8tzknYE+WQ8Nz1RuorOuAMWNNlI4Gajci9 AjKx1QSCEO6C5syRdQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:52:34 2026 by rpki-client