This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/IsXMfDZMkOr6uml-C_WfBVaalpU.cer File: IsXMfDZMkOr6uml-C_WfBVaalpU.cer (raw, json) Hash identifier: Cmb3tXd3U7vstlpaIb9KldjfVhQRfTkXN6FcczEC9gQ= Subject key identifier: 22:C5:CC:7C:36:4C:90:EA:FA:BA:69:7E:0B:F5:9F:05:56:9A:96:95 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B79105D31C66C2D9D7B10B1F25034FC4D Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/01/569442-4e6d-4ebe-9bb2-3fdb753a8619/1/IsXMfDZMkOr6uml-C_WfBVaalpU.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/01/569442-4e6d-4ebe-9bb2-3fdb753a8619/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 10:17:54 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 41971 IP: 194.60.82.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:79:10:5d:31:c6:6c:2d:9d:7b:10:b1:f2:50:34:fc:4d Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 10:17:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=22c5cc7c364c90eafaba697e0bf59f05569a9695 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c1:7c:aa:0a:ed:4a:21:f2:40:57:1b:0a:93:f5: 88:e1:6f:1a:6f:28:1c:fa:a6:2d:e9:82:9c:77:ee: 61:c3:21:61:44:35:45:a5:fa:43:a2:cf:de:4c:dc: d3:0d:18:85:f8:20:97:5e:b5:a0:69:44:7b:a8:0d: 1e:a3:98:6e:0f:e4:5c:22:f7:72:5f:cb:2a:32:6e: f4:e0:4b:e6:3c:0a:73:66:3b:56:21:01:2d:5a:2e: bb:4b:21:b9:c0:c8:66:a8:10:a5:ff:4a:38:b5:02: e7:f5:4e:32:21:e9:b7:22:f5:99:35:66:55:f9:61: 7f:6d:d9:e7:dd:07:a0:f6:ef:da:71:12:8c:04:67: db:bb:de:a7:30:9a:65:2d:6b:ee:ee:0e:76:9c:95: 4a:94:ff:90:ef:06:f3:57:51:49:d0:44:14:05:eb: 2b:ab:e0:66:1b:0c:71:b6:92:32:00:23:1c:eb:fc: 16:95:85:ac:cc:bf:cf:6c:3e:c5:0e:c6:f4:bf:f2: dd:82:d3:a8:d9:87:21:fd:08:f2:21:7a:37:49:96: 43:5d:d6:39:84:a8:52:db:63:d3:5d:00:28:6d:67: 00:75:01:45:26:75:4d:bc:fd:c8:7f:c1:26:65:23: a4:eb:64:7f:e0:6a:c8:91:61:67:91:10:e3:ce:6d: 47:7d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 22:C5:CC:7C:36:4C:90:EA:FA:BA:69:7E:0B:F5:9F:05:56:9A:96:95 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/569442-4e6d-4ebe-9bb2-3fdb753a8619/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/01/569442-4e6d-4ebe-9bb2-3fdb753a8619/1/IsXMfDZMkOr6uml-C_WfBVaalpU.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 194.60.82.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 41971 Signature Algorithm: sha256WithRSAEncryption a3:bb:2a:67:69:a9:90:27:91:06:9f:e2:ce:09:ba:61:d6:1b: 2c:8c:b6:87:ab:60:0b:37:aa:cb:e1:57:ac:5a:72:93:bd:cd: 87:3a:1f:d0:c8:9b:2b:2c:37:50:ec:95:9f:46:38:fc:82:72: 98:89:9e:93:48:fc:be:1f:fa:7a:08:4b:c0:b0:33:b0:2b:a3: 4b:4f:3a:20:6e:d8:e0:d2:05:ba:3f:70:d0:20:c0:c0:c2:57: ae:16:7b:c7:04:84:88:c3:31:1b:72:31:e2:83:34:64:00:3b: 10:0d:b2:aa:94:ab:98:da:14:49:25:dc:c5:23:e3:98:ee:d5: 0c:b6:d6:36:63:c5:04:82:5d:79:06:7b:8b:f3:06:b6:36:55: 34:4e:32:57:b9:fa:78:ce:f4:53:66:0a:df:8a:8f:83:bd:60: d6:05:a7:a1:9f:35:16:36:4c:de:a8:8d:51:0e:19:b3:d1:fb: 01:8d:59:73:0a:0f:c7:1c:99:4d:2e:25:61:ac:29:73:63:9c: 6c:95:f7:b8:29:30:7f:f2:80:4d:40:44:8c:f9:3e:39:13:43: 5b:21:2e:d4:4f:d5:b6:1d:3c:fd:f2:5c:d5:7a:b2:79:64:20: a2:c1:16:5f:8a:87:4a:32:d6:65:b4:ff:99:52:25:93:34:fb: d3:c6:28:17 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt5EF0xxmwtnXsQsfJQNPxNMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTAxNzU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMmM1Y2M3YzM2NGM5MGVhZmFiYTY5N2UwYmY1OWYwNTU2OWE5Njk1MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwXyqCu1KIfJAVxsKk/WI4W8abygc +qYt6YKcd+5hwyFhRDVFpfpDos/eTNzTDRiF+CCXXrWgaUR7qA0eo5huD+RcIvdy X8sqMm704EvmPApzZjtWIQEtWi67SyG5wMhmqBCl/0o4tQLn9U4yIem3IvWZNWZV +WF/bdnn3Qeg9u/acRKMBGfbu96nMJplLWvu7g52nJVKlP+Q7wbzV1FJ0EQUBesr q+BmGwxxtpIyACMc6/wWlYWszL/PbD7FDsb0v/LdgtOo2Ych/QjyIXo3SZZDXdY5 hKhS22PTXQAobWcAdQFFJnVNvP3If8EmZSOk62R/4GrIkWFnkRDjzm1HfQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFCLFzHw2TJDq+rppfgv1nwVWmpaVMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzAxLzU2OTQ0 Mi00ZTZkLTRlYmUtOWJiMi0zZmRiNzUzYTg2MTkvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMDEvNTY5NDQy LTRlNmQtNGViZS05YmIyLTNmZGI3NTNhODYxOS8xL0lzWE1mRFpNa09yNnVtbC1D X1dmQlZhYWxwVS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwjxSMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwCj8zANBgkqhkiG9w0BAQsFAAOCAQEAo7sqZ2mpkCeRBp/izgm6YdYbLIy2h6tg Czeqy+FXrFpyk73Nhzof0MibKyw3UOyVn0Y4/IJymImek0j8vh/6eghLwLAzsCuj S086IG7Y4NIFuj9w0CDAwMJXrhZ7xwSEiMMxG3Ix4oM0ZAA7EA2yqpSrmNoUSSXc xSPjmO7VDLbWNmPFBIJdeQZ7i/MGtjZVNE4yV7n6eM70U2YK34qPg71g1gWnoZ81 FjZM3qiNUQ4Zs9H7AY1ZcwoPxxyZTS4lYawpc2OcbJX3uCkwf/KATUBEjPk+ORND WyEu1E/Vth08/fJc1XqyeWQgosEWX4qHSjLWZbT/mVIlkzT708YoFw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:08 2026 by rpki-client