This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer File: OGq5cL-2lHWX6XzvuRbsdqDFaFg.cer (raw, json) Hash identifier: NXNHFtcaJiUOtsMt/rnmjW+WrB0KJFP7cd4mpFFeJ0Q= Subject key identifier: 38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7D5CEF9010B42A3DE6FAE7A09494FAE0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Fri 02 Jan 2026 06:20:01 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: AS: 206725 IP: 2001:678:134::/48 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7d:5c:ef:90:10:b4:2a:3d:e6:fa:e7:a0:94:94:fa:e0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 2 06:20:01 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=386ab970bfb6947597e97cefb916ec76a0c56858 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e3:70:a9:a5:f9:b8:b2:59:02:6e:30:82:ab:31: 9d:21:f5:4f:5d:43:5a:f2:34:fb:ba:60:38:cc:6c: 6c:16:04:bb:9f:86:07:9d:eb:cd:cc:6d:4a:f3:75: e7:2e:0b:79:e2:89:17:f1:ce:b0:c7:f3:3a:7f:d9: 39:10:87:24:7f:e9:6f:04:a6:42:53:75:3b:cf:4b: f8:a6:02:d4:58:f6:8d:58:af:ab:9b:3a:20:38:d9: 64:95:ba:31:45:0c:b8:91:96:8b:e3:2b:9a:4a:cf: 15:0f:6a:fe:8e:11:10:ca:7f:ba:7e:dc:ed:a4:0d: 76:ce:ba:74:35:3a:51:57:82:87:51:99:62:5f:2d: 20:cd:e1:1c:67:8a:87:f3:d6:c6:10:01:e6:8b:a9: 82:50:a2:8d:0b:5c:01:fd:31:00:86:7c:41:a9:9c: 90:dc:ba:cb:78:46:11:73:cf:c3:90:10:df:dc:5e: 0d:cc:95:96:0d:c5:40:ee:f4:61:48:ae:ab:21:a9: d1:d9:f5:c4:e8:e1:d0:58:8b:6e:b7:8d:27:81:32: b0:c2:6e:f8:d8:47:44:dd:83:fc:cd:8e:ca:ce:1f: 08:f8:ee:ef:7e:01:3f:a1:97:b0:97:d3:42:98:86: 56:76:95:20:65:d8:b5:ff:ed:4b:e1:ac:52:c7:56: a0:fd Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 38:6A:B9:70:BF:B6:94:75:97:E9:7C:EF:B9:16:EC:76:A0:C5:68:58 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/bd/41fda9-9702-458d-982f-8d11257d4af6/1/OGq5cL-2lHWX6XzvuRbsdqDFaFg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2001:678:134::/48 sbgp-autonomousSysNum: critical Autonomous System Numbers: 206725 Signature Algorithm: sha256WithRSAEncryption 99:2b:be:98:43:22:4e:8d:7f:7c:9c:e9:12:aa:06:23:7f:83: 35:fe:4e:ab:74:af:d1:2c:8b:b0:87:99:54:f9:7b:cd:23:81: 26:bf:73:2b:4c:6c:eb:eb:94:90:b6:2c:72:21:8a:18:dc:77: 0b:f3:81:fd:36:11:c8:56:c1:dd:32:8b:7e:8e:f9:e1:7c:63: c4:02:a8:13:6c:ac:76:5b:a3:a4:4d:c9:53:82:d1:cb:b2:f2: 39:22:34:91:a5:0c:6f:22:ee:31:5c:1e:8c:84:29:a3:3b:a4: ba:8a:ec:d5:b5:00:7b:9c:46:07:17:6a:9b:a0:e4:cf:4b:2b: 94:fa:3c:cb:b2:a5:a9:72:6b:e8:64:b2:43:85:8d:1e:8d:26: 25:58:98:6a:c6:52:33:8d:8d:54:31:10:74:39:d6:fc:84:96: 10:48:96:19:c0:37:cd:6f:29:76:fe:5c:17:9d:05:3c:c2:f4: f7:55:0a:1a:41:45:8e:68:f8:f3:6b:bb:2e:c7:ce:98:84:27: 81:91:34:b3:1d:9a:18:99:e7:c1:c8:61:0e:4c:e2:47:b8:09: 16:29:e7:a4:c8:4f:fc:58:06:ec:7d:b2:29:25:0e:37:70:9f: 30:a6:13:75:61:9c:9e:e9:7b:a7:b3:35:3c:45:92:d4:81:4d: 2d:5c:80:17 -----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISAZt9XO+QELQqPeb656CUlPrgMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAyMDYyMDAxWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzODZhYjk3MGJmYjY5NDc1OTdlOTdjZWZiOTE2ZWM3NmEwYzU2ODU4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43Cppfm4slkCbjCCqzGdIfVPXUNa 8jT7umA4zGxsFgS7n4YHnevNzG1K83XnLgt54okX8c6wx/M6f9k5EIckf+lvBKZC U3U7z0v4pgLUWPaNWK+rmzogONlklboxRQy4kZaL4yuaSs8VD2r+jhEQyn+6ftzt pA12zrp0NTpRV4KHUZliXy0gzeEcZ4qH89bGEAHmi6mCUKKNC1wB/TEAhnxBqZyQ 3LrLeEYRc8/DkBDf3F4NzJWWDcVA7vRhSK6rIanR2fXE6OHQWItut40ngTKwwm74 2EdE3YP8zY7Kzh8I+O7vfgE/oZewl9NCmIZWdpUgZdi1/+1L4axSx1ag/QIDAQAB o4ICozCCAp8wHQYDVR0OBBYEFDhquXC/tpR1l+l877kW7HagxWhYMB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2JkLzQxZmRh OS05NzAyLTQ1OGQtOTgyZi04ZDExMjU3ZDRhZjYvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvYmQvNDFmZGE5 LTk3MDItNDU4ZC05ODJmLThkMTEyNTdkNGFmNi8xL09HcTVjTC0ybEhXWDZYenZ1 UmJzZHFERmFGZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMCIGCCsGAQUF BwEHAQH/BBMwETAPBAIAAjAJAwcAIAEGeAE0MBoGCCsGAQUFBwEIAQH/BAswCaAH MAUCAwMnhTANBgkqhkiG9w0BAQsFAAOCAQEAmSu+mEMiTo1/fJzpEqoGI3+DNf5O q3Sv0SyLsIeZVPl7zSOBJr9zK0xs6+uUkLYsciGKGNx3C/OB/TYRyFbB3TKLfo75 4XxjxAKoE2ysdlujpE3JU4LRy7LyOSI0kaUMbyLuMVwejIQpozukuors1bUAe5xG Bxdqm6Dkz0srlPo8y7KlqXJr6GSyQ4WNHo0mJViYasZSM42NVDEQdDnW/ISWEEiW GcA3zW8pdv5cF50FPML091UKGkFFjmj482u7LsfOmIQngZE0sx2aGJnnwchhDkzi R7gJFinnpMhP/FgG7H2yKSUON3CfMKYTdWGcnul7p7M1PEWS1IFNLVyAFw== -----END CERTIFICATE-----Generated at Mon Feb 9 19:42:00 2026 by rpki-client