This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/PEi5LoCU13gCF-MlTFlyC8Kpdjg.cer File: PEi5LoCU13gCF-MlTFlyC8Kpdjg.cer (raw, json) Hash identifier: 2P3kSKQqLw42rnYRfsezyhnb++f18MZsyVNZalCDQKI= Subject key identifier: 3C:48:B9:2E:80:94:D7:78:02:17:E3:25:4C:59:72:0B:C2:A9:76:38 Authority key identifier: 2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 Certificate issuer: /CN=2a94a8dd554ae701072099c70b6407555ddde669 Certificate serial: 019B7834C8E2AC3A00D92EAC7B7884CEB3C0 Authority info access: rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Manifest: rsync://rpki.ripe.net/repository/DEFAULT/ed/870c2a-394c-45c2-a434-b21e0f4c0c0a/1/PEi5LoCU13gCF-MlTFlyC8Kpdjg.mft caRepository: rsync://rpki.ripe.net/repository/DEFAULT/ed/870c2a-394c-45c2-a434-b21e0f4c0c0a/1/ Notify URL: https://rrdp.ripe.net/notification.xml Certificate not before: Thu 01 Jan 2026 06:18:03 +0000 Certificate not after: Thu 01 Jul 2027 00:00:00 +0000 Subordinate resources: IP: 195.93.155.0/24 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 10 Feb 2026 15:10:16 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:78:34:c8:e2:ac:3a:00:d9:2e:ac:7b:78:84:ce:b3:c0 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=2a94a8dd554ae701072099c70b6407555ddde669 Validity Not Before: Jan 1 06:18:03 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=3c48b92e8094d7780217e3254c59720bc2a97638 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:bf:79:22:94:cf:b1:47:f5:ed:d3:06:e5:02:e6: 4e:bc:36:4b:ce:a6:6c:61:b0:2c:95:51:e9:6e:0c: 5b:3f:2a:71:4a:46:6f:66:01:6b:3b:8d:10:67:ef: 05:66:6f:7f:b7:0e:44:e0:6a:29:b4:02:d8:1b:dc: 2f:56:1d:0c:ba:68:9b:be:35:4e:39:8e:d8:00:11: ed:03:4b:d5:02:04:47:c0:28:0e:1a:ca:d6:96:03: 0b:80:91:3d:35:92:b1:70:b5:9d:1c:a8:bd:fb:7d: 45:00:60:4c:e4:17:23:d9:8f:96:ac:db:06:dc:4c: 52:b6:a8:32:5a:d3:ba:e7:cd:c0:ae:29:84:e9:0e: 33:76:23:a4:2c:87:11:0e:9c:42:78:83:8d:f5:87: 49:b0:0a:c9:5c:0e:a2:a7:40:0a:97:5f:56:86:7f: d8:ff:e8:47:30:16:9c:9f:c4:77:2e:ee:d0:01:4f: 46:04:ec:87:46:26:e7:9e:b6:ba:dc:e7:59:24:42: c1:bf:6c:99:9d:ae:b9:23:c1:b4:f6:08:d0:98:3e: 5d:92:b0:4d:df:02:77:0d:42:62:05:86:ad:c7:13: 88:99:f6:fa:e3:29:13:82:b8:29:69:49:e1:45:39: c7:e6:69:b3:ff:00:cc:96:8b:20:f3:cc:c0:91:b9: b3:c7 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 3C:48:B9:2E:80:94:D7:78:02:17:E3:25:4C:59:72:0B:C2:A9:76:38 X509v3 Authority Key Identifier: keyid:2A:94:A8:DD:55:4A:E7:01:07:20:99:C7:0B:64:07:55:5D:DD:E6:69 X509v3 Basic Constraints: critical CA:TRUE X509v3 Key Usage: critical Certificate Sign, CRL Sign Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer Subject Information Access: CA Repository - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/870c2a-394c-45c2-a434-b21e0f4c0c0a/1/ RPKI Manifest - URI:rsync://rpki.ripe.net/repository/DEFAULT/ed/870c2a-394c-45c2-a434-b21e0f4c0c0a/1/PEi5LoCU13gCF-MlTFlyC8Kpdjg.mft RPKI Notify - URI:https://rrdp.ripe.net/notification.xml X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 