This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/NkYhMZiJnt-otCrdRzraIYdI4QQ.cer File: NkYhMZiJnt-otCrdRzraIYdI4QQ.cer (raw, json) Hash identifier: CJ5xpTN4XvJbLF7cwedJaVdIrpxlKF2jOwFegamIg5c= Subject key identifier: 36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B78A2514986316797EE51EBE821FF145F Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 08:17:42 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 49593 IP: 193.218.94.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:a2:51:49:86:31:67:97:ee:51:eb:e8:21:ff:14:5f Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 08:17:42 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3646213198899edfa8b42add473ada218748e104 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9e:29:1a:5d:28:36:50:49:88:81:bf:2b:b3:d0: 29:2d:39:3e:fc:37:33:70:9e:15:0f:84:c1:ea:22: 2b:87:7c:a4:05:3c:58:c6:2b:41:7e:bb:4a:94:08: 57:00:a7:a4:9e:a1:a9:fb:ae:35:5d:d5:e4:73:23: 10:60:15:f9:53:48:92:87:d0:9f:f6:db:ad:ee:76: 3c:43:ef:0d:e7:56:9e:c5:d2:ae:99:94:e8:80:13: 78:e2:71:60:9a:70:6f:59:6b:93:8a:41:8d:82:11: 18:c4:21:91:93:4a:5b:d9:fd:6d:40:78:6c:58:45: e9:16:c5:c2:85:96:3c:e9:d2:59:3b:9c:70:a0:3f: 0f:09:00:7b:78:6a:0c:61:01:e1:92:89:48:a5:24: 44:93:bb:ce:1d:50:7e:d0:f0:b1:c2:64:bd:54:db: fe:bb:dd:f6:96:ee:75:8e:01:70:34:ef:71:19:40: 2d:65:8e:ad:d6:93:3b:fc:cb:6f:d8:da:cd:3c:b2: 74:41:f4:c8:a2:99:83:29:fb:29:3a:69:b8:0e:cf: 2a:f5:b3:0b:67:d3:ac:2a:48:2e:99:6e:a6:81:ee: 99:6f:99:ee:88:d5:d7:08:9b:9d:57:cc:32:92:94: b5:5d:0d:66:4b:a1:71:2b:3a:0c:b5:47:96:a2:f7: 5b:8f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 36:46:21:31:98:89:9E:DF:A8:B4:2A:DD:47:3A:DA:21:87:48:E1:04 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/9f/376d45-c00a-4ee9-986b-06dc38b57535/1/NkYhMZiJnt-otCrdRzraIYdI4QQ.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 193.218.94.0/24 sbgp-autonomousSysNum: critical Autonomous System Numbers: 49593 Signature Algorithm: sha256WithRSAEncryption 21:88:11:2c:7d:57:ab:54:d4:33:20:e2:b4:e9:d2:89:fb:7c: 0c:25:e1:e2:28:64:80:3a:e8:e5:7f:85:0c:e2:94:aa:6a:a7: 90:eb:4f:32:c4:78:98:57:31:38:70:6c:5d:0a:3b:8a:1d:74: 7b:ee:c1:d8:b9:9f:0f:74:20:91:3d:85:c5:0f:f5:b0:bf:ef: 22:fb:54:8f:8b:29:fe:93:7c:72:70:40:e6:5d:bf:e6:52:aa: 3f:3f:b8:25:5c:d3:95:37:e2:72:82:1f:86:8c:f9:35:97:0a: c3:53:5a:a1:45:30:34:16:3f:49:5a:53:b8:c1:7b:a5:95:0d: 33:d3:50:5f:6e:8c:2d:5d:9d:86:83:4c:9e:3f:cf:b6:30:73: 49:a6:ea:a3:89:ad:cf:4a:ae:84:43:fa:1b:3a:77:bb:fc:48: 86:20:56:87:3c:2f:e1:f3:f0:15:d0:a0:69:20:7b:12:74:f7: 51:4d:89:d5:1e:bb:84:8b:34:97:4e:88:16:18:04:d4:96:d4: 83:02:71:c3:28:d1:db:cc:64:85:fe:f9:26:b3:15:37:7a:f9: a3:c5:a8:34:1c:1c:f2:85:b8:9b:65:12:81:08:81:20:c0:36: 85:c1:59:a8:6c:85:9f:63:b4:63:aa:71:80:f2:cf:a2:da:56: e1:89:96:01 -----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgISAZt4olFJhjFnl+5R6+gh/xRfMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDgxNzQyWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzNjQ2MjEzMTk4ODk5ZWRmYThiNDJhZGQ0NzNhZGEyMTg3NDhlMTA0MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnikaXSg2UEmIgb8rs9ApLTk+/Dcz cJ4VD4TB6iIrh3ykBTxYxitBfrtKlAhXAKeknqGp+641XdXkcyMQYBX5U0iSh9Cf 9tut7nY8Q+8N51aexdKumZTogBN44nFgmnBvWWuTikGNghEYxCGRk0pb2f1tQHhs WEXpFsXChZY86dJZO5xwoD8PCQB7eGoMYQHhkolIpSREk7vOHVB+0PCxwmS9VNv+ u932lu51jgFwNO9xGUAtZY6t1pM7/Mtv2NrNPLJ0QfTIopmDKfspOmm4Ds8q9bML Z9OsKkgumW6mge6Zb5nuiNXXCJudV8wykpS1XQ1mS6FxKzoMtUeWovdbjwIDAQAB o4ICoDCCApwwHQYDVR0OBBYEFDZGITGYiZ7fqLQq3Uc62iGHSOEEMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxULzlmLzM3NmQ0 NS1jMDBhLTRlZTktOTg2Yi0wNmRjMzhiNTc1MzUvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvOWYvMzc2ZDQ1 LWMwMGEtNGVlOS05ODZiLTA2ZGMzOGI1NzUzNS8xL05rWWhNWmlKbnQtb3RDcmRS enJhSVlkSTRRUS5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAwdpeMBoGCCsGAQUFBwEIAQH/BAswCaAHMAUC AwDBuTANBgkqhkiG9w0BAQsFAAOCAQEAIYgRLH1Xq1TUMyDitOnSift8DCXh4ihk gDro5X+FDOKUqmqnkOtPMsR4mFcxOHBsXQo7ih10e+7B2LmfD3QgkT2FxQ/1sL/v IvtUj4sp/pN8cnBA5l2/5lKqPz+4JVzTlTficoIfhoz5NZcKw1NaoUUwNBY/SVpT uMF7pZUNM9NQX26MLV2dhoNMnj/PtjBzSabqo4mtz0quhEP6Gzp3u/xIhiBWhzwv 4fPwFdCgaSB7EnT3UU2J1R67hIs0l06IFhgE1JbUgwJxwyjR28xkhf75JrMVN3r5 o8WoNBwc8oW4m2USgQiBIMA2hcFZqGyFn2O0Y6pxgPLPotpW4YmWAQ== -----END CERTIFICATE-----Generated at Mon Feb 9 18:27:03 2026 by rpki-client