This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/IxNmmEaTAQHlodA48EtTTaCLonY.cer File: IxNmmEaTAQHlodA48EtTTaCLonY.cer (raw, json) Hash identifier: s7nYYWeLD+VS5mBGDja0Mw5bL5YixUVygxx6tK0biQ0= Subject key identifier: 23:13:66:98:46:93:01:01:E5:A1:D0:38:F0:4B:53:4D:A0:8B:A2:76 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A22FCFE6A7A0037E972BF35F996EEE Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/c9/934fc6-0724-4cd6-a417-eea9661381b4/1/IxNmmEaTAQHlodA48EtTTaCLonY.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/c9/934fc6-0724-4cd6-a417-eea9661381b4/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:17:33 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 200591 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 14:10:14 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:2f:cf:e6:a7:a0:03:7e:97:2b:f3:5f:99:6e:ee Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:17:33 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2313669846930101e5a1d038f04b534da08ba276 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c5:04:e3:3c:60:9e:a0:f9:a2:e4:db:83:6c:ca: e7:d9:4d:5f:90:7e:98:86:cd:2d:a9:8c:61:d3:3c: 9b:6f:8e:2e:14:cf:e3:f7:a1:53:98:59:43:a9:eb: 5c:12:52:fb:8a:81:bf:e0:37:51:d3:e1:32:07:31: ba:30:39:f6:c6:e3:0a:e1:d9:d7:d9:3a:c4:7a:d3: dd:64:4e:89:bf:79:e0:83:58:99:31:3f:75:87:e2: 3e:17:34:a5:df:e2:e6:77:cb:b1:33:57:4b:d9:64: 25:69:20:41:0e:5e:41:db:27:d1:0c:1c:43:ff:05: 17:ef:76:2e:92:4a:5d:14:2b:df:a6:3f:1f:81:20: 32:81:2c:24:a0:37:4e:a2:02:b5:0f:6b:bb:e8:c1: 03:df:1e:1b:b7:e0:4f:63:89:43:3b:4d:28:51:dd: bc:43:d3:5a:68:80:a8:5b:36:c5:49:4f:b3:44:ce: 2c:95:ef:bc:55:d3:39:db:bc:b4:78:e1:fb:04:3f: cf:07:b0:1e:c5:d0:a3:d9:25:5d:ed:ed:b3:d2:b2: 4c:d8:63:c4:de:27:90:ea:c2:45:3e:7e:73:02:79: f4:4f:57:ef:bf:42:28:06:14:6c:3d:9d:23:e8:06: 9d:58:56:fa:7b:5c:75:43:95:47:c2:df:68:e9:fb: b0:b9 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 23:13:66:98:46:93:01:01:E5:A1:D0:38:F0:4B:53:4D:A0:8B:A2:76 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/934fc6-0724-4cd6-a417-eea9661381b4/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/c9/934fc6-0724-4cd6-a417-eea9661381b4/1/IxNmmEaTAQHlodA48EtTTaCLonY.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-autonomousSysNum: critical Autonomous System Numbers: 200591 Signature Algorithm: sha256WithRSAEncryption 32:48:94:dc:7d:bf:af:52:7f:80:52:7c:ef:a5:94:c7:52:30: 10:0d:de:74:52:98:45:40:e1:f0:41:fc:d0:af:76:9a:41:7f: c9:b0:4d:08:4b:3d:4c:8a:2f:47:f7:8d:b6:dc:fc:53:f8:d4: dd:6a:aa:e6:48:02:26:eb:89:8b:bd:dd:57:1a:c8:69:0f:2c: b8:8f:09:8b:76:eb:3f:b4:51:3c:44:0a:e1:1f:c0:69:71:b8: 2f:c4:6a:87:9a:f7:70:0e:4a:cf:f7:c6:19:7a:0a:5d:51:c5: 44:fd:ff:5c:03:04:81:22:7e:e1:b6:87:f6:b5:4a:02:da:05: 88:50:3a:32:8a:a3:80:cb:01:d1:7a:16:43:18:8f:ba:e9:62: c2:21:04:e1:da:b2:62:0b:64:ae:83:ea:95:20:18:3b:71:f9: c0:e4:a1:da:c5:3d:94:c8:eb:01:27:20:8e:b2:d0:50:33:77: 30:1d:81:1d:0f:4c:ce:e2:b5:9a:5b:27:2c:86:4c:4c:31:7a: 4c:32:21:c1:17:98:24:27:51:29:c0:5b:9c:0b:81:84:7b:ae: 02:d6:d9:b9:be:9f:97:e1:11:3c:ef:14:bc:0d:73:26:8f:ac: dc:97:8b:4f:5c:45:78:5c:96:b9:c5:e3:ee:3c:53:10:e7:23: d0:10:4f:15 -----BEGIN CERTIFICATE----- MIIFczCCBFugAwIBAgISAZt4oi/P5qegA36XK/NfmW7uMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxNzMzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyMzEzNjY5ODQ2OTMwMTAxZTVhMWQwMzhmMDRiNTM0ZGEwOGJhMjc2MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxQTjPGCeoPmi5NuDbMrn2U1fkH6Y hs0tqYxh0zybb44uFM/j96FTmFlDqetcElL7ioG/4DdR0+EyBzG6MDn2xuMK4dnX 2TrEetPdZE6Jv3ngg1iZMT91h+I+FzSl3+Lmd8uxM1dL2WQlaSBBDl5B2yfRDBxD /wUX73YukkpdFCvfpj8fgSAygSwkoDdOogK1D2u76MED3x4bt+BPY4lDO00oUd28 Q9NaaICoWzbFSU+zRM4sle+8VdM527y0eOH7BD/PB7AexdCj2SVd7e2z0rJM2GPE 3ieQ6sJFPn5zAnn0T1fvv0IoBhRsPZ0j6AadWFb6e1x1Q5VHwt9o6fuwuQIDAQAB o4ICfzCCAnswHQYDVR0OBBYEFCMTZphGkwEB5aHQOPBLU02gi6J2MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2M5LzkzNGZj Ni0wNzI0LTRjZDYtYTQxNy1lZWE5NjYxMzgxYjQvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYzkvOTM0ZmM2 LTA3MjQtNGNkNi1hNDE3LWVlYTk2NjEzODFiNC8xL0l4Tm1tRWFUQVFIbG9kQTQ4 RXRUVGFDTG9uWS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMBoGCCsGAQUF BwEIAQH/BAswCaAHMAUCAwMPjzANBgkqhkiG9w0BAQsFAAOCAQEAMkiU3H2/r1J/ gFJ876WUx1IwEA3edFKYRUDh8EH80K92mkF/ybBNCEs9TIovR/eNttz8U/jU3Wqq 5kgCJuuJi73dVxrIaQ8suI8Ji3brP7RRPEQK4R/AaXG4L8Rqh5r3cA5Kz/fGGXoK XVHFRP3/XAMEgSJ+4baH9rVKAtoFiFA6MoqjgMsB0XoWQxiPuuliwiEE4dqyYgtk roPqlSAYO3H5wOSh2sU9lMjrAScgjrLQUDN3MB2BHQ9MzuK1mlsnLIZMTDF6TDIh wReYJCdRKcBbnAuBhHuuAtbZub6fl+ERPO8UvA1zJo+s3JeLT1xFeFyWucXj7jxT EOcj0BBPFQ== -----END CERTIFICATE-----Generated at Mon Feb 9 16:51:40 2026 by rpki-client