195.93.155.0/24 Signature Algorithm: sha256WithRSAEncryption 21:e1:c7:87:b4:c0:33:47:3b:36:37:c9:3f:9f:5e:76:11:76: 6a:6f:de:37:80:94:f4:39:3d:8b:e0:94:05:c7:dc:8f:dc:b9: cf:47:40:a5:10:c8:dc:5e:37:33:5e:fa:35:4c:f7:6c:7d:47: 7b:01:03:06:2d:be:cc:fe:d1:6f:3c:06:d4:73:74:80:0a:3b: e3:39:61:b4:15:11:58:cc:07:da:b7:81:c6:3a:fe:f4:93:41: 78:30:59:36:ce:72:ab:07:23:38:52:d2:1d:85:3e:7e:40:b6: 48:b9:b4:6b:39:1e:81:93:83:21:9b:4d:8a:a5:db:06:71:b8: cf:6b:e8:c5:28:22:5d:91:e7:33:74:ae:54:c7:ae:99:41:af: 49:a7:a1:41:70:30:d1:fe:02:b0:c6:c3:48:06:8b:2c:c1:cd: 73:d9:12:63:8d:4e:5a:04:a4:02:08:ff:e6:bd:a2:e5:70:f7: 75:05:2b:a0:a7:8e:ff:7e:9a:96:82:c2:30:4e:bd:3c:35:33: 7a:c3:cc:33:38:e4:05:14:85:f3:91:f0:b9:17:ad:bb:08:3b: 9e:98:cc:93:fe:14:5c:97:bb:91:da:be:83:22:00:e7:96:5b: 6e:ac:2c:dc:35:f8:e9:73:84:f6:08:8c:14:e8:32:12:63:fd: 06:9a:fb:9d -----BEGIN CERTIFICATE----- MIIFeDCCBGCgAwIBAgISAZt4NMjirDoA2S6se3iEzrPAMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDJhOTRhOGRkNTU0YWU3MDEwNzIwOTljNzBiNjQwNzU1NWRk ZGU2NjkwHhcNMjYwMTAxMDYxODAzWhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD EygzYzQ4YjkyZTgwOTRkNzc4MDIxN2UzMjU0YzU5NzIwYmMyYTk3NjM4MIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv3kilM+xR/Xt0wblAuZOvDZLzqZs YbAslVHpbgxbPypxSkZvZgFrO40QZ+8FZm9/tw5E4GoptALYG9wvVh0MumibvjVO OY7YABHtA0vVAgRHwCgOGsrWlgMLgJE9NZKxcLWdHKi9+31FAGBM5Bcj2Y+WrNsG 3ExStqgyWtO6583ArimE6Q4zdiOkLIcRDpxCeION9YdJsArJXA6ip0AKl19Whn/Y /+hHMBacn8R3Lu7QAU9GBOyHRibnnra63OdZJELBv2yZna65I8G09gjQmD5dkrBN 3wJ3DUJiBYatxxOImfb64ykTgrgpaUnhRTnH5mmz/wDMlosg88zAkbmzxwIDAQAB o4IChDCCAoAwHQYDVR0OBBYEFDxIuS6AlNd4AhfjJUxZcgvCqXY4MB8GA1UdIwQY MBaAFCqUqN1VSucBByCZxwtkB1Vd3eZpMA8GA1UdEwEB/wQFMAMBAf8wDgYDVR0P AQH/BAQDAgEGMGAGCCsGAQUFBwEBBFQwUjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9y cGtpLnJpcGUubmV0L3JlcG9zaXRvcnkvYWNhL0twU28zVlZLNXdFSElKbkhDMlFI VlYzZDVtay5jZXIwggEjBggrBgEFBQcBCwSCARUwggERMF0GCCsGAQUFBzAFhlFy c3luYzovL3Jwa2kucmlwZS5uZXQvcmVwb3NpdG9yeS9ERUZBVUxUL2VkLzg3MGMy YS0zOTRjLTQ1YzItYTQzNC1iMjFlMGY0YzBjMGEvMS8wfAYIKwYBBQUHMAqGcHJz eW5jOi8vcnBraS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvZWQvODcwYzJh LTM5NGMtNDVjMi1hNDM0LWIyMWUwZjRjMGMwYS8xL1BFaTVMb0NVMTNnQ0YtTWxU Rmx5QzhLcGRqZy5tZnQwMgYIKwYBBQUHMA2GJmh0dHBzOi8vcnJkcC5yaXBlLm5l dC9ub3RpZmljYXRpb24ueG1sMFkGA1UdHwRSMFAwTqBMoEqGSHJzeW5jOi8vcnBr aS5yaXBlLm5ldC9yZXBvc2l0b3J5L0RFRkFVTFQvS3BTbzNWVks1d0VISUpuSEMy UUhWVjNkNW1rLmNybDAYBgNVHSABAf8EDjAMMAoGCCsGAQUFBw4CMB8GCCsGAQUF BwEHAQH/BBAwDjAMBAIAATAGAwQAw12bMA0GCSqGSIb3DQEBCwUAA4IBAQAh4ceH tMAzRzs2N8k/n152EXZqb943gJT0OT2L4JQFx9yP3LnPR0ClEMjcXjczXvo1TPds fUd7AQMGLb7M/tFvPAbUc3SACjvjOWG0FRFYzAfat4HGOv70k0F4MFk2znKrByM4 UtIdhT5+QLZIubRrOR6Bk4Mhm02KpdsGcbjPa+jFKCJdkeczdK5Ux66ZQa9Jp6FB cDDR/gKwxsNIBosswc1z2RJjjU5aBKQCCP/mvaLlcPd1BSugp47/fpqWgsIwTr08 NTN6w8wzOOQFFIXzkfC5F627CDuemMyT/hRcl7uR2r6DIgDnllturCzcNfjpc4T2 CIwU6DISY/0Gmvud -----END CERTIFICATE-----Generated at Mon Feb 9 19:43:15 2026 by rpki-client