This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/MksgMsOPsX9C-IMqTCHh8NXxnuA.cer File: MksgMsOPsX9C-IMqTCHh8NXxnuA.cer (raw, json) Hash identifier: QqBMCc7PEmU4uCmgr3Xz+Gemlij9R0dGtMYXL4/vBmQ= Subject key identifier: 32:4B:20:32:C3:8F:B1:7F:42:F8:83:2A:4C:21:E1:F0:D5:F1:9E:E0 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019BFA0B52051B1F9AF62CA41AEEF67063C2 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/34/79ebc6-617b-4ea9-b453-4360ee06a22c/1/MksgMsOPsX9C-IMqTCHh8NXxnuA.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/34/79ebc6-617b-4ea9-b453-4360ee06a22c/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Mon 26 Jan 2026 11:23:24 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 197205 IP: 83.150.244.0/22 IP: 195.66.82.0/24 IP: 213.232.255.0/24 IP: 2a09:1f00::/29 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Mon 02 Feb 2026 21:00:30 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:fa:0b:52:05:1b:1f:9a:f6:2c:a4:1a:ee:f6:70:63:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 26 11:23:24 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=324b2032c38fb17f42f8832a4c21e1f0d5f19ee0 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:d3:dc:c8:22:50:67:b3:ee:19:d0:26:02:e8:e1: 87:9b:34:08:9b:f1:83:a9:a8:36:23:1b:8b:b1:1f: c4:21:9a:84:44:4e:04:1b:11:48:72:8d:71:d6:b5: f5:42:85:b6:f5:a0:10:30:2e:d3:0e:38:fe:85:6b: 4e:16:56:60:f6:a3:8b:6b:df:d1:b2:23:d2:cb:55: 16:6d:1c:1e:88:a1:a6:de:18:04:cc:4d:86:ab:d2: 3e:9e:fc:7c:bd:48:27:31:06:3d:c8:d7:9a:16:f4: 49:66:37:62:57:d0:d3:ea:23:39:17:55:cf:34:fd: d5:6d:6e:b3:ad:a2:ef:73:25:79:61:32:81:d7:d2: 35:f3:a8:5c:ff:01:03:dd:16:73:f0:8e:37:44:02: 6f:dd:d5:15:fb:f3:a6:a1:fe:5d:10:a6:74:8b:58: 56:13:6a:7c:28:09:e8:cb:8a:fb:7e:78:d4:a0:b4: 2f:f2:c4:39:8c:1d:ee:2d:b6:c3:b6:d5:e0:b9:91: 1d:3d:1a:0a:f7:91:19:18:12:06:a4:fe:a9:9b:97: df:1b:aa:26:d4:ae:94:3b:38:b1:f5:20:1f:1a:c3: 4a:e7:ca:4b:bc:7f:4e:40:c6:1b:70:e0:6b:d2:26: d0:d6:3e:36:0a:94:9a:7e:4c:02:1a:ae:4d:b1:cb: 5c:f5 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 32:4B:20:32:C3:8F:B1:7F:42:F8:83:2A:4C:21:E1:F0:D5:F1:9E:E0 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/79ebc6-617b-4ea9-b453-4360ee06a22c/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/34/79ebc6-617b-4ea9-b453-4360ee06a22c/1/MksgMsOPsX9C-IMqTCHh8NXxnuA.