This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/LnOtRfij6-Znq7GWoonWcZvruC0.cer File: LnOtRfij6-Znq7GWoonWcZvruC0.cer (raw, json) Hash identifier: XACPUVHuCswgX1OYj4HGQvpEQUeq7E7mPXPj7tzmBZw= Subject key identifier: 2E:73:AD:45:F8:A3:EB:E6:67:AB:B1:96:A2:89:D6:71:9B:EB:B8:2D Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7A5A855AB18E8461D950B7865B445EB8 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/8a/9a60cf-9d94-4585-a25b-5e7f95811562/1/LnOtRfij6-Znq7GWoonWcZvruC0.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/8a/9a60cf-9d94-4585-a25b-5e7f95811562/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 16:18:31 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 205055 IP: 185.231.176.0/22 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 06:00:12 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7a:5a:85:5a:b1:8e:84:61:d9:50:b7:86:5b:44:5e:b8 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 16:18:31 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=2e73ad45f8a3ebe667abb196a289d6719bebb82d Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:c0:ee:d8:7f:99:9d:16:2a:a0:52:2b:55:ba:bc: 91:b1:83:ed:51:09:aa:d4:b4:43:e2:b8:7d:d3:90: ee:e8:6b:18:a9:2f:54:0b:2c:59:58:ec:57:5b:97: 3d:8a:33:35:1b:d5:69:5e:8b:bf:82:01:7c:a3:62: 51:2b:0a:01:5f:5c:af:2f:c2:99:54:3a:83:81:7b: c5:5b:ab:cc:24:52:c9:e9:14:c0:bd:52:88:55:f0: 54:6b:85:fa:74:9b:90:11:f8:19:5b:11:ae:60:8b: f1:db:e2:b8:cf:6a:5b:a0:70:15:09:4d:21:b0:b8: 00:8b:0c:4e:53:3e:43:3f:42:9a:6d:97:d6:f1:a4: 5c:97:1d:9d:40:45:7a:e2:64:f8:56:a0:02:62:bb: c9:8d:21:c4:d3:26:b6:e7:6a:60:61:cf:66:ff:54: 74:ce:00:02:f0:c6:26:25:96:d0:ed:d8:fd:e1:a2: 13:b4:af:05:7c:8f:8b:13:67:ca:a8:ce:fc:ba:b2: c4:fd:53:e0:e2:22:de:5a:7a:33:0d:2e:ac:a4:bb: 41:59:d0:cf:ad:1b:43:9d:10:5e:44:ff:8c:83:42: f2:c8:1e:70:c1:04:12:81:e8:ed:58:95:5d:db:30: 7c:05:1d:30:24:35:b6:6c:3e:db:b1:aa:62:79:73: 91:49 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 2E:73:AD:45:F8:A3:EB:E6:67:AB:B1:96:A2:89:D6:71:9B:EB:B8:2D X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/9a60cf-9d94-4585-a25b-5e7f95811562/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/8a/9a60cf-9d94-4585-a25b-5e7f95811562/1/LnOtRfij6-Znq7GWoonWcZvruC0.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 185.231.176.0/22 sbgp-autonomousSysNum: critical Autonomous System Numbers: 205055 Signature Algorithm: sha256WithRSAEncryption 73:4b:e5:6f:3d:5a:05:c7:2c:0e:52:da:cd:f4:cc:17:ba:66: e6:8f:1e:7b:96:ac:12:67:1c:ee:b4:16:1a:3c:8e:1c:e7:2d: 5e:6e:55:ea:64:d6:01:a3:bc:b4:48:2a:a5:fd:f8:7a:8a:7a: e8:5f:8f:c2:4a:d8:a6:91:9f:63:6b:53:9f:cc:c3:27:47:97: 1e:de:94:4a:0f:43:bf:ed:a4:75:7d:49:8e:72:05:45:43:75: 1d:e6:17:0e:43:e0:df:aa:e1:b4:96:b6:8c:97:77:3c:6a:ec: 08:d1:2a:5a:0f:c6:c8:c3:ea:aa:35:78:17:8b:88:51:4e:88: 8a:68:0c:f7:43:5d:89:15:90:9c:59:c8:34:f0:4a:7a:cd:3f: 85:2c:f0:98:a5:0c:4b:dc:fb:91:8d:0f:da:c3:2c:0f:f7:51: 18:0f:7b:8e:a5:fb:34:46:8e:1a:88:ff:3e:44:1e:2f:e3:92: 4c:7b:d4:22:1b:a7:b0:5e:43:89:1b:89:1b:d6:1c:4b:81:4f: 7c:7d:a1:b3:64:13:9d:72:83:5d:58:99:e1:84:e4:0f:44:a7: da:53:cd:4e:f5:fc:9b:e4:21:4b:15:f7:24:0b:7e:4c:92:92: 86:d8:7d:70:af:25:05:57:33:e8:8a:1f:ac:b9:82:70:4d:04: a2:7c:cd:8b -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt6WoVasY6EYdlQt4ZbRF64MA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMTYxODMxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygyZTczYWQ0NWY4YTNlYmU2NjdhYmIxOTZhMjg5ZDY3MTliZWJiODJkMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwO7Yf5mdFiqgUitVuryRsYPtUQmq 1LRD4rh905Du6GsYqS9UCyxZWOxXW5c9ijM1G9VpXou/ggF8o2JRKwoBX1yvL8KZ VDqDgXvFW6vMJFLJ6RTAvVKIVfBUa4X6dJuQEfgZWxGuYIvx2+K4z2pboHAVCU0h sLgAiwxOUz5DP0KabZfW8aRclx2dQEV64mT4VqACYrvJjSHE0ya252pgYc9m/1R0 zgAC8MYmJZbQ7dj94aITtK8FfI+LE2fKqM78urLE/VPg4iLeWnozDS6spLtBWdDP rRtDnRBeRP+Mg0LyyB5wwQQSgejtWJVd2zB8BR0wJDW2bD7bsapieXORSQIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFC5zrUX4o+vmZ6uxlqKJ1nGb67gtMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzhhLzlhNjBj Zi05ZDk0LTQ1ODUtYTI1Yi01ZTdmOTU4MTE1NjIvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOGEvOWE2MGNm LTlkOTQtNDU4NS1hMjViLTVlN2Y5NTgxMTU2Mi8xL0xuT3RSZmlqNi1abnE3R1dv b25XY1p2cnVDMC5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQCueewMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwMg/zANBgkqhkiG9w0BAQsFAAOCAQEAc0vlbz1aBccsDlLazfTMF7pm5o8ee5as Emcc7rQWGjyOHOctXm5V6mTWAaO8tEgqpf34eop66F+PwkrYppGfY2tTn8zDJ0eX Ht6USg9Dv+2kdX1JjnIFRUN1HeYXDkPg36rhtJa2jJd3PGrsCNEqWg/GyMPqqjV4 F4uIUU6IimgM90NdiRWQnFnINPBKes0/hSzwmKUMS9z7kY0P2sMsD/dRGA97jqX7 NEaOGoj/PkQeL+OSTHvUIhunsF5DiRuJG9YcS4FPfH2hs2QTnXKDXViZ4YTkD0Sn 2lPNTvX8m+QhSxX3JAt+TJKShth9cK8lBVcz6IofrLmCcE0EonzNiw== -----END CERTIFICATE-----Generated at Mon Feb 9 15:09:48 2026 by rpki-client