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 83.150.244.0/22 195.66.82.0/24 213.232.255.0/24 IPv6: 2a09:1f00::/29 sbgp-autonomousSysNum: critical Autonomous System Numbers: 197205 Signature Algorithm: sha256WithRSAEncryption 10:c5:cb:cb:39:15:9e:73:c9:44:cc:dc:8c:fb:f2:10:29:62: 09:4a:70:52:00:85:45:c1:60:18:00:aa:63:02:ad:1f:e2:98: 73:c6:f8:28:14:3d:0f:50:4a:38:7f:72:cc:13:34:02:16:87: f4:19:a1:ec:94:9c:85:2d:6b:0f:a4:59:71:42:1c:77:08:69: a6:f9:86:12:99:58:75:9a:e7:8d:be:ac:d4:c3:d6:88:12:0f: 55:ee:f8:ec:01:30:cb:8f:3a:53:6d:ca:92:a6:85:92:a5:ac: c4:00:1e:20:de:9f:0a:dd:36:7f:70:94:46:c9:0d:59:05:a3: 41:c9:43:e0:8b:51:e3:4c:38:3d:fd:88:fa:24:43:d2:5c:4f: ff:ad:ca:e1:77:71:ac:00:00:db:f9:5d:d9:30:11:dc:01:f9: 40:ae:b6:3d:dd:5b:a6:70:2e:e1:e3:de:06:d9:45:18:64:25: 14:68:dd:00:c4:5d:c6:9c:f6:10:f2:96:de:d9:ae:52:a0:96: 8f:7a:64:cc:5d:d8:46:07:4c:c5:b3:cd:9f:75:1d:a5:bb:b2: e9:26:29:6c:db:e5:51:ab:ea:6a:f9:ca:fd:4a:8f:96:15:56: ee:64:08:99:40:4e:8a:56:d6:d1:a6:09:10:c0:93:f8:a8:8b: a5:d0:33:94 -----BEGIN CERTIFICATE----- MIIFrzCCBJegAwIBAgISAZv6C1IFGx+a9iykGu72cGPCMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTI2MTEyMzI0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzMjRiMjAzMmMzOGZiMTdmNDJmODgzMmE0YzIxZTFmMGQ1ZjE5ZWUwMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA09zIIlBns+4Z0CYC6OGHmzQIm/GD qag2IxuLsR/EIZqERE4EGxFIco1x1rX1QoW29aAQMC7TDjj+hWtOFlZg9qOLa9/R siPSy1UWbRweiKGm3hgEzE2Gq9I+nvx8vUgnMQY9yNeaFvRJZjdiV9DT6iM5F1XP NP3VbW6zraLvcyV5YTKB19I186hc/wED3RZz8I43RAJv3dUV+/Omof5dEKZ0i1hW E2p8KAnoy4r7fnjUoLQv8sQ5jB3uLbbDttXguZEdPRoK95EZGBIGpP6pm5ffG6om 1K6UOzix9SAfGsNK58pLvH9OQMYbcOBr0ibQ1j42CpSafkwCGq5Nsctc9QIDAQAB o4ICuzCCArcwHQYDVR0OBBYEFDJLIDLDj7F/QviDKkwh4fDV8Z7gMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzM0Lzc5ZWJj Ni02MTdiLTRlYTktYjQ1My00MzYwZWUwNmEyMmMvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvMzQvNzllYmM2 LTYxN2ItNGVhOS1iNDUzLTQzNjBlZTA2YTIyYy8xL01rc2dNc09Qc1g5Qy1JTXFU Q0hoOE5YeG51QS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMDoGCCsGAQUF BwEHAQH/BCswKTAYBAIAATASAwQCU5b0AwQAw0JSAwQA1ej/MA0EAgACMAcDBQMq CR8AMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUCAwMCVTANBgkqhkiG9w0BAQsFAAOC AQEAEMXLyzkVnnPJRMzcjPvyECliCUpwUgCFRcFgGACqYwKtH+KYc8b4KBQ9D1BK OH9yzBM0AhaH9Bmh7JSchS1rD6RZcUIcdwhppvmGEplYdZrnjb6s1MPWiBIPVe74 7AEwy486U23KkqaFkqWsxAAeIN6fCt02f3CURskNWQWjQclD4ItR40w4Pf2I+iRD 0lxP/63K4XdxrAAA2/ld2TAR3AH5QK62Pd1bpnAu4ePeBtlFGGQlFGjdAMRdxpz2 EPKW3tmuUqCWj3pkzF3YRgdMxbPNn3Udpbuy6SYpbNvlUavqavnK/UqPlhVW7mQI mUBOilbW0aYJEMCT+KiLpdAzlA== -----END CERTIFICATE-----Generated at Mon Feb 2 08:13:36 2026 by rpki-client